$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ZAT/57lWZzYZ0RTmnk5i7Ta5HwhMiHI.roa File: 57lWZzYZ0RTmnk5i7Ta5HwhMiHI.roa (raw, json) Hash identifier: xalm1Rk6BiLLqsQ/fZU4JTsk4ti2EkLT52LO93lQFp4= Subject key identifier: E7:B9:56:67:36:19:D1:14:E6:9E:4E:62:ED:36:B9:1F:08:4C:88:72 Certificate issuer: /CN=41D608336CCF0EDFEA4A24614F1D7234884E8991 Certificate serial: 0229 Authority key identifier: 41:D6:08:33:6C:CF:0E:DF:EA:4A:24:61:4F:1D:72:34:88:4E:89:91 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/QdYIM2zPDt_qSiRhTx1yNIhOiZE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZAT/57lWZzYZ0RTmnk5i7Ta5HwhMiHI.roa Signing time: Fri 22 Aug 2025 08:44:06 +0000 ROA not before: Fri 22 Aug 2025 08:44:06 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18041 IP address blocks: 2401:55a0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZAT/QdYIM2zPDt_qSiRhTx1yNIhOiZE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ZAT/QdYIM2zPDt_qSiRhTx1yNIhOiZE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/QdYIM2zPDt_qSiRhTx1yNIhOiZE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 553 (0x229) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41D608336CCF0EDFEA4A24614F1D7234884E8991 Validity Not Before: Aug 22 08:44:06 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E7B956673619D114E69E4E62ED36B91F084C8872 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:fc:3e:93:50:c1:72:38:25:20:c9:e3:56:7c: b4:1c:6d:f2:08:cb:e6:fe:7b:bf:4e:a0:57:59:6a: f2:3d:68:65:c7:6f:aa:8b:0c:1c:a0:aa:ff:d0:83: 99:6e:32:cc:9b:d9:dc:03:2a:44:5f:bd:bb:cf:97: 01:72:41:70:8f:2d:69:81:f1:31:3c:6c:9b:ef:55: 14:00:94:82:2e:ab:e6:8b:65:40:c6:bb:a9:66:a6: ca:e1:09:cd:98:41:db:89:92:59:d5:d3:69:14:23: 5c:3f:75:96:ca:d8:67:73:e0:48:2b:17:85:d0:78: b7:a4:04:4a:e9:ca:b4:32:d0:9f:39:10:1e:9a:2c: ce:ad:ec:c4:cc:07:9a:e2:57:03:f7:85:94:98:e8: 34:6c:d5:cb:74:80:02:cb:41:9d:4f:b0:87:b2:ee: a1:7a:0a:a5:95:af:87:2d:38:63:e0:61:10:62:7b: 46:20:3c:0e:2e:ff:22:63:5a:8a:09:3a:4c:4d:c0: 53:7e:d3:40:28:ec:75:da:34:89:04:71:86:2a:bc: 3b:7c:f9:b1:76:04:77:88:b0:22:d0:bb:19:94:bd: a7:b2:cf:66:f4:4b:92:b6:fe:a8:54:98:0f:ee:5b: 1f:05:24:54:6a:63:50:59:fa:27:da:6e:c8:23:e7: bf:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:B9:56:67:36:19:D1:14:E6:9E:4E:62:ED:36:B9:1F:08:4C:88:72 X509v3 Authority Key Identifier: keyid:41:D6:08:33:6C:CF:0E:DF:EA:4A:24:61:4F:1D:72:34:88:4E:89:91 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZAT/QdYIM2zPDt_qSiRhTx1yNIhOiZE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/QdYIM2zPDt_qSiRhTx1yNIhOiZE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZAT/57lWZzYZ0RTmnk5i7Ta5HwhMiHI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:55a0::/32 Signature Algorithm: sha256WithRSAEncryption 79:f0:0a:5a:b8:df:e2:76:79:b3:c4:a0:07:7f:11:42:85:1b: 15:41:85:29:ab:49:9d:56:87:61:89:e1:8f:ab:78:0d:3c:f4: f8:19:30:b3:25:13:b1:c6:34:19:d1:77:1b:6b:ea:d1:ae:ad: 55:00:38:30:f6:f3:c1:f2:3e:4a:e8:44:38:f6:bf:7a:10:a2: 37:32:4c:17:b4:ed:2c:50:df:25:1c:6a:f4:11:c0:63:09:9f: d7:cd:c1:2c:4e:b1:87:77:72:ef:40:c7:d1:4a:03:68:49:b6: b6:47:f3:ec:d2:a8:31:3d:82:b3:bc:45:03:1f:9e:23:f1:da: dd:e0:ec:e8:54:0c:61:76:c9:d1:18:ab:c1:cf:76:77:79:32: 36:00:43:3a:70:31:ed:1d:fd:3d:84:07:7c:ad:7a:20:82:d8: 20:29:b5:92:ff:e3:ed:87:3a:2b:00:0a:71:18:5c:bd:81:23: fa:af:e9:36:18:bc:a2:fc:54:d6:5c:35:76:9a:1d:c5:74:3e: 39:27:eb:ca:a5:59:7b:78:28:2e:ac:0a:71:57:ea:1f:4d:cb: d5:e6:58:b4:c0:f7:b6:1e:23:d8:f8:9f:ac:54:80:4c:fc:ed: fa:15:5b:e7:6d:0b:38:41:8d:e6:27:ce:36:a3:c2:83:58:89: 5d:2b:19:45 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICAikwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDFE NjA4MzM2Q0NGMEVERkVBNEEyNDYxNEYxRDcyMzQ4ODRFODk5MTAeFw0yNTA4MjIw ODQ0MDZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEU3Qjk1NjY3MzYxOUQx MTRFNjlFNEU2MkVEMzZCOTFGMDg0Qzg4NzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDi/D6TUMFyOCUgyeNWfLQcbfIIy+b+e79OoFdZavI9aGXHb6qL DBygqv/Qg5luMsyb2dwDKkRfvbvPlwFyQXCPLWmB8TE8bJvvVRQAlIIuq+aLZUDG u6lmpsrhCc2YQduJklnV02kUI1w/dZbK2Gdz4EgrF4XQeLekBErpyrQy0J85EB6a LM6t7MTMB5riVwP3hZSY6DRs1ct0gALLQZ1PsIey7qF6CqWVr4ctOGPgYRBie0Yg PA4u/yJjWooJOkxNwFN+00Ao7HXaNIkEcYYqvDt8+bF2BHeIsCLQuxmUvaeyz2b0 S5K2/qhUmA/uWx8FJFRqY1BZ+ifabsgj57+tAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQU57lWZzYZ0RTmnk5i7Ta5HwhMiHIwHwYDVR0jBBgwFoAUQdYIM2zPDt/qSiRh Tx1yNIhOiZEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWkFUL1Fk WUlNMnpQRHRfcVNpUmhUeDF5TkloT2laRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UWRZSU0yelBEdF9xU2lSaFR4MXlOSWhPaVpFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvWkFULzU3bFdaellaMFJUbW5rNWk3VGE1SHdo TWlISS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAVWgMA0G CSqGSIb3DQEBCwUAA4IBAQB58ApauN/idnmzxKAHfxFChRsVQYUpq0mdVodhieGP q3gNPPT4GTCzJROxxjQZ0Xcba+rRrq1VADgw9vPB8j5K6EQ49r96EKI3MkwXtO0s UN8lHGr0EcBjCZ/XzcEsTrGHd3LvQMfRSgNoSba2R/Ps0qgxPYKzvEUDH54j8drd 4OzoVAxhdsnRGKvBz3Z3eTI2AEM6cDHtHf09hAd8rXoggtggKbWS/+PthzorAApx GFy9gSP6r+k2GLyi/FTWXDV2mh3FdD45J+vKpVl7eCgurApxV+ofTcvV5li0wPe2 HiPY+J+sVIBM/O36FVvnbQs4QY3mJ842o8KDWIldKxlF -----END CERTIFICATE-----Generated at Sun Aug 24 08:54:03 2025 by rpki-client