$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/J1drvHtkdWprJmmIxg_5dDexkA0.roa File: J1drvHtkdWprJmmIxg_5dDexkA0.roa (raw, json) Hash identifier: MYsbVUMxi1tf/VBBHeb82iizmstkEMVGURdNLXSiqKc= Subject key identifier: 27:57:6B:BC:7B:64:75:6A:6B:26:69:88:C6:0F:F9:74:37:B1:90:0D Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1364 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/J1drvHtkdWprJmmIxg_5dDexkA0.roa Signing time: Fri 18 Jul 2025 08:52:09 +0000 ROA not before: Fri 18 Jul 2025 08:52:09 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131602 IP address blocks: 218.35.96.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Jul 2025 20:36:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4964 (0x1364) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jul 18 08:52:09 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=27576BBC7B64756A6B266988C60FF97437B1900D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:e7:64:66:0f:d9:ff:fb:6c:56:fa:f9:16:51: b2:aa:d5:66:f6:5f:97:d8:4e:bd:3e:02:55:56:f2: cb:61:87:42:bf:10:98:2c:b8:4a:2b:45:da:90:f6: 6c:33:b9:55:0d:6d:b3:41:f5:a0:18:12:bc:22:c7: 6b:57:06:fe:ff:0e:ef:b4:82:5a:44:27:af:d8:f5: 38:52:c6:f1:ec:0b:1e:37:22:f4:34:ed:da:cb:4e: 13:b1:24:ea:54:2d:ec:a2:e4:40:14:03:34:b6:23: 21:05:59:c2:ca:ed:52:08:32:45:25:25:7c:ab:ba: 76:a6:d8:52:4d:22:cd:1d:d6:11:b5:c2:59:7b:a9: be:b0:be:5a:c6:23:06:50:a6:1d:1f:ef:de:e6:67: 1b:94:a5:1a:39:ae:12:33:07:a1:22:ee:52:91:ba: 38:c9:31:43:3e:66:ff:93:e2:6f:35:c8:2b:de:2c: 37:c9:d5:02:9f:87:dd:50:ca:ad:74:a8:5d:71:bb: e4:f5:bb:4b:8d:5a:2c:17:f4:74:17:1e:3f:dc:8f: ad:b0:88:05:e1:a7:cd:ef:f4:bb:28:88:b5:2b:8f: e7:1d:0f:eb:df:c0:f0:c3:0b:7e:27:35:3d:7e:bf: c2:b5:0a:d2:f4:35:8a:3d:2b:c5:a5:5a:8f:8b:04: cf:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:57:6B:BC:7B:64:75:6A:6B:26:69:88:C6:0F:F9:74:37:B1:90:0D X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/J1drvHtkdWprJmmIxg_5dDexkA0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 218.35.96.0/21 Signature Algorithm: sha256WithRSAEncryption 38:80:42:21:05:da:f6:cf:24:34:e4:0d:c8:d2:78:de:53:bd: a9:1e:09:3b:52:2d:7e:de:cf:a6:92:21:ee:1d:6e:f1:b6:00: 9f:c7:59:82:81:df:92:d8:9c:cb:47:42:5a:c9:c4:3a:cc:2a: 84:c2:54:0a:d9:a9:d0:89:88:21:9e:6a:ce:85:4c:44:6b:c9: 62:30:fc:33:4d:a2:d6:e2:48:38:ca:78:84:5a:02:0c:18:b2: 5d:5f:a0:44:b2:c1:3f:8c:41:40:65:1a:cb:ae:20:84:4c:99: 8f:f2:71:16:c6:1a:25:c9:a1:ae:ab:c7:96:43:34:3f:30:61: ee:19:d2:a0:a3:04:1c:f7:15:ef:c7:e6:75:93:c2:57:a2:42: d8:c0:1f:8e:91:cd:0c:25:5f:ba:ee:4f:3e:34:59:d9:c0:0a: 93:a3:eb:f8:98:8b:c7:1d:c7:03:b1:5a:c3:eb:c0:0f:14:84: fc:9f:1a:48:5e:51:cd:a4:9f:27:85:72:14:a6:42:6b:9b:43: c7:f7:b6:40:d2:f3:d7:cc:cb:ea:78:67:43:d6:82:31:6a:ff: f1:dd:23:26:4a:75:cd:24:f6:f8:2d:11:ee:55:57:ec:25:46: 06:f8:9d:65:8e:31:cd:ed:5f:45:22:cb:28:03:1d:df:d0:d4: 17:e3:a9:20 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICE2QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA3MTgw ODUyMDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI3NTc2QkJDN0I2NDc1 NkE2QjI2Njk4OEM2MEZGOTc0MzdCMTkwMEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDY52RmD9n/+2xW+vkWUbKq1Wb2X5fYTr0+AlVW8sthh0K/EJgs uEorRdqQ9mwzuVUNbbNB9aAYErwix2tXBv7/Du+0glpEJ6/Y9ThSxvHsCx43IvQ0 7drLThOxJOpULeyi5EAUAzS2IyEFWcLK7VIIMkUlJXyrunam2FJNIs0d1hG1wll7 qb6wvlrGIwZQph0f797mZxuUpRo5rhIzB6Ei7lKRujjJMUM+Zv+T4m81yCveLDfJ 1QKfh91Qyq10qF1xu+T1u0uNWiwX9HQXHj/cj62wiAXhp83v9LsoiLUrj+cdD+vf wPDDC34nNT1+v8K1CtL0NYo9K8WlWo+LBM+XAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUJ1drvHtkdWprJmmIxg/5dDexkA0wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0oxZHJ2SHRrZFdwckptbUl4Z181ZERl eGtBMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPaI2AwDQYJ KoZIhvcNAQELBQADggEBADiAQiEF2vbPJDTkDcjSeN5TvakeCTtSLX7ez6aSIe4d bvG2AJ/HWYKB35LYnMtHQlrJxDrMKoTCVArZqdCJiCGeas6FTERryWIw/DNNotbi SDjKeIRaAgwYsl1foESywT+MQUBlGsuuIIRMmY/ycRbGGiXJoa6rx5ZDND8wYe4Z 0qCjBBz3Fe/H5nWTwleiQtjAH46RzQwlX7ruTz40WdnACpOj6/iYi8cdxwOxWsPr wA8UhPyfGkheUc2knyeFchSmQmubQ8f3tkDS89fMy+p4Z0PWgjFq//HdIyZKdc0k 9vgtEe5VV+wlRgb4nWWOMc3tX0UiyygDHd/Q1BfjqSA= -----END CERTIFICATE-----Generated at Sun Jul 20 19:06:00 2025 by rpki-client