$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/gvCwNzPJHK7DhO-pH3gecq3osXA.roa File: gvCwNzPJHK7DhO-pH3gecq3osXA.roa (raw, json) Hash identifier: MFkeEa4y5H3Tawv3TmCpqceX+z5oFaDaLlluXovZKPs= Subject key identifier: 82:F0:B0:37:33:C9:1C:AE:C3:84:EF:A9:1F:78:1E:72:AD:E8:B1:70 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1360 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/gvCwNzPJHK7DhO-pH3gecq3osXA.roa Signing time: Fri 18 Jul 2025 08:47:19 +0000 ROA not before: Fri 18 Jul 2025 08:47:19 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131602 IP address blocks: 218.35.248.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Jul 2025 20:36:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4960 (0x1360) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jul 18 08:47:19 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=82F0B03733C91CAEC384EFA91F781E72ADE8B170 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a4:06:6a:7d:03:7c:2e:1c:ba:b9:f3:9b:0b: 66:9f:e0:d3:fa:c0:0e:99:51:b4:75:62:87:09:f6: 0e:22:93:cd:6c:c5:3a:72:39:48:23:f6:3d:81:a9: d6:99:32:cc:43:40:18:e1:23:20:e5:8d:fc:bd:64: 68:52:7a:0b:77:0a:f5:bb:4d:24:f7:ae:1d:da:24: 88:e0:c0:17:c4:62:29:eb:62:1f:07:8f:7f:4c:8b: 4c:61:c9:04:67:3d:33:d0:3e:0e:81:8a:c5:28:f2: 97:15:d5:a0:aa:32:61:ac:b3:69:84:d6:01:c0:87: 80:6b:95:7e:c7:d8:21:07:69:bc:c1:43:65:fb:38: 05:01:91:4f:92:57:40:79:a6:d2:c6:d0:42:96:75: 80:49:ed:3a:6b:43:88:91:76:84:53:1e:53:d4:09: 8c:d7:12:f1:60:0f:ef:38:1c:df:bb:26:6c:62:91: 44:e9:37:cc:bc:b9:af:46:bc:b4:1a:ca:3a:77:14: 84:57:2d:99:21:9b:1b:a6:99:7b:04:67:da:39:a8: 1b:1b:cb:c4:5f:f5:be:c3:98:ba:1b:7b:3e:91:ed: 7b:34:f1:79:ed:6a:b9:09:c8:11:0f:12:64:aa:90: 87:e0:92:8f:02:bc:e1:8b:cd:c6:23:3e:8d:70:b4: fd:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:F0:B0:37:33:C9:1C:AE:C3:84:EF:A9:1F:78:1E:72:AD:E8:B1:70 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/gvCwNzPJHK7DhO-pH3gecq3osXA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 218.35.248.0/21 Signature Algorithm: sha256WithRSAEncryption a3:9b:1a:49:b7:95:ca:c0:b2:e0:a4:45:af:a6:f4:14:cb:d6: 0a:e8:c3:a3:25:7d:e6:0f:67:b5:00:58:76:7d:01:fc:c4:29: d1:68:0a:7d:62:88:a1:b3:83:55:ca:b3:da:4c:07:55:83:9a: 04:ee:10:c1:8c:21:8d:89:d6:5a:59:d2:ec:68:38:9a:b2:0c: b4:5e:54:7f:6d:e2:3f:2e:2d:2f:60:17:3f:1f:62:97:10:01: 2c:b2:b2:1d:76:1c:5f:57:7f:07:2d:01:f1:af:be:62:a9:28: 0f:ec:da:6c:d8:50:10:b3:da:fe:27:75:b6:64:08:3b:03:03: 91:ee:1f:14:91:c8:83:11:7d:1b:a5:10:d1:02:36:3e:ef:93: 39:31:3b:63:35:89:6c:01:17:23:fb:ed:89:b5:11:f7:6a:f2: a4:47:45:f6:6a:d6:36:02:cf:79:e3:ed:5a:24:a1:f1:d2:c6: 9e:98:cb:ac:75:be:75:39:76:37:e5:cf:f1:ea:3b:d5:3b:60: 39:71:d2:36:1d:72:d5:9e:75:48:27:70:1c:c9:c4:1f:7f:1c: c2:f3:d6:d6:b3:be:38:60:4e:d1:18:af:7b:4f:2e:7f:c1:ac: 2e:ac:5e:2b:49:49:15:64:2f:2b:c3:8e:43:fa:6d:26:60:ac: cc:45:fe:19 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICE2AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA3MTgw ODQ3MTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDgyRjBCMDM3MzNDOTFD QUVDMzg0RUZBOTFGNzgxRTcyQURFOEIxNzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDpAZqfQN8Lhy6ufObC2af4NP6wA6ZUbR1YocJ9g4ik81sxTpy OUgj9j2BqdaZMsxDQBjhIyDljfy9ZGhSegt3CvW7TST3rh3aJIjgwBfEYinrYh8H j39Mi0xhyQRnPTPQPg6BisUo8pcV1aCqMmGss2mE1gHAh4BrlX7H2CEHabzBQ2X7 OAUBkU+SV0B5ptLG0EKWdYBJ7TprQ4iRdoRTHlPUCYzXEvFgD+84HN+7JmxikUTp N8y8ua9GvLQayjp3FIRXLZkhmxummXsEZ9o5qBsby8Rf9b7DmLobez6R7Xs08Xnt arkJyBEPEmSqkIfgko8CvOGLzcYjPo1wtP2bAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUgvCwNzPJHK7DhO+pH3gecq3osXAwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2d2Q3dOelBKSEs3RGhPLXBIM2dlY3Ez b3NYQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPaI/gwDQYJ KoZIhvcNAQELBQADggEBAKObGkm3lcrAsuCkRa+m9BTL1grow6MlfeYPZ7UAWHZ9 AfzEKdFoCn1iiKGzg1XKs9pMB1WDmgTuEMGMIY2J1lpZ0uxoOJqyDLReVH9t4j8u LS9gFz8fYpcQASyysh12HF9XfwctAfGvvmKpKA/s2mzYUBCz2v4ndbZkCDsDA5Hu HxSRyIMRfRulENECNj7vkzkxO2M1iWwBFyP77Ym1Efdq8qRHRfZq1jYCz3nj7Vok ofHSxp6Yy6x1vnU5djflz/HqO9U7YDlx0jYdctWedUgncBzJxB9/HMLz1tazvjhg TtEYr3tPLn/BrC6sXitJSRVkLyvDjkP6bSZgrMxF/hk= -----END CERTIFICATE-----Generated at Sun Jul 20 19:38:50 2025 by rpki-client