$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/Fj8lEsEez_aqPcCOyQQMeMlInAY.roa File: Fj8lEsEez_aqPcCOyQQMeMlInAY.roa (raw, json) Hash identifier: 9O0Bd/EiX7IR/2vARfyyBsgrYu+XrEQUwUhpv6eHwnY= Subject key identifier: 16:3F:25:12:C1:1E:CF:F6:AA:3D:C0:8E:C9:04:0C:78:C9:48:9C:06 Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803 Certificate serial: 0262 Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/Fj8lEsEez_aqPcCOyQQMeMlInAY.roa Signing time: Sat 12 Jul 2025 04:09:47 +0000 ROA not before: Sat 12 Jul 2025 04:09:47 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 152609 IP address blocks: 157.20.249.0/26 maxlen: 26 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 03:37:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 610 (0x262) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803 Validity Not Before: Jul 12 04:09:47 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=163F2512C11ECFF6AA3DC08EC9040C78C9489C06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:1c:97:6e:f3:f3:38:90:a0:ea:31:0f:82:22: de:a2:89:be:85:c9:b8:d6:34:4f:3f:a4:7e:e8:be: 41:03:0a:53:0b:26:9a:9e:d7:c3:24:88:3b:a3:e3: 35:93:f9:21:97:1b:6b:19:aa:78:1c:be:2d:61:f9: 66:bd:ee:47:2f:19:17:3a:48:5d:45:e6:2f:d0:d5: ec:30:8e:71:41:a6:3d:b8:68:f7:20:c8:cb:ea:14: 5f:af:41:17:f0:c0:1f:08:b9:b9:3d:c7:55:a3:0c: fc:e3:ba:1d:76:59:33:c7:97:61:a5:df:bb:c6:b6: 44:53:fb:6b:f9:2a:f6:0f:8b:23:db:f7:99:d8:a0: 43:72:b3:2c:0b:1d:d2:6b:47:a6:53:34:c5:c6:b0: 12:30:e9:f8:3d:23:44:41:c4:41:dc:49:3e:81:57: ff:80:1d:d7:53:b0:c4:16:75:83:d0:da:02:3e:5e: 64:8d:2b:0f:bd:07:0c:6b:e4:50:40:05:8c:52:e6: 59:9d:62:d1:d5:03:6c:06:97:d5:e7:96:7f:16:02: e6:8c:9c:0b:26:4f:9a:e8:93:ff:f8:36:57:fb:f8: 45:c9:74:d2:7d:b7:bd:77:c1:3c:88:6d:c2:fd:d1: 2c:d5:5a:bb:57:d0:d9:1a:90:8e:4e:dc:16:b8:fc: c4:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:3F:25:12:C1:1E:CF:F6:AA:3D:C0:8E:C9:04:0C:78:C9:48:9C:06 X509v3 Authority Key Identifier: keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/Fj8lEsEez_aqPcCOyQQMeMlInAY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.249.0/26 Signature Algorithm: sha256WithRSAEncryption 05:7e:bb:53:c0:1d:eb:d1:81:be:cf:45:4d:03:8c:b1:d4:92: a1:dc:89:aa:b2:87:8c:6e:f8:0c:83:d8:c1:d7:6e:23:54:24: 0e:ab:53:92:61:dc:c8:c9:be:8a:4e:60:31:24:eb:95:fb:99: 19:20:0e:da:86:87:cd:5a:c8:b1:72:1a:ca:93:07:92:e9:79: c9:be:99:d1:e2:02:c8:c5:3a:81:19:e3:5f:f2:8a:2c:2c:c6: 03:f0:f4:65:e9:ca:aa:06:67:68:b9:05:89:c0:3d:34:81:d6: 8c:79:dc:48:2e:03:eb:86:cd:28:bc:68:99:3e:16:e1:d5:bd: d3:fb:6c:18:1f:15:ff:31:ad:66:14:c1:1f:3f:73:d7:3a:39: a1:be:18:81:78:6e:02:b9:9d:b1:9c:06:8e:4a:7f:d0:64:42: ba:4d:3d:68:20:61:8a:11:91:16:4b:35:f7:31:e2:56:db:9d: ed:33:bc:38:77:99:fa:5b:74:db:61:19:46:49:8d:31:f4:0b: ee:60:99:03:c8:89:da:82:4c:a1:34:0c:a9:25:d7:3c:5c:8d: 91:a4:be:ae:75:e8:ec:ce:a9:69:0f:a7:af:62:e2:8b:00:17: 7b:ad:06:56:49:69:9b:d3:f0:9c:d1:7f:c1:45:cb:00:18:d2: 86:fb:6f:ec -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICAmIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjMz QTcyQUFGNzk4MTA1QkIyNzdGMDk0NDU4RTQ2NEI0NjU5RjgwMzAeFw0yNTA3MTIw NDA5NDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE2M0YyNTEyQzExRUNG RjZBQTNEQzA4RUM5MDQwQzc4Qzk0ODlDMDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyHJdu8/M4kKDqMQ+CIt6iib6FybjWNE8/pH7ovkEDClMLJpqe 18MkiDuj4zWT+SGXG2sZqngcvi1h+Wa97kcvGRc6SF1F5i/Q1ewwjnFBpj24aPcg yMvqFF+vQRfwwB8Iubk9x1WjDPzjuh12WTPHl2Gl37vGtkRT+2v5KvYPiyPb95nY oENysywLHdJrR6ZTNMXGsBIw6fg9I0RBxEHcST6BV/+AHddTsMQWdYPQ2gI+XmSN Kw+9Bwxr5FBABYxS5lmdYtHVA2wGl9Xnln8WAuaMnAsmT5rok//4Nlf7+EXJdNJ9 t713wTyIbcL90SzVWrtX0NkakI5O3Ba4/MRLAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUFj8lEsEez/aqPcCOyQQMeMlInAYwHwYDVR0jBBgwFoAU8zpyqveYEFuyd/CU RY5GS0ZZ+AMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUFNVC84 enB5cXZlWUVGdXlkX0NVUlk1R1MwWlotQU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB Lzh6cHlxdmVZRUZ1eWRfQ1VSWTVHUzBaWi1BTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0lBTVQvRmo4bEVzRWV6X2FxUGNDT3lRUU1l TWxJbkFZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAEwBwMFBp0U+QAw DQYJKoZIhvcNAQELBQADggEBAAV+u1PAHevRgb7PRU0DjLHUkqHciaqyh4xu+AyD 2MHXbiNUJA6rU5Jh3MjJvopOYDEk65X7mRkgDtqGh81ayLFyGsqTB5Lpecm+mdHi AsjFOoEZ41/yiiwsxgPw9GXpyqoGZ2i5BYnAPTSB1ox53EguA+uGzSi8aJk+FuHV vdP7bBgfFf8xrWYUwR8/c9c6OaG+GIF4bgK5nbGcBo5Kf9BkQrpNPWggYYoRkRZL Nfcx4lbbne0zvDh3mfpbdNthGUZJjTH0C+5gmQPIidqCTKE0DKkl1zxcjZGkvq51 6OzOqWkPp69i4osAF3utBlZJaZvT8JzRf8FFywAY0ob7b+w= -----END CERTIFICATE-----Generated at Wed Jul 23 02:43:51 2025 by rpki-client