$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/bNbrZkilmNIDLOPugxXkMHG6do0.roa File: bNbrZkilmNIDLOPugxXkMHG6do0.roa (raw, json) Hash identifier: 3opRF8S5Y8ja0ywv/yxHPSnf7KYSGfMetWcLqTwsEIY= Subject key identifier: 6C:D6:EB:66:48:A5:98:D2:03:2C:E3:EE:83:15:E4:30:71:BA:76:8D Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803 Certificate serial: 0264 Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/bNbrZkilmNIDLOPugxXkMHG6do0.roa Signing time: Sat 12 Jul 2025 04:09:58 +0000 ROA not before: Sat 12 Jul 2025 04:09:58 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 152609 IP address blocks: 157.20.249.0/25 maxlen: 25 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 03:37:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 612 (0x264) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803 Validity Not Before: Jul 12 04:09:58 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6CD6EB6648A598D2032CE3EE8315E43071BA768D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:82:49:17:81:44:53:89:64:71:25:a0:03:bc: ed:f3:8e:ad:e8:fe:c5:54:81:a3:e6:c1:c2:10:24: 12:66:ce:70:44:68:b6:f7:c2:46:3f:a1:3b:fd:bc: 36:d4:e3:63:c9:8c:a4:06:c4:d9:9f:f8:29:7d:7f: a1:11:58:71:61:1a:a0:60:81:3d:81:78:53:8f:4d: 80:52:81:07:42:7d:7a:c0:5c:8c:cb:c8:ac:e7:06: 32:3f:78:0a:6f:05:98:d5:17:2d:42:d3:77:da:69: 2f:fe:8d:b1:ca:3e:9f:88:ca:d8:fa:fa:2b:4f:46: 7c:0e:21:73:6b:47:8e:ef:92:d1:60:f5:dd:f8:bb: 87:de:8a:0b:26:50:bd:ba:eb:cd:01:29:f6:0c:b3: 76:2f:7c:c3:49:2d:fd:32:74:c3:4e:0d:7a:2f:4a: eb:28:7d:0e:2a:45:05:a2:eb:82:33:b8:b3:b3:d2: b4:c5:fe:68:5b:42:64:56:93:d0:63:6d:3f:be:f5: 2f:c2:fe:fe:96:d8:94:ff:ca:f4:fd:cc:d6:94:65: 62:fd:08:bc:4e:6f:3b:e3:cd:59:89:65:03:b1:b7: f1:1d:f3:83:dc:d2:11:06:05:59:ab:59:62:81:5f: 20:7a:e1:49:48:01:a3:9e:ed:71:46:46:7d:3f:62: db:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:D6:EB:66:48:A5:98:D2:03:2C:E3:EE:83:15:E4:30:71:BA:76:8D X509v3 Authority Key Identifier: keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/bNbrZkilmNIDLOPugxXkMHG6do0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.249.0/25 Signature Algorithm: sha256WithRSAEncryption 70:4a:0f:26:c9:e5:e7:fd:dd:74:a2:4f:b5:8d:ae:c2:c7:fb: ca:36:00:1e:ab:e2:37:e0:f5:ad:29:60:e0:1b:4e:51:8b:5b: 89:c0:70:50:30:6a:af:33:37:d8:17:04:0b:0a:f7:3d:51:7d: 8e:4f:cd:81:16:7c:74:12:2f:05:b6:7a:c4:90:77:8d:c5:66: 38:bc:96:e5:15:cd:92:c0:59:1f:76:37:bc:14:b3:b5:9e:af: 3d:c2:23:d2:89:64:42:ff:6c:33:3e:7a:c7:6e:3f:41:a9:25: 18:3d:b4:db:4b:3d:f9:0c:55:d1:b6:41:c3:24:29:fe:2a:ce: 32:7f:bf:fb:1e:37:93:ce:78:3c:05:68:a4:64:b0:80:d9:c5: b0:a0:35:78:63:13:2e:88:da:c9:e1:1c:38:f0:39:ff:4d:3d: 2d:55:d9:3c:7d:b7:58:6c:e9:df:67:33:18:18:8e:a6:34:c6: 60:a0:35:6d:7a:d7:98:ec:f2:8a:84:c3:91:5f:fd:75:06:8a: 04:90:04:96:33:55:ed:ac:3a:6b:b0:50:7a:4a:62:ea:c6:0b: 16:a4:23:e6:9f:9f:3b:3c:8e:45:b7:cd:f5:fb:38:b6:eb:e9: bf:33:9b:b0:a9:25:82:60:3e:5a:3e:d9:e1:7c:d5:0b:a2:3f: cf:20:ac:e9 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICAmQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjMz QTcyQUFGNzk4MTA1QkIyNzdGMDk0NDU4RTQ2NEI0NjU5RjgwMzAeFw0yNTA3MTIw NDA5NThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZDRDZFQjY2NDhBNTk4 RDIwMzJDRTNFRTgzMTVFNDMwNzFCQTc2OEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3gkkXgURTiWRxJaADvO3zjq3o/sVUgaPmwcIQJBJmznBEaLb3 wkY/oTv9vDbU42PJjKQGxNmf+Cl9f6ERWHFhGqBggT2BeFOPTYBSgQdCfXrAXIzL yKznBjI/eApvBZjVFy1C03faaS/+jbHKPp+Iytj6+itPRnwOIXNrR47vktFg9d34 u4feigsmUL26680BKfYMs3YvfMNJLf0ydMNODXovSusofQ4qRQWi64IzuLOz0rTF /mhbQmRWk9BjbT++9S/C/v6W2JT/yvT9zNaUZWL9CLxObzvjzVmJZQOxt/Ed84Pc 0hEGBVmrWWKBXyB64UlIAaOe7XFGRn0/YtsPAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUbNbrZkilmNIDLOPugxXkMHG6do0wHwYDVR0jBBgwFoAU8zpyqveYEFuyd/CU RY5GS0ZZ+AMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUFNVC84 enB5cXZlWUVGdXlkX0NVUlk1R1MwWlotQU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB Lzh6cHlxdmVZRUZ1eWRfQ1VSWTVHUzBaWi1BTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0lBTVQvYk5iclpraWxtTklETE9QdWd4WGtN SEc2ZG8wLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAEwBwMFB50U+QAw DQYJKoZIhvcNAQELBQADggEBAHBKDybJ5ef93XSiT7WNrsLH+8o2AB6r4jfg9a0p YOAbTlGLW4nAcFAwaq8zN9gXBAsK9z1RfY5PzYEWfHQSLwW2esSQd43FZji8luUV zZLAWR92N7wUs7Werz3CI9KJZEL/bDM+esduP0GpJRg9tNtLPfkMVdG2QcMkKf4q zjJ/v/seN5POeDwFaKRksIDZxbCgNXhjEy6I2snhHDjwOf9NPS1V2Tx9t1hs6d9n MxgYjqY0xmCgNW1615js8oqEw5Ff/XUGigSQBJYzVe2sOmuwUHpKYurGCxakI+af nzs8jkW3zfX7OLbr6b8zm7CpJYJgPlo+2eF81QuiP88grOk= -----END CERTIFICATE-----Generated at Wed Jul 23 02:37:55 2025 by rpki-client