$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/tONinYCtYnIgRDpuHHe9Ekhf_IQ.roa File: tONinYCtYnIgRDpuHHe9Ekhf_IQ.roa (raw, json) Hash identifier: 2wau324L2pyr+nGHzqNEDyF/rliFTOeg92mKaW3mRsM= Subject key identifier: B4:E3:62:9D:80:AD:62:72:20:44:3A:6E:1C:77:BD:12:48:5F:FC:84 Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803 Certificate serial: 025E Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/tONinYCtYnIgRDpuHHe9Ekhf_IQ.roa Signing time: Sat 12 Jul 2025 04:09:12 +0000 ROA not before: Sat 12 Jul 2025 04:09:12 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 152609 IP address blocks: 157.20.249.0/28 maxlen: 28 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 03:37:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 606 (0x25e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803 Validity Not Before: Jul 12 04:09:12 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B4E3629D80AD627220443A6E1C77BD12485FFC84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:9e:69:6f:0f:02:0d:99:16:f1:89:70:83:e1: c0:62:db:e6:3b:5a:dd:60:1c:04:8f:ea:e6:3f:66: 42:47:de:7c:3f:33:e9:96:e5:c9:32:24:73:be:fb: de:b4:23:32:48:f9:65:f8:5a:92:2e:a3:66:42:42: ae:81:5d:6d:1e:c7:7e:c3:05:f7:bb:e2:b7:c2:38: f7:57:56:b6:ea:15:bb:c4:ff:a8:4b:67:dd:be:47: 02:eb:54:33:af:25:54:9b:5b:d9:cb:08:51:7d:53: 41:29:d5:6a:a6:f0:20:95:1f:4a:83:d1:d7:dc:2f: 4c:c0:e4:eb:2d:f2:ac:06:11:8d:b7:73:c5:1c:48: 2c:7a:56:df:9f:8c:3c:46:b4:fc:32:2d:fd:50:a5: f2:e8:08:1c:4e:9f:cc:b3:f2:b3:a9:29:16:7a:f9: 9d:dc:71:18:55:09:e9:17:2d:36:92:d9:64:ec:a1: 11:d1:61:ce:7b:51:ae:0a:4f:b2:e1:77:92:53:7b: 3c:a2:f1:8e:8b:46:d4:97:43:ef:db:0f:fc:42:1f: 1f:d2:fe:51:18:e4:8f:41:45:1b:1e:0b:11:12:0c: b4:77:0b:29:b6:73:2c:af:5c:e3:1d:1b:3b:eb:6e: 50:d8:af:53:ec:b9:e3:de:8f:87:04:f2:15:f0:c7: 3d:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:E3:62:9D:80:AD:62:72:20:44:3A:6E:1C:77:BD:12:48:5F:FC:84 X509v3 Authority Key Identifier: keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/tONinYCtYnIgRDpuHHe9Ekhf_IQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.249.0/28 Signature Algorithm: sha256WithRSAEncryption a7:70:22:5e:70:9e:68:04:cd:2a:53:a5:ba:cf:fd:6f:8e:7e: ed:08:1e:a8:93:92:62:0b:0a:3b:f2:37:10:07:98:da:6f:18: 33:7b:51:29:3b:3e:af:78:5b:80:fd:ea:17:5e:90:47:6f:0d: e2:44:3c:90:5b:e9:d6:be:35:0c:5f:36:cf:eb:d3:d1:26:0b: af:9c:7a:7f:c5:eb:c5:6b:48:4a:07:2e:57:05:5f:34:2a:ef: fd:b9:f3:69:a6:a7:3f:79:c9:a0:d8:1d:b2:13:ca:c4:81:f7: 2b:9f:ae:8a:3e:96:2b:43:5a:1e:56:65:15:3a:4a:72:7e:b3: da:64:35:a9:5b:3b:53:d8:a2:1e:a2:b0:7c:a7:af:3b:d4:90: 10:3a:38:23:72:67:e2:e0:35:8a:9d:51:c0:95:98:09:e2:bb: 7c:35:44:db:5b:0c:01:14:2c:d9:02:a7:e4:31:ab:0d:9b:65: be:8c:af:22:53:12:b8:74:3c:b4:35:a7:41:89:49:24:9f:6d: c4:b4:1a:9f:fa:eb:a9:8d:b5:9e:de:de:91:05:7b:6d:fe:0c: 95:cc:5a:17:ac:90:61:bd:ab:24:94:45:63:25:98:19:30:9b: f7:23:61:87:3e:5b:d0:67:67:d5:7e:f1:9b:ad:fd:21:58:e9: 6c:a2:3e:8f -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICAl4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjMz QTcyQUFGNzk4MTA1QkIyNzdGMDk0NDU4RTQ2NEI0NjU5RjgwMzAeFw0yNTA3MTIw NDA5MTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI0RTM2MjlEODBBRDYy NzIyMDQ0M0E2RTFDNzdCRDEyNDg1RkZDODQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCYnmlvDwINmRbxiXCD4cBi2+Y7Wt1gHASP6uY/ZkJH3nw/M+mW 5ckyJHO++960IzJI+WX4WpIuo2ZCQq6BXW0ex37DBfe74rfCOPdXVrbqFbvE/6hL Z92+RwLrVDOvJVSbW9nLCFF9U0Ep1Wqm8CCVH0qD0dfcL0zA5Ost8qwGEY23c8Uc SCx6Vt+fjDxGtPwyLf1QpfLoCBxOn8yz8rOpKRZ6+Z3ccRhVCekXLTaS2WTsoRHR Yc57Ua4KT7Lhd5JTezyi8Y6LRtSXQ+/bD/xCHx/S/lEY5I9BRRseCxESDLR3Cym2 cyyvXOMdGzvrblDYr1PsuePej4cE8hXwxz3xAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUtONinYCtYnIgRDpuHHe9Ekhf/IQwHwYDVR0jBBgwFoAU8zpyqveYEFuyd/CU RY5GS0ZZ+AMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUFNVC84 enB5cXZlWUVGdXlkX0NVUlk1R1MwWlotQU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB Lzh6cHlxdmVZRUZ1eWRfQ1VSWTVHUzBaWi1BTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0lBTVQvdE9OaW5ZQ3RZbklnUkRwdUhIZTlF a2hmX0lRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAEwBwMFBJ0U+QAw DQYJKoZIhvcNAQELBQADggEBAKdwIl5wnmgEzSpTpbrP/W+Ofu0IHqiTkmILCjvy NxAHmNpvGDN7USk7Pq94W4D96hdekEdvDeJEPJBb6da+NQxfNs/r09EmC6+cen/F 68VrSEoHLlcFXzQq7/2582mmpz95yaDYHbITysSB9yufroo+litDWh5WZRU6SnJ+ s9pkNalbO1PYoh6isHynrzvUkBA6OCNyZ+LgNYqdUcCVmAniu3w1RNtbDAEULNkC p+Qxqw2bZb6MryJTErh0PLQ1p0GJSSSfbcS0Gp/666mNtZ7e3pEFe23+DJXMWhes kGG9qySURWMlmBkwm/cjYYc+W9BnZ9V+8Zut/SFY6WyiPo8= -----END CERTIFICATE-----Generated at Wed Jul 23 02:44:39 2025 by rpki-client