$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/jZkof-vCKyGg9WbV9O8ukzbgveA.roa File: jZkof-vCKyGg9WbV9O8ukzbgveA.roa (raw, json) Hash identifier: JdxJkGDfKtZRgQcWwatcyvQF6UajsHnkIh1b5Tv5xc4= Subject key identifier: 8D:99:28:7F:EB:C2:2B:21:A0:F5:66:D5:F4:EF:2E:93:36:E0:BD:E0 Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3 Certificate serial: 0E35 Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/jZkof-vCKyGg9WbV9O8ukzbgveA.roa Signing time: Mon 14 Jul 2025 05:32:12 +0000 ROA not before: Mon 14 Jul 2025 05:32:12 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18419 IP address blocks: 202.148.218.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Jul 2025 23:07:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3637 (0xe35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3 Validity Not Before: Jul 14 05:32:12 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8D99287FEBC22B21A0F566D5F4EF2E9336E0BDE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d8:ad:c2:34:96:a3:cf:9a:a2:9e:01:98:6b: 5f:53:a7:76:7f:4b:e4:58:b4:02:1e:32:19:60:04: 93:7f:d9:4e:ec:b7:ed:c2:dc:4f:64:4c:8f:dd:d5: 56:de:98:1c:23:6f:80:d7:b1:e6:eb:86:17:34:d6: 3a:14:fc:e2:5c:01:a6:8c:cb:61:7b:0a:f5:e4:0b: c9:6f:9d:66:d8:a0:20:b8:e3:8d:c6:f5:00:09:f3: 7c:db:91:f8:83:2c:a9:b2:43:60:e4:e2:68:a4:fe: 95:b1:b3:12:e7:71:f7:9e:34:c8:fc:0a:35:d6:0b: 66:b4:e3:1c:2d:6f:6e:3e:26:2b:aa:11:0c:04:2a: ba:9e:35:88:00:c7:dc:c3:a4:b5:6e:3a:37:b3:02: c4:28:0a:f6:06:ca:7a:e0:8c:f0:3f:6d:d8:4b:4c: 48:12:bf:28:54:41:29:cf:52:8e:e4:80:85:ee:f4: c8:f1:db:5f:8e:3d:e7:59:f0:89:95:02:72:9e:88: 28:9c:5e:0e:cd:aa:58:5a:da:5b:5d:83:48:20:7d: 44:2c:43:e6:fc:23:ed:f8:7b:72:10:e0:f3:9c:9f: fc:55:90:6a:62:4c:58:42:ea:15:8c:82:4a:ab:59: 9e:1a:63:c3:dd:c1:e7:9f:87:95:51:9f:a0:19:22: 10:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:99:28:7F:EB:C2:2B:21:A0:F5:66:D5:F4:EF:2E:93:36:E0:BD:E0 X509v3 Authority Key Identifier: keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/jZkof-vCKyGg9WbV9O8ukzbgveA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.148.218.0/23 Signature Algorithm: sha256WithRSAEncryption 78:1a:98:9a:ec:85:73:82:71:23:8a:0e:30:5f:39:e0:98:80: d9:95:fa:32:c1:5d:d6:d0:28:11:36:97:90:29:4a:e1:a0:ff: 1f:b4:98:f0:41:8d:98:63:91:62:88:4c:ff:51:12:f3:1b:00: 8a:3c:8e:06:c9:8b:fd:6a:ba:f4:b7:cd:f8:c6:14:88:cf:4a: 1f:8d:cd:e6:4a:39:7e:6b:97:12:6b:e9:44:a2:0a:ba:ab:e4: a6:05:ea:02:d4:38:68:9f:5f:d8:ea:33:b4:00:7e:c4:2c:bd: 5b:f3:f4:d3:82:5c:fa:62:ad:1a:2b:7c:14:3a:1f:d1:ee:5d: 48:0d:2f:64:47:7c:52:4d:f7:dc:cc:c0:59:d8:b0:9f:11:7d: b0:c9:62:8c:19:32:be:a7:d1:70:15:f3:ac:21:00:3e:b1:7b: db:00:6f:a6:03:e4:b1:df:4f:75:12:60:63:22:89:e8:f4:7c: 65:e9:0a:79:73:8e:0e:c2:59:0c:cd:e8:0c:a1:93:af:41:93: f7:a5:cf:b9:7d:40:6a:df:54:1c:5d:f9:1c:72:e2:ec:9d:ed: f8:22:6e:fa:9c:43:d3:0b:a2:b1:36:17:2b:4e:08:dd:ce:60: fe:c0:0b:87:ac:13:74:90:3c:72:c3:3b:5d:14:89:21:d5:6b: f6:ad:f7:3f -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDjUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JF NkM2NTEzNTBFOEZBMUZDN0QwQTNFQUJDRjk4RjgxQjMxMTlEMzAeFw0yNTA3MTQw NTMyMTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhEOTkyODdGRUJDMjJC MjFBMEY1NjZENUY0RUYyRTkzMzZFMEJERTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDA2K3CNJajz5qingGYa19Tp3Z/S+RYtAIeMhlgBJN/2U7st+3C 3E9kTI/d1VbemBwjb4DXsebrhhc01joU/OJcAaaMy2F7CvXkC8lvnWbYoCC4443G 9QAJ83zbkfiDLKmyQ2Dk4mik/pWxsxLncfeeNMj8CjXWC2a04xwtb24+JiuqEQwE KrqeNYgAx9zDpLVuOjezAsQoCvYGynrgjPA/bdhLTEgSvyhUQSnPUo7kgIXu9Mjx 21+OPedZ8ImVAnKeiCicXg7Nqlha2ltdg0ggfUQsQ+b8I+34e3IQ4POcn/xVkGpi TFhC6hWMgkqrWZ4aY8Pdweefh5VRn6AZIhA1AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUjZkof+vCKyGg9WbV9O8ukzbgveAwHwYDVR0jBBgwFoAUO+bGUTUOj6H8fQo+ q8+Y+BsxGdMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lHTUEv Ty1iR1VUVU9qNkg4ZlFvLXE4LVktQnN4R2RNLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9PLWJHVVRVT2o2SDhmUW8tcTgtWS1Cc3hHZE0uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSUdNQS9qWmtvZi12Q0t5R2c5V2JWOU84 dWt6Ymd2ZUEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBypTa MA0GCSqGSIb3DQEBCwUAA4IBAQB4Gpia7IVzgnEjig4wXzngmIDZlfoywV3W0CgR NpeQKUrhoP8ftJjwQY2YY5FiiEz/URLzGwCKPI4GyYv9arr0t834xhSIz0ofjc3m Sjl+a5cSa+lEogq6q+SmBeoC1Dhon1/Y6jO0AH7ELL1b8/TTglz6Yq0aK3wUOh/R 7l1IDS9kR3xSTffczMBZ2LCfEX2wyWKMGTK+p9FwFfOsIQA+sXvbAG+mA+Sx3091 EmBjIono9Hxl6Qp5c44OwlkMzegMoZOvQZP3pc+5fUBq31QcXfkccuLsne34Im76 nEPTC6KxNhcrTgjdzmD+wAuHrBN0kDxywztdFIkh1Wv2rfc/ -----END CERTIFICATE-----Generated at Tue Jul 22 21:17:49 2025 by rpki-client