$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GOEASY/e1hImNDAVV-SmCi3N2aWd79WW_I.roa File: e1hImNDAVV-SmCi3N2aWd79WW_I.roa (raw, json) Hash identifier: +bcylUvIKX8mb8um7WvKxC8xtE0Ogxk1KNA0o4toGlY= Subject key identifier: 7B:58:48:98:D0:C0:55:5F:92:98:28:B7:37:66:96:77:BF:56:5B:F2 Certificate issuer: /CN=66B69E5B178B8C9444C4D64A6963B0BC9FA35762 Certificate serial: 04A5 Authority key identifier: 66:B6:9E:5B:17:8B:8C:94:44:C4:D6:4A:69:63:B0:BC:9F:A3:57:62 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZraeWxeLjJRExNZKaWOwvJ-jV2I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/e1hImNDAVV-SmCi3N2aWd79WW_I.roa Signing time: Mon 03 Nov 2025 08:53:10 +0000 ROA not before: Mon 03 Nov 2025 08:53:10 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 150288 IP address blocks: 211.79.96.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/ZraeWxeLjJRExNZKaWOwvJ-jV2I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/ZraeWxeLjJRExNZKaWOwvJ-jV2I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ZraeWxeLjJRExNZKaWOwvJ-jV2I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Nov 2025 16:29:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1189 (0x4a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66B69E5B178B8C9444C4D64A6963B0BC9FA35762 Validity Not Before: Nov 3 08:53:10 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7B584898D0C0555F929828B737669677BF565BF2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:7c:e3:95:54:5c:5b:4e:b7:7f:91:55:38:35: 45:a5:27:2e:32:f6:4c:3e:42:eb:cb:d6:0e:b9:93: 3f:19:51:82:fe:05:b1:5c:8a:7f:d0:5e:57:08:5c: b9:59:6d:41:02:24:b1:f0:bf:b9:13:4c:d3:6d:c0: 5c:13:84:fc:4a:2a:aa:41:f2:85:02:e6:8d:3a:28: 53:ea:8f:ba:7f:eb:10:28:bb:75:6e:b3:52:ce:f5: 14:62:b6:75:46:1f:c9:13:96:3b:c7:49:93:57:8c: cc:d4:bc:bc:bf:97:d7:6f:a6:5c:83:49:99:6a:21: f1:cf:70:2b:6d:b2:b9:e0:18:d3:ee:b1:ab:26:d7: 89:f9:a8:42:b3:2e:60:b2:a1:2a:0f:93:7f:51:d6: f1:0e:00:40:93:54:42:38:11:f7:75:ec:4e:d4:5c: e6:b3:3e:58:05:b8:88:4f:65:64:b4:ed:4d:9a:d2: 30:f5:b3:dd:7b:66:f0:a4:f3:2e:03:f3:84:f7:08: 54:ca:20:f8:00:d3:1a:ca:21:18:ca:f6:7c:7b:67: c5:f1:fa:33:6a:dc:5f:1a:b0:1d:1b:63:8c:07:82: 9f:bb:ad:2b:7e:73:e9:e4:28:a1:20:39:f8:3e:63: f4:7d:d1:2d:1d:fc:f8:22:d5:89:a2:34:c7:fc:fa: 59:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:58:48:98:D0:C0:55:5F:92:98:28:B7:37:66:96:77:BF:56:5B:F2 X509v3 Authority Key Identifier: keyid:66:B6:9E:5B:17:8B:8C:94:44:C4:D6:4A:69:63:B0:BC:9F:A3:57:62 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/ZraeWxeLjJRExNZKaWOwvJ-jV2I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZraeWxeLjJRExNZKaWOwvJ-jV2I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/e1hImNDAVV-SmCi3N2aWd79WW_I.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.79.96.0/23 Signature Algorithm: sha256WithRSAEncryption 94:08:9c:15:83:3b:a4:dc:47:c7:7b:50:ba:cf:ef:45:cc:68: 89:01:e2:a3:32:69:39:71:e4:c8:bf:bb:99:2b:41:96:28:ee: a8:8d:1d:8e:04:9d:8a:de:9f:82:4f:30:47:9a:56:13:38:f2: 3a:f2:06:cc:69:b1:7f:91:7c:d1:4e:a8:25:85:85:8c:89:25: 97:ef:f0:d6:35:71:21:19:eb:74:e1:58:00:7b:60:ed:b3:20: 12:f7:ad:48:05:22:ac:8f:76:8b:a7:48:33:27:c8:c2:fe:f2: df:9d:10:e1:f8:be:14:d2:99:e5:fb:55:95:4f:15:96:9e:a0: 95:0a:33:e7:f4:a1:d7:e3:80:bd:d1:d4:17:c7:2e:42:a2:0c: 8e:6e:a4:ec:a1:d6:db:9e:88:79:f7:fb:5a:c1:ca:08:7b:06: 2c:75:21:9d:d6:e4:53:00:91:98:8d:8a:d9:c6:13:97:5b:e4: 86:55:44:2c:d1:b7:4d:4f:d4:bb:85:a3:aa:98:b8:35:51:49: 43:99:ee:bd:f0:c6:5c:3b:56:dc:e6:64:d2:7a:28:be:4d:fa: 68:76:b4:9b:b7:9a:bc:11:ed:d2:6a:4f:a9:03:59:37:e5:6e: 13:8e:f5:2c:74:cb:e8:fc:a9:8b:a3:2b:03:6a:dd:ad:89:54: a5:1a:54:d9 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICBKUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjZC NjlFNUIxNzhCOEM5NDQ0QzRENjRBNjk2M0IwQkM5RkEzNTc2MjAeFw0yNTExMDMw ODUzMTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDdCNTg0ODk4RDBDMDU1 NUY5Mjk4MjhCNzM3NjY5Njc3QkY1NjVCRjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAfOOVVFxbTrd/kVU4NUWlJy4y9kw+QuvL1g65kz8ZUYL+BbFc in/QXlcIXLlZbUECJLHwv7kTTNNtwFwThPxKKqpB8oUC5o06KFPqj7p/6xAou3Vu s1LO9RRitnVGH8kTljvHSZNXjMzUvLy/l9dvplyDSZlqIfHPcCttsrngGNPusasm 14n5qEKzLmCyoSoPk39R1vEOAECTVEI4Efd17E7UXOazPlgFuIhPZWS07U2a0jD1 s917ZvCk8y4D84T3CFTKIPgA0xrKIRjK9nx7Z8Xx+jNq3F8asB0bY4wHgp+7rSt+ c+nkKKEgOfg+Y/R90S0d/Pgi1YmiNMf8+llfAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUe1hImNDAVV+SmCi3N2aWd79WW/IwHwYDVR0jBBgwFoAUZraeWxeLjJRExNZK aWOwvJ+jV2IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR09FQVNZ L1pyYWVXeGVMakpSRXhOWkthV093dkotalYySS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvWnJhZVd4ZUxqSlJFeE5aS2FXT3d2Si1qVjJJLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvR09FQVNZL2UxaEltTkRBVlYtU21DaTNO MmFXZDc5V1dfSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHT T2AwDQYJKoZIhvcNAQELBQADggEBAJQInBWDO6TcR8d7ULrP70XMaIkB4qMyaTlx 5Mi/u5krQZYo7qiNHY4EnYren4JPMEeaVhM48jryBsxpsX+RfNFOqCWFhYyJJZfv 8NY1cSEZ63ThWAB7YO2zIBL3rUgFIqyPdounSDMnyML+8t+dEOH4vhTSmeX7VZVP FZaeoJUKM+f0odfjgL3R1BfHLkKiDI5upOyh1tueiHn3+1rBygh7Bix1IZ3W5FMA kZiNitnGE5db5IZVRCzRt01P1LuFo6qYuDVRSUOZ7r3wxlw7VtzmZNJ6KL5N+mh2 tJu3mrwR7dJqT6kDWTflbhOO9Sx0y+j8qYujKwNq3a2JVKUaVNk= -----END CERTIFICATE-----Generated at Tue Nov 4 15:40:12 2025 by rpki-client