$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/69HDrNSLJtku69QLQwIqOzf9OYM.roa File: 69HDrNSLJtku69QLQwIqOzf9OYM.roa (raw, json) Hash identifier: PoVwnjbdfgjGE3Oqs/QKtYFcJpw9U1dUQ6RMe+QRgTk= Subject key identifier: EB:D1:C3:AC:D4:8B:26:D9:2E:EB:D4:0B:43:02:2A:3B:37:FD:39:83 Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803 Certificate serial: 02B3 Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/69HDrNSLJtku69QLQwIqOzf9OYM.roa Signing time: Wed 03 Sep 2025 14:54:50 +0000 ROA not before: Wed 03 Sep 2025 14:54:50 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 152609 IP address blocks: 157.20.248.16/30 maxlen: 30 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Sep 2025 15:49:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 691 (0x2b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803 Validity Not Before: Sep 3 14:54:50 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=EBD1C3ACD48B26D92EEBD40B43022A3B37FD3983 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:18:6a:b1:36:a0:bc:57:c2:81:78:c8:e6:1a: 5d:9d:16:a6:ca:7d:97:29:22:e2:80:91:b4:24:b9: af:af:c1:7a:8b:51:13:ca:28:81:e7:14:96:35:a3: 43:d1:af:4e:a1:31:24:c0:bc:11:e0:ac:cb:d0:03: 8d:21:41:d1:33:15:50:8a:a1:bd:ac:c0:d9:08:45: 82:d4:a5:29:61:ed:7f:5f:20:9e:c5:13:ef:48:cf: 89:1c:eb:bd:ed:6c:80:a9:52:1b:ac:38:8f:ea:6e: 05:30:96:b0:46:d4:77:8c:0f:5a:7a:de:61:df:5a: 68:78:5b:d5:a7:c1:fa:02:92:47:cf:a4:af:a2:1e: 3c:b7:19:48:30:59:49:18:b6:7a:fe:26:50:dd:b5: a9:e2:65:2b:c3:33:64:b5:7e:7c:f3:b9:ae:3c:0b: 55:24:db:71:16:61:ae:e2:ab:cc:5d:84:6c:b0:14: 22:cd:2a:93:ea:92:bf:07:e8:de:34:0e:25:ff:ee: 40:1c:a3:4f:25:68:bc:6d:a9:31:3c:5d:7f:47:49: 06:bd:ed:28:e3:19:25:dd:dd:e0:93:97:d3:d7:a2: 72:f9:7d:bc:de:8e:fd:d6:ec:44:99:b7:9a:a5:d2: 92:ef:87:87:8d:c9:f0:cc:98:5d:c5:b7:95:b2:47: 72:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:D1:C3:AC:D4:8B:26:D9:2E:EB:D4:0B:43:02:2A:3B:37:FD:39:83 X509v3 Authority Key Identifier: keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/69HDrNSLJtku69QLQwIqOzf9OYM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.248.16/30 Signature Algorithm: sha256WithRSAEncryption 07:94:eb:c9:fb:4f:26:ab:26:48:77:59:c6:c1:e1:8f:77:1c: c3:f5:ee:6f:5c:d2:17:4f:bd:7b:64:ab:62:5b:c7:7a:4c:a7: 82:cb:7e:77:15:e5:a5:c9:6d:11:79:8b:35:32:06:52:ca:82: 73:82:f8:59:86:f2:5d:8b:b1:83:03:34:e5:8a:ab:44:d4:60: f4:04:25:18:29:5f:0c:bb:12:95:f6:a4:44:5c:19:b1:67:c6: cd:e6:dc:27:03:5b:f6:51:47:d9:69:2d:6b:83:88:2e:31:99: c6:9d:ae:92:d8:75:76:9e:62:ab:42:ce:ae:cb:20:86:2d:ce: 4d:04:8f:65:2f:40:86:50:da:f7:d0:f7:62:29:32:79:f3:7d: ac:ed:83:73:d5:a6:0d:02:98:81:15:94:00:da:39:a2:f9:0b: 40:08:1b:1d:db:61:f6:26:4c:81:e1:5c:a1:3a:6e:f9:dc:fc: 37:db:f9:a4:34:4f:29:69:a5:12:01:a7:a3:07:b9:6e:4f:24: 0f:28:63:33:a3:2d:6f:03:eb:40:35:14:f5:47:95:6e:92:37: b7:3c:7d:2c:63:b4:52:bd:34:69:f4:9f:e1:79:07:98:c5:45: 09:da:b5:fc:52:ea:5f:2e:ac:83:d9:1e:b3:94:55:ac:4c:c1: 9d:72:33:1f -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICArMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjMz QTcyQUFGNzk4MTA1QkIyNzdGMDk0NDU4RTQ2NEI0NjU5RjgwMzAeFw0yNTA5MDMx NDU0NTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEVCRDFDM0FDRDQ4QjI2 RDkyRUVCRDQwQjQzMDIyQTNCMzdGRDM5ODMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXGGqxNqC8V8KBeMjmGl2dFqbKfZcpIuKAkbQkua+vwXqLURPK KIHnFJY1o0PRr06hMSTAvBHgrMvQA40hQdEzFVCKob2swNkIRYLUpSlh7X9fIJ7F E+9Iz4kc673tbICpUhusOI/qbgUwlrBG1HeMD1p63mHfWmh4W9WnwfoCkkfPpK+i Hjy3GUgwWUkYtnr+JlDdtaniZSvDM2S1fnzzua48C1Uk23EWYa7iq8xdhGywFCLN KpPqkr8H6N40DiX/7kAco08laLxtqTE8XX9HSQa97SjjGSXd3eCTl9PXonL5fbze jv3W7ESZt5ql0pLvh4eNyfDMmF3Ft5WyR3JHAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQU69HDrNSLJtku69QLQwIqOzf9OYMwHwYDVR0jBBgwFoAU8zpyqveYEFuyd/CU RY5GS0ZZ+AMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUFNVC84 enB5cXZlWUVGdXlkX0NVUlk1R1MwWlotQU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB Lzh6cHlxdmVZRUZ1eWRfQ1VSWTVHUzBaWi1BTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0lBTVQvNjlIRHJOU0xKdGt1NjlRTFF3SXFP emY5T1lNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAEwBwMFAp0U+BAw DQYJKoZIhvcNAQELBQADggEBAAeU68n7TyarJkh3WcbB4Y93HMP17m9c0hdPvXtk q2Jbx3pMp4LLfncV5aXJbRF5izUyBlLKgnOC+FmG8l2LsYMDNOWKq0TUYPQEJRgp Xwy7EpX2pERcGbFnxs3m3CcDW/ZRR9lpLWuDiC4xmcadrpLYdXaeYqtCzq7LIIYt zk0Ej2UvQIZQ2vfQ92IpMnnzfaztg3PVpg0CmIEVlADaOaL5C0AIGx3bYfYmTIHh XKE6bvnc/Dfb+aQ0TylppRIBp6MHuW5PJA8oYzOjLW8D60A1FPVHlW6SN7c8fSxj tFK9NGn0n+F5B5jFRQnatfxS6l8urIPZHrOUVaxMwZ1yMx8= -----END CERTIFICATE-----Generated at Thu Sep 18 14:43:27 2025 by rpki-client