$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHIYIYI/1NDpSjHhquIex5BS_BQQJ2Zld8o.roa File: 1NDpSjHhquIex5BS_BQQJ2Zld8o.roa (raw, json) Hash identifier: Ij5zM+rxtLDDFyY9z8vsPVRUsSJJmzIUgNwuizCH6jc= Subject key identifier: D4:D0:E9:4A:31:E1:AA:E2:1E:C7:90:52:FC:14:10:27:66:65:77:CA Certificate issuer: /CN=7827337AE5F44B54F385CB72D4FCD07FAEA5C943 Certificate serial: 53 Authority key identifier: 78:27:33:7A:E5:F4:4B:54:F3:85:CB:72:D4:FC:D0:7F:AE:A5:C9:43 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/eCczeuX0S1Tzhcty1PzQf66lyUM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIYIYI/1NDpSjHhquIex5BS_BQQJ2Zld8o.roa Signing time: Thu 16 Oct 2025 08:32:56 +0000 ROA not before: Thu 16 Oct 2025 08:32:56 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 21859 IP address blocks: 49.213.34.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIYIYI/eCczeuX0S1Tzhcty1PzQf66lyUM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIYIYI/eCczeuX0S1Tzhcty1PzQf66lyUM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/eCczeuX0S1Tzhcty1PzQf66lyUM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 09:28:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7827337AE5F44B54F385CB72D4FCD07FAEA5C943 Validity Not Before: Oct 16 08:32:56 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=D4D0E94A31E1AAE21EC79052FC141027666577CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:5e:a1:75:d5:0c:c4:20:75:05:8e:62:c7:e4: eb:4f:b2:b3:0d:42:d6:fa:2d:cf:15:cd:a0:f5:70: 22:90:c4:7f:7c:6b:12:dc:4e:6d:8a:03:f6:c0:81: c7:4a:1c:63:0d:6e:86:a4:69:68:95:c8:0a:a0:02: d1:a6:39:e8:f4:8b:89:0c:27:5b:04:79:3d:4a:2b: 13:8c:77:10:78:77:5b:0b:01:78:7b:c0:33:b7:ac: 38:29:52:da:ba:75:70:5f:ab:a1:06:3a:39:e2:9c: 67:85:99:08:45:4a:31:b1:38:1a:ec:c3:e0:24:96: bd:69:df:e1:d5:1d:87:e2:4b:3f:8e:fa:df:69:4d: 65:51:93:72:a8:2c:90:a6:be:36:27:f7:17:e5:1d: 8d:b4:7d:4b:69:f8:2a:82:f6:39:b6:02:2d:c4:a8: 72:e4:62:1f:8d:24:2a:60:f5:65:2c:82:97:72:19: 88:ec:12:8d:48:d4:27:0a:de:49:f2:99:67:18:78: df:03:23:9f:4d:d7:6a:5f:8d:bf:26:c4:23:34:b2: 2d:ae:d2:1b:28:0a:5b:ee:26:40:6d:84:2c:4b:44: ef:3e:a1:51:5c:b4:68:fc:3c:5f:67:1d:14:9f:8b: a6:be:de:6e:8d:0e:52:93:ef:5e:f3:99:b2:09:b5: 47:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:D0:E9:4A:31:E1:AA:E2:1E:C7:90:52:FC:14:10:27:66:65:77:CA X509v3 Authority Key Identifier: keyid:78:27:33:7A:E5:F4:4B:54:F3:85:CB:72:D4:FC:D0:7F:AE:A5:C9:43 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIYIYI/eCczeuX0S1Tzhcty1PzQf66lyUM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/eCczeuX0S1Tzhcty1PzQf66lyUM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIYIYI/1NDpSjHhquIex5BS_BQQJ2Zld8o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.213.34.0/23 Signature Algorithm: sha256WithRSAEncryption 14:72:8b:63:8c:e2:10:98:ae:5e:c4:16:1f:c1:21:06:fe:dc: dc:dc:b3:53:19:71:4d:27:0b:da:18:5b:c5:61:72:f4:39:56: e9:27:18:b5:4b:53:ce:f4:e2:4a:dd:bd:5d:8a:3b:4b:af:9a: 22:41:ed:4d:a8:b2:70:7c:c7:2e:63:1d:4a:a7:1b:e0:73:6f: ce:df:3b:c4:6f:13:0d:f1:4a:d9:65:ed:d3:96:b2:d7:90:69: 86:b2:61:0b:f0:1b:3d:e1:3f:ab:0b:82:49:58:36:bc:12:47: 4a:55:a0:4d:dd:2a:19:cf:20:6b:8d:27:8a:2f:80:de:ac:2c: e3:4d:08:17:51:32:76:0e:3f:80:aa:5d:5c:2e:0f:8f:72:a4: 44:8e:d0:ba:f2:68:29:63:29:73:8d:02:c1:e3:ab:7e:34:8c: 0d:db:73:35:17:7f:25:84:0e:cb:ed:43:15:8f:56:f6:ff:98: d0:0a:d9:38:3c:3b:07:cd:18:68:0c:04:3b:f2:d1:64:93:e1: db:37:9d:15:0d:12:20:cc:c9:34:ad:c9:69:b1:a3:b1:31:6b: cd:bc:ec:1f:c3:ad:21:fa:fa:2a:dd:ea:70:94:8c:7e:17:84: 9d:5c:dc:d3:0a:78:5f:77:23:2d:04:0a:ed:b8:f7:61:ac:3c: d7:8e:8e:68 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIBUzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3ODI3 MzM3QUU1RjQ0QjU0RjM4NUNCNzJENEZDRDA3RkFFQTVDOTQzMB4XDTI1MTAxNjA4 MzI1NloXDTI2MDgyMjA4MTQyOFowMzExMC8GA1UEAxMoRDREMEU5NEEzMUUxQUFF MjFFQzc5MDUyRkMxNDEwMjc2NjY1NzdDQTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKpeoXXVDMQgdQWOYsfk60+ysw1C1votzxXNoPVwIpDEf3xrEtxO bYoD9sCBx0ocYw1uhqRpaJXICqAC0aY56PSLiQwnWwR5PUorE4x3EHh3WwsBeHvA M7esOClS2rp1cF+roQY6OeKcZ4WZCEVKMbE4GuzD4CSWvWnf4dUdh+JLP47632lN ZVGTcqgskKa+Nif3F+UdjbR9S2n4KoL2ObYCLcSocuRiH40kKmD1ZSyCl3IZiOwS jUjUJwreSfKZZxh43wMjn03Xal+NvybEIzSyLa7SGygKW+4mQG2ELEtE7z6hUVy0 aPw8X2cdFJ+Lpr7ebo0OUpPvXvOZsgm1R7ECAwEAAaOCAfAwggHsMB0GA1UdDgQW BBTU0OlKMeGq4h7HkFL8FBAnZmV3yjAfBgNVHSMEGDAWgBR4JzN65fRLVPOFy3LU /NB/rqXJQzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSElZSVlJ L2VDY3pldVgwUzFUemhjdHkxUHpRZjY2bHlVTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvZUNjemV1WDBTMVR6aGN0eTFQelFmNjZseVVNLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJWUlZSS8xTkRwU2pIaHF1SWV4NUJT X0JRUUoyWmxkOG8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMu dHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB MdUiMA0GCSqGSIb3DQEBCwUAA4IBAQAUcotjjOIQmK5exBYfwSEG/tzc3LNTGXFN JwvaGFvFYXL0OVbpJxi1S1PO9OJK3b1dijtLr5oiQe1NqLJwfMcuYx1Kpxvgc2/O 3zvEbxMN8UrZZe3TlrLXkGmGsmEL8Bs94T+rC4JJWDa8EkdKVaBN3SoZzyBrjSeK L4DerCzjTQgXUTJ2Dj+Aql1cLg+PcqREjtC68mgpYylzjQLB46t+NIwN23M1F38l hA7L7UMVj1b2/5jQCtk4PDsHzRhoDAQ78tFkk+HbN50VDRIgzMk0rclpsaOxMWvN vOwfw60h+voq3epwlIx+F4SdXNzTCnhfdyMtBArtuPdhrDzXjo5o -----END CERTIFICATE-----Generated at Wed Oct 29 08:33:07 2025 by rpki-client