$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/mQ2Y5rzjQA2G4wIu4dUnDR4l54c.roa File: mQ2Y5rzjQA2G4wIu4dUnDR4l54c.roa (raw, json) Hash identifier: focYayflyqBJ307mU+XLSM/yoR76J2RPnPur4D3OIMs= Subject key identifier: 99:0D:98:E6:BC:E3:40:0D:86:E3:02:2E:E1:D5:27:0D:1E:25:E7:87 Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Certificate serial: 0E13 Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/mQ2Y5rzjQA2G4wIu4dUnDR4l54c.roa Signing time: Fri 22 Aug 2025 08:51:01 +0000 ROA not before: Fri 22 Aug 2025 08:51:01 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18182 IP address blocks: 219.84.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 16:57:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3603 (0xe13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Validity Not Before: Aug 22 08:51:01 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=990D98E6BCE3400D86E3022EE1D5270D1E25E787 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:6a:69:df:b6:52:b0:33:bd:6a:b9:82:c8:3d: 38:e8:6f:5c:c6:62:10:66:59:a6:a5:2f:20:76:2f: 56:da:6f:d3:6d:a3:ce:f7:66:bf:6e:0d:5f:9c:4b: 00:a8:f7:36:3a:6d:df:78:26:ea:62:58:a3:7e:6a: 4b:0f:35:c0:2f:a1:fd:6d:80:f1:fa:4f:cf:cb:d4: 72:5e:53:56:5f:ab:5b:42:27:92:7e:c5:7d:ba:68: f3:cd:ba:45:8b:1c:d8:84:81:80:7c:f1:0e:0e:0a: dd:18:9f:b5:16:bf:a5:f3:f4:0d:0c:86:d2:3b:1c: 55:b2:e3:96:c8:cc:51:3a:41:9c:ff:1e:0f:f2:79: 0b:e2:0f:7d:62:ae:05:f0:2e:6a:93:8e:b8:30:97: 3d:29:f4:93:97:1e:12:f0:d9:03:52:31:a3:35:e7: 05:7b:42:c1:46:13:46:a6:ce:df:d3:77:53:67:f0: a8:65:0f:03:ca:ee:a9:25:51:18:b6:d3:e3:29:5a: 48:45:81:80:c0:0f:50:a6:a7:87:94:6e:6d:c4:6e: 1a:2c:e3:b4:76:f1:57:ac:66:f1:17:25:bd:21:8a: 44:99:e7:d0:4c:c3:4d:fa:24:29:97:4c:25:df:17: 6a:91:ed:b5:4b:f9:64:3e:8e:5f:b8:1a:1b:99:0d: 79:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:0D:98:E6:BC:E3:40:0D:86:E3:02:2E:E1:D5:27:0D:1E:25:E7:87 X509v3 Authority Key Identifier: keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/mQ2Y5rzjQA2G4wIu4dUnDR4l54c.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 219.84.0.0/16 Signature Algorithm: sha256WithRSAEncryption a8:f5:67:10:69:e6:72:98:b5:6b:6e:5c:74:d6:8d:36:1e:f1: db:dc:c3:22:ea:3e:45:60:f7:a8:82:3c:71:8a:27:89:07:ad: 6b:fb:36:9e:98:f4:e3:d7:0e:0d:bd:85:03:73:5a:db:64:21: b0:3c:db:41:d5:36:0a:d6:3c:b4:d7:4f:c0:b9:aa:d9:62:ef: be:eb:76:3c:16:d7:da:61:7b:2f:cf:59:8e:bb:9b:5e:b5:90: b6:da:1a:d3:88:55:93:1a:82:3c:84:8d:94:11:23:0c:cf:e2: d4:2c:0f:36:1e:ea:af:32:60:03:6b:29:f3:1a:e1:98:ca:9d: 57:99:5a:f2:d6:7a:19:f2:c1:81:3e:7f:eb:ae:2a:77:d6:8b: 3c:b0:3e:b6:f3:53:f6:7f:31:73:a5:05:fa:92:98:26:1a:70: 19:47:41:24:6e:1b:7c:79:23:59:76:a4:d2:78:cc:aa:14:71: af:39:5f:85:90:6b:01:13:31:02:26:b2:35:5f:af:e3:b4:a2: 5b:8e:25:27:de:2b:7f:32:ef:5b:e1:5d:4e:f7:a4:cc:0e:06: 3c:23:2a:39:19:1c:cd:6e:f9:9b:34:4c:77:5d:17:e2:20:5f: fb:10:e2:8e:b3:8d:b9:7c:7c:6c:dc:2e:e2:61:7c:d3:51:1c: 27:32:a8:4a -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDhMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0NC NTQ1NDE1M0FDQ0VDRTg1MjBEMzM5MDdENTRFNTZDNUNBOUE0QjAeFw0yNTA4MjIw ODUxMDFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDk5MEQ5OEU2QkNFMzQw MEQ4NkUzMDIyRUUxRDUyNzBEMUUyNUU3ODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKamnftlKwM71quYLIPTjob1zGYhBmWaalLyB2L1bab9Nto873 Zr9uDV+cSwCo9zY6bd94JupiWKN+aksPNcAvof1tgPH6T8/L1HJeU1Zfq1tCJ5J+ xX26aPPNukWLHNiEgYB88Q4OCt0Yn7UWv6Xz9A0MhtI7HFWy45bIzFE6QZz/Hg/y eQviD31irgXwLmqTjrgwlz0p9JOXHhLw2QNSMaM15wV7QsFGE0amzt/Td1Nn8Khl DwPK7qklURi20+MpWkhFgYDAD1Cmp4eUbm3Ebhos47R28VesZvEXJb0hikSZ59BM w036JCmXTCXfF2qR7bVL+WQ+jl+4GhuZDXm3AgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUmQ2Y5rzjQA2G4wIu4dUnDR4l54cwHwYDVR0jBBgwFoAUzLVFQVOszs6FINM5 B9VOVsXKmkswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU09ORVQv ekxWRlFWT3N6czZGSU5NNUI5Vk9Wc1hLbWtzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS96TFZGUVZPc3pzNkZJTk01QjlWT1ZzWEtta3MuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TT05FVC9tUTJZNXJ6alFBMkc0d0l1NGRV bkRSNGw1NGMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMA21Qw DQYJKoZIhvcNAQELBQADggEBAKj1ZxBp5nKYtWtuXHTWjTYe8dvcwyLqPkVg96iC PHGKJ4kHrWv7Np6Y9OPXDg29hQNzWttkIbA820HVNgrWPLTXT8C5qtli777rdjwW 19phey/PWY67m161kLbaGtOIVZMagjyEjZQRIwzP4tQsDzYe6q8yYANrKfMa4ZjK nVeZWvLWehnywYE+f+uuKnfWizywPrbzU/Z/MXOlBfqSmCYacBlHQSRuG3x5I1l2 pNJ4zKoUca85X4WQawETMQImsjVfr+O0oluOJSfeK38y71vhXU73pMwOBjwjKjkZ HM1u+Zs0THddF+IgX/sQ4o6zjbl8fGzcLuJhfNNRHCcyqEo= -----END CERTIFICATE-----Generated at Fri Oct 24 13:04:30 2025 by rpki-client