$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TCSKY/_d-jZUiEDfO83PbVIn2gqWW69UA.roa File: _d-jZUiEDfO83PbVIn2gqWW69UA.roa (raw, json) Hash identifier: ugvANw5msTs2WUJu2szekovokCLPID5epRFPn6Vko5k= Subject key identifier: FD:DF:A3:65:48:84:0D:F3:BC:DC:F6:D5:22:7D:A0:A9:65:BA:F5:40 Certificate issuer: /CN=4F000CB6DDD37487A6DE1F7EADBDA12708EB2C19 Certificate serial: 0234 Authority key identifier: 4F:00:0C:B6:DD:D3:74:87:A6:DE:1F:7E:AD:BD:A1:27:08:EB:2C:19 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TwAMtt3TdIem3h9-rb2hJwjrLBk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/_d-jZUiEDfO83PbVIn2gqWW69UA.roa Signing time: Fri 24 Oct 2025 15:56:05 +0000 ROA not before: Fri 24 Oct 2025 15:56:05 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 63908 IP address blocks: 160.191.202.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/TwAMtt3TdIem3h9-rb2hJwjrLBk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/TwAMtt3TdIem3h9-rb2hJwjrLBk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/TwAMtt3TdIem3h9-rb2hJwjrLBk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 20:57:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 564 (0x234) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4F000CB6DDD37487A6DE1F7EADBDA12708EB2C19 Validity Not Before: Oct 24 15:56:05 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=FDDFA36548840DF3BCDCF6D5227DA0A965BAF540 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:5e:2b:1d:a3:eb:34:ca:be:27:48:3a:fe:28: 17:63:16:ef:be:ae:05:91:fb:ba:78:10:8c:5f:13: 04:2d:2c:72:34:e8:20:c3:af:ff:5a:c5:1d:1a:a7: 4c:c1:73:24:17:af:e1:0a:c2:2f:77:98:6c:a9:be: d4:d5:fc:fc:c4:93:f8:cc:56:1a:8b:dd:6b:47:a5: 3d:b3:df:a8:78:a7:c2:bb:31:8f:e6:fa:9c:cb:48: d9:a3:40:8f:36:79:12:9e:47:7b:c5:7f:83:ea:c0: fd:ca:c4:35:2f:64:31:f4:4d:3d:66:19:9e:36:40: 8e:13:da:9f:05:4c:7f:09:f3:e5:47:fd:1d:ca:f1: 76:c2:9d:14:42:b0:bf:35:9a:8a:79:25:cf:d7:57: e1:5a:1e:9c:d4:76:96:42:e5:6d:62:82:20:b7:2f: fb:11:0c:45:cf:70:d8:9b:c8:58:e3:d9:f9:6d:a4: 9e:65:90:50:75:ce:5c:de:aa:71:94:70:70:68:d3: ae:4f:a4:12:10:5f:fe:b7:d6:0e:d6:8a:b6:5c:bc: da:59:b2:69:34:69:a8:ef:55:ef:4d:51:4a:df:11: 3e:25:8d:ea:1f:13:91:7d:d2:f4:a2:f6:c1:33:40: 63:3b:4b:cf:bd:2e:d7:29:36:12:f7:8c:a3:e3:96: 1a:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:DF:A3:65:48:84:0D:F3:BC:DC:F6:D5:22:7D:A0:A9:65:BA:F5:40 X509v3 Authority Key Identifier: keyid:4F:00:0C:B6:DD:D3:74:87:A6:DE:1F:7E:AD:BD:A1:27:08:EB:2C:19 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/TwAMtt3TdIem3h9-rb2hJwjrLBk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TwAMtt3TdIem3h9-rb2hJwjrLBk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/_d-jZUiEDfO83PbVIn2gqWW69UA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.191.202.0/23 Signature Algorithm: sha256WithRSAEncryption 92:3c:27:5a:32:c2:51:2a:c3:df:63:60:33:55:84:8c:24:74: c5:5e:37:e0:8d:b0:e0:08:61:a6:1b:24:54:87:49:48:f1:27: 07:f1:fa:42:89:92:e9:ff:99:de:f5:f4:d6:1c:68:fa:24:ab: 0d:79:9c:a6:ef:92:de:b7:0e:c3:ea:b6:21:89:a7:3a:f1:f4: ad:46:7b:b9:75:22:86:f4:78:7c:bf:06:26:7b:4c:4c:3c:75: 75:af:33:64:20:0a:ad:d1:4a:06:09:fb:10:ef:4d:51:4b:60: 5c:4e:85:01:f0:ed:54:1f:7a:6b:a6:3b:74:2d:4c:47:3b:50: 4f:13:bc:cb:92:ad:b6:b4:8f:77:21:c3:8e:45:c6:2c:24:42: a6:ef:ea:3b:06:1b:0d:8f:f3:79:2e:5d:fd:cc:8a:9f:72:d1: c8:28:31:ce:cf:ab:b8:73:98:5c:38:22:6c:97:12:1c:c8:b8: 37:72:74:95:49:60:6d:a4:51:81:d8:26:51:67:63:55:0e:86: 83:ca:4f:5f:a1:98:9e:d8:90:93:79:fe:70:7c:aa:d7:31:c8: b9:fa:eb:ea:fe:90:1d:88:75:3c:17:54:1d:36:69:b7:f2:b8: bb:e0:c1:66:3a:8f:21:03:39:e1:0d:71:33:4d:48:0d:df:1d: 90:f5:9c:85 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICAjQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEYw MDBDQjZEREQzNzQ4N0E2REUxRjdFQURCREExMjcwOEVCMkMxOTAeFw0yNTEwMjQx NTU2MDVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEZEREZBMzY1NDg4NDBE RjNCQ0RDRjZENTIyN0RBMEE5NjVCQUY1NDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4Xisdo+s0yr4nSDr+KBdjFu++rgWR+7p4EIxfEwQtLHI06CDD r/9axR0ap0zBcyQXr+EKwi93mGypvtTV/PzEk/jMVhqL3WtHpT2z36h4p8K7MY/m +pzLSNmjQI82eRKeR3vFf4PqwP3KxDUvZDH0TT1mGZ42QI4T2p8FTH8J8+VH/R3K 8XbCnRRCsL81mop5Jc/XV+FaHpzUdpZC5W1igiC3L/sRDEXPcNibyFjj2fltpJ5l kFB1zlzeqnGUcHBo065PpBIQX/631g7WirZcvNpZsmk0aajvVe9NUUrfET4ljeof E5F90vSi9sEzQGM7S8+9LtcpNhL3jKPjlho7AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU/d+jZUiEDfO83PbVIn2gqWW69UAwHwYDVR0jBBgwFoAUTwAMtt3TdIem3h9+ rb2hJwjrLBkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVENTS1kv VHdBTXR0M1RkSWVtM2g5LXJiMmhKd2pyTEJrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9Ud0FNdHQzVGRJZW0zaDktcmIyaEp3anJMQmsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQ1NLWS9fZC1qWlVpRURmTzgzUGJWSW4y Z3FXVzY5VUEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoL/K MA0GCSqGSIb3DQEBCwUAA4IBAQCSPCdaMsJRKsPfY2AzVYSMJHTFXjfgjbDgCGGm GyRUh0lI8ScH8fpCiZLp/5ne9fTWHGj6JKsNeZym75Letw7D6rYhiac68fStRnu5 dSKG9Hh8vwYme0xMPHV1rzNkIAqt0UoGCfsQ701RS2BcToUB8O1UH3prpjt0LUxH O1BPE7zLkq22tI93IcOORcYsJEKm7+o7BhsNj/N5Ll39zIqfctHIKDHOz6u4c5hc OCJslxIcyLg3cnSVSWBtpFGB2CZRZ2NVDoaDyk9foZie2JCTef5wfKrXMci5+uvq /pAdiHU8F1QdNmm38ri74MFmOo8hAznhDXEzTUgN3x2Q9ZyF -----END CERTIFICATE-----Generated at Tue Oct 28 20:03:34 2025 by rpki-client