$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/8RGQZyGt9yIFhwlXFCoM_iEnkJ4.roa File: 8RGQZyGt9yIFhwlXFCoM_iEnkJ4.roa (raw, json) Hash identifier: jPA4uFKVvING7bE6zGqeHXVMV55acFCNNjCwX0fMuFw= Subject key identifier: F1:11:90:67:21:AD:F7:22:05:87:09:57:14:2A:0C:FE:21:27:90:9E Certificate issuer: /CN=ECD2FDC38522A74A422DE7BD1C026D55E08D9E9A Certificate serial: 02C7 Authority key identifier: EC:D2:FD:C3:85:22:A7:4A:42:2D:E7:BD:1C:02:6D:55:E0:8D:9E:9A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/8RGQZyGt9yIFhwlXFCoM_iEnkJ4.roa Signing time: Fri 14 Nov 2025 06:47:34 +0000 ROA not before: Fri 14 Nov 2025 06:47:34 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 215595 IP address blocks: 202.160.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/7NL9w4Uip0pCLee9HAJtVeCNnpo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/7NL9w4Uip0pCLee9HAJtVeCNnpo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 15 Nov 2025 15:01:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 711 (0x2c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ECD2FDC38522A74A422DE7BD1C026D55E08D9E9A Validity Not Before: Nov 14 06:47:34 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F111906721ADF72205870957142A0CFE2127909E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:4d:fb:73:40:af:5e:6b:db:57:34:b7:ea:ba: 3f:5f:4a:eb:f7:9a:8e:20:81:c3:f1:86:d4:3d:2a: bf:62:28:fe:f8:ef:6d:e0:52:f3:73:8f:74:4a:9c: 1c:34:75:8e:e1:d7:a1:f5:97:3b:94:b1:0c:23:26: f8:6b:1b:bb:82:6b:f2:c1:48:2f:0c:1d:57:3c:fe: 18:e1:c8:6d:9b:1c:cb:41:c0:19:64:0f:a1:1f:40: ed:18:c4:43:d9:fc:02:b8:93:24:f1:9f:ce:71:bb: ca:ef:7d:c0:f6:00:c6:81:a6:c2:25:1f:23:92:13: 03:bc:35:82:b0:10:7b:db:e5:85:10:48:05:9f:0b: 4d:ae:ab:f9:ca:d0:c8:bb:43:0f:5e:31:69:aa:86: ed:bc:21:58:4f:29:19:7e:01:bb:1f:26:f2:8a:d6: e4:f9:f7:80:3e:66:0b:a6:23:70:fe:9f:ea:33:36: 29:aa:31:82:53:a7:b8:0b:e8:5c:ba:ee:67:f6:6a: 51:00:0b:00:d4:f8:be:9c:43:a9:bf:8f:fb:ab:21: 3e:d0:0e:05:8f:a6:a5:8a:3c:90:74:02:f5:68:04: 83:c3:31:c7:d0:28:21:2a:79:00:50:2a:a5:42:b2: 56:a6:6c:8f:67:bd:98:43:04:aa:78:71:14:34:65: a2:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:11:90:67:21:AD:F7:22:05:87:09:57:14:2A:0C:FE:21:27:90:9E X509v3 Authority Key Identifier: keyid:EC:D2:FD:C3:85:22:A7:4A:42:2D:E7:BD:1C:02:6D:55:E0:8D:9E:9A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/7NL9w4Uip0pCLee9HAJtVeCNnpo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/8RGQZyGt9yIFhwlXFCoM_iEnkJ4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.160.68.0/24 Signature Algorithm: sha256WithRSAEncryption 38:36:da:b8:ac:27:aa:bd:7f:b3:a3:dd:5f:e8:e1:98:ae:b6: 12:83:19:19:a6:74:9f:2c:72:b1:ae:af:43:1a:34:41:9c:6d: 2c:f2:c4:0c:a2:31:59:8f:48:ee:9c:71:53:58:e5:52:af:df: 20:3a:b3:11:9b:d7:cf:29:50:4d:0a:7d:bb:1d:e2:df:e9:3a: 75:b7:d4:b0:cd:d4:2c:c3:56:d9:9d:9c:67:8e:e0:80:52:a1: 81:9b:3d:27:d8:75:58:f0:ee:41:55:ff:46:07:bf:b7:5b:31: bf:ca:50:0a:6b:70:a9:c7:eb:a3:75:5b:7b:57:83:a4:66:43: 12:71:3f:cf:f6:43:97:60:62:4f:28:f6:84:e7:31:7f:e4:6b: c2:fb:5d:bc:c7:1a:e6:fe:36:cb:46:d5:38:84:cc:43:b5:56: b0:e6:5e:cb:df:d0:70:16:cb:d8:ef:65:d8:35:d4:b9:ed:95: 28:8b:b1:dd:94:20:d5:12:7d:cf:6e:c4:80:d2:92:8b:36:bf: 79:d2:62:44:c6:e6:61:0d:17:32:a2:7a:dc:9c:a2:a9:c9:02: bf:0b:a1:72:c6:84:e3:8f:fa:c0:3a:28:84:66:75:78:93:7d: 6b:78:f0:5b:76:2f:17:f5:48:ef:9f:03:4b:24:0f:1b:fc:08: 06:b5:82:0a -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICAscwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUNE MkZEQzM4NTIyQTc0QTQyMkRFN0JEMUMwMjZENTVFMDhEOUU5QTAeFw0yNTExMTQw NjQ3MzRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEYxMTE5MDY3MjFBREY3 MjIwNTg3MDk1NzE0MkEwQ0ZFMjEyNzkwOUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGTftzQK9ea9tXNLfquj9fSuv3mo4ggcPxhtQ9Kr9iKP74723g UvNzj3RKnBw0dY7h16H1lzuUsQwjJvhrG7uCa/LBSC8MHVc8/hjhyG2bHMtBwBlk D6EfQO0YxEPZ/AK4kyTxn85xu8rvfcD2AMaBpsIlHyOSEwO8NYKwEHvb5YUQSAWf C02uq/nK0Mi7Qw9eMWmqhu28IVhPKRl+AbsfJvKK1uT594A+ZgumI3D+n+ozNimq MYJTp7gL6Fy67mf2alEACwDU+L6cQ6m/j/urIT7QDgWPpqWKPJB0AvVoBIPDMcfQ KCEqeQBQKqVCslambI9nvZhDBKp4cRQ0ZaJdAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQU8RGQZyGt9yIFhwlXFCoM/iEnkJ4wHwYDVR0jBBgwFoAU7NL9w4Uip0pCLee9 HAJtVeCNnpowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFBTSUxL RVJBLzdOTDl3NFVpcDBwQ0xlZTlIQUp0VmVDTm5wby5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvN05MOXc0VWlwMHBDTGVlOUhBSnRWZUNObnBvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFBTSUxLRVJBLzhSR1FaeUd0OXlJ Rmh3bFhGQ29NX2lFbmtKNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADKoEQwDQYJKoZIhvcNAQELBQADggEBADg22risJ6q9f7Oj3V/o4ZiuthKD GRmmdJ8scrGur0MaNEGcbSzyxAyiMVmPSO6ccVNY5VKv3yA6sxGb188pUE0Kfbsd 4t/pOnW31LDN1CzDVtmdnGeO4IBSoYGbPSfYdVjw7kFV/0YHv7dbMb/KUAprcKnH 66N1W3tXg6RmQxJxP8/2Q5dgYk8o9oTnMX/ka8L7XbzHGub+NstG1TiEzEO1VrDm Xsvf0HAWy9jvZdg11LntlSiLsd2UINUSfc9uxIDSkos2v3nSYkTG5mENFzKietyc oqnJAr8LoXLGhOOP+sA6KIRmdXiTfWt48Ft2Lxf1SO+fA0skDxv8CAa1ggo= -----END CERTIFICATE-----Generated at Sat Nov 15 11:53:52 2025 by rpki-client