$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/IEjXezvbWLoopuyjfwKN-1wN7Nk.roa File: IEjXezvbWLoopuyjfwKN-1wN7Nk.roa (raw, json) Hash identifier: LIlsKjcoXE6ZkVeZmNb/q866qILxgvG521i5Uy/H5ik= Subject key identifier: 20:48:D7:7B:3B:DB:58:BA:28:A6:EC:A3:7F:02:8D:FB:5C:0D:EC:D9 Certificate issuer: /CN=ECD2FDC38522A74A422DE7BD1C026D55E08D9E9A Certificate serial: 029E Authority key identifier: EC:D2:FD:C3:85:22:A7:4A:42:2D:E7:BD:1C:02:6D:55:E0:8D:9E:9A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/IEjXezvbWLoopuyjfwKN-1wN7Nk.roa Signing time: Wed 24 Sep 2025 10:12:05 +0000 ROA not before: Wed 24 Sep 2025 10:12:05 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9304 IP address blocks: 202.160.88.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/7NL9w4Uip0pCLee9HAJtVeCNnpo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/7NL9w4Uip0pCLee9HAJtVeCNnpo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Oct 2025 19:56:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 670 (0x29e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ECD2FDC38522A74A422DE7BD1C026D55E08D9E9A Validity Not Before: Sep 24 10:12:05 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2048D77B3BDB58BA28A6ECA37F028DFB5C0DECD9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:41:8f:20:73:01:22:9d:9b:a1:c2:38:8d:6e: 60:a4:27:be:2d:71:fe:0f:1b:62:4f:69:c0:08:86: 8f:83:c8:87:d9:31:22:7f:d0:59:57:26:d2:67:64: b8:8b:04:3d:56:68:16:4d:f9:80:72:8e:e6:7e:76: fd:d7:a9:43:28:c5:a5:0b:53:71:78:8d:44:80:b8: ab:cf:cf:d0:c3:52:02:c4:ef:ed:53:0c:b1:48:94: fc:a8:f7:88:e5:c8:e2:f8:1d:44:37:9c:d1:0d:f9: c9:44:2c:ef:60:11:04:57:1d:26:03:5b:46:38:fe: af:b3:9e:6d:fa:74:e9:98:ce:fb:b2:8f:fa:a1:fa: 97:c6:6a:98:ad:a8:9f:ba:26:45:fa:3e:da:8d:31: bd:ab:14:b7:7a:de:10:8e:be:37:df:09:95:5a:69: a2:3a:5c:2b:da:fc:01:5b:80:aa:9a:15:18:13:a0: 2b:f0:0f:98:d8:d5:c7:dc:73:1c:eb:d4:fa:43:5f: 72:fb:49:aa:25:a6:ae:26:49:cc:29:89:7e:44:44: 79:c5:db:dd:fa:04:75:e4:88:c6:06:e0:c2:b2:e9: d5:0c:77:17:d4:e4:6c:6f:d9:3d:45:09:b0:2c:0b: e6:bd:56:55:aa:cc:a3:e1:a5:20:73:f3:19:f0:d2: 1d:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:48:D7:7B:3B:DB:58:BA:28:A6:EC:A3:7F:02:8D:FB:5C:0D:EC:D9 X509v3 Authority Key Identifier: keyid:EC:D2:FD:C3:85:22:A7:4A:42:2D:E7:BD:1C:02:6D:55:E0:8D:9E:9A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/7NL9w4Uip0pCLee9HAJtVeCNnpo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/IEjXezvbWLoopuyjfwKN-1wN7Nk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.160.88.0/21 Signature Algorithm: sha256WithRSAEncryption 54:3c:12:23:c5:75:b2:7a:6b:11:d3:ce:c4:62:93:0c:66:d5: f9:f1:54:71:e9:7e:48:56:ef:38:24:6b:9f:4d:5e:4b:5f:58: 4a:a2:02:72:ea:2d:59:fa:bf:3a:40:b1:52:a3:a4:2a:a9:e2: 4d:07:6f:7c:6f:a0:2d:ea:dc:04:98:38:d4:11:16:de:7f:bb: 7e:8f:96:2b:58:43:68:c4:29:c5:d3:b0:c8:69:94:04:46:4c: 33:3b:ca:bf:57:98:a8:e2:b2:f1:81:9f:ed:c2:63:3b:54:b2: 26:ce:c4:93:d5:a4:5d:d9:32:b8:61:86:ba:51:d6:07:07:0d: 8e:3c:b1:fd:da:22:48:34:42:a4:0e:76:67:06:c7:05:6e:26: 46:01:1b:c0:55:28:6e:e5:d2:83:7a:1d:11:b0:e1:d4:71:ef: 00:72:b1:d9:67:b0:e9:89:4d:69:1a:f6:b2:fe:6b:4f:a9:9f: 1d:a7:d6:47:cc:ab:4a:76:56:24:0b:34:a6:57:15:26:14:84: 17:57:e3:ef:e4:5f:23:ba:84:28:a8:b0:04:2b:49:50:0a:54: 6f:d9:02:2d:f5:28:b6:08:6f:f4:7e:72:f3:36:9a:35:07:cd: 40:32:c0:87:eb:dd:d4:a2:5d:35:ff:bd:07:e1:a5:7d:7c:a1: de:c0:c3:a2 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICAp4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUNE MkZEQzM4NTIyQTc0QTQyMkRFN0JEMUMwMjZENTVFMDhEOUU5QTAeFw0yNTA5MjQx MDEyMDVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDIwNDhENzdCM0JEQjU4 QkEyOEE2RUNBMzdGMDI4REZCNUMwREVDRDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDkQY8gcwEinZuhwjiNbmCkJ74tcf4PG2JPacAIho+DyIfZMSJ/ 0FlXJtJnZLiLBD1WaBZN+YByjuZ+dv3XqUMoxaULU3F4jUSAuKvPz9DDUgLE7+1T DLFIlPyo94jlyOL4HUQ3nNEN+clELO9gEQRXHSYDW0Y4/q+znm36dOmYzvuyj/qh +pfGapitqJ+6JkX6PtqNMb2rFLd63hCOvjffCZVaaaI6XCva/AFbgKqaFRgToCvw D5jY1cfccxzr1PpDX3L7Saolpq4mScwpiX5ERHnF2936BHXkiMYG4MKy6dUMdxfU 5Gxv2T1FCbAsC+a9VlWqzKPhpSBz8xnw0h0/AgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUIEjXezvbWLoopuyjfwKN+1wN7NkwHwYDVR0jBBgwFoAU7NL9w4Uip0pCLee9 HAJtVeCNnpowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFBTSUxL RVJBLzdOTDl3NFVpcDBwQ0xlZTlIQUp0VmVDTm5wby5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvN05MOXc0VWlwMHBDTGVlOUhBSnRWZUNObnBvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFBTSUxLRVJBL0lFalhlenZiV0xv b3B1eWpmd0tOLTF3TjdOay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPKoFgwDQYJKoZIhvcNAQELBQADggEBAFQ8EiPFdbJ6axHTzsRikwxm1fnx VHHpfkhW7zgka59NXktfWEqiAnLqLVn6vzpAsVKjpCqp4k0Hb3xvoC3q3ASYONQR Ft5/u36PlitYQ2jEKcXTsMhplARGTDM7yr9XmKjisvGBn+3CYztUsibOxJPVpF3Z MrhhhrpR1gcHDY48sf3aIkg0QqQOdmcGxwVuJkYBG8BVKG7l0oN6HRGw4dRx7wBy sdlnsOmJTWka9rL+a0+pnx2n1kfMq0p2ViQLNKZXFSYUhBdX4+/kXyO6hCiosAQr SVAKVG/ZAi31KLYIb/R+cvM2mjUHzUAywIfr3dSiXTX/vQfhpX18od7Aw6I= -----END CERTIFICATE-----Generated at Sun Oct 19 18:34:18 2025 by rpki-client