$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/va5oUA_vKIioQFGEX1iQCj59h7U.roa File: va5oUA_vKIioQFGEX1iQCj59h7U.roa (raw, json) Hash identifier: 36S18JHlybPg33YqwbzpRY8YvCj9P95ji2BK9ZBqaBE= Subject key identifier: BD:AE:68:50:0F:EF:28:88:A8:40:51:84:5F:58:90:0A:3E:7D:87:B5 Certificate issuer: /CN=ECD2FDC38522A74A422DE7BD1C026D55E08D9E9A Certificate serial: 02C5 Authority key identifier: EC:D2:FD:C3:85:22:A7:4A:42:2D:E7:BD:1C:02:6D:55:E0:8D:9E:9A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/va5oUA_vKIioQFGEX1iQCj59h7U.roa Signing time: Fri 14 Nov 2025 06:47:00 +0000 ROA not before: Fri 14 Nov 2025 06:47:00 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 215595 IP address blocks: 202.160.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/7NL9w4Uip0pCLee9HAJtVeCNnpo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/7NL9w4Uip0pCLee9HAJtVeCNnpo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 15 Nov 2025 15:01:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 709 (0x2c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ECD2FDC38522A74A422DE7BD1C026D55E08D9E9A Validity Not Before: Nov 14 06:47:00 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=BDAE68500FEF2888A84051845F58900A3E7D87B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:d4:e2:22:a7:e0:01:f5:cf:95:45:20:d3:62: 5b:08:f8:a8:db:c1:83:11:d2:24:0a:8e:83:25:b0: 3d:26:56:e1:24:1d:ee:e9:40:a3:c7:1c:b7:ab:f2: f3:83:80:47:ba:2a:08:81:ac:0d:cc:46:c7:e0:7d: c0:bf:67:08:13:b0:02:8a:3b:8d:c0:d5:53:4f:59: 6e:d3:6e:24:ba:46:12:46:5a:f1:0e:d4:b3:a1:7f: 7c:35:c4:ed:5d:94:88:4e:35:dd:ad:f2:f3:77:24: 0e:11:84:a5:df:6e:39:dd:37:7a:75:b4:06:e3:b8: ea:1b:58:c4:a0:fb:8b:2d:95:b0:18:aa:92:33:76: 65:81:96:19:a6:e8:4b:70:52:92:fb:dc:9a:b8:a7: 91:36:54:25:f5:5f:44:b9:df:f6:0a:88:ce:ed:35: 87:1d:64:e6:09:da:10:06:cd:1f:d1:6f:65:5c:16: e9:77:39:a4:a3:f4:a3:cf:81:b2:37:6c:c9:b1:6c: 33:60:d4:ab:61:3b:44:35:20:3d:62:80:4f:9a:c5: bb:43:82:43:b5:ad:91:44:30:08:f4:93:46:64:7e: 17:9b:5d:ee:32:b5:e6:28:c1:05:23:6f:d9:c6:97: ec:f3:88:0e:5c:41:e1:c8:94:93:d0:33:83:e7:31: c3:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:AE:68:50:0F:EF:28:88:A8:40:51:84:5F:58:90:0A:3E:7D:87:B5 X509v3 Authority Key Identifier: keyid:EC:D2:FD:C3:85:22:A7:4A:42:2D:E7:BD:1C:02:6D:55:E0:8D:9E:9A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/7NL9w4Uip0pCLee9HAJtVeCNnpo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/va5oUA_vKIioQFGEX1iQCj59h7U.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.160.67.0/24 Signature Algorithm: sha256WithRSAEncryption 59:9d:fc:6e:4d:9d:09:29:a6:32:d1:72:f1:83:38:49:53:79: 1a:f2:90:77:bd:7c:dd:bd:ee:a7:3c:45:cf:19:2e:3c:af:15: 8d:1d:87:b1:a0:70:5f:66:a8:62:0b:19:5b:93:44:9b:16:a2: a1:ad:44:d6:16:9b:93:0b:09:21:e4:83:51:e6:b3:34:b2:de: 30:5e:da:e7:0d:c6:f5:5d:a3:e2:a8:92:36:e7:80:93:3b:80: 78:fc:5a:ee:6a:38:90:6f:22:ec:2b:da:d2:ac:56:fc:77:82: 90:48:49:41:1f:af:a7:79:f2:e4:46:d2:a5:87:70:74:1a:6f: 4f:f3:f8:0e:13:b4:44:d6:3d:e5:f1:44:4e:4d:1a:8a:9f:d4: cf:b4:a2:79:e2:a6:0a:8f:61:14:8f:0d:fc:09:b4:19:b3:c4: f9:f9:ba:db:6b:cd:b1:9c:a8:43:07:99:50:57:8e:2c:85:9b: 72:86:df:69:9c:fa:2c:76:3f:c6:1d:4a:32:6e:d9:3f:6b:87: 97:30:b9:61:72:45:b2:b4:a5:64:8d:ff:0e:5e:7d:95:85:bc: a9:a2:f4:26:2a:de:32:88:62:ce:5d:35:df:73:48:a2:15:20: 0f:9d:cd:49:73:44:96:b9:aa:f6:34:f1:54:9f:69:54:4e:43: c3:8f:69:9a -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICAsUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUNE MkZEQzM4NTIyQTc0QTQyMkRFN0JEMUMwMjZENTVFMDhEOUU5QTAeFw0yNTExMTQw NjQ3MDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEJEQUU2ODUwMEZFRjI4 ODhBODQwNTE4NDVGNTg5MDBBM0U3RDg3QjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD41OIip+AB9c+VRSDTYlsI+KjbwYMR0iQKjoMlsD0mVuEkHe7p QKPHHLer8vODgEe6KgiBrA3MRsfgfcC/ZwgTsAKKO43A1VNPWW7TbiS6RhJGWvEO 1LOhf3w1xO1dlIhONd2t8vN3JA4RhKXfbjndN3p1tAbjuOobWMSg+4stlbAYqpIz dmWBlhmm6EtwUpL73Jq4p5E2VCX1X0S53/YKiM7tNYcdZOYJ2hAGzR/Rb2VcFul3 OaSj9KPPgbI3bMmxbDNg1KthO0Q1ID1igE+axbtDgkO1rZFEMAj0k0ZkfhebXe4y teYowQUjb9nGl+zziA5cQeHIlJPQM4PnMcPNAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUva5oUA/vKIioQFGEX1iQCj59h7UwHwYDVR0jBBgwFoAU7NL9w4Uip0pCLee9 HAJtVeCNnpowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFBTSUxL RVJBLzdOTDl3NFVpcDBwQ0xlZTlIQUp0VmVDTm5wby5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvN05MOXc0VWlwMHBDTGVlOUhBSnRWZUNObnBvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFBTSUxLRVJBL3ZhNW9VQV92S0lp b1FGR0VYMWlRQ2o1OWg3VS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADKoEMwDQYJKoZIhvcNAQELBQADggEBAFmd/G5NnQkppjLRcvGDOElTeRry kHe9fN297qc8Rc8ZLjyvFY0dh7GgcF9mqGILGVuTRJsWoqGtRNYWm5MLCSHkg1Hm szSy3jBe2ucNxvVdo+KokjbngJM7gHj8Wu5qOJBvIuwr2tKsVvx3gpBISUEfr6d5 8uRG0qWHcHQab0/z+A4TtETWPeXxRE5NGoqf1M+0onnipgqPYRSPDfwJtBmzxPn5 uttrzbGcqEMHmVBXjiyFm3KG32mc+ix2P8YdSjJu2T9rh5cwuWFyRbK0pWSN/w5e fZWFvKmi9CYq3jKIYs5dNd9zSKIVIA+dzUlzRJa5qvY08VSfaVROQ8OPaZo= -----END CERTIFICATE-----Generated at Sat Nov 15 11:53:52 2025 by rpki-client