$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUCD/-PlEVlx6TY9SP1WPGXsjNpJJeEo.roa File: -PlEVlx6TY9SP1WPGXsjNpJJeEo.roa (raw, json) Hash identifier: r88qAAw4kvrkZKuOfw9fM5MbV5AxQ3cq5vt8EQ4uLKc= Subject key identifier: F8:F9:44:56:5C:7A:4D:8F:52:3F:55:8F:19:7B:23:36:92:49:78:4A Certificate issuer: /CN=35D63F285426D9D57209D42C46B9125B23A78EC1 Certificate serial: 02D4 Authority key identifier: 35:D6:3F:28:54:26:D9:D5:72:09:D4:2C:46:B9:12:5B:23:A7:8E:C1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NdY_KFQm2dVyCdQsRrkSWyOnjsE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUCD/-PlEVlx6TY9SP1WPGXsjNpJJeEo.roa Signing time: Fri 22 Aug 2025 08:49:55 +0000 ROA not before: Fri 22 Aug 2025 08:49:55 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 63908 IP address blocks: 2400:ebe0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUCD/NdY_KFQm2dVyCdQsRrkSWyOnjsE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUCD/NdY_KFQm2dVyCdQsRrkSWyOnjsE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NdY_KFQm2dVyCdQsRrkSWyOnjsE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 20:57:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 724 (0x2d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35D63F285426D9D57209D42C46B9125B23A78EC1 Validity Not Before: Aug 22 08:49:55 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F8F944565C7A4D8F523F558F197B23369249784A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:b2:bb:55:44:36:00:35:04:2d:45:a0:2e:e5: 1b:ae:7a:b3:09:9a:a5:9b:79:f0:9c:26:77:e6:7f: 30:b8:6b:2d:0f:fe:20:ff:0d:55:5d:cf:94:54:7c: 79:87:b4:ec:10:b8:c2:59:a4:8a:e0:b2:63:c7:3b: aa:06:d9:f4:d3:a3:e1:d5:47:15:2b:5c:6b:a0:51: cb:6f:51:02:0b:fd:a8:a7:88:e8:dc:f0:ff:29:47: 80:37:6d:e5:0b:c8:a7:73:a5:54:04:27:62:0a:65: d7:b0:28:d5:a0:72:ec:1a:e3:93:96:70:3a:64:23: 4c:2a:30:04:c4:6d:74:93:36:1a:b5:be:34:4c:c7: 56:55:2a:d4:48:bd:a2:21:c1:e6:99:58:88:47:ee: 11:91:07:83:20:64:59:3f:d3:ab:54:e4:f7:58:9e: b1:b9:fb:23:f2:47:d1:21:57:c5:d9:52:f5:0e:c4: 82:be:96:bb:47:d0:fb:62:58:8a:b7:7a:0c:3a:13: 42:27:6d:c2:13:7a:b8:58:4d:68:63:c1:2d:55:c8: 33:49:99:39:31:d0:81:03:36:1b:12:91:de:3c:26: 9a:85:2f:56:87:4f:49:28:ab:54:39:8e:0e:29:e3: 53:d5:1d:4d:2f:30:e0:60:f7:fe:bb:b9:da:74:e1: 38:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:F9:44:56:5C:7A:4D:8F:52:3F:55:8F:19:7B:23:36:92:49:78:4A X509v3 Authority Key Identifier: keyid:35:D6:3F:28:54:26:D9:D5:72:09:D4:2C:46:B9:12:5B:23:A7:8E:C1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUCD/NdY_KFQm2dVyCdQsRrkSWyOnjsE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NdY_KFQm2dVyCdQsRrkSWyOnjsE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUCD/-PlEVlx6TY9SP1WPGXsjNpJJeEo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2400:ebe0::/32 Signature Algorithm: sha256WithRSAEncryption 86:fb:85:ac:6e:78:7a:db:c5:44:20:64:3e:28:56:32:d7:52: 60:45:f0:97:2b:b5:87:ba:9a:e3:e6:71:7a:c0:44:eb:a6:b2: 2d:ef:f0:27:28:5c:90:ea:9e:84:bf:39:79:e1:1a:f0:8a:92: 5c:0f:61:3d:98:30:fc:54:51:17:5e:52:7a:e7:a2:fa:76:e8: 86:db:db:dc:a4:bb:37:74:1f:7e:99:b4:ea:ce:92:67:4f:a9: 50:62:fb:98:39:f4:a2:bd:7e:8c:1a:35:2e:41:71:97:d7:b0: 0e:94:0c:20:82:63:e3:bc:ad:88:d1:82:5b:de:db:99:54:59: 81:8a:2c:60:fc:50:0b:5c:f8:c0:85:60:aa:e8:e1:33:a0:fb: e9:f4:68:39:40:80:1f:22:a5:36:65:c7:44:93:39:36:ba:3c: 9b:52:f6:b6:d7:03:46:3a:1f:0d:94:6b:9a:78:18:14:94:f1: 6e:9a:30:2d:66:2a:54:bc:cc:3b:ff:b5:ce:b2:30:7a:29:35: c1:29:ea:dd:fd:17:61:ba:7c:48:b5:c0:0f:de:a0:e6:01:85: ca:8d:dc:71:59:87:19:c2:43:06:3b:ab:8e:e3:a4:57:ec:50: f9:56:18:56:c3:e0:57:bb:3b:b5:c0:22:ac:4c:6b:d0:bb:89: 08:b9:4d:37 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICAtQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzVE NjNGMjg1NDI2RDlENTcyMDlENDJDNDZCOTEyNUIyM0E3OEVDMTAeFw0yNTA4MjIw ODQ5NTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEY4Rjk0NDU2NUM3QTRE OEY1MjNGNTU4RjE5N0IyMzM2OTI0OTc4NEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDxsrtVRDYANQQtRaAu5RuuerMJmqWbefCcJnfmfzC4ay0P/iD/ DVVdz5RUfHmHtOwQuMJZpIrgsmPHO6oG2fTTo+HVRxUrXGugUctvUQIL/ainiOjc 8P8pR4A3beULyKdzpVQEJ2IKZdewKNWgcuwa45OWcDpkI0wqMATEbXSTNhq1vjRM x1ZVKtRIvaIhweaZWIhH7hGRB4MgZFk/06tU5PdYnrG5+yPyR9EhV8XZUvUOxIK+ lrtH0PtiWIq3egw6E0InbcITerhYTWhjwS1VyDNJmTkx0IEDNhsSkd48JpqFL1aH T0koq1Q5jg4p41PVHU0vMOBg9/67udp04TivAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQU+PlEVlx6TY9SP1WPGXsjNpJJeEowHwYDVR0jBBgwFoAUNdY/KFQm2dVyCdQs RrkSWyOnjsEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVDRC9O ZFlfS0ZRbTJkVnlDZFFzUnJrU1d5T25qc0UuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L05kWV9LRlFtMmRWeUNkUXNScmtTV3lPbmpzRS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1RVQ0QvLVBsRVZseDZUWTlTUDFXUEdYc2pO cEpKZUVvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQA6+Aw DQYJKoZIhvcNAQELBQADggEBAIb7haxueHrbxUQgZD4oVjLXUmBF8JcrtYe6muPm cXrAROumsi3v8CcoXJDqnoS/OXnhGvCKklwPYT2YMPxUURdeUnrnovp26Ibb29yk uzd0H36ZtOrOkmdPqVBi+5g59KK9fowaNS5BcZfXsA6UDCCCY+O8rYjRglve25lU WYGKLGD8UAtc+MCFYKro4TOg++n0aDlAgB8ipTZlx0STOTa6PJtS9rbXA0Y6Hw2U a5p4GBSU8W6aMC1mKlS8zDv/tc6yMHopNcEp6t39F2G6fEi1wA/eoOYBhcqN3HFZ hxnCQwY7q47jpFfsUPlWGFbD4Fe7O7XAIqxMa9C7iQi5TTc= -----END CERTIFICATE-----Generated at Tue Oct 28 20:09:25 2025 by rpki-client