$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/5lDuntK7WIoZk0sgHBscqc9RL6w.roa File: 5lDuntK7WIoZk0sgHBscqc9RL6w.roa (raw, json) Hash identifier: JX4YhXuPQCIu5bsUWEJxrMbMu1FR56LLIvAcdHfMem0= Subject key identifier: E6:50:EE:9E:D2:BB:58:8A:19:93:4B:20:1C:1B:1C:A9:CF:51:2F:AC Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Certificate serial: 146D Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/5lDuntK7WIoZk0sgHBscqc9RL6w.roa Signing time: Fri 22 Aug 2025 08:51:30 +0000 ROA not before: Fri 22 Aug 2025 08:51:30 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131644 IP address blocks: 182.173.8.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 10:16:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5229 (0x146d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Validity Not Before: Aug 22 08:51:30 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E650EE9ED2BB588A19934B201C1B1CA9CF512FAC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:9e:c0:86:13:b5:1a:a0:f7:dc:4f:0b:8b:2f: b6:9e:32:b6:15:c5:f1:bb:48:26:5d:90:28:6f:77: 14:65:ee:cf:d2:76:98:b3:7b:ab:9d:79:7e:09:b4: eb:58:f5:96:e1:a1:fa:ea:2f:d4:44:37:49:9b:e1: ff:30:99:19:fe:1f:10:b9:dc:e3:e5:b2:d0:a1:7e: 71:e2:7c:ee:cf:5e:38:3d:00:6b:4f:09:78:29:9c: cb:f6:32:89:af:ba:21:8a:53:58:7a:c5:81:95:4e: aa:0d:77:d1:29:66:ee:57:63:09:ac:b9:d8:4a:a6: bb:29:3a:dd:b9:31:a4:ba:f6:1b:23:c3:02:c7:24: 25:63:26:2c:9a:ba:47:84:a1:b9:1f:ae:4a:ca:2b: ab:99:f8:b6:4a:c1:e0:26:9f:0c:fe:67:5a:41:9a: 90:60:e3:56:22:7b:7e:22:11:5d:06:de:33:3e:8a: e7:c7:46:43:aa:c4:27:62:3d:27:cb:d4:4a:e2:b5: ea:18:43:d5:fc:79:79:dc:2a:db:6a:13:24:3e:ff: d7:04:65:42:60:85:1a:96:19:d0:e1:6c:eb:53:56: d3:7e:ea:00:50:74:8d:9c:bc:54:26:49:2f:cd:89: c5:f2:76:79:df:51:ac:9b:82:8e:55:bb:c6:c6:c7: 46:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:50:EE:9E:D2:BB:58:8A:19:93:4B:20:1C:1B:1C:A9:CF:51:2F:AC X509v3 Authority Key Identifier: keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/5lDuntK7WIoZk0sgHBscqc9RL6w.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 182.173.8.0/22 Signature Algorithm: sha256WithRSAEncryption 15:ab:4b:7d:3d:07:c6:00:92:7c:a4:a6:c5:bd:59:d2:81:26: 7d:46:e8:f7:f5:52:d4:bd:4b:13:80:93:da:3c:c6:c4:a2:81: 4d:3f:71:14:69:bd:7a:85:2a:a8:ee:4e:20:6a:df:e3:04:a6: 9d:82:78:3f:22:55:09:fd:aa:25:bb:11:bc:9e:f7:cd:1e:9d: 52:bc:6b:9f:e3:5e:47:ef:ca:8a:d0:eb:e9:c8:c8:38:40:4f: 13:39:9f:34:06:c0:6d:2b:5b:cf:55:37:c9:ae:db:96:62:f6: f8:5f:4e:ea:6f:64:d1:4c:81:8d:0a:0b:d7:a2:12:65:a9:18: 84:3f:19:ff:fe:a0:6c:99:df:96:2d:e7:5f:69:2d:ce:ba:f1: 95:2e:25:be:d0:b0:33:67:d0:f3:74:d7:77:50:10:f7:b6:1c: f0:c8:f2:b5:ef:3b:ca:74:ab:b4:95:1e:95:b7:63:c8:44:80: 21:9c:07:ea:3a:9b:08:c4:41:b0:7e:ce:72:e3:19:38:8f:6b: 74:73:12:29:6b:a1:ff:fe:da:03:90:81:a3:a0:0f:2d:46:c0: 1d:87:19:06:67:e7:29:99:5e:e0:f9:44:cd:e9:03:05:2e:de: a8:28:8f:c6:8a:7f:f3:c5:57:24:9c:3c:e6:31:36:98:c3:98: fa:11:3b:f8 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICFG0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yNTA4MjIw ODUxMzBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEU2NTBFRTlFRDJCQjU4 OEExOTkzNEIyMDFDMUIxQ0E5Q0Y1MTJGQUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD2nsCGE7UaoPfcTwuLL7aeMrYVxfG7SCZdkChvdxRl7s/Sdpiz e6udeX4JtOtY9ZbhofrqL9REN0mb4f8wmRn+HxC53OPlstChfnHifO7PXjg9AGtP CXgpnMv2MomvuiGKU1h6xYGVTqoNd9EpZu5XYwmsudhKprspOt25MaS69hsjwwLH JCVjJiyaukeEobkfrkrKK6uZ+LZKweAmnwz+Z1pBmpBg41Yie34iEV0G3jM+iufH RkOqxCdiPSfL1EriteoYQ9X8eXncKttqEyQ+/9cEZUJghRqWGdDhbOtTVtN+6gBQ dI2cvFQmSS/NicXydnnfUaybgo5Vu8bGx0Y3AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU5lDuntK7WIoZk0sgHBscqc9RL6wwHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0 p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy81bER1bnRLN1dJb1prMHNnSEJz Y3FjOVJMNncucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCtq0I MA0GCSqGSIb3DQEBCwUAA4IBAQAVq0t9PQfGAJJ8pKbFvVnSgSZ9Ruj39VLUvUsT gJPaPMbEooFNP3EUab16hSqo7k4gat/jBKadgng/IlUJ/aoluxG8nvfNHp1SvGuf 415H78qK0OvpyMg4QE8TOZ80BsBtK1vPVTfJrtuWYvb4X07qb2TRTIGNCgvXohJl qRiEPxn//qBsmd+WLedfaS3OuvGVLiW+0LAzZ9DzdNd3UBD3thzwyPK17zvKdKu0 lR6Vt2PIRIAhnAfqOpsIxEGwfs5y4xk4j2t0cxIpa6H//toDkIGjoA8tRsAdhxkG Z+cpmV7g+UTN6QMFLt6oKI/Gin/zxVcknDzmMTaYw5j6ETv4 -----END CERTIFICATE-----Generated at Sat Sep 6 07:07:21 2025 by rpki-client