$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/O7EZ6j9V8cFiV9bX-EKBNkNR4Z0.roa File: O7EZ6j9V8cFiV9bX-EKBNkNR4Z0.roa (raw, json) Hash identifier: 6gvliBqdvkpnm0vNb3P2yjHmVmhuLehtXWxM0187/5s= Subject key identifier: 3B:B1:19:EA:3F:55:F1:C1:62:57:D6:D7:F8:42:81:36:43:51:E1:9D Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Certificate serial: 1478 Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/O7EZ6j9V8cFiV9bX-EKBNkNR4Z0.roa Signing time: Fri 22 Aug 2025 08:51:32 +0000 ROA not before: Fri 22 Aug 2025 08:51:32 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 14618 IP address blocks: 2001:dc1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 10:16:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5240 (0x1478) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Validity Not Before: Aug 22 08:51:32 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=3BB119EA3F55F1C16257D6D7F84281364351E19D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:6e:36:45:44:af:4d:69:3a:f4:b5:8a:84:80: cf:29:6e:03:87:d1:53:62:4c:c4:e3:9f:fa:b1:52: d1:a7:77:5d:0c:16:22:dd:de:21:6b:4e:fa:cf:26: ea:ff:51:1a:5c:3f:ff:4c:8d:84:79:9c:20:6c:82: 6f:7d:c9:76:cf:ba:5d:6e:61:9f:c0:91:ff:7b:a1: 5a:bf:c8:74:b1:c5:93:74:33:42:32:30:0a:9d:d7: 86:54:02:65:91:04:1f:ae:48:ae:77:ed:34:1d:72: e5:6a:79:75:35:cb:a3:aa:0e:dc:e2:3e:eb:0c:f8: a4:5a:11:2d:1a:16:9b:eb:4a:9b:73:8e:d7:a6:62: 8a:a0:8a:76:5b:a4:23:78:6f:c2:4d:58:d8:92:dc: 5c:8c:37:8f:82:c9:1a:cd:49:70:b6:8a:72:31:38: 62:88:65:b0:e9:d6:f2:0d:70:64:1e:d0:a5:10:bf: 26:e0:95:9d:fa:e1:7d:23:24:06:c7:07:e7:da:b8: 43:c9:66:a9:9a:a5:b2:e1:50:86:43:b1:e4:23:0a: d4:dc:34:0a:ce:a2:3e:13:7c:fa:29:e2:50:dc:8d: 76:11:c7:70:bb:98:2e:5a:0c:be:34:1c:8b:84:b1: ba:66:e4:8a:0e:d3:ac:2f:68:2c:bc:04:9d:7b:79: 2c:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:B1:19:EA:3F:55:F1:C1:62:57:D6:D7:F8:42:81:36:43:51:E1:9D X509v3 Authority Key Identifier: keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/O7EZ6j9V8cFiV9bX-EKBNkNR4Z0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:dc1::/48 Signature Algorithm: sha256WithRSAEncryption b8:d7:d4:3e:ba:e1:e7:3a:c2:58:a5:ce:1f:66:3c:56:99:de: bc:61:96:b4:2d:87:96:2e:4b:45:04:33:21:cb:18:82:46:5a: eb:00:ab:71:4b:43:97:89:93:9f:ca:bb:c7:a4:5a:99:a9:f3: 75:81:27:48:ee:4a:9e:e0:ee:ef:65:01:93:2e:03:c3:95:9a: 6a:34:4b:1b:99:0d:f1:59:32:50:22:9e:d1:85:96:2e:8d:70: 8e:64:45:65:9d:66:24:2a:be:71:9f:d1:7f:d6:34:ec:c0:34: 75:e5:ae:72:25:e7:fc:a9:21:5a:b6:63:15:c7:76:2f:eb:63: 8c:ea:4f:f6:9d:57:e6:6f:f2:07:d8:49:a2:dd:46:d4:5e:b6: fb:e7:c6:a6:a4:8c:f7:7b:5e:01:e4:a8:54:b0:1b:39:65:3e: a2:09:89:fb:0d:fe:0c:f1:0a:17:fc:0a:0e:6d:43:5f:75:8b: 95:49:4e:09:97:ac:d2:69:d0:6f:cf:8d:1c:42:d4:5d:f3:d9: 50:be:7a:b1:d9:c0:1d:de:44:e0:d4:1c:ce:02:0d:32:26:e5: 88:6a:4d:71:92:59:f9:de:39:55:c3:ee:ee:5f:e8:7b:c6:7e: 55:d4:3d:76:a2:c8:00:52:b8:fe:aa:02:99:60:e5:03:01:eb: 1a:01:8f:bc -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICFHgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yNTA4MjIw ODUxMzJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDNCQjExOUVBM0Y1NUYx QzE2MjU3RDZEN0Y4NDI4MTM2NDM1MUUxOUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDpbjZFRK9NaTr0tYqEgM8pbgOH0VNiTMTjn/qxUtGnd10MFiLd 3iFrTvrPJur/URpcP/9MjYR5nCBsgm99yXbPul1uYZ/Akf97oVq/yHSxxZN0M0Iy MAqd14ZUAmWRBB+uSK537TQdcuVqeXU1y6OqDtziPusM+KRaES0aFpvrSptzjtem YoqginZbpCN4b8JNWNiS3FyMN4+CyRrNSXC2inIxOGKIZbDp1vINcGQe0KUQvybg lZ364X0jJAbHB+fauEPJZqmapbLhUIZDseQjCtTcNArOoj4TfPop4lDcjXYRx3C7 mC5aDL40HIuEsbpm5IoO06wvaCy8BJ17eSxFAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUO7EZ6j9V8cFiV9bX+EKBNkNR4Z0wHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0 p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy9PN0VaNmo5VjhjRmlWOWJYLUVL Qk5rTlI0WjAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN wQAAMA0GCSqGSIb3DQEBCwUAA4IBAQC419Q+uuHnOsJYpc4fZjxWmd68YZa0LYeW LktFBDMhyxiCRlrrAKtxS0OXiZOfyrvHpFqZqfN1gSdI7kqe4O7vZQGTLgPDlZpq NEsbmQ3xWTJQIp7RhZYujXCOZEVlnWYkKr5xn9F/1jTswDR15a5yJef8qSFatmMV x3Yv62OM6k/2nVfmb/IH2Emi3UbUXrb758ampIz3e14B5KhUsBs5ZT6iCYn7Df4M 8QoX/AoObUNfdYuVSU4Jl6zSadBvz40cQtRd89lQvnqx2cAd3kTg1BzOAg0yJuWI ak1xkln53jlVw+7uX+h7xn5V1D12osgAUrj+qgKZYOUDAesaAY+8 -----END CERTIFICATE-----Generated at Sat Sep 6 07:07:23 2025 by rpki-client