$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/ZAiGeVD6b-J66tqwkFsZu7Vj4os.roa File: ZAiGeVD6b-J66tqwkFsZu7Vj4os.roa (raw, json) Hash identifier: X0Wzw79OqatqPrnFcGfAjOJKu6KRgTGGpZArjlzvW0g= Subject key identifier: 64:08:86:79:50:FA:6F:E2:7A:EA:DA:B0:90:5B:19:BB:B5:63:E2:8B Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Certificate serial: 146F Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/ZAiGeVD6b-J66tqwkFsZu7Vj4os.roa Signing time: Fri 22 Aug 2025 08:51:30 +0000 ROA not before: Fri 22 Aug 2025 08:51:30 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 16509 IP address blocks: 2001:dc1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 07:56:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5231 (0x146f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Validity Not Before: Aug 22 08:51:30 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=6408867950FA6FE27AEADAB0905B19BBB563E28B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:24:48:f8:56:c3:15:9a:7f:04:c2:75:f2:12: 3f:8a:3c:b7:6f:1f:89:00:fc:82:c8:dd:a8:d2:96: 0b:f7:33:9b:54:ed:05:55:61:19:08:33:0a:d7:28: e2:c0:3d:ff:a9:ce:e0:96:3f:6e:ae:d3:04:7b:c0: 0d:d1:c9:9f:fd:74:86:51:25:e3:65:fc:7d:c4:b1: f4:7d:d1:fc:30:2b:2c:e9:05:e6:1d:d3:44:b7:e5: b3:e4:38:a9:27:8d:c0:97:46:40:b8:de:ad:50:0e: 4f:c7:d5:5e:56:62:aa:90:5b:d6:fc:65:33:73:d9: e5:c2:d0:f7:d7:8d:18:cd:04:37:63:f6:ad:11:ab: 87:16:d2:4b:30:bf:0d:b8:44:74:47:06:03:e2:f9: d1:e8:a6:a5:fb:44:d9:d5:db:69:48:d2:c4:8a:8f: 19:d3:a5:62:18:83:37:2c:f0:03:27:e5:4d:d7:15: 4f:a2:5f:52:c9:32:6d:a3:8d:51:03:ca:70:bc:5c: 72:df:b1:1b:8c:6b:81:0d:5a:20:ef:34:87:83:6f: 5a:f3:e9:8b:8c:84:51:c1:1e:20:7a:ea:a6:eb:2b: 0b:f8:46:0d:0e:4b:f4:8d:b7:9f:f2:12:39:9b:1c: 61:58:57:6d:0f:3a:20:d5:7c:0d:3b:20:66:f0:38: ce:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:08:86:79:50:FA:6F:E2:7A:EA:DA:B0:90:5B:19:BB:B5:63:E2:8B X509v3 Authority Key Identifier: keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/ZAiGeVD6b-J66tqwkFsZu7Vj4os.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:dc1::/48 Signature Algorithm: sha256WithRSAEncryption 87:4b:21:53:d7:a3:1b:67:31:79:49:bd:25:0d:33:2e:31:6b: f9:2c:a2:a9:cb:3e:d0:f8:e9:8f:b9:60:34:7d:dc:ce:85:69: 7e:09:54:b3:03:37:d0:65:85:bb:ee:96:d6:76:4f:01:03:ee: 6d:83:25:f7:b6:6f:70:ee:17:f9:3d:01:cf:a5:c3:1d:e1:3b: 59:16:b9:91:3c:e2:f9:6e:33:14:4d:2d:89:68:55:65:b5:1c: cf:6c:ac:8d:c1:82:e6:10:c6:7e:43:e8:8d:0f:4d:fb:e9:1d: c5:5b:22:09:d2:0a:10:b7:31:4f:1f:8f:43:04:6a:c1:d9:44: 1f:83:b4:32:3f:d9:64:c9:05:fd:68:2b:b8:aa:e8:f2:47:7f: 80:b3:25:a2:c2:33:54:02:c2:31:0a:89:eb:11:92:27:a4:7b: 58:61:ce:2d:68:02:3e:1c:25:89:62:1d:6a:f5:cd:06:5a:81: 77:75:e1:c4:eb:09:93:d9:52:be:1f:ce:28:61:4b:90:af:d2: ec:8f:d9:68:85:de:b4:9f:76:f1:c1:b2:09:5c:11:f6:b6:51: 3c:a9:15:1a:29:7d:73:29:bf:91:9e:94:f1:bf:6c:e4:18:cd: 2b:d3:26:b7:6f:ed:6d:64:0d:69:6c:aa:6d:b4:66:ac:f0:f9: 9a:1e:e4:26 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICFG8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yNTA4MjIw ODUxMzBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDY0MDg4Njc5NTBGQTZG RTI3QUVBREFCMDkwNUIxOUJCQjU2M0UyOEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTJEj4VsMVmn8EwnXyEj+KPLdvH4kA/ILI3ajSlgv3M5tU7QVV YRkIMwrXKOLAPf+pzuCWP26u0wR7wA3RyZ/9dIZRJeNl/H3EsfR90fwwKyzpBeYd 00S35bPkOKknjcCXRkC43q1QDk/H1V5WYqqQW9b8ZTNz2eXC0PfXjRjNBDdj9q0R q4cW0kswvw24RHRHBgPi+dHopqX7RNnV22lI0sSKjxnTpWIYgzcs8AMn5U3XFU+i X1LJMm2jjVEDynC8XHLfsRuMa4ENWiDvNIeDb1rz6YuMhFHBHiB66qbrKwv4Rg0O S/SNt5/yEjmbHGFYV20POiDVfA07IGbwOM7nAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUZAiGeVD6b+J66tqwkFsZu7Vj4oswHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0 p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy9aQWlHZVZENmItSjY2dHF3a0Zz WnU3Vmo0b3Mucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN wQAAMA0GCSqGSIb3DQEBCwUAA4IBAQCHSyFT16MbZzF5Sb0lDTMuMWv5LKKpyz7Q +OmPuWA0fdzOhWl+CVSzAzfQZYW77pbWdk8BA+5tgyX3tm9w7hf5PQHPpcMd4TtZ FrmRPOL5bjMUTS2JaFVltRzPbKyNwYLmEMZ+Q+iND0376R3FWyIJ0goQtzFPH49D BGrB2UQfg7QyP9lkyQX9aCu4qujyR3+AsyWiwjNUAsIxConrEZInpHtYYc4taAI+ HCWJYh1q9c0GWoF3deHE6wmT2VK+H84oYUuQr9Lsj9lohd60n3bxwbIJXBH2tlE8 qRUaKX1zKb+RnpTxv2zkGM0r0ya3b+1tZA1pbKpttGas8PmaHuQm -----END CERTIFICATE-----Generated at Fri Oct 24 06:43:28 2025 by rpki-client