$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/yzyNApNJEI49g97BvptpQk2LDZ4.roa File: yzyNApNJEI49g97BvptpQk2LDZ4.roa (raw, json) Hash identifier: TxxKBZ0glxRQ9j0CWLC8FZvuWkUNUyHuLNRZ5LUHCcQ= Subject key identifier: CB:3C:8D:02:93:49:10:8E:3D:83:DE:C1:BE:9B:69:42:4D:8B:0D:9E Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Certificate serial: 1495 Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/yzyNApNJEI49g97BvptpQk2LDZ4.roa Signing time: Tue 16 Sep 2025 07:20:18 +0000 ROA not before: Tue 16 Sep 2025 07:20:18 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 1659 IP address blocks: 2001:de4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 07:56:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5269 (0x1495) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Validity Not Before: Sep 16 07:20:18 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=CB3C8D029349108E3D83DEC1BE9B69424D8B0D9E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:fc:e3:f2:ca:d5:a4:8e:c0:54:38:f7:48:82: 96:76:1b:62:ba:66:ab:dc:a4:c9:a1:59:91:c5:5e: b2:98:30:57:1e:67:b9:e5:32:64:d5:70:ba:05:e3: 0a:41:58:f5:2b:79:43:92:2c:39:e7:cd:e2:f9:13: 7b:4c:e8:2b:fa:06:62:c4:de:2d:8a:5f:13:3d:31: 70:e8:85:a4:3b:d9:82:0d:64:ca:4e:a2:06:23:43: 73:b9:87:71:6d:92:7c:98:0b:c6:11:9d:02:d9:dc: db:da:61:fb:e0:21:b8:0b:ac:92:c6:12:1a:2a:07: 58:b1:0c:06:dc:fd:05:36:8e:5e:3e:60:da:68:ce: 9d:73:a0:d7:c0:3d:de:c8:2d:ef:47:e4:0c:d6:bc: 3c:7e:fb:dd:51:e1:09:ee:42:20:f9:99:6b:99:24: 72:ab:57:7e:64:7a:f4:19:8a:2e:e9:0a:75:77:9d: 76:ca:12:2f:6a:b8:9c:0e:87:e5:5a:8b:ee:7e:05: 56:8f:f6:61:95:23:87:dd:bd:f0:02:36:4b:3d:ae: 52:94:c5:ee:3e:28:9f:9b:44:b9:95:38:ad:14:56: 33:f9:0f:15:30:96:16:a9:67:f5:85:f5:0b:32:41: 76:b5:91:87:fd:0a:44:7b:0e:b0:e8:1c:57:4b:17: 75:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:3C:8D:02:93:49:10:8E:3D:83:DE:C1:BE:9B:69:42:4D:8B:0D:9E X509v3 Authority Key Identifier: keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/yzyNApNJEI49g97BvptpQk2LDZ4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:de4::/48 Signature Algorithm: sha256WithRSAEncryption 0f:28:9b:ff:ac:4d:36:dc:f1:c3:b1:3f:14:c9:c2:f5:ac:db: eb:35:f9:9a:20:b3:29:69:ab:be:f1:95:37:9a:f6:2d:68:ea: 44:82:4a:cf:50:5a:2a:6e:0d:5e:30:25:c2:a4:ef:03:4d:5a: 21:8d:c8:ae:29:a1:10:5b:e8:4a:44:9b:97:7b:3d:c7:5e:0f: 0b:1c:ea:30:08:23:a3:60:4f:d4:b7:fd:96:55:2b:02:80:3b: 12:aa:d1:f4:ca:29:0d:28:24:b9:73:cf:09:08:29:72:31:aa: aa:de:fa:63:fd:44:93:f5:d1:88:9e:b8:80:ab:ad:cb:21:87: ea:e2:85:79:50:a3:f0:66:bb:15:76:a4:4e:88:91:c9:ef:0b: 82:50:dd:c5:e9:a0:da:2e:c0:6b:11:d8:d4:99:91:31:35:a7: e1:a4:41:7e:b8:97:04:02:0f:d0:9e:b7:43:9d:c4:2b:d5:e8: da:4d:85:de:b5:61:c2:54:55:69:e2:40:29:dc:92:ed:5d:a9: ca:74:87:52:97:8c:8d:3b:1c:a3:31:b5:57:e0:91:17:ec:21: 5d:68:1d:46:0f:22:0f:2c:48:d9:66:5e:4a:11:88:c6:5d:7b: f7:80:27:91:64:da:70:06:20:42:aa:88:04:1b:f2:05:11:05: 5c:ff:98:e5 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICFJUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yNTA5MTYw NzIwMThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKENCM0M4RDAyOTM0OTEw OEUzRDgzREVDMUJFOUI2OTQyNEQ4QjBEOUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9/OPyytWkjsBUOPdIgpZ2G2K6ZqvcpMmhWZHFXrKYMFceZ7nl MmTVcLoF4wpBWPUreUOSLDnnzeL5E3tM6Cv6BmLE3i2KXxM9MXDohaQ72YINZMpO ogYjQ3O5h3FtknyYC8YRnQLZ3NvaYfvgIbgLrJLGEhoqB1ixDAbc/QU2jl4+YNpo zp1zoNfAPd7ILe9H5AzWvDx++91R4QnuQiD5mWuZJHKrV35kevQZii7pCnV3nXbK Ei9quJwOh+Vai+5+BVaP9mGVI4fdvfACNks9rlKUxe4+KJ+bRLmVOK0UVjP5DxUw lhapZ/WF9QsyQXa1kYf9CkR7DrDoHFdLF3UpAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUyzyNApNJEI49g97BvptpQk2LDZ4wHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0 p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy95enlOQXBOSkVJNDlnOTdCdnB0 cFFrMkxEWjQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 5AAAMA0GCSqGSIb3DQEBCwUAA4IBAQAPKJv/rE023PHDsT8UycL1rNvrNfmaILMp aau+8ZU3mvYtaOpEgkrPUFoqbg1eMCXCpO8DTVohjciuKaEQW+hKRJuXez3HXg8L HOowCCOjYE/Ut/2WVSsCgDsSqtH0yikNKCS5c88JCClyMaqq3vpj/UST9dGInriA q63LIYfq4oV5UKPwZrsVdqROiJHJ7wuCUN3F6aDaLsBrEdjUmZExNafhpEF+uJcE Ag/QnrdDncQr1ejaTYXetWHCVFVp4kAp3JLtXanKdIdSl4yNOxyjMbVX4JEX7CFd aB1GDyIPLEjZZl5KEYjGXXv3gCeRZNpwBiBCqogEG/IFEQVc/5jl -----END CERTIFICATE-----Generated at Fri Oct 24 06:39:05 2025 by rpki-client