$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/sBqC0IaFmFIz7JQkrEFNhDL9lR4.roa File: sBqC0IaFmFIz7JQkrEFNhDL9lR4.roa (raw, json) Hash identifier: vWuOYv7J9M9j0jpbj9B83PJZuyhD9ScXXvle6tmM8XI= Subject key identifier: B0:1A:82:D0:86:85:98:52:33:EC:94:24:AC:41:4D:84:32:FD:95:1E Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05 Certificate serial: 0E1B Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/sBqC0IaFmFIz7JQkrEFNhDL9lR4.roa Signing time: Thu 23 Oct 2025 06:52:40 +0000 ROA not before: Thu 23 Oct 2025 06:52:40 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131149 IP address blocks: 223.26.6.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Nov 2025 02:29:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3611 (0xe1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05 Validity Not Before: Oct 23 06:52:40 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B01A82D08685985233EC9424AC414D8432FD951E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:d1:b3:40:07:70:7b:75:86:48:df:7f:73:3e: 1e:71:15:51:36:de:16:34:65:dd:2e:d3:09:4c:c6: d7:90:ef:4c:59:00:7d:b9:e4:bc:c9:c4:dd:79:f7: a5:65:93:98:1e:04:bf:7e:3b:95:d8:15:e8:27:fa: c4:0f:06:21:c7:d2:19:c8:32:3f:a8:6c:6e:25:1c: cc:1f:59:a2:c5:8c:d1:b6:f4:4a:c1:e6:4c:a5:c2: b1:e6:5f:b7:29:94:c4:de:ba:8d:05:fb:a4:8b:ad: 2b:bf:c1:e4:c0:54:bc:6b:d2:54:cf:28:9d:9f:6b: 0f:15:f2:f7:e3:4d:05:17:a9:51:70:65:cc:c0:4a: 9c:69:13:44:85:4f:c8:8e:68:c7:95:61:a6:a8:8a: d1:e9:3f:37:46:44:cf:25:aa:c7:e4:97:4c:3f:a5: a9:31:22:61:f0:ea:ca:9d:85:0f:63:15:6c:a2:bc: 65:6f:d4:18:f2:8e:5b:5e:82:40:6f:2c:6f:8d:67: 20:90:3c:5c:e5:19:0f:85:ff:b4:53:3d:ba:2b:be: 43:9e:52:bb:41:40:be:a0:7d:c2:95:88:38:67:ef: 2f:c9:5b:86:26:8e:01:e7:d7:9e:43:43:03:77:67: b4:28:11:ab:c1:4c:a7:e0:b2:07:b4:11:c2:44:56: cb:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:1A:82:D0:86:85:98:52:33:EC:94:24:AC:41:4D:84:32:FD:95:1E X509v3 Authority Key Identifier: keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/sBqC0IaFmFIz7JQkrEFNhDL9lR4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.26.6.0/23 Signature Algorithm: sha256WithRSAEncryption 9c:d9:aa:95:16:8c:3f:db:04:ba:e7:17:de:ee:6e:e9:d0:19: bb:9a:f3:10:98:f1:0f:5b:e0:1e:f2:c2:86:a5:60:c0:35:65: 6a:cb:9e:f2:1f:26:2b:3b:33:f7:ba:44:04:9c:cf:df:c5:ab: 3b:29:1d:b3:30:1e:93:31:75:28:61:e0:9b:84:50:19:10:b4: 15:d2:60:31:a7:dd:d5:4b:98:17:43:73:e1:d0:43:2e:37:f4: 3b:fe:3a:84:39:ac:1d:29:0c:ef:c0:b2:58:ee:81:32:60:4b: 44:7a:95:b0:25:36:c7:e2:13:f1:63:44:0a:35:c5:24:0a:c6: e3:99:da:98:da:f2:68:85:da:bf:40:4e:d1:31:16:cc:36:8c: 48:ec:28:66:b3:c2:f1:79:aa:40:75:48:96:2c:94:ea:c1:42: 42:32:49:5c:a4:82:85:3c:3c:9f:8b:12:70:97:72:ae:ce:6b: 92:1f:4a:66:1c:6d:73:42:8e:06:23:e4:2a:b7:90:83:a5:47: 04:b8:6f:05:fd:59:80:06:84:22:ce:a6:69:b5:93:27:b0:69: d8:56:f0:a1:aa:06:13:fb:2a:11:7d:39:52:04:76:ba:0f:2c: a7:bc:75:7a:d1:b7:85:35:0f:74:c7:b1:7e:74:91:38:c9:d9: 10:90:01:8f -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDhswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODdB NEFGRDlFN0ZDMUZFRDRGOTU0NURFNDFDRTQ0MTNEQUNCMEUwNTAeFw0yNTEwMjMw NjUyNDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEIwMUE4MkQwODY4NTk4 NTIzM0VDOTQyNEFDNDE0RDg0MzJGRDk1MUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDb0bNAB3B7dYZI339zPh5xFVE23hY0Zd0u0wlMxteQ70xZAH25 5LzJxN1596Vlk5geBL9+O5XYFegn+sQPBiHH0hnIMj+obG4lHMwfWaLFjNG29ErB 5kylwrHmX7cplMTeuo0F+6SLrSu/weTAVLxr0lTPKJ2faw8V8vfjTQUXqVFwZczA SpxpE0SFT8iOaMeVYaaoitHpPzdGRM8lqsfkl0w/pakxImHw6sqdhQ9jFWyivGVv 1BjyjltegkBvLG+NZyCQPFzlGQ+F/7RTPborvkOeUrtBQL6gfcKViDhn7y/JW4Ym jgHn155DQwN3Z7QoEavBTKfgsge0EcJEVsvfAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUsBqC0IaFmFIz7JQkrEFNhDL9lR4wHwYDVR0jBBgwFoAUh6Sv2ef8H+1PlUXe Qc5EE9rLDgUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWVVBTkpI RU4vaDZTdjJlZjhILTFQbFVYZVFjNUVFOXJMRGdVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9oNlN2MmVmOEgtMVBsVVhlUWM1RUU5ckxEZ1UuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ZVUFOSkhFTi9zQnFDMElhRm1GSXo3 SlFrckVGTmhETDlsUjQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQB3xoGMA0GCSqGSIb3DQEBCwUAA4IBAQCc2aqVFow/2wS65xfe7m7p0Bm7mvMQ mPEPW+Ae8sKGpWDANWVqy57yHyYrOzP3ukQEnM/fxas7KR2zMB6TMXUoYeCbhFAZ ELQV0mAxp93VS5gXQ3Ph0EMuN/Q7/jqEOawdKQzvwLJY7oEyYEtEepWwJTbH4hPx Y0QKNcUkCsbjmdqY2vJohdq/QE7RMRbMNoxI7Chms8LxeapAdUiWLJTqwUJCMklc pIKFPDyfixJwl3KuzmuSH0pmHG1zQo4GI+Qqt5CDpUcEuG8F/VmABoQizqZptZMn sGnYVvChqgYT+yoRfTlSBHa6DyynvHV60beFNQ90x7F+dJE4ydkQkAGP -----END CERTIFICATE-----Generated at Mon Nov 3 23:15:55 2025 by rpki-client