$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/qiVREO8yx4XRDKb3jtJiGN7C9lU.roa File: qiVREO8yx4XRDKb3jtJiGN7C9lU.roa (raw, json) Hash identifier: 6+rIhtnl5zgQPi3KWYUxtuPLFfq5UCLqmQ3T0RLII/A= Subject key identifier: AA:25:51:10:EF:32:C7:85:D1:0C:A6:F7:8E:D2:62:18:DE:C2:F6:55 Certificate issuer: /CN=70642125FDF902365B240CA4022802132FDC1C15 Certificate serial: 44 Authority key identifier: 70:64:21:25:FD:F9:02:36:5B:24:0C:A4:02:28:02:13:2F:DC:1C:15 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/cGQhJf35AjZbJAykAigCEy_cHBU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/qiVREO8yx4XRDKb3jtJiGN7C9lU.roa Signing time: Tue 24 Feb 2026 09:32:16 +0000 ROA not before: Tue 24 Feb 2026 09:32:16 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131653 IP address blocks: 2402:4d20::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/cGQhJf35AjZbJAykAigCEy_cHBU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/cGQhJf35AjZbJAykAigCEy_cHBU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/cGQhJf35AjZbJAykAigCEy_cHBU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Mar 2026 10:54:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68 (0x44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70642125FDF902365B240CA4022802132FDC1C15 Validity Not Before: Feb 24 09:32:16 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=AA255110EF32C785D10CA6F78ED26218DEC2F655 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:32:a7:ed:60:87:93:48:4d:e5:f3:3e:2e:3b: f9:81:a2:e0:68:b5:bb:10:94:05:f9:84:2d:df:7e: 69:0e:e6:4c:d6:03:c6:a4:94:d2:67:43:0c:da:67: c0:27:e3:1f:fa:2d:df:64:ec:36:25:2b:56:66:45: 08:92:9a:9d:e4:62:87:35:8d:2b:42:b1:e3:83:57: 87:c9:a6:d2:08:d7:4b:76:bd:20:ef:bb:95:8e:4d: 3c:bb:7f:ea:fa:56:b1:a1:7c:50:26:4d:3b:e7:f9: b5:93:5b:25:ad:53:f5:d1:0f:55:0a:1c:41:4f:ea: 88:99:c3:86:a7:cc:38:1b:74:26:32:b2:f7:b5:84: 2e:1c:3f:45:f5:99:a1:43:51:b4:2d:e1:70:ca:ef: 2c:6d:24:c4:f6:f6:18:2f:fc:46:13:26:cf:5a:eb: 20:01:30:e3:c8:2a:d1:4f:c9:23:de:3b:23:ef:24: 92:51:8b:1c:e6:50:5a:b0:1e:04:b3:ca:54:1d:f2: 6f:3f:43:7e:9c:e0:f9:ff:8a:e3:17:c5:02:0c:15: b4:ae:3a:1a:19:80:fd:3a:75:18:9f:70:26:2f:87: a4:27:61:17:c2:34:a6:97:cb:87:31:ce:55:4a:34: 41:19:88:ab:30:37:d8:99:01:f1:cc:ea:26:25:f3: 33:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:25:51:10:EF:32:C7:85:D1:0C:A6:F7:8E:D2:62:18:DE:C2:F6:55 X509v3 Authority Key Identifier: keyid:70:64:21:25:FD:F9:02:36:5B:24:0C:A4:02:28:02:13:2F:DC:1C:15 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/cGQhJf35AjZbJAykAigCEy_cHBU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/cGQhJf35AjZbJAykAigCEy_cHBU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/qiVREO8yx4XRDKb3jtJiGN7C9lU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2402:4d20::/32 Signature Algorithm: sha256WithRSAEncryption 5d:c2:c8:9f:de:fe:3a:9f:d6:a2:ad:91:0f:a6:0d:da:6b:9c: c5:fe:fc:3b:7e:92:c1:f7:99:6d:31:8e:16:f7:90:51:c4:f4: 6d:e2:1e:aa:d2:eb:ac:d8:06:e3:a0:b5:3c:a8:97:65:f4:64: fe:1e:80:0e:89:7e:9e:2c:94:bc:5d:97:1e:65:d7:fd:4e:21: d7:0d:34:94:6a:fb:dd:03:1c:f1:0e:da:26:76:70:80:ae:5f: 39:43:82:0d:42:e7:e4:e4:fb:87:6c:f3:7f:da:63:83:77:fc: 0a:a7:33:34:34:0b:80:5c:a9:4c:e4:9d:f3:60:39:37:08:74: 85:17:ea:6c:58:20:03:79:5d:c2:1e:8c:0d:a8:ff:d5:e5:59: 1e:c1:51:8a:22:83:b8:98:6c:6f:b7:42:80:95:54:d6:4d:92: 1e:bf:0e:6f:31:2e:d3:af:ef:b2:7f:db:5b:44:14:2e:d2:b4: ea:f3:84:fc:39:27:c2:46:c6:2d:10:e6:eb:f6:ce:99:ef:6c: 67:d3:33:12:f0:82:18:13:df:4b:f0:dc:b5:c9:c8:90:6e:1c: 32:c4:fe:3c:74:00:84:54:cf:1b:c9:90:b9:5a:0a:79:20:67: 76:f7:18:ac:1b:43:b4:e5:52:1c:4c:2c:cb:48:45:c7:01:9d: a2:12:2f:d8 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgIBRDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3MDY0 MjEyNUZERjkwMjM2NUIyNDBDQTQwMjI4MDIxMzJGREMxQzE1MB4XDTI2MDIyNDA5 MzIxNloXDTI2MDgyMjA4MTQyOFowMzExMC8GA1UEAxMoQUEyNTUxMTBFRjMyQzc4 NUQxMENBNkY3OEVEMjYyMThERUMyRjY1NTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANkyp+1gh5NITeXzPi47+YGi4Gi1uxCUBfmELd9+aQ7mTNYDxqSU 0mdDDNpnwCfjH/ot32TsNiUrVmZFCJKaneRihzWNK0Kx44NXh8mm0gjXS3a9IO+7 lY5NPLt/6vpWsaF8UCZNO+f5tZNbJa1T9dEPVQocQU/qiJnDhqfMOBt0JjKy97WE Lhw/RfWZoUNRtC3hcMrvLG0kxPb2GC/8RhMmz1rrIAEw48gq0U/JI947I+8kklGL HOZQWrAeBLPKVB3ybz9Dfpzg+f+K4xfFAgwVtK46GhmA/Tp1GJ9wJi+HpCdhF8I0 ppfLhzHOVUo0QRmIqzA32JkB8czqJiXzMz8CAwEAAaOCAfUwggHxMB0GA1UdDgQW BBSqJVEQ7zLHhdEMpveO0mIY3sL2VTAfBgNVHSMEGDAWgBRwZCEl/fkCNlskDKQC KAITL9wcFTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF8GA1UdHwRYMFYwVKBS oFCGTnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DTE9VREJB U0UvY0dRaEpmMzVBalpiSkF5a0FpZ0NFeV9jSEJVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9jR1FoSmYzNUFqWmJKQXlrQWlnQ0V5X2NIQlUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBnwYIKwYBBQUHAQsEgZIwgY8wWgYIKwYBBQUHMAuGTnJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DTE9VREJBU0UvcWlWUkVPOHl4NFhS REtiM2p0SmlHTjdDOWxVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3 bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIw BwMFACQCTSAwDQYJKoZIhvcNAQELBQADggEBAF3CyJ/e/jqf1qKtkQ+mDdprnMX+ /Dt+ksH3mW0xjhb3kFHE9G3iHqrS66zYBuOgtTyol2X0ZP4egA6Jfp4slLxdlx5l 1/1OIdcNNJRq+90DHPEO2iZ2cICuXzlDgg1C5+Tk+4ds83/aY4N3/AqnMzQ0C4Bc qUzknfNgOTcIdIUX6mxYIAN5XcIejA2o/9XlWR7BUYoig7iYbG+3QoCVVNZNkh6/ Dm8xLtOv77J/21tEFC7StOrzhPw5J8JGxi0Q5uv2zpnvbGfTMxLwghgT30vw3LXJ yJBuHDLE/jx0AIRUzxvJkLlaCnkgZ3b3GKwbQ7TlUhxMLMtIRccBnaISL9g= -----END CERTIFICATE-----Generated at Mon Mar 2 09:36:02 2026 by rpki-client