$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/k7hnYzXnGd57Oz5CYYyT1FlLj2Q.roa File: k7hnYzXnGd57Oz5CYYyT1FlLj2Q.roa (raw, json) Hash identifier: 8pGL6RMGGVLwa2b/4C9unxlRhBIVQdeIWkrYYeZXDFI= Subject key identifier: 93:B8:67:63:35:E7:19:DE:7B:3B:3E:42:61:8C:93:D4:59:4B:8F:64 Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB Certificate serial: 0E26 Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/k7hnYzXnGd57Oz5CYYyT1FlLj2Q.roa Signing time: Fri 22 Aug 2025 08:51:58 +0000 ROA not before: Fri 22 Aug 2025 08:51:58 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18046 IP address blocks: 116.50.32.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 06:29:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3622 (0xe26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB Validity Not Before: Aug 22 08:51:58 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=93B8676335E719DE7B3B3E42618C93D4594B8F64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:0e:ef:e7:64:3e:f9:31:6e:de:58:3c:aa:c8: 03:40:b4:59:bd:14:64:61:6d:51:1b:0d:64:9c:79: 43:c9:84:35:32:a7:17:b9:6f:d3:d9:86:d5:de:9e: 39:a6:07:28:af:8b:8b:75:b4:b0:af:b6:6f:74:be: 3e:c4:1f:ea:fc:66:4f:b9:e1:4d:7a:dd:94:39:3e: 33:d4:28:17:01:d1:9b:4c:24:2e:54:69:8e:46:31: 8d:95:05:9a:fa:e4:2f:92:63:d1:9d:61:2d:3d:63: 6c:6e:af:35:82:e6:1a:45:ba:46:0c:5a:69:36:37: 92:df:ef:05:41:51:19:60:2e:6f:ca:4d:f2:df:6d: 07:a7:bb:3f:1f:7f:0b:b9:5d:c8:08:f4:07:e8:10: 6e:e0:2c:93:c7:84:68:8e:f1:c1:a2:b2:85:7e:36: f1:71:48:19:eb:a7:70:a4:ef:98:2e:78:b9:73:61: 85:3a:ab:96:3a:e4:c3:54:1c:a0:ce:c2:33:5c:e4: 1a:80:9f:c6:6f:d4:64:40:04:89:c3:5e:98:17:74: 42:87:72:13:f3:7c:a7:fd:98:1e:47:47:b2:d6:93: e9:71:43:a8:ab:db:b7:d2:fd:af:f1:9d:6a:c7:a4: f9:76:27:be:45:b2:93:9d:63:c7:53:bc:25:67:2c: 95:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:B8:67:63:35:E7:19:DE:7B:3B:3E:42:61:8C:93:D4:59:4B:8F:64 X509v3 Authority Key Identifier: keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/k7hnYzXnGd57Oz5CYYyT1FlLj2Q.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 116.50.32.0/20 Signature Algorithm: sha256WithRSAEncryption 56:23:3b:bb:2f:77:0b:cf:50:55:f7:ed:e5:19:5b:00:62:e5: cb:8b:e3:4e:45:94:6b:67:b5:78:8c:ed:e5:46:eb:d3:2a:f7: c6:21:84:42:ed:6c:97:5e:1f:ad:ae:ba:7e:22:d5:01:a7:1b: d6:0f:24:cd:67:4c:10:e1:3a:4b:f1:5d:9b:33:5f:d5:31:fe: b9:79:2d:3b:bb:21:41:72:6d:1b:7d:2f:70:fc:9f:b5:73:5d: cd:e6:fa:f4:25:0e:3a:a4:fb:8c:85:f8:f5:c7:23:9f:6f:76: e9:a2:e6:a6:bd:3f:91:83:cc:df:68:b1:a7:75:a6:b1:eb:63: 66:fb:89:38:bd:45:1f:ba:dc:0d:ec:cc:4e:62:4f:e9:17:08: 87:ac:70:34:63:17:fd:65:69:77:8e:34:0d:af:c9:c8:5a:6c: e7:c6:23:14:c4:29:b3:ea:2f:53:6d:a2:f9:6b:d0:9b:93:5f: 6a:44:a8:23:2e:2b:ec:fc:51:0f:29:55:bd:c1:13:ae:df:57: 22:0b:a5:c6:a3:e9:b0:86:6b:36:5a:17:9f:21:db:cf:e4:35: 84:54:b6:a3:75:d5:32:a4:13:62:d8:36:6a:88:02:f5:f0:81: dd:4f:20:26:b2:35:6c:bc:54:d5:b3:75:75:6c:26:e7:c2:a3: f1:a9:0b:55 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDiYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEM3 ODk2MTY0MkEwNEJFMTMyNzA4REIxOTNEN0JBOTE2QjJCNjdDQjAeFw0yNTA4MjIw ODUxNThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDkzQjg2NzYzMzVFNzE5 REU3QjNCM0U0MjYxOEM5M0Q0NTk0QjhGNjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtDu/nZD75MW7eWDyqyANAtFm9FGRhbVEbDWSceUPJhDUypxe5 b9PZhtXenjmmByivi4t1tLCvtm90vj7EH+r8Zk+54U163ZQ5PjPUKBcB0ZtMJC5U aY5GMY2VBZr65C+SY9GdYS09Y2xurzWC5hpFukYMWmk2N5Lf7wVBURlgLm/KTfLf bQenuz8ffwu5XcgI9AfoEG7gLJPHhGiO8cGisoV+NvFxSBnrp3Ck75gueLlzYYU6 q5Y65MNUHKDOwjNc5BqAn8Zv1GRABInDXpgXdEKHchPzfKf9mB5HR7LWk+lxQ6ir 27fS/a/xnWrHpPl2J75FspOdY8dTvCVnLJUtAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUk7hnYzXnGd57Oz5CYYyT1FlLj2QwHwYDVR0jBBgwFoAUDHiWFkKgS+EycI2x k9e6kWsrZ8swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE9OR0ZP TkcvREhpV0ZrS2dTLUV5Y0kyeGs5ZTZrV3NyWjhzLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9ESGlXRmtLZ1MtRXljSTJ4azllNmtXc3JaOHMuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ET05HRk9ORy9rN2huWXpYbkdkNTdP ejVDWVl5VDFGbExqMlEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQEdDIgMA0GCSqGSIb3DQEBCwUAA4IBAQBWIzu7L3cLz1BV9+3lGVsAYuXLi+NO RZRrZ7V4jO3lRuvTKvfGIYRC7WyXXh+trrp+ItUBpxvWDyTNZ0wQ4TpL8V2bM1/V Mf65eS07uyFBcm0bfS9w/J+1c13N5vr0JQ46pPuMhfj1xyOfb3bpouamvT+Rg8zf aLGndaax62Nm+4k4vUUfutwN7MxOYk/pFwiHrHA0Yxf9ZWl3jjQNr8nIWmznxiMU xCmz6i9TbaL5a9Cbk19qRKgjLivs/FEPKVW9wROu31ciC6XGo+mwhms2WhefIdvP 5DWEVLajddUypBNi2DZqiAL18IHdTyAmsjVsvFTVs3V1bCbnwqPxqQtV -----END CERTIFICATE-----Generated at Wed Nov 5 04:40:59 2025 by rpki-client