$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/MN9k3dz2SzCuiuHOFEhCTbRwV9o.roa File: MN9k3dz2SzCuiuHOFEhCTbRwV9o.roa (raw, json) Hash identifier: Ez+MWT+RjDLXdx4nZ+Pv+Qt64L+ezaSws0tXCAI+2pw= Subject key identifier: 30:DF:64:DD:DC:F6:4B:30:AE:8A:E1:CE:14:48:42:4D:B4:70:57:DA Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 13B0 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/MN9k3dz2SzCuiuHOFEhCTbRwV9o.roa Signing time: Fri 22 Aug 2025 08:59:36 +0000 ROA not before: Fri 22 Aug 2025 08:59:36 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17709 IP address blocks: 210.85.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 01:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5040 (0x13b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 08:59:36 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=30DF64DDDCF64B30AE8AE1CE1448424DB47057DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:72:d4:fd:60:00:c9:9f:1b:5a:54:a2:9e:50: ea:fd:f8:48:d6:ff:74:33:60:60:d8:86:a8:cd:ef: 5f:02:d2:ad:e4:1d:51:99:10:98:4a:fb:1b:08:3a: 20:3d:13:30:fa:f8:89:bf:e9:07:a3:bb:42:7e:ba: 3d:6f:7d:32:5b:e2:b6:46:4a:aa:c0:27:d2:cb:6a: 1e:0e:cb:f6:f8:e0:3e:69:21:91:89:79:6e:2a:fb: 25:c2:ba:6b:2b:09:d0:ac:04:59:99:65:50:66:14: b5:06:ec:e2:31:38:1c:90:f6:e7:89:7f:ff:a4:4e: 2b:be:b7:d5:53:ae:64:1a:5e:ee:ef:ac:e8:08:c7: 92:0c:bd:fd:f4:cd:52:d2:44:16:f4:ff:ec:83:67: 49:a6:d9:02:ef:15:96:de:05:12:77:5e:e1:2b:6a: fb:e9:dd:cf:76:87:3a:55:6c:77:c5:40:01:de:76: 39:27:da:78:17:38:99:3a:8c:f1:9b:56:76:4f:10: 9b:60:b5:fe:fe:3a:9f:00:86:27:ed:a7:9c:38:22: d7:2a:21:65:c8:20:21:94:78:e0:95:6d:dd:24:1c: 41:20:19:1b:4b:3b:05:72:31:cf:5f:6a:9c:f5:8e: 05:93:cd:da:ea:99:94:54:92:a8:0f:d7:69:ba:31: 00:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:DF:64:DD:DC:F6:4B:30:AE:8A:E1:CE:14:48:42:4D:B4:70:57:DA X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/MN9k3dz2SzCuiuHOFEhCTbRwV9o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.85.0.0/16 Signature Algorithm: sha256WithRSAEncryption 31:5f:0d:1a:5b:32:e1:f8:fc:73:24:e9:03:0b:0b:fb:e1:4f: 6a:49:b2:e2:26:56:00:07:ef:cd:67:2a:c2:01:22:fc:ac:ab: 1d:56:1e:44:6a:d9:7d:4f:1c:0b:dc:88:2f:e4:9b:6d:74:bc: 70:3f:6a:f4:6f:9f:73:bd:03:a4:0d:5f:01:f8:71:33:ac:ac: 3a:08:2c:bd:9c:c8:05:8c:97:1c:77:20:d5:09:0a:37:19:52: 7b:f7:19:e9:58:14:3d:e4:fd:0e:16:32:5d:ad:7e:be:71:85: e0:c4:95:34:90:c2:e6:f8:9e:f9:58:1a:fe:f8:3c:d0:4e:29: fc:e9:fc:1b:b3:15:ac:5e:6b:16:a2:61:22:99:77:b3:f3:e8: 35:bb:62:6c:50:b0:ed:57:ae:96:94:c6:62:e3:97:8d:13:49: 8c:4a:41:da:c4:2d:d5:aa:a4:d9:7c:fd:05:8c:e5:c7:91:9f: 3b:05:f1:d0:4e:22:f3:f9:0f:83:f6:82:08:4c:48:32:3b:ed: 72:8b:1a:6d:18:26:f0:4f:2f:58:8c:5a:13:9d:38:cd:2a:e0: 0b:a9:fa:fc:49:4d:4e:7b:3f:23:99:b3:da:18:8e:0a:ea:41: 5d:e9:1b:af:4a:5c:1f:6f:fb:c9:fd:43:85:ae:7c:7e:22:cc: ce:2b:a9:75 -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICE7AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw ODU5MzZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDMwREY2NERERENGNjRC MzBBRThBRTFDRTE0NDg0MjREQjQ3MDU3REEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGctT9YADJnxtaVKKeUOr9+EjW/3QzYGDYhqjN718C0q3kHVGZ EJhK+xsIOiA9EzD6+Im/6Qeju0J+uj1vfTJb4rZGSqrAJ9LLah4Oy/b44D5pIZGJ eW4q+yXCumsrCdCsBFmZZVBmFLUG7OIxOByQ9ueJf/+kTiu+t9VTrmQaXu7vrOgI x5IMvf30zVLSRBb0/+yDZ0mm2QLvFZbeBRJ3XuEravvp3c92hzpVbHfFQAHedjkn 2ngXOJk6jPGbVnZPEJtgtf7+Op8Ahiftp5w4ItcqIWXIICGUeOCVbd0kHEEgGRtL OwVyMc9fapz1jgWTzdrqmZRUkqgP12m6MQDXAgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQUMN9k3dz2SzCuiuHOFEhCTbRwV9owHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL01OOWszZHoyU3pDdWl1SE9GRWhDVGJS d1Y5by5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwDSVTANBgkq hkiG9w0BAQsFAAOCAQEAMV8NGlsy4fj8cyTpAwsL++FPakmy4iZWAAfvzWcqwgEi /KyrHVYeRGrZfU8cC9yIL+SbbXS8cD9q9G+fc70DpA1fAfhxM6ysOggsvZzIBYyX HHcg1QkKNxlSe/cZ6VgUPeT9DhYyXa1+vnGF4MSVNJDC5vie+Vga/vg80E4p/On8 G7MVrF5rFqJhIpl3s/PoNbtibFCw7VeulpTGYuOXjRNJjEpB2sQt1aqk2Xz9BYzl x5GfOwXx0E4i8/kPg/aCCExIMjvtcosabRgm8E8vWIxaE504zSrgC6n6/ElNTns/ I5mz2hiOCupBXekbr0pcH2/7yf1Dha58fiLMziupdQ== -----END CERTIFICATE-----Generated at Wed Nov 5 21:45:04 2025 by rpki-client