$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/Yu1L7sF_vlWqsXAEBdsKBVDqcM4.roa File: Yu1L7sF_vlWqsXAEBdsKBVDqcM4.roa (raw, json) Hash identifier: n+zekTaw3HeTqUzRjRLzpXHQWiOUyzIoAANV/AQw264= Subject key identifier: 62:ED:4B:EE:C1:7F:BE:55:AA:B1:70:04:05:DB:0A:05:50:EA:70:CE Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1453 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/Yu1L7sF_vlWqsXAEBdsKBVDqcM4.roa Signing time: Fri 22 Aug 2025 09:00:18 +0000 ROA not before: Fri 22 Aug 2025 09:00:18 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9922 IP address blocks: 124.218.68.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 20:59:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5203 (0x1453) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 09:00:18 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=62ED4BEEC17FBE55AAB1700405DB0A0550EA70CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:0b:20:f4:b7:df:7a:fd:a2:f4:d1:59:ec:09: f0:14:c6:5f:0f:09:bf:d3:94:4b:b0:2b:dd:71:40: a9:f7:2d:d1:5d:c7:01:9e:5b:07:72:88:93:f3:32: b4:21:52:4c:a1:67:cd:90:87:df:1d:d6:16:6c:fd: e4:9e:70:6e:f8:1d:ef:d9:75:97:16:b8:72:68:64: e1:53:06:39:9c:d7:d4:51:cb:0c:a1:06:50:9b:1e: 28:6a:45:dc:fb:e1:af:92:dd:11:fc:b0:7c:ea:b6: b7:e7:f1:9b:99:f9:b5:5a:c9:3e:3b:be:63:e0:5c: 68:c7:cd:d2:d3:6a:b1:cc:e4:ea:24:d2:65:0a:14: 11:6c:33:eb:4d:5b:ac:23:c4:cb:de:81:91:21:45: 25:97:23:61:55:f9:39:e5:6c:4b:ff:8f:1e:5b:60: 3a:41:14:7f:f6:6d:5e:44:4b:f4:c4:d0:1e:cd:f0: 03:09:0b:47:5b:9f:f3:36:9d:52:f2:8f:5d:e4:40: 3c:cd:18:b5:7e:4f:8b:6e:62:54:7e:d1:ce:a5:4b: 7b:f9:f6:df:12:9d:2e:32:23:41:7d:7e:16:26:bd: 94:c2:74:79:7f:a4:58:b7:df:b6:bf:6f:76:8a:de: 37:aa:bc:a3:e1:1c:8d:38:91:46:c2:01:f9:da:99: 63:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:ED:4B:EE:C1:7F:BE:55:AA:B1:70:04:05:DB:0A:05:50:EA:70:CE X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/Yu1L7sF_vlWqsXAEBdsKBVDqcM4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.218.68.0/22 Signature Algorithm: sha256WithRSAEncryption 34:42:86:70:55:e9:9a:4d:88:e5:54:84:f3:83:54:a7:da:a4: 11:99:14:b7:1e:82:13:62:04:d8:7e:c5:bf:e0:73:80:5d:0e: a8:da:ac:d5:7d:02:ed:a0:dc:ac:d7:07:0b:57:95:8a:5b:22: ac:6f:18:32:f8:38:05:45:2e:fc:bc:a7:ef:8c:87:b3:5c:8d: 55:a3:3b:58:e7:37:d6:3d:6f:60:82:e0:30:f7:c2:f5:32:91: e4:5b:67:0c:9a:c2:12:22:1b:6e:d2:f6:d7:25:e8:5e:69:a3: 7d:3f:a7:af:f3:78:9b:a2:66:a5:13:88:d6:ce:c0:43:52:58: 75:a5:42:5f:98:3f:8a:23:de:6a:b4:f9:af:d2:7d:b6:4c:aa: 8a:ab:21:37:e1:c5:65:7f:44:62:0b:05:77:a7:20:9e:f4:43: 2a:13:0b:6f:8d:06:45:e1:f1:ee:bc:2b:6a:da:dc:14:2f:88: 86:ec:c1:4d:94:00:e7:bb:40:d6:ce:63:a7:d4:68:da:e7:22: ac:f3:ca:d3:84:66:0b:36:42:7f:36:06:1a:b3:03:f8:6a:78: 01:dc:d1:11:c0:04:de:3c:18:8f:8f:9c:c7:bf:ce:91:55:1c: f2:dc:d7:c0:76:68:d9:48:e9:06:e5:3d:62:a3:ab:55:66:d1: d8:9a:40:5e -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICFFMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw OTAwMThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDYyRUQ0QkVFQzE3RkJF NTVBQUIxNzAwNDA1REIwQTA1NTBFQTcwQ0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYCyD0t996/aL00VnsCfAUxl8PCb/TlEuwK91xQKn3LdFdxwGe WwdyiJPzMrQhUkyhZ82Qh98d1hZs/eSecG74He/ZdZcWuHJoZOFTBjmc19RRywyh BlCbHihqRdz74a+S3RH8sHzqtrfn8ZuZ+bVayT47vmPgXGjHzdLTarHM5Ook0mUK FBFsM+tNW6wjxMvegZEhRSWXI2FV+TnlbEv/jx5bYDpBFH/2bV5ES/TE0B7N8AMJ C0dbn/M2nVLyj13kQDzNGLV+T4tuYlR+0c6lS3v59t8SnS4yI0F9fhYmvZTCdHl/ pFi337a/b3aK3jeqvKPhHI04kUbCAfnamWOXAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUYu1L7sF/vlWqsXAEBdsKBVDqcM4wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1l1MUw3c0ZfdmxXcXNYQUVCZHNLQlZE cWNNNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ82kQwDQYJ KoZIhvcNAQELBQADggEBADRChnBV6ZpNiOVUhPODVKfapBGZFLceghNiBNh+xb/g c4BdDqjarNV9Au2g3KzXBwtXlYpbIqxvGDL4OAVFLvy8p++Mh7NcjVWjO1jnN9Y9 b2CC4DD3wvUykeRbZwyawhIiG27S9tcl6F5po30/p6/zeJuiZqUTiNbOwENSWHWl Ql+YP4oj3mq0+a/SfbZMqoqrITfhxWV/RGILBXenIJ70QyoTC2+NBkXh8e68K2ra 3BQviIbswU2UAOe7QNbOY6fUaNrnIqzzytOEZgs2Qn82BhqzA/hqeAHc0RHABN48 GI+PnMe/zpFVHPLc18B2aNlI6QblPWKjq1Vm0diaQF4= -----END CERTIFICATE-----Generated at Wed Nov 5 17:14:34 2025 by rpki-client