$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/tDkg3bwgAoJLqDkiswmL-5ZWzos.roa File: tDkg3bwgAoJLqDkiswmL-5ZWzos.roa (raw, json) Hash identifier: wV+GwBv/2A012R332zAM9PyYAPgpSkr2qPEhwtVLp4g= Subject key identifier: B4:39:20:DD:BC:20:02:82:4B:A8:39:22:B3:09:8B:FB:96:56:CE:8B Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 139C Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/tDkg3bwgAoJLqDkiswmL-5ZWzos.roa Signing time: Fri 22 Aug 2025 08:59:29 +0000 ROA not before: Fri 22 Aug 2025 08:59:29 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17709 IP address blocks: 202.178.128.0/17 maxlen: 18 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 01:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5020 (0x139c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 08:59:29 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B43920DDBC2002824BA83922B3098BFB9656CE8B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:fb:0f:14:f9:a3:9e:31:27:74:f5:c4:e3:fd: 05:b9:41:6d:8d:b0:2e:60:5e:2f:19:94:66:4f:ef: 20:b3:08:90:82:0c:89:42:50:55:0c:a1:7b:7b:8e: b5:58:da:15:19:b3:b5:94:53:0e:79:03:84:7b:dc: c7:bd:10:e0:37:5a:5b:0b:f5:ea:1b:9c:de:d1:ab: 3b:fb:75:94:0d:b4:f0:8e:3f:9d:35:b0:35:7a:59: b9:70:1c:80:38:bb:f0:c6:95:b9:29:65:8a:76:99: 2e:8b:98:48:75:c2:51:35:ed:f5:b1:ea:ab:97:71: 50:fb:b4:2b:fe:43:11:45:a3:25:ec:dc:73:80:f7: 43:d8:42:b7:7d:58:e3:b0:64:d6:23:06:73:a3:82: 67:5e:43:41:76:da:11:49:bc:62:19:f8:22:4e:2e: bc:5c:9f:5a:6b:d0:62:29:34:c1:de:f7:68:e7:fb: 56:ed:ff:de:17:05:75:fd:2d:93:b5:eb:40:48:40: 4f:a6:8c:12:90:35:83:33:ea:52:40:81:ae:57:39: 94:55:a3:16:f7:1e:6f:57:56:3e:57:d7:f9:2e:ba: 23:e0:51:1c:01:11:f4:55:20:3f:97:58:33:d8:8d: 56:16:70:47:9b:d9:1c:1e:f2:30:45:2d:57:9d:ab: f7:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:39:20:DD:BC:20:02:82:4B:A8:39:22:B3:09:8B:FB:96:56:CE:8B X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/tDkg3bwgAoJLqDkiswmL-5ZWzos.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.178.128.0/17 Signature Algorithm: sha256WithRSAEncryption 85:78:f9:5e:fa:9f:e1:41:3d:6e:a8:d0:2c:75:3b:ec:01:99: 02:e9:c1:59:69:45:71:12:f6:00:24:e3:32:58:d4:0a:78:bb: f3:80:12:6c:12:4f:48:19:93:55:c9:b3:2b:2e:6e:9f:da:b6: 27:2d:cb:a7:45:60:08:49:70:8d:20:6e:56:ca:1e:15:e3:76: 69:63:d3:be:76:ee:80:29:29:4b:e0:c7:cd:00:d5:65:aa:23: 3c:71:90:0c:a0:34:69:3a:c4:3b:63:b5:60:c9:8e:e5:06:20: f4:32:8d:c3:9b:47:9e:ff:8a:c4:2c:00:b3:6d:6c:c2:a7:69: 67:c2:43:e0:71:a3:b5:12:b1:e0:ce:0a:4f:0b:70:13:8c:f9: 05:79:ec:50:83:94:2e:44:5c:fa:a3:91:40:57:bc:e0:8b:93: 73:7f:fd:55:62:a4:8e:34:5f:b2:f3:16:e2:d9:f7:05:70:d3: 7d:77:18:d6:8f:f1:7b:4a:86:54:ab:8a:d2:d1:81:7a:6d:3c: 5e:b2:0a:6b:f3:9d:c1:f8:7a:e6:d3:2b:f1:a8:59:e5:36:0e: 19:4d:b7:34:47:37:8e:a1:7e:5f:38:4c:e1:cc:d8:be:94:06: f9:bf:16:5d:08:a9:b3:24:7c:49:58:a5:25:56:45:62:3b:89: 59:88:8d:d3 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICE5wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw ODU5MjlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEI0MzkyMEREQkMyMDAy ODI0QkE4MzkyMkIzMDk4QkZCOTY1NkNFOEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDb+w8U+aOeMSd09cTj/QW5QW2NsC5gXi8ZlGZP7yCzCJCCDIlC UFUMoXt7jrVY2hUZs7WUUw55A4R73Me9EOA3WlsL9eobnN7Rqzv7dZQNtPCOP501 sDV6WblwHIA4u/DGlbkpZYp2mS6LmEh1wlE17fWx6quXcVD7tCv+QxFFoyXs3HOA 90PYQrd9WOOwZNYjBnOjgmdeQ0F22hFJvGIZ+CJOLrxcn1pr0GIpNMHe92jn+1bt /94XBXX9LZO160BIQE+mjBKQNYMz6lJAga5XOZRVoxb3Hm9XVj5X1/kuuiPgURwB EfRVID+XWDPYjVYWcEeb2Rwe8jBFLVedq/fZAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUtDkg3bwgAoJLqDkiswmL+5ZWzoswHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3REa2czYndnQW9KTHFEa2lzd21MLTVa V3pvcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAfKsoAwDQYJ KoZIhvcNAQELBQADggEBAIV4+V76n+FBPW6o0Cx1O+wBmQLpwVlpRXES9gAk4zJY 1Ap4u/OAEmwST0gZk1XJsysubp/aticty6dFYAhJcI0gblbKHhXjdmlj07527oAp KUvgx80A1WWqIzxxkAygNGk6xDtjtWDJjuUGIPQyjcObR57/isQsALNtbMKnaWfC Q+Bxo7USseDOCk8LcBOM+QV57FCDlC5EXPqjkUBXvOCLk3N//VVipI40X7LzFuLZ 9wVw0313GNaP8XtKhlSritLRgXptPF6yCmvzncH4eubTK/GoWeU2DhlNtzRHN46h fl84TOHM2L6UBvm/Fl0IqbMkfElYpSVWRWI7iVmIjdM= -----END CERTIFICATE-----Generated at Wed Nov 5 21:45:16 2025 by rpki-client