$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/wZXTvHjkdOYoZWJ3XXY2DPIrbas.roa File: wZXTvHjkdOYoZWJ3XXY2DPIrbas.roa (raw, json) Hash identifier: aMG17Jx7h2woAcaWICN5uVzV38LtV4P09qb+zybE8rs= Subject key identifier: C1:95:D3:BC:78:E4:74:E6:28:65:62:77:5D:76:36:0C:F2:2B:6D:AB Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1487 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/wZXTvHjkdOYoZWJ3XXY2DPIrbas.roa Signing time: Fri 22 Aug 2025 09:00:31 +0000 ROA not before: Fri 22 Aug 2025 09:00:31 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131142 IP address blocks: 223.22.0.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 01:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5255 (0x1487) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 09:00:31 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C195D3BC78E474E6286562775D76360CF22B6DAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:79:12:f0:ee:ab:70:57:a8:fe:5e:31:17:27: 73:98:fc:46:47:1a:29:47:9e:e6:79:40:1c:70:05: 03:70:12:fe:b2:9e:11:09:46:ae:96:af:22:0c:fd: dc:57:f4:a8:98:b8:45:8d:84:6c:7a:a9:ba:f5:cb: 8b:60:dc:46:6d:42:2d:36:33:d1:07:46:64:21:67: 4d:cc:97:f8:8f:00:c0:b3:d9:39:49:e0:57:7a:84: d1:c2:8c:70:76:7f:e7:2f:ba:3a:55:a1:22:fe:88: 61:cf:df:c3:10:36:0f:30:84:aa:3b:a1:b5:80:f8: 79:e0:40:00:97:6a:00:92:0b:03:59:75:75:a8:3c: e1:a5:10:55:02:46:ba:3d:3f:a1:5e:bc:16:ef:f7: 43:f2:7e:e4:0b:91:10:92:e5:47:e4:c3:a4:ac:2a: 6e:6e:e6:cf:0b:e9:cd:89:ab:80:f8:94:5e:4a:38: 5d:10:97:0e:11:9e:a8:fd:d5:15:9a:82:3d:42:27: 8a:38:31:f0:54:90:4c:45:e3:6f:88:7f:bb:dd:47: 0f:a0:ec:59:e6:06:d1:0c:c3:de:b2:1e:d5:81:eb: fe:12:32:78:13:e8:bd:02:b2:72:4f:65:72:34:06: c6:1b:3a:d8:52:65:36:c5:18:2f:a0:31:f1:3c:7c: b8:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:95:D3:BC:78:E4:74:E6:28:65:62:77:5D:76:36:0C:F2:2B:6D:AB X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/wZXTvHjkdOYoZWJ3XXY2DPIrbas.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.22.0.0/20 Signature Algorithm: sha256WithRSAEncryption 3f:9a:ea:17:73:0c:e7:0e:5d:0f:a1:b8:3a:bf:2d:c2:25:01: 02:b2:c6:13:94:61:3f:81:80:31:d0:66:79:2c:40:08:d4:13: fb:48:e3:41:2c:bb:99:e9:a7:b4:36:39:64:d1:7c:1c:a2:a2: 89:28:05:df:e5:93:b1:54:47:73:1d:12:bc:ea:ab:24:14:98: ed:a4:ee:6e:fe:79:b2:8b:c7:22:f1:a6:77:74:82:a0:84:b2: bb:f6:a6:be:c7:eb:6e:ad:e3:f8:aa:09:c9:9c:43:29:fa:96: 93:f4:57:6f:4a:71:28:f1:22:a5:c9:84:18:af:7b:7e:0b:ea: 72:27:5b:de:c0:97:79:a8:51:cd:39:84:4b:48:ab:83:59:7e: b6:2e:6b:cc:94:41:49:8d:24:32:7c:87:e8:d8:8a:7c:4f:d7: a1:cd:5b:c4:2c:53:ed:30:2a:c3:8a:14:e1:37:37:fc:39:13: b9:9f:bb:7d:53:44:0f:44:8c:ca:02:05:04:ce:78:93:e4:48: 14:b3:4c:29:8b:4c:22:35:8f:e3:2d:83:8d:33:55:3b:f2:9c: 99:b1:b2:f2:f2:19:73:14:ae:85:ae:cb:fe:90:dd:d0:86:d1: f2:95:1e:68:20:ac:aa:07:29:ba:8d:3d:6d:84:aa:bf:c2:f3: 92:36:e4:9b -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICFIcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw OTAwMzFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEMxOTVEM0JDNzhFNDc0 RTYyODY1NjI3NzVENzYzNjBDRjIyQjZEQUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHeRLw7qtwV6j+XjEXJ3OY/EZHGilHnuZ5QBxwBQNwEv6ynhEJ Rq6WryIM/dxX9KiYuEWNhGx6qbr1y4tg3EZtQi02M9EHRmQhZ03Ml/iPAMCz2TlJ 4Fd6hNHCjHB2f+cvujpVoSL+iGHP38MQNg8whKo7obWA+HngQACXagCSCwNZdXWo POGlEFUCRro9P6FevBbv90PyfuQLkRCS5Ufkw6SsKm5u5s8L6c2Jq4D4lF5KOF0Q lw4Rnqj91RWagj1CJ4o4MfBUkExF42+If7vdRw+g7FnmBtEMw96yHtWB6/4SMngT 6L0CsnJPZXI0BsYbOthSZTbFGC+gMfE8fLiHAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUwZXTvHjkdOYoZWJ3XXY2DPIrbaswHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3daWFR2SGprZE9Zb1pXSjNYWFkyRFBJ cmJhcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATfFgAwDQYJ KoZIhvcNAQELBQADggEBAD+a6hdzDOcOXQ+huDq/LcIlAQKyxhOUYT+BgDHQZnks QAjUE/tI40Esu5npp7Q2OWTRfByiookoBd/lk7FUR3MdErzqqyQUmO2k7m7+ebKL xyLxpnd0gqCEsrv2pr7H626t4/iqCcmcQyn6lpP0V29KcSjxIqXJhBive34L6nIn W97Al3moUc05hEtIq4NZfrYua8yUQUmNJDJ8h+jYinxP16HNW8QsU+0wKsOKFOE3 N/w5E7mfu31TRA9EjMoCBQTOeJPkSBSzTCmLTCI1j+Mtg40zVTvynJmxsvLyGXMU roWuy/6Q3dCG0fKVHmggrKoHKbqNPW2Eqr/C85I25Js= -----END CERTIFICATE-----Generated at Wed Nov 5 21:45:39 2025 by rpki-client