$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IDT/kdEMKiqwVeLWBAJmjVMINW_GFdE.roa File: kdEMKiqwVeLWBAJmjVMINW_GFdE.roa (raw, json) Hash identifier: WOLlSF4usVS8WGJUwdkVBcVPmEkrlYkNGejoStPivsk= Subject key identifier: 91:D1:0C:2A:2A:B0:55:E2:D6:04:02:66:8D:53:08:35:6F:C6:15:D1 Certificate issuer: /CN=4FA6A6A655A0C42B99C7E2087EBEF444ACB56493 Certificate serial: 0627 Authority key identifier: 4F:A6:A6:A6:55:A0:C4:2B:99:C7:E2:08:7E:BE:F4:44:AC:B5:64:93 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T6amplWgxCuZx-IIfr70RKy1ZJM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IDT/kdEMKiqwVeLWBAJmjVMINW_GFdE.roa Signing time: Tue 04 Nov 2025 11:19:46 +0000 ROA not before: Tue 04 Nov 2025 11:19:46 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 152179 IP address blocks: 202.148.210.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IDT/T6amplWgxCuZx-IIfr70RKy1ZJM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IDT/T6amplWgxCuZx-IIfr70RKy1ZJM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T6amplWgxCuZx-IIfr70RKy1ZJM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 01:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1575 (0x627) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FA6A6A655A0C42B99C7E2087EBEF444ACB56493 Validity Not Before: Nov 4 11:19:46 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=91D10C2A2AB055E2D60402668D5308356FC615D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:0a:a3:34:f1:c8:9f:5a:0b:d6:8e:5f:cb:e7: 13:67:07:26:f1:4f:9b:46:a3:a3:17:bf:e3:8e:58: bc:3c:a8:91:ab:dc:ca:6a:43:87:b7:8a:81:31:9f: 65:cd:29:d2:6c:a0:13:49:a5:3a:e1:9b:3f:d7:82: 89:75:16:c6:58:c9:72:24:b9:2b:d0:06:11:8d:97: bf:76:bc:1b:24:62:e1:d9:d2:02:4c:1e:9d:5f:27: 17:67:77:5e:dc:9b:e3:3a:e2:82:06:d2:f8:28:b6: ac:97:17:c6:ae:c0:31:6a:e4:4a:b2:dc:f5:b4:82: 78:51:2f:59:48:9f:78:8a:3f:8c:63:d5:28:2a:e8: 34:35:e7:98:31:7e:3f:fe:04:63:fc:c6:93:92:f8: 04:53:c4:9d:a8:10:2b:15:06:57:44:f0:e9:28:7d: 8f:8d:1b:e2:c5:e6:ee:d4:c9:e0:35:2a:b4:6e:75: 12:40:c6:b7:0b:26:65:86:b0:1c:56:fe:1a:ce:c6: 34:8f:0c:7d:1a:af:54:75:06:64:a0:96:3c:19:0b: 9d:c4:34:56:79:04:6e:7f:b6:e5:8d:cc:52:12:c2: a8:1e:2c:24:58:b9:80:41:ff:53:e5:42:83:fd:c8: 68:6c:2d:64:82:3c:83:09:20:30:e1:c2:bd:4b:0d: df:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:D1:0C:2A:2A:B0:55:E2:D6:04:02:66:8D:53:08:35:6F:C6:15:D1 X509v3 Authority Key Identifier: keyid:4F:A6:A6:A6:55:A0:C4:2B:99:C7:E2:08:7E:BE:F4:44:AC:B5:64:93 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IDT/T6amplWgxCuZx-IIfr70RKy1ZJM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T6amplWgxCuZx-IIfr70RKy1ZJM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IDT/kdEMKiqwVeLWBAJmjVMINW_GFdE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.148.210.0/23 Signature Algorithm: sha256WithRSAEncryption e2:6d:97:a1:83:80:5d:c1:7f:74:e7:2d:18:e3:0b:4f:5c:0c: 2b:81:a5:88:65:46:59:cf:a2:f9:db:df:33:6f:e2:f2:82:a5: 7b:db:98:a8:8d:ec:47:3d:ef:e2:5d:9b:a0:14:04:43:da:52: 8f:15:69:9c:b3:85:6e:cf:a1:4d:23:4a:a0:28:3e:2a:90:69: c7:7d:bc:96:f7:dd:e0:bd:18:f3:1c:fa:2e:60:78:18:ec:d0: 1d:5e:72:62:ef:a8:cf:30:2e:c1:e5:65:1e:2f:01:d7:26:4b: c0:00:47:c6:6d:17:46:ad:b3:2e:cb:c4:8f:88:42:b0:d7:ec: 8e:27:71:12:65:2f:4e:d9:fc:09:fb:ea:dc:14:65:c2:4a:68: 1b:a8:56:d7:98:a5:6c:11:00:0b:26:95:e9:6b:76:19:7b:56: 5d:5b:a7:af:8b:06:1b:1f:80:e5:42:82:38:dc:01:be:61:ff: a8:88:e6:f0:96:d0:95:cd:55:90:7c:ef:f6:cf:96:a4:79:a0: 10:32:13:2d:68:68:a7:91:d4:f4:70:7a:b2:86:eb:b8:31:ba: f6:f3:41:c0:a1:4a:05:36:43:32:c5:51:15:1b:c1:c9:4b:a1: ce:e5:06:7d:3e:95:4d:fb:1e:00:1f:d8:b3:10:55:2a:6e:15: 13:92:fe:b9 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICBicwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZB NkE2QTY1NUEwQzQyQjk5QzdFMjA4N0VCRUY0NDRBQ0I1NjQ5MzAeFw0yNTExMDQx MTE5NDZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDkxRDEwQzJBMkFCMDU1 RTJENjA0MDI2NjhENTMwODM1NkZDNjE1RDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTCqM08cifWgvWjl/L5xNnBybxT5tGo6MXv+OOWLw8qJGr3Mpq Q4e3ioExn2XNKdJsoBNJpTrhmz/Xgol1FsZYyXIkuSvQBhGNl792vBskYuHZ0gJM Hp1fJxdnd17cm+M64oIG0vgotqyXF8auwDFq5Eqy3PW0gnhRL1lIn3iKP4xj1Sgq 6DQ155gxfj/+BGP8xpOS+ARTxJ2oECsVBldE8OkofY+NG+LF5u7UyeA1KrRudRJA xrcLJmWGsBxW/hrOxjSPDH0ar1R1BmSgljwZC53ENFZ5BG5/tuWNzFISwqgeLCRY uYBB/1PlQoP9yGhsLWSCPIMJIDDhwr1LDd/TAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUkdEMKiqwVeLWBAJmjVMINW/GFdEwHwYDVR0jBBgwFoAUT6amplWgxCuZx+II fr70RKy1ZJMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSURUL1Q2 YW1wbFdneEN1WngtSUlmcjcwUkt5MVpKTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev VDZhbXBsV2d4Q3VaeC1JSWZyNzBSS3kxWkpNLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvSURUL2tkRU1LaXF3VmVMV0JBSm1qVk1JTldf R0ZkRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKlNIwDQYJ KoZIhvcNAQELBQADggEBAOJtl6GDgF3Bf3TnLRjjC09cDCuBpYhlRlnPovnb3zNv 4vKCpXvbmKiN7Ec97+Jdm6AUBEPaUo8VaZyzhW7PoU0jSqAoPiqQacd9vJb33eC9 GPMc+i5geBjs0B1ecmLvqM8wLsHlZR4vAdcmS8AAR8ZtF0atsy7LxI+IQrDX7I4n cRJlL07Z/An76twUZcJKaBuoVteYpWwRAAsmlelrdhl7Vl1bp6+LBhsfgOVCgjjc Ab5h/6iI5vCW0JXNVZB87/bPlqR5oBAyEy1oaKeR1PRwerKG67gxuvbzQcChSgU2 QzLFURUbwclLoc7lBn0+lU37HgAf2LMQVSpuFROS/rk= -----END CERTIFICATE-----Generated at Tue Nov 4 21:00:24 2025 by rpki-client