$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LEYUN/JfJsnXisXGmQd11bZh4FpMnqLT4.roa File: JfJsnXisXGmQd11bZh4FpMnqLT4.roa (raw, json) Hash identifier: Dc6ayLtjpJ72OuFrd+YE0/slIq4Q/iDPVnda5kQSnjs= Subject key identifier: 25:F2:6C:9D:78:AC:5C:69:90:77:5D:5B:66:1E:05:A4:C9:EA:2D:3E Certificate issuer: /CN=5322E61AE8C8DD8953E1E6BDC96AE4827AFCF990 Certificate serial: 036B Authority key identifier: 53:22:E6:1A:E8:C8:DD:89:53:E1:E6:BD:C9:6A:E4:82:7A:FC:F9:90 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UyLmGujI3YlT4ea9yWrkgnr8-ZA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/JfJsnXisXGmQd11bZh4FpMnqLT4.roa Signing time: Tue 30 Sep 2025 15:50:58 +0000 ROA not before: Tue 30 Sep 2025 15:50:58 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18040 IP address blocks: 160.191.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/UyLmGujI3YlT4ea9yWrkgnr8-ZA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/UyLmGujI3YlT4ea9yWrkgnr8-ZA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/UyLmGujI3YlT4ea9yWrkgnr8-ZA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 01:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 875 (0x36b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5322E61AE8C8DD8953E1E6BDC96AE4827AFCF990 Validity Not Before: Sep 30 15:50:58 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=25F26C9D78AC5C6990775D5B661E05A4C9EA2D3E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:b4:4c:06:7d:1f:88:f9:0d:3f:44:3f:01:64: f1:c4:92:ee:ea:2f:2a:2c:28:ed:31:2f:d6:6f:89: 87:34:5d:da:54:b9:b2:61:e1:46:21:8d:8e:1b:1b: 92:c2:47:80:00:43:0c:30:fc:8a:34:11:53:4e:08: b8:43:39:a6:91:48:ea:14:8b:9b:d2:b6:29:76:0f: 6e:89:db:42:a8:78:53:a7:05:64:ba:ce:bb:1b:6a: dc:c1:a8:91:72:91:db:3d:1a:2f:b5:2e:cf:1f:38: 0a:68:35:7a:22:c2:ea:41:eb:60:e8:8f:10:1f:7d: 34:90:15:10:1e:2d:b8:03:3e:1f:51:0d:8c:c5:db: 7e:15:68:2d:72:0f:a1:08:f1:34:b8:11:33:c7:22: 8a:07:19:74:8f:05:bd:34:8c:fd:6f:09:41:c0:a5: 51:73:55:e5:bd:ed:55:65:80:91:91:0f:9e:9a:41: a3:cf:42:58:2d:1c:c6:af:2c:f1:7c:0a:b9:2f:8d: f1:1c:8d:b5:f5:2a:ae:a5:22:07:0b:5b:73:18:0e: 12:4c:e8:7a:df:cd:e5:5c:21:98:b6:08:fb:8f:f0: 2e:50:f1:fc:77:56:be:1b:62:10:5b:96:e0:b4:f3: 80:21:46:fa:29:57:8b:c3:1f:e6:40:45:6f:2b:c9: 9e:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:F2:6C:9D:78:AC:5C:69:90:77:5D:5B:66:1E:05:A4:C9:EA:2D:3E X509v3 Authority Key Identifier: keyid:53:22:E6:1A:E8:C8:DD:89:53:E1:E6:BD:C9:6A:E4:82:7A:FC:F9:90 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/UyLmGujI3YlT4ea9yWrkgnr8-ZA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UyLmGujI3YlT4ea9yWrkgnr8-ZA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/JfJsnXisXGmQd11bZh4FpMnqLT4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.191.7.0/24 Signature Algorithm: sha256WithRSAEncryption ec:e6:aa:c4:1c:04:96:4e:86:78:6c:88:e4:48:2c:25:68:3d: 24:f6:94:b4:e0:89:c7:1b:4d:da:ab:86:66:38:ad:32:08:ec: 19:0b:13:f8:bd:e3:e9:bc:9c:cf:91:f5:09:d0:21:30:19:fe: 1c:90:0c:e0:5d:30:61:30:98:5c:fb:26:3b:61:e4:40:ee:98: 7a:c3:ec:14:99:cd:27:0d:53:5e:e3:b4:55:c9:f6:7c:67:62: 33:13:ce:d1:49:8a:7a:49:18:e8:e7:6a:9b:fa:db:2f:40:50: 22:df:00:4a:86:b9:43:34:9f:be:cd:b3:25:b2:42:64:49:93: 51:6d:0c:55:39:c3:3b:41:07:b0:b7:04:f1:d8:43:d9:67:18: 4c:7f:16:07:37:11:69:f6:4a:af:05:2a:b6:fb:08:eb:5c:d3: 74:a2:d8:56:a0:fd:7f:2f:0f:af:67:75:ce:ae:a8:b0:59:b8: 98:8b:e1:d2:56:94:00:c6:5d:ae:8b:74:03:44:8c:b4:07:99: 92:73:eb:b0:7e:d6:61:8c:d3:db:8b:ed:61:ca:8c:28:e4:52: 8e:27:47:e0:59:25:ae:ba:b5:34:7a:92:1d:31:f6:cc:f3:f6: 5a:55:d4:bb:e9:6c:08:85:bd:0b:26:df:b9:99:c0:36:4a:fb: a2:a9:d8:b9 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICA2swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTMy MkU2MUFFOEM4REQ4OTUzRTFFNkJEQzk2QUU0ODI3QUZDRjk5MDAeFw0yNTA5MzAx NTUwNThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDI1RjI2QzlENzhBQzVD Njk5MDc3NUQ1QjY2MUUwNUE0QzlFQTJEM0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDdtEwGfR+I+Q0/RD8BZPHEku7qLyosKO0xL9ZviYc0XdpUubJh 4UYhjY4bG5LCR4AAQwww/Io0EVNOCLhDOaaRSOoUi5vStil2D26J20KoeFOnBWS6 zrsbatzBqJFykds9Gi+1Ls8fOApoNXoiwupB62DojxAffTSQFRAeLbgDPh9RDYzF 234VaC1yD6EI8TS4ETPHIooHGXSPBb00jP1vCUHApVFzVeW97VVlgJGRD56aQaPP QlgtHMavLPF8CrkvjfEcjbX1Kq6lIgcLW3MYDhJM6HrfzeVcIZi2CPuP8C5Q8fx3 Vr4bYhBbluC084AhRvopV4vDH+ZARW8ryZ7xAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUJfJsnXisXGmQd11bZh4FpMnqLT4wHwYDVR0jBBgwFoAUUyLmGujI3YlT4ea9 yWrkgnr8+ZAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTEVZVU4v VXlMbUd1akkzWWxUNGVhOXlXcmtnbnI4LVpBLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9VeUxtR3VqSTNZbFQ0ZWE5eVdya2ducjgtWkEuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MRVlVTi9KZkpzblhpc1hHbVFkMTFiWmg0 RnBNbnFMVDQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoL8H MA0GCSqGSIb3DQEBCwUAA4IBAQDs5qrEHASWToZ4bIjkSCwlaD0k9pS04InHG03a q4ZmOK0yCOwZCxP4vePpvJzPkfUJ0CEwGf4ckAzgXTBhMJhc+yY7YeRA7ph6w+wU mc0nDVNe47RVyfZ8Z2IzE87RSYp6SRjo52qb+tsvQFAi3wBKhrlDNJ++zbMlskJk SZNRbQxVOcM7QQewtwTx2EPZZxhMfxYHNxFp9kqvBSq2+wjrXNN0othWoP1/Lw+v Z3XOrqiwWbiYi+HSVpQAxl2ui3QDRIy0B5mSc+uwftZhjNPbi+1hyowo5FKOJ0fg WSWuurU0epIdMfbM8/ZaVdS76WwIhb0LJt+5mcA2Svuiqdi5 -----END CERTIFICATE-----Generated at Wed Nov 5 21:11:36 2025 by rpki-client