$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/STW/bBSNn9sCzQJ-c6W6pbNOAisjYJQ.roa File: bBSNn9sCzQJ-c6W6pbNOAisjYJQ.roa (raw, json) Hash identifier: GMv3c2c3ddPdnP9XF6uQx6H8RorOB3gRV/gTV4C48uA= Subject key identifier: 6C:14:8D:9F:DB:02:CD:02:7E:73:A5:BA:A5:B3:4E:02:2B:23:60:94 Certificate issuer: /CN=C758420CF762E48AD7CAA60EB39DCD622B1FB4F6 Certificate serial: 018B Authority key identifier: C7:58:42:0C:F7:62:E4:8A:D7:CA:A6:0E:B3:9D:CD:62:2B:1F:B4:F6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/x1hCDPdi5IrXyqYOs53NYisftPY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/STW/bBSNn9sCzQJ-c6W6pbNOAisjYJQ.roa Signing time: Wed 29 Oct 2025 07:09:57 +0000 ROA not before: Wed 29 Oct 2025 07:09:57 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 63897 IP address blocks: 161.248.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/STW/x1hCDPdi5IrXyqYOs53NYisftPY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/STW/x1hCDPdi5IrXyqYOs53NYisftPY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/x1hCDPdi5IrXyqYOs53NYisftPY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 01:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 395 (0x18b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C758420CF762E48AD7CAA60EB39DCD622B1FB4F6 Validity Not Before: Oct 29 07:09:57 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=6C148D9FDB02CD027E73A5BAA5B34E022B236094 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:80:7f:b8:ba:77:cf:4e:de:b1:75:2a:ac:c1: 06:c7:0a:cd:5b:37:ab:52:e1:be:b4:80:87:89:70: 3c:05:c6:91:9c:51:42:96:29:4f:42:74:40:92:a3: 6a:3a:a1:7f:27:32:06:2c:34:2f:ac:4e:bd:66:b3: f5:b3:62:87:04:3d:e9:0e:db:7b:5d:3b:8c:4d:78: e5:d9:9d:38:1f:26:42:71:c9:bc:5a:3b:bd:49:6f: a7:1c:31:3e:a8:4b:f7:dc:47:52:c8:66:f2:e7:c5: 07:ee:c3:79:fb:a2:f4:e8:ff:73:f1:34:d8:ca:22: ab:84:ba:3b:42:c2:a2:d5:ba:d0:74:2b:e0:8b:06: ba:df:c2:8f:06:ac:4e:2e:02:bd:30:64:47:64:10: 02:20:ba:cb:29:52:a4:53:46:0e:46:8d:f5:f7:21: 81:88:26:cb:08:cc:1e:7c:59:3c:2f:01:76:bd:e7: 5b:c1:a4:70:ae:fe:f7:6e:7e:5c:36:ba:5f:e3:7b: c2:e4:c4:d2:75:59:ed:5e:09:6c:12:13:4f:79:00: a0:e4:b2:5c:0f:42:47:b9:47:a7:1a:fc:69:f8:30: 2e:8e:a7:65:14:c8:d6:e8:11:6d:a8:e4:32:2b:cb: 2e:25:16:75:6a:d5:31:1a:03:c3:01:0a:a2:81:f1: a6:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:14:8D:9F:DB:02:CD:02:7E:73:A5:BA:A5:B3:4E:02:2B:23:60:94 X509v3 Authority Key Identifier: keyid:C7:58:42:0C:F7:62:E4:8A:D7:CA:A6:0E:B3:9D:CD:62:2B:1F:B4:F6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/STW/x1hCDPdi5IrXyqYOs53NYisftPY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/x1hCDPdi5IrXyqYOs53NYisftPY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/STW/bBSNn9sCzQJ-c6W6pbNOAisjYJQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 161.248.161.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:b2:95:e9:b2:0a:d3:63:b3:a8:50:d2:89:a7:a1:b1:f0:58: f1:a6:cb:bb:f4:8a:67:15:2c:4f:86:30:e3:f4:fb:a0:1f:51: 2e:b1:93:9c:fd:62:b2:a0:28:76:9e:20:79:3d:b2:49:89:42: ec:c2:5b:d7:ec:04:d1:52:63:7c:ae:31:31:96:f4:7c:a0:d3: 4c:05:1e:fd:8d:92:3a:3a:b7:a7:dd:51:49:4d:f0:1c:f5:3e: c0:40:42:c6:31:9b:42:91:8f:01:5b:0c:53:13:94:4d:a3:7d: b5:1c:56:9f:86:a1:c4:a7:a4:94:bb:3c:df:8a:3e:2b:dd:60: 0e:ce:40:e2:83:7d:18:79:26:1b:39:47:b8:5c:3f:c3:b2:0f: 30:0e:e4:fb:46:50:8e:e8:65:b5:5a:0d:a3:ab:5f:1d:39:c7: 63:81:3f:e9:69:d8:f1:93:20:48:62:2f:8a:71:ec:c0:02:73: a3:8a:87:9e:55:5b:f3:54:82:a3:60:18:48:7c:0a:52:c1:0e: 5f:38:02:78:d1:68:40:7b:e9:9b:83:01:88:53:42:b1:4d:0d: 2b:81:56:46:74:6e:ac:ed:ec:c9:0c:4d:7b:4a:af:81:62:ce: 2e:f8:3d:84:07:5a:36:a8:44:cb:24:be:0d:a8:f9:e9:db:02: 1d:5e:1d:71 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICAYswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzc1 ODQyMENGNzYyRTQ4QUQ3Q0FBNjBFQjM5RENENjIyQjFGQjRGNjAeFw0yNTEwMjkw NzA5NTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDZDMTQ4RDlGREIwMkNE MDI3RTczQTVCQUE1QjM0RTAyMkIyMzYwOTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCdgH+4unfPTt6xdSqswQbHCs1bN6tS4b60gIeJcDwFxpGcUUKW KU9CdECSo2o6oX8nMgYsNC+sTr1ms/WzYocEPekO23tdO4xNeOXZnTgfJkJxybxa O71Jb6ccMT6oS/fcR1LIZvLnxQfuw3n7ovTo/3PxNNjKIquEujtCwqLVutB0K+CL Brrfwo8GrE4uAr0wZEdkEAIgusspUqRTRg5GjfX3IYGIJssIzB58WTwvAXa951vB pHCu/vduflw2ul/je8LkxNJ1We1eCWwSE095AKDkslwPQke5R6ca/Gn4MC6Op2UU yNboEW2o5DIryy4lFnVq1TEaA8MBCqKB8abtAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUbBSNn9sCzQJ+c6W6pbNOAisjYJQwHwYDVR0jBBgwFoAUx1hCDPdi5IrXyqYO s53NYisftPYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1RXL3gx aENEUGRpNUlyWHlxWU9zNTNOWWlzZnRQWS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev eDFoQ0RQZGk1SXJYeXFZT3M1M05ZaXNmdFBZLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvU1RXL2JCU05uOXNDelFKLWM2VzZwYk5PQWlz allKUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACh+KEwDQYJ KoZIhvcNAQELBQADggEBAFqylemyCtNjs6hQ0omnobHwWPGmy7v0imcVLE+GMOP0 +6AfUS6xk5z9YrKgKHaeIHk9skmJQuzCW9fsBNFSY3yuMTGW9Hyg00wFHv2Nkjo6 t6fdUUlN8Bz1PsBAQsYxm0KRjwFbDFMTlE2jfbUcVp+GocSnpJS7PN+KPivdYA7O QOKDfRh5Jhs5R7hcP8OyDzAO5PtGUI7oZbVaDaOrXx05x2OBP+lp2PGTIEhiL4px 7MACc6OKh55VW/NUgqNgGEh8ClLBDl84AnjRaEB76ZuDAYhTQrFNDSuBVkZ0bqzt 7MkMTXtKr4Fizi74PYQHWjaoRMskvg2o+enbAh1eHXE= -----END CERTIFICATE-----Generated at Wed Nov 5 21:07:48 2025 by rpki-client