$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SYSNET/Ow00EJcHZJKknZcGITNloIFFFnA.roa File: Ow00EJcHZJKknZcGITNloIFFFnA.roa (raw, json) Hash identifier: ojZleef3EgjjHv4wqaAXh3jIqdr2xHjLSdINU1k9cno= Subject key identifier: 3B:0D:34:10:97:07:64:92:A4:9D:97:06:21:33:65:A0:81:45:16:70 Certificate issuer: /CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC Certificate serial: 0D8F Authority key identifier: 96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/Ow00EJcHZJKknZcGITNloIFFFnA.roa Signing time: Fri 23 May 2025 07:41:53 +0000 ROA not before: Fri 23 May 2025 07:41:53 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4783 IP address blocks: 210.67.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 07:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3471 (0xd8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC Validity Not Before: May 23 07:41:53 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3B0D341097076492A49D9706213365A081451670 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:d0:ef:d2:00:a0:e4:2b:98:0f:8c:de:c6:42: d0:05:08:80:ee:31:54:fb:3d:2f:6a:52:82:30:26: e8:08:e8:bc:bc:c2:56:5d:7b:e1:d0:08:2e:cd:9a: e5:08:2e:82:0e:63:aa:29:11:e8:ad:33:e9:40:2a: b0:54:0e:e9:48:f6:47:b6:98:a9:a2:ae:4d:67:cd: 47:d7:6f:ec:fc:23:d0:a8:ae:5b:aa:d4:cd:48:97: 03:3c:6a:ef:49:f3:b8:5d:9f:d8:ce:4e:5f:6f:c8: 57:8c:a5:15:cc:16:6b:65:0f:df:ff:59:4d:83:e8: 85:b2:5a:0f:9e:4b:95:96:bb:cb:42:d3:2d:72:e5: c1:02:5b:94:71:5a:e5:22:52:7e:02:8b:9b:0c:65: b3:0e:ec:24:91:2b:f3:f6:7e:88:51:4d:f6:1a:76: 8d:72:1b:ae:63:97:52:42:0a:c4:b7:93:99:7f:2e: e9:46:a5:f7:5c:82:3f:01:14:10:8e:e8:58:63:07: 81:f1:33:34:64:15:a8:ff:f3:21:c0:36:48:ef:9b: e8:a9:0a:2c:a5:d3:25:26:aa:bb:2d:b0:a5:30:08: c3:58:f0:5b:88:de:db:76:b0:ec:56:9a:34:df:a8: b7:70:68:09:09:38:e6:2a:e6:ff:18:8a:0c:c8:d4: f7:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:0D:34:10:97:07:64:92:A4:9D:97:06:21:33:65:A0:81:45:16:70 X509v3 Authority Key Identifier: keyid:96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/Ow00EJcHZJKknZcGITNloIFFFnA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.67.136.0/22 Signature Algorithm: sha256WithRSAEncryption 61:27:b5:96:e5:46:17:53:30:48:d3:65:71:f2:17:45:7d:c2: 0d:f9:b2:83:a7:d3:52:9e:34:8c:bb:72:e4:66:3b:68:5a:4c: 01:9d:26:ec:8a:0b:f5:e4:5d:50:be:ea:10:78:bc:01:28:bc: 66:ce:2b:92:d5:8b:c8:3d:58:7e:2b:08:ea:85:ac:0b:ab:30: 3e:2e:ff:e6:80:d7:d3:f7:f7:e1:77:d5:22:9a:26:5f:d6:80: 33:65:84:c3:19:34:7b:b1:87:f3:0d:b2:15:2c:9e:82:23:f2: 1e:aa:14:97:71:a6:68:22:f6:f2:aa:71:0b:cc:63:14:c5:3c: 44:8b:4b:e3:44:e5:dd:c4:2f:a2:1b:bc:b8:82:b6:82:20:ec: 21:15:e5:5b:71:21:52:09:23:53:04:0a:79:fb:80:e8:cc:90: fc:07:07:b8:09:7a:85:39:78:e4:a2:fb:92:16:b3:3b:10:cb: 70:40:59:7a:f9:6d:a1:10:c5:a3:76:c8:4f:be:c6:c2:89:32: ea:eb:e3:1d:4b:82:10:e0:04:4f:07:5f:44:3e:45:3d:6e:12: 8c:c3:c6:9b:9d:c8:7b:a6:7a:f7:61:fb:dd:11:a3:e7:12:67: 00:c5:9e:0b:78:cf:73:83:73:5b:76:86:ae:5b:dd:16:f4:85: 3c:38:1f:9b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDY8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTZC Qjk0QjQ1N0Y5RDgyQTI5QjVCMkZEOUYzQTQ0MTg4OTlFNzFFQzAeFw0yNTA1MjMw NzQxNTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNCMEQzNDEwOTcwNzY0 OTJBNDlEOTcwNjIxMzM2NUEwODE0NTE2NzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCt0O/SAKDkK5gPjN7GQtAFCIDuMVT7PS9qUoIwJugI6Ly8wlZd e+HQCC7NmuUILoIOY6opEeitM+lAKrBUDulI9ke2mKmirk1nzUfXb+z8I9Corluq 1M1IlwM8au9J87hdn9jOTl9vyFeMpRXMFmtlD9//WU2D6IWyWg+eS5WWu8tC0y1y 5cECW5RxWuUiUn4Ci5sMZbMO7CSRK/P2fohRTfYado1yG65jl1JCCsS3k5l/LulG pfdcgj8BFBCO6FhjB4HxMzRkFaj/8yHANkjvm+ipCiyl0yUmqrstsKUwCMNY8FuI 3tt2sOxWmjTfqLdwaAkJOOYq5v8YigzI1Pc7AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUOw00EJcHZJKknZcGITNloIFFFnAwHwYDVR0jBBgwFoAUlruUtFf52CoptbL9 nzpEGImecewwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1lTTkVU L2xydVV0RmY1MkNvcHRiTDluenBFR0ltZWNldy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbHJ1VXRGZjUyQ29wdGJMOW56cEVHSW1lY2V3LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1lTTkVUL093MDBFSmNIWkpLa25aY0dJ VE5sb0lGRkZuQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALS Q4gwDQYJKoZIhvcNAQELBQADggEBAGEntZblRhdTMEjTZXHyF0V9wg35soOn01Ke NIy7cuRmO2haTAGdJuyKC/XkXVC+6hB4vAEovGbOK5LVi8g9WH4rCOqFrAurMD4u /+aA19P39+F31SKaJl/WgDNlhMMZNHuxh/MNshUsnoIj8h6qFJdxpmgi9vKqcQvM YxTFPESLS+NE5d3EL6IbvLiCtoIg7CEV5VtxIVIJI1MECnn7gOjMkPwHB7gJeoU5 eOSi+5IWszsQy3BAWXr5baEQxaN2yE++xsKJMurr4x1LghDgBE8HX0Q+RT1uEozD xpudyHumevdh+90Ro+cSZwDFngt4z3ODc1t2hq5b3Rb0hTw4H5s= -----END CERTIFICATE-----Generated at Wed Jun 25 04:48:28 2025 by rpki-client