$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/MGWaZ2zaK52pR__DnCjjWQlJuv8.roa File: MGWaZ2zaK52pR__DnCjjWQlJuv8.roa (raw, json) Hash identifier: DhLrQ6Qed7DCcpbjprrSMBA03Ccpwdvmnn4m0sxbZ84= Subject key identifier: 30:65:9A:67:6C:DA:2B:9D:A9:47:FF:C3:9C:28:E3:59:09:49:BA:FF Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9 Certificate serial: 0E20 Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/MGWaZ2zaK52pR__DnCjjWQlJuv8.roa Signing time: Fri 22 Aug 2025 09:00:53 +0000 ROA not before: Fri 22 Aug 2025 09:00:53 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131627 IP address blocks: 101.3.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 20:59:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3616 (0xe20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9 Validity Not Before: Aug 22 09:00:53 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=30659A676CDA2B9DA947FFC39C28E3590949BAFF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:bd:62:ce:e4:0d:58:7d:13:c1:3c:c6:77:cf: d8:ef:cb:ce:f8:60:45:9e:83:4d:e2:a1:76:86:1d: 14:7b:f2:37:0e:7d:67:43:0c:fc:60:a0:81:51:44: 03:5a:ec:e4:ba:d7:0f:01:be:52:e4:78:e4:55:a8: 07:f1:04:ae:32:75:b9:08:d5:0f:51:f9:5f:b7:49: 44:9e:dc:23:ed:b1:4c:37:e5:7e:9a:f9:fa:fb:26: c7:5a:9c:6e:22:2e:bb:f3:af:c5:a3:47:eb:eb:20: a8:27:92:14:a5:f8:f1:82:b4:f1:60:c7:93:c5:56: 98:ec:c9:c9:c4:e8:97:86:5c:15:e2:3e:70:08:e2: 82:ee:04:84:5f:29:72:0e:2c:ad:7d:97:f7:e7:16: 4a:6c:b2:93:53:30:d9:ee:f0:10:f9:30:12:73:7e: 11:64:06:9f:b8:97:37:89:a2:cb:ad:0a:a9:88:4b: 0d:10:4e:fb:44:db:c4:b6:18:56:0e:c5:9d:df:69: 3f:04:e0:9b:ed:74:56:67:6d:ef:c9:6a:d5:0a:99: 5f:43:f5:05:6b:7b:cc:81:a5:db:02:6a:ae:46:24: 83:cf:14:a1:9d:67:a5:66:97:14:7c:24:63:61:ed: d0:89:be:b0:e5:80:af:64:c8:c0:9a:7e:e9:1e:67: 1c:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:65:9A:67:6C:DA:2B:9D:A9:47:FF:C3:9C:28:E3:59:09:49:BA:FF X509v3 Authority Key Identifier: keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/MGWaZ2zaK52pR__DnCjjWQlJuv8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.3.128.0/19 Signature Algorithm: sha256WithRSAEncryption b3:fd:93:f8:30:57:57:f2:68:a2:b7:cd:61:4a:53:8f:14:34: 22:0f:8e:b6:85:51:cc:3a:23:e3:f9:3e:82:5e:85:f0:60:89: 8b:53:cb:1f:27:8b:9d:1e:ea:bb:28:06:d2:8e:ad:b2:47:46: 0a:43:12:b0:92:8e:e1:68:18:ee:38:81:5a:2d:d5:7f:8b:78: c9:49:df:c5:4b:f6:70:0b:40:64:45:a3:2c:9a:d9:85:9f:2e: 9e:2d:52:30:b0:59:83:d6:7c:85:c5:0b:d1:95:fd:a8:b7:67: 29:c0:51:46:fc:c6:ac:34:50:b9:b5:12:d4:45:40:94:55:28: d7:99:d1:7b:88:70:ec:9e:d9:31:ff:d2:99:14:c0:2e:e5:98: a8:7d:c2:18:50:3b:f5:53:94:5c:cb:fb:35:f1:91:1d:1f:a8: a7:59:09:ff:c0:b0:2a:2e:86:f0:40:59:f6:fb:ff:b0:08:b0: 43:5e:8b:46:79:90:44:c8:63:fe:56:76:80:2a:32:0c:f8:b8: 6b:72:1d:3f:69:a0:d7:13:3b:76:ad:ed:41:d1:a5:da:d4:08: 20:bc:aa:3f:d3:4a:02:df:bf:e7:2d:2f:35:5f:21:86:15:59: 0f:fc:90:72:a1:85:78:07:c4:78:94:b2:fa:f7:54:04:e4:8f: 26:4f:17:8b -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICDiAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREY1 NjczQTE5NzIxMjZFN0QyQ0M1RDRENTFCNDkxMDgzNDVCRjhDOTAeFw0yNTA4MjIw OTAwNTNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDMwNjU5QTY3NkNEQTJC OURBOTQ3RkZDMzlDMjhFMzU5MDk0OUJBRkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4vWLO5A1YfRPBPMZ3z9jvy874YEWeg03ioXaGHRR78jcOfWdD DPxgoIFRRANa7OS61w8BvlLkeORVqAfxBK4ydbkI1Q9R+V+3SUSe3CPtsUw35X6a +fr7JsdanG4iLrvzr8WjR+vrIKgnkhSl+PGCtPFgx5PFVpjsycnE6JeGXBXiPnAI 4oLuBIRfKXIOLK19l/fnFkpsspNTMNnu8BD5MBJzfhFkBp+4lzeJosutCqmISw0Q TvtE28S2GFYOxZ3faT8E4JvtdFZnbe/JatUKmV9D9QVre8yBpdsCaq5GJIPPFKGd Z6VmlxR8JGNh7dCJvrDlgK9kyMCafukeZxwjAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUMGWaZ2zaK52pR//DnCjjWQlJuv8wHwYDVR0jBBgwFoAU31ZzoZchJufSzF1N UbSRCDRb+MkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJRk83 NzE2LzMxWnpvWmNoSnVmU3pGMU5VYlNSQ0RSYi1Nay5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvMzFaem9aY2hKdWZTekYxTlViU1JDRFJiLU1rLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJRk83NzE2L01HV2FaMnphSzUy cFJfX0RuQ2pqV1FsSnV2OC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVlA4AwDQYJKoZIhvcNAQELBQADggEBALP9k/gwV1fyaKK3zWFKU48UNCIP jraFUcw6I+P5PoJehfBgiYtTyx8ni50e6rsoBtKOrbJHRgpDErCSjuFoGO44gVot 1X+LeMlJ38VL9nALQGRFoyya2YWfLp4tUjCwWYPWfIXFC9GV/ai3ZynAUUb8xqw0 ULm1EtRFQJRVKNeZ0XuIcOye2TH/0pkUwC7lmKh9whhQO/VTlFzL+zXxkR0fqKdZ Cf/AsCouhvBAWfb7/7AIsENei0Z5kETIY/5WdoAqMgz4uGtyHT9poNcTO3at7UHR pdrUCCC8qj/TSgLfv+ctLzVfIYYVWQ/8kHKhhXgHxHiUsvr3VATkjyZPF4s= -----END CERTIFICATE-----Generated at Wed Nov 5 17:14:27 2025 by rpki-client