$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/wFVWoEsSmUWoc73tUJHsfwP7T70.roa File: wFVWoEsSmUWoc73tUJHsfwP7T70.roa (raw, json) Hash identifier: p/awpAqsschNOvHVnXMYlD3GiReNRdlYEOadOAl0IB4= Subject key identifier: C0:55:56:A0:4B:12:99:45:A8:73:BD:ED:50:91:EC:7F:03:FB:4F:BD Certificate issuer: /CN=CAD527022C8CD07568EC9FC82A1CE0DDE5B2C4AC Certificate serial: 09AA Authority key identifier: CA:D5:27:02:2C:8C:D0:75:68:EC:9F:C8:2A:1C:E0:DD:E5:B2:C4:AC Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ytUnAiyM0HVo7J_IKhzg3eWyxKw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/wFVWoEsSmUWoc73tUJHsfwP7T70.roa Signing time: Thu 19 Jun 2025 07:21:24 +0000 ROA not before: Thu 19 Jun 2025 07:21:24 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9678 IP address blocks: 211.76.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/ytUnAiyM0HVo7J_IKhzg3eWyxKw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/ytUnAiyM0HVo7J_IKhzg3eWyxKw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ytUnAiyM0HVo7J_IKhzg3eWyxKw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 07:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2474 (0x9aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CAD527022C8CD07568EC9FC82A1CE0DDE5B2C4AC Validity Not Before: Jun 19 07:21:24 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C05556A04B129945A873BDED5091EC7F03FB4FBD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:dd:b8:13:d9:58:aa:81:21:d6:90:71:9b:41: 25:04:f8:e5:ff:c8:a4:a6:8c:db:02:20:79:88:09: 63:c2:fa:7e:62:a3:d7:eb:ff:de:8a:a2:7b:b9:6e: ed:e0:08:9e:85:e9:0e:97:57:b8:61:19:3c:a7:8d: 2d:82:43:ab:03:48:73:1f:24:5e:b1:16:6c:53:35: eb:73:ae:c8:c7:7c:06:ca:60:40:a6:a8:39:09:75: 75:ff:73:29:85:0d:8d:54:fc:08:6c:66:39:b9:8a: 7e:81:45:8a:99:6d:8d:03:94:68:af:fa:d0:fe:1d: a4:f0:4f:d4:7b:de:8d:5b:a7:58:7e:f3:ee:61:a6: 87:58:ca:36:0f:e5:e2:55:e5:b6:ab:e7:c8:b3:b9: 37:00:40:1d:c4:3c:13:12:d0:cd:88:f0:ab:90:7d: b0:6e:b8:f7:fe:a5:6a:54:d4:88:ea:98:98:68:10: bc:7e:fc:4e:74:c5:46:22:1e:ad:15:1a:8f:66:8e: e6:a7:da:d6:6f:c9:fd:5e:70:11:61:2a:c8:2f:27: cc:ff:d2:b7:1a:ae:b5:51:9a:97:4d:61:1e:ec:9e: ce:d9:b3:f3:7b:f3:5c:4b:0a:ae:c6:f9:3d:5b:d2: f7:ad:e8:46:e3:10:4b:93:ab:fb:e4:d1:96:9e:e1: c1:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:55:56:A0:4B:12:99:45:A8:73:BD:ED:50:91:EC:7F:03:FB:4F:BD X509v3 Authority Key Identifier: keyid:CA:D5:27:02:2C:8C:D0:75:68:EC:9F:C8:2A:1C:E0:DD:E5:B2:C4:AC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/ytUnAiyM0HVo7J_IKhzg3eWyxKw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ytUnAiyM0HVo7J_IKhzg3eWyxKw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/wFVWoEsSmUWoc73tUJHsfwP7T70.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.183.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:7e:f1:95:c1:8b:8b:70:76:65:ff:02:64:60:93:57:f5:d6: 22:58:83:1f:f3:6c:5b:15:5e:b4:5c:9b:9c:ff:b2:1a:a9:a9: 7a:66:9f:01:15:fd:2b:96:0f:7a:6c:53:87:d8:90:6a:0a:01: 7e:f7:2d:b1:b8:62:0e:16:58:08:2a:ae:ea:91:10:9e:86:60: 6e:eb:2d:5f:6d:70:f7:e5:ca:9b:0d:bf:81:57:d8:39:c1:b3: 79:d9:85:96:5b:b8:61:4c:50:fd:ab:1d:a0:92:65:cc:0d:19: 8a:08:42:9c:2f:c7:97:b8:4b:45:5c:88:80:b6:b2:e6:7e:ab: f0:87:be:7f:a8:d4:a5:9c:c8:74:2d:e7:72:65:40:50:7f:98: 8d:2c:a1:c4:42:0f:20:08:b8:f1:5b:4a:a2:db:61:a8:10:ca: f3:3f:b5:25:3d:78:f9:a4:57:b8:e7:e6:c1:67:54:43:6f:65: 9c:a2:4b:54:a0:2c:0a:01:2b:8f:56:05:33:71:1a:01:cd:d1: a9:6c:61:82:17:93:9f:36:80:41:bc:43:3e:99:e7:c5:d2:d5: eb:fb:fc:cb:93:a1:79:22:95:5f:8e:f7:28:76:d3:52:67:36: 70:7c:df:a2:92:ad:5b:7b:cb:5c:a9:2d:66:85:14:f1:c3:19: 9a:7f:bb:b0 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICCaowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0FE NTI3MDIyQzhDRDA3NTY4RUM5RkM4MkExQ0UwRERFNUIyQzRBQzAeFw0yNTA2MTkw NzIxMjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEMwNTU1NkEwNEIxMjk5 NDVBODczQkRFRDUwOTFFQzdGMDNGQjRGQkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDD3bgT2ViqgSHWkHGbQSUE+OX/yKSmjNsCIHmICWPC+n5io9fr /96Konu5bu3gCJ6F6Q6XV7hhGTynjS2CQ6sDSHMfJF6xFmxTNetzrsjHfAbKYECm qDkJdXX/cymFDY1U/AhsZjm5in6BRYqZbY0DlGiv+tD+HaTwT9R73o1bp1h+8+5h podYyjYP5eJV5bar58izuTcAQB3EPBMS0M2I8KuQfbBuuPf+pWpU1IjqmJhoELx+ /E50xUYiHq0VGo9mjuan2tZvyf1ecBFhKsgvJ8z/0rcarrVRmpdNYR7sns7Zs/N7 81xLCq7G+T1b0vet6EbjEEuTq/vk0Zae4cFHAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUwFVWoEsSmUWoc73tUJHsfwP7T70wHwYDVR0jBBgwFoAUytUnAiyM0HVo7J/I Khzg3eWyxKwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdCRVNU V0FSRS95dFVuQWl5TTBIVm83Sl9JS2h6ZzNlV3l4S3cuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL3l0VW5BaXlNMEhWbzdKX0lLaHpnM2VXeXhLdy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1RXQkVTVFdBUkUvd0ZWV29Fc1Nt VVdvYzczdFVKSHNmd1A3VDcwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEANNMtzANBgkqhkiG9w0BAQsFAAOCAQEAX37xlcGLi3B2Zf8CZGCTV/XW IliDH/NsWxVetFybnP+yGqmpemafARX9K5YPemxTh9iQagoBfvctsbhiDhZYCCqu 6pEQnoZgbustX21w9+XKmw2/gVfYOcGzedmFllu4YUxQ/asdoJJlzA0ZighCnC/H l7hLRVyIgLay5n6r8Ie+f6jUpZzIdC3ncmVAUH+YjSyhxEIPIAi48VtKotthqBDK 8z+1JT14+aRXuOfmwWdUQ29lnKJLVKAsCgErj1YFM3EaAc3RqWxhgheTnzaAQbxD PpnnxdLV6/v8y5OheSKVX473KHbTUmc2cHzfopKtW3vLXKktZoUU8cMZmn+7sA== -----END CERTIFICATE-----Generated at Wed Jun 25 04:31:07 2025 by rpki-client