$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BESTBASIS/P1ZKyfvag6UsPC4dNJOSlY3e4jI.roa File: P1ZKyfvag6UsPC4dNJOSlY3e4jI.roa (raw, json) Hash identifier: 1vRlxS13uFPFd7r4WDxgL7pRnrmfLKWCBZB3Vu33Hnc= Subject key identifier: 3F:56:4A:C9:FB:DA:83:A5:2C:3C:2E:1D:34:93:92:95:8D:DE:E2:32 Certificate issuer: /CN=D330BC4E137B1512E2E4506806B870A4EAA860D7 Certificate serial: 0262 Authority key identifier: D3:30:BC:4E:13:7B:15:12:E2:E4:50:68:06:B8:70:A4:EA:A8:60:D7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0zC8ThN7FRLi5FBoBrhwpOqoYNc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BESTBASIS/P1ZKyfvag6UsPC4dNJOSlY3e4jI.roa Signing time: Fri 22 Aug 2025 08:44:00 +0000 ROA not before: Fri 22 Aug 2025 08:44:00 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131149 IP address blocks: 103.6.126.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/BESTBASIS/0zC8ThN7FRLi5FBoBrhwpOqoYNc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/BESTBASIS/0zC8ThN7FRLi5FBoBrhwpOqoYNc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0zC8ThN7FRLi5FBoBrhwpOqoYNc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 610 (0x262) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D330BC4E137B1512E2E4506806B870A4EAA860D7 Validity Not Before: Aug 22 08:44:00 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=3F564AC9FBDA83A52C3C2E1D349392958DDEE232 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a2:13:91:50:4d:bf:e5:72:0f:20:03:b6:e3: 89:00:85:f3:e9:09:12:bb:52:d9:ff:ee:24:9e:e0: 31:a8:cd:53:ba:b4:ab:8a:cc:2c:57:1f:b6:0b:b1: 7b:5f:df:09:ca:6e:35:c6:59:b3:30:ea:79:bb:e4: 15:67:4a:6d:dd:f9:65:49:e4:38:42:bf:3e:d6:cf: a6:6b:52:56:9b:63:c0:0c:30:d8:19:e2:23:d1:29: ce:30:88:69:8f:f4:41:ed:32:be:f0:92:9a:fb:57: 0b:ef:d6:fc:9b:33:e1:5c:da:71:c3:f3:c3:ab:cf: 05:a0:88:49:3f:fb:7b:17:23:7c:4d:03:ac:3d:7d: 45:ec:b6:ef:ea:03:6a:34:5c:13:c7:d2:79:ae:b0: c6:93:b2:3e:a1:c6:ab:46:53:1f:31:24:19:b6:d2: 67:dc:66:47:d3:a7:ae:07:37:a5:fa:04:b8:9f:c9: 1a:52:13:7c:27:fc:a4:40:23:3a:51:93:d2:ed:df: c8:2c:ea:9a:84:4e:0a:38:d9:f6:eb:73:e2:94:2e: ba:0c:61:21:53:5b:2d:01:e4:d2:dd:5b:41:a4:e8: ed:58:b3:91:cf:a4:51:83:84:b2:48:72:03:a7:64: c0:96:a9:a8:bb:c0:92:02:78:94:e9:4e:4b:19:c1: f4:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:56:4A:C9:FB:DA:83:A5:2C:3C:2E:1D:34:93:92:95:8D:DE:E2:32 X509v3 Authority Key Identifier: keyid:D3:30:BC:4E:13:7B:15:12:E2:E4:50:68:06:B8:70:A4:EA:A8:60:D7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BESTBASIS/0zC8ThN7FRLi5FBoBrhwpOqoYNc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0zC8ThN7FRLi5FBoBrhwpOqoYNc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BESTBASIS/P1ZKyfvag6UsPC4dNJOSlY3e4jI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.6.126.0/23 Signature Algorithm: sha256WithRSAEncryption 41:a2:b3:db:1b:2c:64:ba:62:08:4a:0e:24:81:61:48:db:b7: 17:18:a7:ef:98:cd:21:c1:47:3c:7e:4f:64:25:ca:98:a7:10: f1:33:9a:dc:72:72:7a:70:13:fd:16:8a:a1:e3:d7:d2:99:1e: 6d:c1:0c:c4:58:35:ce:ab:4e:1a:d1:67:27:fc:ea:48:68:7a: 87:29:7d:22:f0:da:f6:01:68:53:1b:09:d5:2b:ba:3d:cb:bc: 23:38:ed:a2:e7:9f:8f:2b:6f:20:d4:e5:b1:08:dd:d9:c3:68: 30:05:54:c4:a5:6e:6b:09:b1:9e:3b:02:b4:1f:f3:64:01:cb: c5:0b:2a:04:ca:0c:9a:1f:36:df:e8:00:cf:92:89:45:6d:43: 2d:2a:57:15:65:5d:08:46:f8:4f:7f:27:50:5c:c0:dc:c4:79: 86:19:cb:d1:09:51:3c:e9:9e:1b:21:71:bd:53:77:46:1d:a9: 61:67:03:7c:37:93:18:04:38:65:1c:7f:db:21:c6:2c:44:87: 9e:3c:73:08:27:e9:50:68:a1:32:a9:13:8e:15:96:07:a7:98: 82:09:ff:cc:b0:9c:16:9d:c4:de:1b:28:fd:61:f9:d6:bc:fe: 29:93:35:e1:16:0f:1a:73:ef:29:3a:10:dc:d7:6d:ef:93:d4: 60:f6:82:80 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICAmIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDMz MEJDNEUxMzdCMTUxMkUyRTQ1MDY4MDZCODcwQTRFQUE4NjBENzAeFw0yNTA4MjIw ODQ0MDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDNGNTY0QUM5RkJEQTgz QTUyQzNDMkUxRDM0OTM5Mjk1OERERUUyMzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5ohORUE2/5XIPIAO244kAhfPpCRK7Utn/7iSe4DGozVO6tKuK zCxXH7YLsXtf3wnKbjXGWbMw6nm75BVnSm3d+WVJ5DhCvz7Wz6ZrUlabY8AMMNgZ 4iPRKc4wiGmP9EHtMr7wkpr7Vwvv1vybM+Fc2nHD88OrzwWgiEk/+3sXI3xNA6w9 fUXstu/qA2o0XBPH0nmusMaTsj6hxqtGUx8xJBm20mfcZkfTp64HN6X6BLifyRpS E3wn/KRAIzpRk9Lt38gs6pqETgo42fbrc+KULroMYSFTWy0B5NLdW0Gk6O1Ys5HP pFGDhLJIcgOnZMCWqai7wJICeJTpTksZwfSFAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUP1ZKyfvag6UsPC4dNJOSlY3e4jIwHwYDVR0jBBgwFoAU0zC8ThN7FRLi5FBo BrhwpOqoYNcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQkVTVEJB U0lTLzB6QzhUaE43RlJMaTVGQm9Ccmh3cE9xb1lOYy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvMHpDOFRoTjdGUkxpNUZCb0JyaHdwT3FvWU5jLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQkVTVEJBU0lTL1AxWkt5ZnZhZzZV c1BDNGROSk9TbFkzZTRqSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFnBn4wDQYJKoZIhvcNAQELBQADggEBAEGis9sbLGS6YghKDiSBYUjbtxcY p++YzSHBRzx+T2QlypinEPEzmtxycnpwE/0WiqHj19KZHm3BDMRYNc6rThrRZyf8 6khoeocpfSLw2vYBaFMbCdUruj3LvCM47aLnn48rbyDU5bEI3dnDaDAFVMSlbmsJ sZ47ArQf82QBy8ULKgTKDJofNt/oAM+SiUVtQy0qVxVlXQhG+E9/J1BcwNzEeYYZ y9EJUTzpnhshcb1Td0YdqWFnA3w3kxgEOGUcf9shxixEh548cwgn6VBooTKpE44V lgenmIIJ/8ywnBadxN4bKP1h+da8/imTNeEWDxpz7yk6ENzXbe+T1GD2goA= -----END CERTIFICATE-----Generated at Sun Aug 24 09:15:07 2025 by rpki-client