$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CATHDD/gn1GKghR4XaGzZzd9cX9fOI1Ek4.roa File: gn1GKghR4XaGzZzd9cX9fOI1Ek4.roa (raw, json) Hash identifier: Eezi5ToGvvbLs3N8RzG6qj/i/tM/Y7p/7lECmZ5IsHE= Subject key identifier: 82:7D:46:2A:08:51:E1:76:86:CD:9C:DD:F5:C5:FD:7C:E2:35:12:4E Certificate issuer: /CN=20ACCA8718500373AFF77B414B23DC6A5F1474EE Certificate serial: 0384 Authority key identifier: 20:AC:CA:87:18:50:03:73:AF:F7:7B:41:4B:23:DC:6A:5F:14:74:EE Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IKzKhxhQA3Ov93tBSyPcal8UdO4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/gn1GKghR4XaGzZzd9cX9fOI1Ek4.roa Signing time: Wed 01 Oct 2025 15:51:13 +0000 ROA not before: Wed 01 Oct 2025 15:51:13 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 150766 IP address blocks: 160.191.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/IKzKhxhQA3Ov93tBSyPcal8UdO4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/IKzKhxhQA3Ov93tBSyPcal8UdO4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/IKzKhxhQA3Ov93tBSyPcal8UdO4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 08:26:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 900 (0x384) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20ACCA8718500373AFF77B414B23DC6A5F1474EE Validity Not Before: Oct 1 15:51:13 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=827D462A0851E17686CD9CDDF5C5FD7CE235124E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:78:55:99:64:16:83:59:74:f8:54:95:17:5c: e7:54:17:4e:02:7a:64:78:c8:58:50:e8:70:a9:63: 28:ca:56:29:9f:74:74:4b:f4:60:5e:21:89:92:45: 20:b5:59:37:96:7b:e9:8e:28:e8:5e:76:75:9f:32: 56:48:27:8a:07:48:d8:3a:54:c5:ac:0f:37:02:ba: f2:ac:57:b0:a9:50:99:25:59:7c:66:0a:86:14:d4: d7:e1:37:3b:a2:9c:ec:d1:9f:2b:9b:a6:d7:2b:da: bf:2e:3f:c2:d6:ba:a9:20:61:1d:c8:df:a7:85:58: 30:06:79:bd:d3:47:9e:bf:e5:23:b6:4c:e0:6e:87: c6:f6:04:3a:34:60:83:b2:f5:96:42:4c:7a:18:08: fa:27:f9:e8:5d:9f:27:ef:a6:99:bc:a2:9b:9a:d6: 1e:99:eb:25:29:88:1a:35:45:16:6e:3b:f8:5c:a8: 03:96:08:41:d4:47:97:ab:f9:93:5c:2a:35:61:19: 4d:41:a6:fd:b2:42:7b:5a:e0:5d:b3:88:de:31:93: e4:97:d4:5b:18:9e:b7:84:cb:87:2e:aa:88:0e:f3: c1:a8:18:e6:18:ea:5a:f7:91:7c:ff:e4:cf:fc:64: 74:48:cd:fa:83:90:a1:55:07:c7:26:31:9b:e0:bc: 76:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:7D:46:2A:08:51:E1:76:86:CD:9C:DD:F5:C5:FD:7C:E2:35:12:4E X509v3 Authority Key Identifier: keyid:20:AC:CA:87:18:50:03:73:AF:F7:7B:41:4B:23:DC:6A:5F:14:74:EE X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/IKzKhxhQA3Ov93tBSyPcal8UdO4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IKzKhxhQA3Ov93tBSyPcal8UdO4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/gn1GKghR4XaGzZzd9cX9fOI1Ek4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.191.9.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:d6:82:af:ba:de:b1:99:10:79:bf:f4:87:d9:99:ec:f0:94: 3d:32:8a:56:f6:71:59:a7:be:f1:f2:1d:d5:dd:47:05:86:e1: 63:c0:7f:46:1a:3d:04:c9:55:5a:dd:13:f8:8c:24:cc:f2:ad: ce:3b:1c:a7:dd:01:10:bc:0c:a0:49:1d:e1:a1:e0:7c:f6:c6: a7:33:9d:17:f3:15:8f:07:80:4d:89:69:77:0e:89:08:5a:21: 2a:28:3f:1f:bc:d1:3a:8f:ef:8e:16:fe:d2:c2:7b:cb:cd:5f: 42:e4:be:e8:7a:56:c6:50:e7:cf:31:42:e0:ef:68:be:4c:c7: 86:cd:b0:1f:f4:8b:b3:b3:6b:b0:3c:3d:53:5e:c5:d4:94:f2: b1:12:a1:33:99:e3:90:26:cb:cb:0d:6b:4b:a8:1d:d2:b1:16: c0:f2:9a:cd:7f:7e:4c:27:8b:ad:ba:d5:04:76:ed:7a:f9:02: dc:fb:ce:90:f9:19:39:d7:7f:4a:cc:01:fa:72:66:12:92:f1: 11:f4:c5:4d:cc:31:40:fd:88:3f:97:0c:b7:d5:76:4e:f2:5f: 7c:e1:2b:6d:71:e9:63:f7:62:96:0b:45:67:bc:de:84:16:b0: ef:2b:8c:b7:3b:25:1d:b5:54:1b:88:4f:6b:29:6a:59:8c:8f: 5a:bc:31:17 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICA4QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjBB Q0NBODcxODUwMDM3M0FGRjc3QjQxNEIyM0RDNkE1RjE0NzRFRTAeFw0yNTEwMDEx NTUxMTNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDgyN0Q0NjJBMDg1MUUx NzY4NkNEOUNEREY1QzVGRDdDRTIzNTEyNEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpeFWZZBaDWXT4VJUXXOdUF04CemR4yFhQ6HCpYyjKVimfdHRL 9GBeIYmSRSC1WTeWe+mOKOhednWfMlZIJ4oHSNg6VMWsDzcCuvKsV7CpUJklWXxm CoYU1NfhNzuinOzRnyubptcr2r8uP8LWuqkgYR3I36eFWDAGeb3TR56/5SO2TOBu h8b2BDo0YIOy9ZZCTHoYCPon+ehdnyfvppm8opua1h6Z6yUpiBo1RRZuO/hcqAOW CEHUR5er+ZNcKjVhGU1Bpv2yQnta4F2ziN4xk+SX1FsYnreEy4cuqogO88GoGOYY 6lr3kXz/5M/8ZHRIzfqDkKFVB8cmMZvgvHbdAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUgn1GKghR4XaGzZzd9cX9fOI1Ek4wHwYDVR0jBBgwFoAUIKzKhxhQA3Ov93tB SyPcal8UdO4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0FUSERE L0lLektoeGhRQTNPdjkzdEJTeVBjYWw4VWRPNC5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSUt6S2h4aFFBM092OTN0QlN5UGNhbDhVZE80LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0FUSEREL2duMUdLZ2hSNFhhR3paemQ5 Y1g5Zk9JMUVrNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACg vwkwDQYJKoZIhvcNAQELBQADggEBAI/Wgq+63rGZEHm/9IfZmezwlD0yilb2cVmn vvHyHdXdRwWG4WPAf0YaPQTJVVrdE/iMJMzyrc47HKfdARC8DKBJHeGh4Hz2xqcz nRfzFY8HgE2JaXcOiQhaISooPx+80TqP744W/tLCe8vNX0Lkvuh6VsZQ588xQuDv aL5Mx4bNsB/0i7Oza7A8PVNexdSU8rESoTOZ45Amy8sNa0uoHdKxFsDyms1/fkwn i6261QR27Xr5Atz7zpD5GTnXf0rMAfpyZhKS8RH0xU3MMUD9iD+XDLfVdk7yX3zh K21x6WP3YpYLRWe83oQWsO8rjLc7JR21VBuIT2spalmMj1q8MRc= -----END CERTIFICATE-----Generated at Tue Oct 21 06:17:52 2025 by rpki-client