$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CATHDD/wXFlY0DS7Tk9YVdbACjaAPlhD4M.roa File: wXFlY0DS7Tk9YVdbACjaAPlhD4M.roa (raw, json) Hash identifier: UwyRgcLRscTitWw39H2TO4FRgn7CFSoaLuxrQlQibBg= Subject key identifier: C1:71:65:63:40:D2:ED:39:3D:61:57:5B:00:28:DA:00:F9:61:0F:83 Certificate issuer: /CN=20ACCA8718500373AFF77B414B23DC6A5F1474EE Certificate serial: 0384 Authority key identifier: 20:AC:CA:87:18:50:03:73:AF:F7:7B:41:4B:23:DC:6A:5F:14:74:EE Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IKzKhxhQA3Ov93tBSyPcal8UdO4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/wXFlY0DS7Tk9YVdbACjaAPlhD4M.roa Signing time: Wed 01 Oct 2025 15:51:13 +0000 ROA not before: Wed 01 Oct 2025 15:51:13 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 150766 IP address blocks: 160.191.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/IKzKhxhQA3Ov93tBSyPcal8UdO4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/IKzKhxhQA3Ov93tBSyPcal8UdO4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/IKzKhxhQA3Ov93tBSyPcal8UdO4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 03:26:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 900 (0x384) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20ACCA8718500373AFF77B414B23DC6A5F1474EE Validity Not Before: Oct 1 15:51:13 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C171656340D2ED393D61575B0028DA00F9610F83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:8a:39:81:39:8f:ea:7c:14:12:50:f2:fd:4f: 10:ab:19:cd:a1:d9:16:de:2c:24:15:28:01:c3:74: c7:b9:85:b6:16:6c:d8:84:55:75:b9:44:c5:58:75: 86:4c:ea:c4:cf:de:6c:9e:f8:7f:68:5b:29:f7:3e: 11:3c:a2:7d:a7:aa:97:19:2e:e5:42:6a:17:77:da: 97:da:4f:59:0b:49:d8:23:11:d0:87:52:c8:51:3e: 56:ec:11:cb:27:02:f7:23:70:8b:68:de:a9:7e:67: 64:1b:d2:a2:5f:d3:97:31:1b:28:ee:68:55:88:ad: 9c:5f:7e:7f:02:1d:3d:e1:63:24:44:50:dd:12:fc: a5:8c:ca:26:e3:0b:ed:44:37:7b:47:70:23:38:c9: 57:f6:73:5e:eb:9f:a8:6d:77:9f:09:02:d0:6a:08: 19:50:76:f2:ed:f7:f4:ca:bf:ac:76:17:0d:88:dd: 76:5d:9e:c9:d3:65:e2:d9:c7:c2:fd:31:6d:71:07: b5:c1:06:2a:64:33:e9:f9:53:1c:33:c7:cc:a1:1c: 71:08:0e:6d:3a:2c:9c:f4:75:40:c2:c0:3c:a5:68: 85:ba:e4:93:5d:17:75:25:f6:44:f2:d9:bb:aa:a3: 38:57:91:a0:27:4a:3e:9c:78:d5:a3:7b:de:40:dd: 5b:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:71:65:63:40:D2:ED:39:3D:61:57:5B:00:28:DA:00:F9:61:0F:83 X509v3 Authority Key Identifier: keyid:20:AC:CA:87:18:50:03:73:AF:F7:7B:41:4B:23:DC:6A:5F:14:74:EE X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/IKzKhxhQA3Ov93tBSyPcal8UdO4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IKzKhxhQA3Ov93tBSyPcal8UdO4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/wXFlY0DS7Tk9YVdbACjaAPlhD4M.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.191.8.0/24 Signature Algorithm: sha256WithRSAEncryption 35:4b:be:a8:e7:ca:d9:8c:c7:a9:e1:da:eb:59:14:7d:98:3a: d0:6a:d0:98:ab:9c:02:f6:f6:67:ca:6c:e5:4b:b3:98:24:26: e5:bb:92:01:14:ac:8e:21:96:75:be:a4:5e:28:a9:de:12:5d: eb:9e:d9:c6:d3:73:7e:bd:b0:e7:95:67:12:9d:22:b4:91:1c: a8:36:21:e8:c5:58:21:05:fc:5c:ea:bc:da:3d:3c:e7:91:19: c3:79:22:e6:43:e1:70:a4:5c:6c:50:77:ab:f4:4d:fd:d2:cf: 4c:0c:53:2e:fc:90:55:90:13:aa:9f:37:07:f0:8c:5b:53:a0: 19:00:78:53:56:19:9b:db:0a:3e:96:98:63:89:60:e7:9b:fb: 22:36:b7:76:b2:74:23:11:48:5c:58:44:7e:31:01:e4:2f:55: 85:9d:30:17:94:d0:74:6f:35:e0:1f:27:80:22:8a:33:5c:a1: d8:74:ea:91:ef:89:fd:e4:4b:6f:23:2c:c5:f9:5a:43:6c:bd: d3:e7:b8:ff:64:10:3b:83:70:b3:b6:a4:42:83:d8:39:f0:2a: e1:18:1e:4b:66:e0:0e:73:ef:b7:fd:b6:53:c8:98:04:90:85: 67:43:1c:73:20:0b:d7:cf:5e:c5:b3:de:b0:f8:0a:43:db:bf: 96:bc:d5:98 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICA4QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjBB Q0NBODcxODUwMDM3M0FGRjc3QjQxNEIyM0RDNkE1RjE0NzRFRTAeFw0yNTEwMDEx NTUxMTNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEMxNzE2NTYzNDBEMkVE MzkzRDYxNTc1QjAwMjhEQTAwRjk2MTBGODMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqijmBOY/qfBQSUPL9TxCrGc2h2RbeLCQVKAHDdMe5hbYWbNiE VXW5RMVYdYZM6sTP3mye+H9oWyn3PhE8on2nqpcZLuVCahd32pfaT1kLSdgjEdCH UshRPlbsEcsnAvcjcIto3ql+Z2Qb0qJf05cxGyjuaFWIrZxffn8CHT3hYyREUN0S /KWMyibjC+1EN3tHcCM4yVf2c17rn6htd58JAtBqCBlQdvLt9/TKv6x2Fw2I3XZd nsnTZeLZx8L9MW1xB7XBBipkM+n5Uxwzx8yhHHEIDm06LJz0dUDCwDylaIW65JNd F3Ul9kTy2buqozhXkaAnSj6ceNWje95A3VvfAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUwXFlY0DS7Tk9YVdbACjaAPlhD4MwHwYDVR0jBBgwFoAUIKzKhxhQA3Ov93tB SyPcal8UdO4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0FUSERE L0lLektoeGhRQTNPdjkzdEJTeVBjYWw4VWRPNC5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSUt6S2h4aFFBM092OTN0QlN5UGNhbDhVZE80LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0FUSEREL3dYRmxZMERTN1RrOVlWZGJB Q2phQVBsaEQ0TS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACg vwgwDQYJKoZIhvcNAQELBQADggEBADVLvqjnytmMx6nh2utZFH2YOtBq0JirnAL2 9mfKbOVLs5gkJuW7kgEUrI4hlnW+pF4oqd4SXeue2cbTc369sOeVZxKdIrSRHKg2 IejFWCEF/FzqvNo9POeRGcN5IuZD4XCkXGxQd6v0Tf3Sz0wMUy78kFWQE6qfNwfw jFtToBkAeFNWGZvbCj6WmGOJYOeb+yI2t3aydCMRSFxYRH4xAeQvVYWdMBeU0HRv NeAfJ4AiijNcodh06pHvif3kS28jLMX5WkNsvdPnuP9kEDuDcLO2pEKD2DnwKuEY Hktm4A5z77f9tlPImASQhWdDHHMgC9fPXsWz3rD4CkPbv5a81Zg= -----END CERTIFICATE-----Generated at Tue Oct 21 01:21:54 2025 by rpki-client