$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CATVISP/FrQlaztT1TknIkcRvjBU8KHwcjA.roa File: FrQlaztT1TknIkcRvjBU8KHwcjA.roa (raw, json) Hash identifier: FITFyBeeFg3IK5v2sIgxEdsai7z13aAMB+tTWtzo2Uo= Subject key identifier: 16:B4:25:6B:3B:53:D5:39:27:22:47:11:BE:30:54:F0:A1:F0:72:30 Certificate issuer: /CN=BD822D992B0F68B61E6E0A2E6143F2BF8915BB61 Certificate serial: 0D2B Authority key identifier: BD:82:2D:99:2B:0F:68:B6:1E:6E:0A:2E:61:43:F2:BF:89:15:BB:61 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/vYItmSsPaLYebgouYUPyv4kVu2E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/FrQlaztT1TknIkcRvjBU8KHwcjA.roa Signing time: Fri 22 Aug 2025 08:56:43 +0000 ROA not before: Fri 22 Aug 2025 08:56:43 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18046 IP address blocks: 43.248.16.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/vYItmSsPaLYebgouYUPyv4kVu2E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/vYItmSsPaLYebgouYUPyv4kVu2E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/vYItmSsPaLYebgouYUPyv4kVu2E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3371 (0xd2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD822D992B0F68B61E6E0A2E6143F2BF8915BB61 Validity Not Before: Aug 22 08:56:43 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=16B4256B3B53D53927224711BE3054F0A1F07230 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:2d:4c:6b:24:f4:16:ad:7e:b8:16:bd:b0:bc: 6f:99:3d:46:c3:bb:c1:95:8a:b8:7d:7e:79:d1:d8: 53:62:33:57:95:24:69:9a:cf:e0:45:40:8e:a8:4e: 59:27:45:8a:53:07:db:f4:0e:73:8c:f5:c0:e7:f5: 1a:72:55:4d:c6:51:c6:70:e3:ee:d2:f9:2c:a5:90: 7f:34:00:a6:6d:0e:20:47:86:43:b1:88:1a:e7:23: a1:85:48:cb:b8:16:d5:18:a3:24:f0:c7:67:5e:26: ce:53:e7:22:71:89:65:4e:a5:34:c3:95:31:d4:f3: b4:a4:07:4f:f5:36:cc:96:fe:bd:dd:89:42:42:ea: ea:a4:44:a7:54:a8:9d:e3:86:c0:9f:7a:62:66:44: 74:a3:96:99:df:fc:29:ab:cc:2b:36:b8:04:b2:6e: 1b:e3:b4:ec:52:34:1c:6d:f6:a1:7b:8a:75:ba:b3: a7:1f:c1:c1:cf:35:fb:01:eb:43:50:6a:50:0a:cb: 4a:c7:52:7d:2b:74:a0:f6:81:b6:66:65:ad:79:91: e9:c1:d9:d6:36:85:53:b0:51:cb:3e:0c:06:de:6c: a4:7d:f8:77:d7:7d:be:21:48:e7:0c:19:e0:9f:d6: 9f:74:2e:8a:92:cc:b4:59:8c:6e:39:ee:ed:51:10: e9:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:B4:25:6B:3B:53:D5:39:27:22:47:11:BE:30:54:F0:A1:F0:72:30 X509v3 Authority Key Identifier: keyid:BD:82:2D:99:2B:0F:68:B6:1E:6E:0A:2E:61:43:F2:BF:89:15:BB:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/vYItmSsPaLYebgouYUPyv4kVu2E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/vYItmSsPaLYebgouYUPyv4kVu2E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/FrQlaztT1TknIkcRvjBU8KHwcjA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.248.16.0/22 Signature Algorithm: sha256WithRSAEncryption bb:50:6b:10:0a:bb:34:73:31:e9:ba:ba:e1:8c:dc:8c:c8:f0: 49:2b:d3:52:8e:ec:16:e1:95:d5:9a:37:2f:1f:8e:c0:d5:ea: f3:8c:33:6d:18:e7:39:22:5e:42:5d:94:8b:99:21:eb:22:48: 3d:08:0c:98:a5:dc:88:19:d6:04:9a:82:11:95:d2:44:fd:3c: 7e:f0:e5:08:78:b8:d3:9a:32:1b:86:81:84:42:ae:f8:f6:28: 1c:e2:1a:99:e2:a4:40:ee:c5:fa:b0:1e:f0:63:8a:cd:3d:df: 48:d2:a9:7b:4d:8a:f6:d4:92:30:00:f9:a6:59:6d:23:e5:a4: 1f:7a:75:07:e7:74:d0:30:f3:6b:db:80:fd:74:db:45:d1:d0: dc:e2:aa:3c:d3:5f:d1:e1:30:92:11:94:64:a2:00:09:e9:01: 4b:87:18:58:ee:58:3b:d4:2f:c6:3e:49:29:d5:92:6d:39:23: a6:db:c3:b1:bf:40:02:e0:30:ed:2c:c8:92:82:e0:d6:18:d3: 65:3c:9c:3d:3b:d9:d5:85:c3:18:4c:40:42:7d:72:88:4a:01: dc:f0:ba:a7:37:a8:af:f1:89:10:0d:8b:c2:c9:94:68:87:ae: b7:9e:70:56:c2:a9:c3:df:78:2d:03:90:e5:55:5c:10:31:bc: a3:73:b1:5a -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDSswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkQ4 MjJEOTkyQjBGNjhCNjFFNkUwQTJFNjE0M0YyQkY4OTE1QkI2MTAeFw0yNTA4MjIw ODU2NDNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDE2QjQyNTZCM0I1M0Q1 MzkyNzIyNDcxMUJFMzA1NEYwQTFGMDcyMzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMLUxrJPQWrX64Fr2wvG+ZPUbDu8GVirh9fnnR2FNiM1eVJGma z+BFQI6oTlknRYpTB9v0DnOM9cDn9RpyVU3GUcZw4+7S+SylkH80AKZtDiBHhkOx iBrnI6GFSMu4FtUYoyTwx2deJs5T5yJxiWVOpTTDlTHU87SkB0/1NsyW/r3diUJC 6uqkRKdUqJ3jhsCfemJmRHSjlpnf/CmrzCs2uASybhvjtOxSNBxt9qF7inW6s6cf wcHPNfsB60NQalAKy0rHUn0rdKD2gbZmZa15kenB2dY2hVOwUcs+DAbebKR9+HfX fb4hSOcMGeCf1p90LoqSzLRZjG457u1REOlLAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUFrQlaztT1TknIkcRvjBU8KHwcjAwHwYDVR0jBBgwFoAUvYItmSsPaLYebgou YUPyv4kVu2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0FUVklT UC92WUl0bVNzUGFMWWViZ291WVVQeXY0a1Z1MkUuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL3ZZSXRtU3NQYUxZZWJnb3VZVVB5djRrVnUyRS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NBVFZJU1AvRnJRbGF6dFQxVGtuSWtj UnZqQlU4S0h3Y2pBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME Aiv4EDANBgkqhkiG9w0BAQsFAAOCAQEAu1BrEAq7NHMx6bq64YzcjMjwSSvTUo7s FuGV1Zo3Lx+OwNXq84wzbRjnOSJeQl2Ui5kh6yJIPQgMmKXciBnWBJqCEZXSRP08 fvDlCHi405oyG4aBhEKu+PYoHOIameKkQO7F+rAe8GOKzT3fSNKpe02K9tSSMAD5 plltI+WkH3p1B+d00DDza9uA/XTbRdHQ3OKqPNNf0eEwkhGUZKIACekBS4cYWO5Y O9Qvxj5JKdWSbTkjptvDsb9AAuAw7SzIkoLg1hjTZTycPTvZ1YXDGExAQn1yiEoB 3PC6pzeor/GJEA2LwsmUaIeut55wVsKpw994LQOQ5VVcEDG8o3OxWg== -----END CERTIFICATE-----Generated at Sun Aug 24 07:42:01 2025 by rpki-client