$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CATVISP/m84ZI8byQOnmkRJkXv3sq7njhmI.roa File: m84ZI8byQOnmkRJkXv3sq7njhmI.roa (raw, json) Hash identifier: oz2DZZR/arQFDz8zl3xo2CM2MokQCz2gJAL4AAr35Sw= Subject key identifier: 9B:CE:19:23:C6:F2:40:E9:E6:91:12:64:5E:FD:EC:AB:B9:E3:86:62 Certificate issuer: /CN=BD822D992B0F68B61E6E0A2E6143F2BF8915BB61 Certificate serial: 0D2C Authority key identifier: BD:82:2D:99:2B:0F:68:B6:1E:6E:0A:2E:61:43:F2:BF:89:15:BB:61 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/vYItmSsPaLYebgouYUPyv4kVu2E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/m84ZI8byQOnmkRJkXv3sq7njhmI.roa Signing time: Fri 22 Aug 2025 08:56:44 +0000 ROA not before: Fri 22 Aug 2025 08:56:44 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18046 IP address blocks: 103.233.68.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/vYItmSsPaLYebgouYUPyv4kVu2E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/vYItmSsPaLYebgouYUPyv4kVu2E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/vYItmSsPaLYebgouYUPyv4kVu2E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3372 (0xd2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD822D992B0F68B61E6E0A2E6143F2BF8915BB61 Validity Not Before: Aug 22 08:56:44 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=9BCE1923C6F240E9E69112645EFDECABB9E38662 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:6b:b3:4b:28:fc:9c:62:f3:24:52:32:cf:6e: 63:07:84:9a:d6:70:6e:5d:4f:5a:63:c2:96:65:5c: c9:16:61:39:bf:e7:ae:71:9d:3f:fc:a3:62:6e:75: ed:06:7f:26:ef:24:f8:35:4a:15:2c:7b:11:a7:f6: c0:44:86:24:15:0b:e8:02:8c:25:b0:73:b1:c5:59: fb:48:89:b1:7e:e2:7d:4e:28:0f:22:43:68:19:5c: 2a:bf:0e:78:0c:4b:8c:f8:b5:ec:48:67:38:c7:20: c8:8e:42:34:cf:7d:9a:eb:f7:3a:a5:70:e8:85:d2: a5:43:6d:0e:c8:15:9a:34:11:5d:a5:72:6e:bf:08: 41:43:ac:ac:fc:de:ab:b3:6e:3f:ce:a6:f1:38:72: 2d:11:e1:f3:ff:60:0d:35:96:36:ad:93:44:ed:75: c2:46:69:e3:04:68:c6:46:ca:89:4e:7a:c4:6f:15: db:a3:54:05:84:de:fe:61:bb:d3:df:68:28:6b:a2: a9:0f:43:6f:e7:b5:b7:d6:35:35:56:26:8c:f0:c0: c4:12:74:12:8a:4a:93:65:f7:32:cb:67:9a:73:a7: 94:c4:51:b0:75:01:9d:22:c2:59:1c:9e:de:35:27: 59:27:80:e1:01:9a:86:95:5d:a1:93:fa:08:18:95: 1f:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:CE:19:23:C6:F2:40:E9:E6:91:12:64:5E:FD:EC:AB:B9:E3:86:62 X509v3 Authority Key Identifier: keyid:BD:82:2D:99:2B:0F:68:B6:1E:6E:0A:2E:61:43:F2:BF:89:15:BB:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/vYItmSsPaLYebgouYUPyv4kVu2E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/vYItmSsPaLYebgouYUPyv4kVu2E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/m84ZI8byQOnmkRJkXv3sq7njhmI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.233.68.0/22 Signature Algorithm: sha256WithRSAEncryption 42:96:66:70:15:46:89:6e:17:1e:a4:0e:5d:e3:58:ca:9d:40: 61:f5:90:0d:6b:60:66:01:1a:ff:0e:98:f8:f8:d6:d1:5b:0c: 12:a0:ac:28:90:43:93:6b:cf:a5:10:27:4d:88:d3:37:75:71: 20:a9:41:b8:e7:37:34:4a:f3:e7:c1:15:c0:eb:06:29:be:02: 36:49:e2:e7:8b:84:9d:9f:f0:21:65:cb:dc:f8:2a:39:f5:77: a3:c1:9b:4b:23:8b:7a:dd:6f:59:d1:87:3f:44:7a:c7:b1:2b: 54:30:5e:9a:62:09:7f:b8:68:a8:20:d5:3b:19:d2:2f:72:23: ab:24:55:c3:cb:68:3a:13:5d:cc:2b:b8:61:9d:9e:26:17:1e: 3d:76:91:8b:fe:f5:51:f3:fe:76:80:04:02:12:6d:99:d2:00: 25:6c:1e:3c:a4:9e:98:b8:72:eb:c6:23:e2:e1:d1:e6:5b:77: 3b:a3:f2:b8:64:2b:5d:d2:02:99:1a:f1:e9:fd:6d:f0:74:a6: 20:c0:a8:ed:79:d4:f2:32:34:32:64:5f:25:54:a2:12:21:93: c2:95:3d:16:fc:43:19:78:d7:b9:75:a3:a3:78:7c:65:f7:3c: 2b:33:73:fa:61:07:5d:ad:df:de:73:21:c8:35:6e:b7:b2:87: 26:67:53:09 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDSwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkQ4 MjJEOTkyQjBGNjhCNjFFNkUwQTJFNjE0M0YyQkY4OTE1QkI2MTAeFw0yNTA4MjIw ODU2NDRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDlCQ0UxOTIzQzZGMjQw RTlFNjkxMTI2NDVFRkRFQ0FCQjlFMzg2NjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHa7NLKPycYvMkUjLPbmMHhJrWcG5dT1pjwpZlXMkWYTm/565x nT/8o2Jude0GfybvJPg1ShUsexGn9sBEhiQVC+gCjCWwc7HFWftIibF+4n1OKA8i Q2gZXCq/DngMS4z4texIZzjHIMiOQjTPfZrr9zqlcOiF0qVDbQ7IFZo0EV2lcm6/ CEFDrKz83quzbj/OpvE4ci0R4fP/YA01ljatk0TtdcJGaeMEaMZGyolOesRvFduj VAWE3v5hu9PfaChroqkPQ2/ntbfWNTVWJozwwMQSdBKKSpNl9zLLZ5pzp5TEUbB1 AZ0iwlkcnt41J1kngOEBmoaVXaGT+ggYlR/5AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUm84ZI8byQOnmkRJkXv3sq7njhmIwHwYDVR0jBBgwFoAUvYItmSsPaLYebgou YUPyv4kVu2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0FUVklT UC92WUl0bVNzUGFMWWViZ291WVVQeXY0a1Z1MkUuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL3ZZSXRtU3NQYUxZZWJnb3VZVVB5djRrVnUyRS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NBVFZJU1AvbTg0Wkk4YnlRT25ta1JK a1h2M3NxN25qaG1JLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AmfpRDANBgkqhkiG9w0BAQsFAAOCAQEAQpZmcBVGiW4XHqQOXeNYyp1AYfWQDWtg ZgEa/w6Y+PjW0VsMEqCsKJBDk2vPpRAnTYjTN3VxIKlBuOc3NErz58EVwOsGKb4C Nkni54uEnZ/wIWXL3PgqOfV3o8GbSyOLet1vWdGHP0R6x7ErVDBemmIJf7hoqCDV OxnSL3IjqyRVw8toOhNdzCu4YZ2eJhcePXaRi/71UfP+doAEAhJtmdIAJWwePKSe mLhy68Yj4uHR5lt3O6PyuGQrXdICmRrx6f1t8HSmIMCo7XnU8jI0MmRfJVSiEiGT wpU9FvxDGXjXuXWjo3h8Zfc8KzNz+mEHXa3f3nMhyDVut7KHJmdTCQ== -----END CERTIFICATE-----Generated at Sun Aug 24 07:42:10 2025 by rpki-client