$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CCP1138470/BpvD2IO-9HFnQLa6IRHIZ6gu8g8.roa File: BpvD2IO-9HFnQLa6IRHIZ6gu8g8.roa (raw, json) Hash identifier: YskWSb9lvuCPhdJsKmotzzOCSPsYwaOFAQwd1VwBh4Q= Subject key identifier: 06:9B:C3:D8:83:BE:F4:71:67:40:B6:BA:21:11:C8:67:A8:2E:F2:0F Certificate issuer: /CN=578183A0FE5DA4A0F3C0546FB6EC26CBD1232F99 Certificate serial: 03D7 Authority key identifier: 57:81:83:A0:FE:5D:A4:A0:F3:C0:54:6F:B6:EC:26:CB:D1:23:2F:99 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V4GDoP5dpKDzwFRvtuwmy9EjL5k.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138470/BpvD2IO-9HFnQLa6IRHIZ6gu8g8.roa Signing time: Fri 22 Aug 2025 08:50:43 +0000 ROA not before: Fri 22 Aug 2025 08:50:43 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 63893 IP address blocks: 2400:5060::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138470/V4GDoP5dpKDzwFRvtuwmy9EjL5k.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138470/V4GDoP5dpKDzwFRvtuwmy9EjL5k.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/V4GDoP5dpKDzwFRvtuwmy9EjL5k.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 983 (0x3d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=578183A0FE5DA4A0F3C0546FB6EC26CBD1232F99 Validity Not Before: Aug 22 08:50:43 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=069BC3D883BEF4716740B6BA2111C867A82EF20F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c7:b5:66:af:e5:2a:00:b1:2b:36:98:65:f1: e8:56:a4:4b:23:e0:79:af:48:82:79:8e:6e:c5:1d: ea:1e:b2:5a:32:66:61:2b:28:d3:9c:c7:37:00:c3: 90:aa:ec:43:82:37:ca:a6:c4:6b:57:d3:99:e2:84: a8:1b:5f:d4:46:9f:46:86:4d:11:73:d2:0f:f1:20: ba:b8:26:7b:e9:94:63:05:ad:bb:88:81:31:74:9f: 2c:ef:d9:a4:8d:53:40:29:b3:ab:a7:98:7f:5b:b6: 50:25:f2:9e:ea:54:b6:b3:40:ec:32:73:90:5f:30: 34:4e:fe:a6:1e:0a:cd:59:5a:f3:63:57:d1:3f:2f: 5f:de:29:ec:c5:e2:0d:a3:e7:76:04:b4:69:14:f0: ad:6a:b4:ee:e0:1b:a5:6d:de:6e:bb:61:e1:ba:2c: 62:49:75:ad:50:ba:d4:fc:7a:b4:2d:41:5d:42:8b: 13:ca:49:6c:2c:cb:a0:9b:5e:6c:f3:8a:06:27:31: ad:1f:ee:62:30:9a:84:64:09:a7:55:b5:a8:0a:f3: d1:95:48:9d:12:b5:76:ef:e7:0c:d0:8b:b7:2b:8b: d2:78:88:b9:9a:36:76:d7:1b:dd:f0:8e:e6:8b:d2: 4b:83:41:b9:9b:fe:c8:80:f7:08:b7:6f:ab:26:9f: 39:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:9B:C3:D8:83:BE:F4:71:67:40:B6:BA:21:11:C8:67:A8:2E:F2:0F X509v3 Authority Key Identifier: keyid:57:81:83:A0:FE:5D:A4:A0:F3:C0:54:6F:B6:EC:26:CB:D1:23:2F:99 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138470/V4GDoP5dpKDzwFRvtuwmy9EjL5k.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V4GDoP5dpKDzwFRvtuwmy9EjL5k.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138470/BpvD2IO-9HFnQLa6IRHIZ6gu8g8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2400:5060::/32 Signature Algorithm: sha256WithRSAEncryption 54:4b:96:da:4f:84:21:9d:43:b9:31:16:4d:85:dd:4c:94:86: b8:15:04:ec:ac:58:8b:f0:e1:02:dd:f1:58:4d:f5:89:87:46: 78:24:72:b9:c2:03:2a:17:5d:ba:79:40:e1:f6:2f:bb:b1:26: fb:89:f5:b0:37:cf:e8:d6:6a:8b:65:2f:b7:6b:fe:9b:18:65: db:59:8e:16:fd:32:cb:cc:0e:09:e5:18:f2:82:3b:37:6a:31: 32:22:e5:60:e1:a4:e4:26:00:61:4f:a3:a4:15:09:39:3e:ad: 03:7b:d3:06:ed:c1:db:21:1a:34:1a:5e:e7:c0:e0:9c:92:67: 0a:4d:d1:5b:1f:15:b5:d0:c9:1c:23:1b:de:82:d4:22:8d:bc: 13:cc:52:a1:91:81:28:ad:82:42:12:69:6d:f7:66:28:70:68: bd:56:fc:f3:1b:17:d9:cb:ae:45:ae:f8:71:04:73:11:71:96: 3e:0d:b7:c0:a9:4c:87:ca:89:ff:2e:42:c5:42:00:17:3f:b6: 90:df:57:1e:31:21:c5:ac:2c:42:b1:79:96:2d:00:34:da:eb: d9:11:b6:8c:97:0d:47:3b:1e:4b:06:fa:12:c2:69:22:f9:81: a3:a9:9c:fa:45:73:a7:6e:ce:69:b3:b4:53:d8:81:e0:ac:fa: 54:ad:78:50 -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgICA9cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTc4 MTgzQTBGRTVEQTRBMEYzQzA1NDZGQjZFQzI2Q0JEMTIzMkY5OTAeFw0yNTA4MjIw ODUwNDNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDA2OUJDM0Q4ODNCRUY0 NzE2NzQwQjZCQTIxMTFDODY3QTgyRUYyMEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCux7Vmr+UqALErNphl8ehWpEsj4HmvSIJ5jm7FHeoesloyZmEr KNOcxzcAw5Cq7EOCN8qmxGtX05nihKgbX9RGn0aGTRFz0g/xILq4JnvplGMFrbuI gTF0nyzv2aSNU0Aps6unmH9btlAl8p7qVLazQOwyc5BfMDRO/qYeCs1ZWvNjV9E/ L1/eKezF4g2j53YEtGkU8K1qtO7gG6Vt3m67YeG6LGJJda1QutT8erQtQV1CixPK SWwsy6CbXmzzigYnMa0f7mIwmoRkCadVtagK89GVSJ0StXbv5wzQi7cri9J4iLma NnbXG93wjuaL0kuDQbmb/siA9wi3b6smnznTAgMBAAGjggH3MIIB8zAdBgNVHQ4E FgQUBpvD2IO+9HFnQLa6IRHIZ6gu8g8wHwYDVR0jBBgwFoAUV4GDoP5dpKDzwFRv tuwmy9EjL5kwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0NQMTEz ODQ3MC9WNEdEb1A1ZHBLRHp3RlJ2dHV3bXk5RWpMNWsuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL1Y0R0RvUDVkcEtEendGUnZ0dXdteTlFakw1ay5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NDUDExMzg0NzAvQnB2RDJJTy05 SEZuUUxhNklSSElaNmd1OGc4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQC AAIwBwMFACQAUGAwDQYJKoZIhvcNAQELBQADggEBAFRLltpPhCGdQ7kxFk2F3UyU hrgVBOysWIvw4QLd8VhN9YmHRngkcrnCAyoXXbp5QOH2L7uxJvuJ9bA3z+jWaotl L7dr/psYZdtZjhb9MsvMDgnlGPKCOzdqMTIi5WDhpOQmAGFPo6QVCTk+rQN70wbt wdshGjQaXufA4JySZwpN0VsfFbXQyRwjG96C1CKNvBPMUqGRgSitgkISaW33Zihw aL1W/PMbF9nLrkWu+HEEcxFxlj4Nt8CpTIfKif8uQsVCABc/tpDfVx4xIcWsLEKx eZYtADTa69kRtoyXDUc7HksG+hLCaSL5gaOpnPpFc6duzmmztFPYgeCs+lSteFA= -----END CERTIFICATE-----Generated at Sun Aug 24 07:44:01 2025 by rpki-client