$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/J_S8DtxHnzgcFjrFSl_b0QGZH0Y.roa File: J_S8DtxHnzgcFjrFSl_b0QGZH0Y.roa (raw, json) Hash identifier: 9Ez7djC3ibCseC8iDxNix88D6e/b0seyAz0szQSuYCI= Subject key identifier: 27:F4:BC:0E:DC:47:9F:38:1C:16:3A:C5:4A:5F:DB:D1:01:99:1F:46 Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Certificate serial: 0F84 Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/J_S8DtxHnzgcFjrFSl_b0QGZH0Y.roa Signing time: Fri 22 Aug 2025 08:51:27 +0000 ROA not before: Fri 22 Aug 2025 08:51:27 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18429 IP address blocks: 61.57.144.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3972 (0xf84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Validity Not Before: Aug 22 08:51:27 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=27F4BC0EDC479F381C163AC54A5FDBD101991F46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:de:5e:48:ed:8e:64:39:9b:fc:17:0e:e1:c2: 2b:f0:00:92:80:69:c0:21:4f:25:88:71:c3:45:89: f6:a8:c6:66:eb:ee:07:d1:d5:4b:b9:fd:eb:0a:eb: 88:b4:1c:71:9c:5c:40:52:92:c8:3b:3b:40:28:1c: 33:b4:ec:8a:4b:3b:7b:8b:6e:09:ef:ba:6a:6a:dd: 8a:5b:66:c2:86:e4:43:5a:bf:b5:8d:60:3f:c9:e5: d6:4c:c0:a0:d9:f6:d7:23:03:81:d4:49:d7:c9:e2: ab:70:1d:e1:b7:1a:7a:40:4b:69:85:67:c5:be:84: b8:31:82:80:2d:dc:83:9c:1c:05:b5:e5:e4:c0:78: b6:7c:36:8c:a6:2e:50:bd:48:07:06:8f:24:1b:e7: 8a:f5:f3:70:d4:10:50:e5:d5:e1:40:7a:3b:94:4f: eb:67:d8:c9:d5:79:2f:24:a5:03:46:ba:8a:de:79: 0b:ab:ef:ef:fc:1a:cb:3e:e0:a7:1f:70:84:30:72: 52:fd:e4:b3:f1:a4:87:c3:c7:72:39:02:0f:22:46: f9:98:90:20:e4:b2:64:f9:e2:1c:dd:6c:8c:2a:3f: 76:e8:5f:14:7f:55:6b:a7:22:c2:e7:c9:6a:28:e9: 96:0e:46:ac:22:bf:be:cd:b6:dd:52:f9:bb:31:f7: 50:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:F4:BC:0E:DC:47:9F:38:1C:16:3A:C5:4A:5F:DB:D1:01:99:1F:46 X509v3 Authority Key Identifier: keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/J_S8DtxHnzgcFjrFSl_b0QGZH0Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.57.144.0/22 Signature Algorithm: sha256WithRSAEncryption 75:db:48:9d:1a:6c:55:e5:b7:96:39:b7:14:e5:bc:2b:f0:61: 98:b8:67:7e:f0:dc:2d:0d:d1:1c:dc:d3:09:25:9e:2d:04:94: 82:77:51:63:3b:4d:e9:7f:d8:4b:d1:d3:8a:be:4b:fd:33:d9: 87:6c:0b:e2:1b:24:27:ba:8f:25:a4:67:c8:69:a2:58:67:dc: a5:f2:ba:ab:7d:95:75:31:a1:ce:bb:50:52:10:89:bc:fd:07: 4e:8b:82:93:74:73:48:45:ad:69:71:e8:d8:92:0e:38:43:b5: 84:33:1c:69:3c:74:22:f3:9b:c6:96:01:9d:4e:37:14:96:c4: 9a:3f:99:cb:09:87:10:ef:f9:da:2d:27:f4:5b:cc:c9:e2:5a: 8e:3c:24:32:ac:a9:aa:2c:e8:22:dc:02:31:00:8d:f3:b7:fd: aa:10:7e:e8:25:c9:d5:f6:2e:ea:e0:f0:15:e5:9f:40:55:15: af:34:7d:84:1c:f5:81:b2:f1:d6:dd:8d:93:3e:bf:88:5f:c0: d9:97:1c:ad:e2:c5:47:a1:b4:01:6d:04:9c:93:49:0f:d5:7c: f0:fb:9e:6c:6a:14:b8:61:04:4d:6e:d8:70:a9:ba:3a:41:eb: cc:c2:a7:68:17:d7:c7:57:8b:b9:82:7c:74:45:77:13:82:c4: 92:5d:88:dc -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICD4QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yNTA4MjIw ODUxMjdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDI3RjRCQzBFREM0NzlG MzgxQzE2M0FDNTRBNUZEQkQxMDE5OTFGNDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDk3l5I7Y5kOZv8Fw7hwivwAJKAacAhTyWIccNFifaoxmbr7gfR 1Uu5/esK64i0HHGcXEBSksg7O0AoHDO07IpLO3uLbgnvumpq3YpbZsKG5ENav7WN YD/J5dZMwKDZ9tcjA4HUSdfJ4qtwHeG3GnpAS2mFZ8W+hLgxgoAt3IOcHAW15eTA eLZ8NoymLlC9SAcGjyQb54r183DUEFDl1eFAejuUT+tn2MnVeS8kpQNGuoreeQur 7+/8Gss+4KcfcIQwclL95LPxpIfDx3I5Ag8iRvmYkCDksmT54hzdbIwqP3boXxR/ VWunIsLnyWoo6ZYORqwiv77Ntt1S+bsx91CRAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUJ/S8DtxHnzgcFjrFSl/b0QGZH0YwHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0 X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC9KX1M4RHR4SG56Z2NGanJGU2xf YjBRR1pIMFkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCPTmQ MA0GCSqGSIb3DQEBCwUAA4IBAQB120idGmxV5beWObcU5bwr8GGYuGd+8NwtDdEc 3NMJJZ4tBJSCd1FjO03pf9hL0dOKvkv9M9mHbAviGyQnuo8lpGfIaaJYZ9yl8rqr fZV1MaHOu1BSEIm8/QdOi4KTdHNIRa1pcejYkg44Q7WEMxxpPHQi85vGlgGdTjcU lsSaP5nLCYcQ7/naLSf0W8zJ4lqOPCQyrKmqLOgi3AIxAI3zt/2qEH7oJcnV9i7q 4PAV5Z9AVRWvNH2EHPWBsvHW3Y2TPr+IX8DZlxyt4sVHobQBbQSck0kP1Xzw+55s ahS4YQRNbthwqbo6QevMwqdoF9fHV4u5gnx0RXcTgsSSXYjc -----END CERTIFICATE-----Generated at Sun Aug 24 16:05:09 2025 by rpki-client