$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/WxdgInPIlnx_Q-zPwyZaSeYkxSE.roa File: WxdgInPIlnx_Q-zPwyZaSeYkxSE.roa (raw, json) Hash identifier: ToPkIvGsYVeMmoxoIXhzuRirqhl1zDllE7KWvFzneKE= Subject key identifier: 5B:17:60:22:73:C8:96:7C:7F:43:EC:CF:C3:26:5A:49:E6:24:C5:21 Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Certificate serial: 0F59 Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/WxdgInPIlnx_Q-zPwyZaSeYkxSE.roa Signing time: Fri 22 Aug 2025 08:51:15 +0000 ROA not before: Fri 22 Aug 2025 08:51:15 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18429 IP address blocks: 61.57.136.0/21 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3929 (0xf59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Validity Not Before: Aug 22 08:51:15 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=5B17602273C8967C7F43ECCFC3265A49E624C521 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:00:56:8f:1b:8b:5e:c8:42:7d:d1:90:04:75: 1e:8c:05:0b:b3:38:9a:a2:39:c9:87:a7:c8:38:05: cd:41:e3:60:60:54:ba:58:4c:01:09:e6:05:22:c1: ff:a5:30:b5:61:86:24:14:42:98:da:f2:bb:48:4d: df:b5:a3:0a:53:df:24:3e:9b:db:f3:60:cc:7d:b2: 15:f1:0e:68:5e:7d:18:04:bd:a1:74:6b:9f:da:7a: 1c:c5:5e:77:00:04:ae:be:1c:d4:58:fa:21:0a:30: b7:2d:00:d8:8e:a5:49:c1:08:68:aa:de:00:16:5d: f1:5a:2b:18:61:1d:80:c5:68:85:d6:a6:88:23:f9: e3:fc:89:cc:65:eb:a2:c3:b4:15:fb:97:d3:41:d8: 97:ea:1c:b1:56:02:28:b0:4d:cf:e0:8b:6b:5b:9f: b3:25:c0:9d:5a:7f:fb:46:75:f3:53:fa:8e:80:2e: b3:41:c6:8e:1e:dc:e6:99:9a:0e:e7:ab:8b:01:bf: da:a9:13:61:58:47:26:0a:96:8d:ee:9f:07:4a:2b: 96:78:74:5e:09:06:6e:e2:78:93:42:51:c0:6b:fc: fc:06:d9:79:8e:20:fe:b7:60:2e:b3:23:df:03:ec: 60:1f:34:1f:ad:82:90:92:74:23:11:40:9e:a1:d0: 56:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:17:60:22:73:C8:96:7C:7F:43:EC:CF:C3:26:5A:49:E6:24:C5:21 X509v3 Authority Key Identifier: keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/WxdgInPIlnx_Q-zPwyZaSeYkxSE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.57.136.0/21 Signature Algorithm: sha256WithRSAEncryption 61:97:df:21:fd:d9:80:4c:08:e5:b2:46:01:e9:52:be:31:bc: 71:88:55:c9:5f:5b:6d:88:2a:b9:98:31:73:d4:d3:0e:f1:2d: 94:cc:ec:d9:1f:98:15:57:6b:a1:33:4f:4a:2c:6f:d5:2c:54: cf:55:3f:98:1f:d3:b4:83:e8:ec:1f:f5:bc:9d:74:f4:53:a3: fa:47:2c:0b:82:95:3b:46:87:66:a0:51:6e:c5:e4:9f:33:e7: f1:ab:ac:e2:b6:eb:03:e4:66:fe:22:da:54:84:04:59:4b:3f: 8f:6e:e7:87:48:18:9f:26:5c:4b:f0:be:f5:07:6e:14:0b:b1: f1:4c:70:6f:3d:5e:6d:6d:5f:11:5e:ab:04:68:42:d5:84:63: 0f:e2:67:40:18:dc:ac:4a:c5:c7:24:6a:e4:8e:fb:6c:a0:f0: 15:6a:5a:17:46:91:dc:fd:84:7b:12:47:7c:95:d5:27:29:83: 64:ca:40:46:93:89:b8:b7:3f:32:da:2c:dd:d7:fc:6e:7e:bf: fa:f2:b3:d7:6c:79:66:51:8e:74:27:f3:bb:f9:fc:b5:f2:4f: f0:f2:06:5e:8a:63:a5:89:94:f1:69:d6:f3:65:4d:a3:9a:16: 26:ef:b9:0c:83:a4:7b:92:65:de:32:94:31:bd:49:8c:2f:30: 44:59:f8:45 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICD1kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yNTA4MjIw ODUxMTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDVCMTc2MDIyNzNDODk2 N0M3RjQzRUNDRkMzMjY1QTQ5RTYyNEM1MjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCaAFaPG4teyEJ90ZAEdR6MBQuzOJqiOcmHp8g4Bc1B42BgVLpY TAEJ5gUiwf+lMLVhhiQUQpja8rtITd+1owpT3yQ+m9vzYMx9shXxDmhefRgEvaF0 a5/aehzFXncABK6+HNRY+iEKMLctANiOpUnBCGiq3gAWXfFaKxhhHYDFaIXWpogj +eP8icxl66LDtBX7l9NB2JfqHLFWAiiwTc/gi2tbn7MlwJ1af/tGdfNT+o6ALrNB xo4e3OaZmg7nq4sBv9qpE2FYRyYKlo3unwdKK5Z4dF4JBm7ieJNCUcBr/PwG2XmO IP63YC6zI98D7GAfNB+tgpCSdCMRQJ6h0FaVAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUWxdgInPIlnx/Q+zPwyZaSeYkxSEwHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0 X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC9XeGRnSW5QSWxueF9RLXpQd3la YVNlWWt4U0Uucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDPTmI MA0GCSqGSIb3DQEBCwUAA4IBAQBhl98h/dmATAjlskYB6VK+MbxxiFXJX1ttiCq5 mDFz1NMO8S2UzOzZH5gVV2uhM09KLG/VLFTPVT+YH9O0g+jsH/W8nXT0U6P6RywL gpU7RodmoFFuxeSfM+fxq6zitusD5Gb+ItpUhARZSz+PbueHSBifJlxL8L71B24U C7HxTHBvPV5tbV8RXqsEaELVhGMP4mdAGNysSsXHJGrkjvtsoPAValoXRpHc/YR7 Ekd8ldUnKYNkykBGk4m4tz8y2izd1/xufr/68rPXbHlmUY50J/O7+fy18k/w8gZe imOliZTxadbzZU2jmhYm77kMg6R7kmXeMpQxvUmMLzBEWfhF -----END CERTIFICATE-----Generated at Sun Aug 24 16:05:09 2025 by rpki-client