$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/kJ8Pp5_AlFh1SZHD781D2O7t_60.roa File: kJ8Pp5_AlFh1SZHD781D2O7t_60.roa (raw, json) Hash identifier: dvvxvR7udzfsGCgu0sBoWsdpO2qePF7B/iujf51xWHY= Subject key identifier: 90:9F:0F:A7:9F:C0:94:58:75:49:91:C3:EF:CD:43:D8:EE:ED:FF:AD Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Certificate serial: 0F69 Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/kJ8Pp5_AlFh1SZHD781D2O7t_60.roa Signing time: Fri 22 Aug 2025 08:51:20 +0000 ROA not before: Fri 22 Aug 2025 08:51:20 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18429 IP address blocks: 27.147.32.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3945 (0xf69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Validity Not Before: Aug 22 08:51:20 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=909F0FA79FC09458754991C3EFCD43D8EEEDFFAD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:62:85:df:e1:1f:36:c9:d2:92:02:de:7e:c1: 01:5a:be:02:21:c4:a1:8c:ad:7e:be:78:b1:90:d4: 90:b9:ed:82:5c:f6:d2:21:3a:ea:91:7a:8f:a4:4c: b7:e6:4d:ed:8c:87:87:3b:c4:c9:e7:87:a4:f3:a3: af:4d:a5:a8:2f:8a:21:1f:00:8b:41:7c:44:28:c7: cf:83:87:d4:32:d2:f0:7e:c4:33:f0:e1:48:25:f3: 8f:85:8d:35:cf:8e:fe:37:95:ae:f1:31:df:51:d9: 5b:e4:b1:bf:ab:ad:55:72:7a:f3:53:01:fa:93:1b: 8d:91:65:75:77:53:ce:df:8b:04:55:5d:ac:63:1a: 0e:89:bc:5b:63:e8:82:48:de:84:e6:1d:de:ec:6c: 7b:06:31:79:a3:64:26:6a:90:48:85:30:0d:8f:98: 5d:19:99:d9:cb:14:03:02:a1:bc:97:8a:b2:f3:9e: 3e:6e:95:56:1a:8d:e2:fd:b4:b2:71:f2:fe:08:74: 89:b7:a7:85:96:d0:4b:f6:16:78:63:95:5a:d4:47: d2:20:f2:10:f3:3a:44:27:64:48:fc:b0:5f:d6:8a: 6a:5a:8d:ee:d2:4f:04:8b:90:2a:c4:ab:06:2d:ed: e0:56:3f:84:16:93:cc:9a:f1:70:3f:9c:6f:7d:2a: 03:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:9F:0F:A7:9F:C0:94:58:75:49:91:C3:EF:CD:43:D8:EE:ED:FF:AD X509v3 Authority Key Identifier: keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/kJ8Pp5_AlFh1SZHD781D2O7t_60.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 27.147.32.0/21 Signature Algorithm: sha256WithRSAEncryption 9c:b2:52:26:ef:73:1c:2a:6f:9a:cb:45:f7:7a:6f:ad:68:88: e0:0c:d2:1b:42:f1:60:e6:31:dc:89:bd:dd:49:24:8b:39:6c: 77:57:3b:6d:13:b3:88:91:e6:bc:96:fb:5d:44:4f:be:35:b7: 5f:64:c1:7c:ac:40:c3:db:3d:88:0f:97:92:c3:77:4b:4f:d0: 84:67:45:b1:28:eb:e8:d0:58:56:73:e2:33:0f:72:e5:53:01: f7:ab:b0:7f:0f:93:fb:75:f5:81:5f:d6:6a:9a:5b:d7:58:6f: 8c:19:67:f1:11:11:43:1b:77:b5:a7:41:f5:09:8d:ee:6e:44: 4c:69:c3:48:9f:0b:cb:8c:88:96:e9:1b:d7:40:81:fa:fe:af: a4:0b:90:c8:ef:63:01:0f:ea:98:41:d2:1d:7f:f8:d9:e9:e5: 74:20:0d:ee:6c:67:b5:85:0c:21:2f:de:3a:63:24:00:bd:30: 3d:3a:6c:99:f1:72:bf:9d:df:af:31:27:b2:67:15:b6:5d:e1: e1:1a:3f:c9:ae:13:d0:8c:06:c1:08:2b:44:5e:99:f5:e7:15: 24:e0:b8:90:c7:87:d1:3b:24:27:ba:52:6d:7e:a9:42:e8:77: 7c:f2:8d:1b:51:27:93:e6:70:e3:cf:dc:21:5f:cb:f8:a3:ee: e1:ca:a8:dc -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICD2kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yNTA4MjIw ODUxMjBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDkwOUYwRkE3OUZDMDk0 NTg3NTQ5OTFDM0VGQ0Q0M0Q4RUVFREZGQUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYYoXf4R82ydKSAt5+wQFavgIhxKGMrX6+eLGQ1JC57YJc9tIh OuqReo+kTLfmTe2Mh4c7xMnnh6Tzo69NpagviiEfAItBfEQox8+Dh9Qy0vB+xDPw 4Ugl84+FjTXPjv43la7xMd9R2Vvksb+rrVVyevNTAfqTG42RZXV3U87fiwRVXaxj Gg6JvFtj6IJI3oTmHd7sbHsGMXmjZCZqkEiFMA2PmF0ZmdnLFAMCobyXirLznj5u lVYajeL9tLJx8v4IdIm3p4WW0Ev2FnhjlVrUR9Ig8hDzOkQnZEj8sF/Wimpaje7S TwSLkCrEqwYt7eBWP4QWk8ya8XA/nG99KgPHAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUkJ8Pp5/AlFh1SZHD781D2O7t/60wHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0 X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC9rSjhQcDVfQWxGaDFTWkhENzgx RDJPN3RfNjAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDG5Mg MA0GCSqGSIb3DQEBCwUAA4IBAQCcslIm73McKm+ay0X3em+taIjgDNIbQvFg5jHc ib3dSSSLOWx3VzttE7OIkea8lvtdRE++NbdfZMF8rEDD2z2ID5eSw3dLT9CEZ0Wx KOvo0FhWc+IzD3LlUwH3q7B/D5P7dfWBX9ZqmlvXWG+MGWfxERFDG3e1p0H1CY3u bkRMacNInwvLjIiW6RvXQIH6/q+kC5DI72MBD+qYQdIdf/jZ6eV0IA3ubGe1hQwh L946YyQAvTA9OmyZ8XK/nd+vMSeyZxW2XeHhGj/JrhPQjAbBCCtEXpn15xUk4LiQ x4fROyQnulJtfqlC6Hd88o0bUSeT5nDjz9whX8v4o+7hyqjc -----END CERTIFICATE-----Generated at Sun Aug 24 16:08:55 2025 by rpki-client