$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/tv9rVdtXprO0CNxCPt-uZe9e000.roa File: tv9rVdtXprO0CNxCPt-uZe9e000.roa (raw, json) Hash identifier: pniG8wy+5L6fyuRAgTCGrI+t3+WUDXYqP1LYHb8m7MU= Subject key identifier: B6:FF:6B:55:DB:57:A6:B3:B4:08:DC:42:3E:DF:AE:65:EF:5E:D3:4D Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Certificate serial: 0F7F Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/tv9rVdtXprO0CNxCPt-uZe9e000.roa Signing time: Fri 22 Aug 2025 08:51:26 +0000 ROA not before: Fri 22 Aug 2025 08:51:26 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18429 IP address blocks: 27.147.24.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3967 (0xf7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Validity Not Before: Aug 22 08:51:26 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B6FF6B55DB57A6B3B408DC423EDFAE65EF5ED34D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:53:b8:ce:d9:68:eb:e2:a4:16:88:bb:af:c3: 38:ac:b8:0c:fe:13:cf:a0:f1:3b:a1:3e:c5:63:ae: 5e:16:72:ae:00:af:f9:12:ef:f1:dd:8b:cf:0c:c3: 45:b9:49:3f:18:4e:7b:46:73:b6:9c:41:47:c7:b1: 13:34:f9:9a:62:44:b9:e9:de:76:8a:f0:c4:9f:fa: d9:76:78:42:77:f4:b7:5e:28:e6:1e:c5:29:9a:01: f5:79:63:98:60:20:27:64:a2:cf:3a:0c:85:d6:ef: a6:ae:5a:ea:bd:98:a2:0f:b9:f0:60:aa:07:01:b8: 66:8d:f7:f6:0b:fa:45:ad:6e:be:be:11:e2:e0:b8: 12:5b:42:90:f6:30:e3:86:d7:80:f3:6a:56:de:b3: 7b:eb:d2:73:14:30:ae:e6:3d:d1:72:c0:f0:af:24: 63:70:73:8c:fa:67:d6:91:ea:b3:87:3a:05:fd:53: f8:c7:bb:00:5b:22:a3:3d:5e:23:c1:b9:7d:d0:c4: a0:55:64:3c:a4:ff:d1:fd:35:89:c9:53:29:49:b6: d0:03:29:68:ab:bc:a6:44:13:96:cd:79:86:46:e6: 7b:6a:07:0d:09:09:ed:ff:f9:bb:ba:97:77:ed:2d: 03:2e:3d:f4:85:42:21:42:5a:10:ea:3b:8e:85:db: 70:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:FF:6B:55:DB:57:A6:B3:B4:08:DC:42:3E:DF:AE:65:EF:5E:D3:4D X509v3 Authority Key Identifier: keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/tv9rVdtXprO0CNxCPt-uZe9e000.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 27.147.24.0/21 Signature Algorithm: sha256WithRSAEncryption 10:6e:d1:28:6f:2c:dd:e1:de:58:d2:49:39:8b:ac:55:b3:54: 21:b2:ef:7b:c9:da:20:1a:3a:be:5e:1d:52:5e:14:f1:44:ec: ce:93:45:ea:18:5e:28:ba:67:8c:1f:5d:89:cf:db:4e:4b:69: 4d:da:78:57:28:2a:45:36:14:a3:b2:a7:4d:d8:cc:67:2f:13: 78:b4:f8:7c:a6:de:64:d3:ab:4f:ad:5c:bf:7d:5f:88:8a:21: e6:dd:3d:a8:98:bd:e2:1e:de:98:85:aa:e2:f8:df:7b:9a:cc: 6c:67:ab:c1:84:02:91:32:b6:4d:03:c2:bb:51:1f:d7:62:7b: 34:21:f4:e8:01:3a:89:46:08:01:4f:b4:e4:53:49:c7:57:fe: 26:ed:e6:25:62:ee:b2:b9:ad:7b:0e:d4:9c:9a:9f:9a:5f:9a: 85:27:21:91:04:9c:73:01:7d:c2:dd:3a:61:40:d6:79:f4:d5: 57:c4:40:55:f7:04:08:7d:3a:62:0e:be:7e:9a:31:f9:42:19: d5:10:3d:25:80:0b:46:ef:96:57:99:ec:03:21:e7:ac:86:cb: 20:61:1e:82:09:36:4a:0c:b2:53:44:97:f6:89:85:8c:4e:15: 78:f6:a2:d7:a3:d4:70:eb:5a:6c:58:57:73:d1:23:70:7f:96: 1d:fb:10:88 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICD38wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yNTA4MjIw ODUxMjZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEI2RkY2QjU1REI1N0E2 QjNCNDA4REM0MjNFREZBRTY1RUY1RUQzNEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9U7jO2Wjr4qQWiLuvwzisuAz+E8+g8TuhPsVjrl4Wcq4Ar/kS 7/Hdi88Mw0W5ST8YTntGc7acQUfHsRM0+ZpiRLnp3naK8MSf+tl2eEJ39LdeKOYe xSmaAfV5Y5hgICdkos86DIXW76auWuq9mKIPufBgqgcBuGaN9/YL+kWtbr6+EeLg uBJbQpD2MOOG14Dzalbes3vr0nMUMK7mPdFywPCvJGNwc4z6Z9aR6rOHOgX9U/jH uwBbIqM9XiPBuX3QxKBVZDyk/9H9NYnJUylJttADKWirvKZEE5bNeYZG5ntqBw0J Ce3/+bu6l3ftLQMuPfSFQiFCWhDqO46F23AfAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUtv9rVdtXprO0CNxCPt+uZe9e000wHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0 X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC90djlyVmR0WHByTzBDTnhDUHQt dVplOWUwMDAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDG5MY MA0GCSqGSIb3DQEBCwUAA4IBAQAQbtEobyzd4d5Y0kk5i6xVs1Qhsu97ydogGjq+ Xh1SXhTxROzOk0XqGF4oumeMH12Jz9tOS2lN2nhXKCpFNhSjsqdN2MxnLxN4tPh8 pt5k06tPrVy/fV+IiiHm3T2omL3iHt6Yhari+N97msxsZ6vBhAKRMrZNA8K7UR/X Yns0IfToATqJRggBT7TkU0nHV/4m7eYlYu6yua17DtScmp+aX5qFJyGRBJxzAX3C 3TphQNZ59NVXxEBV9wQIfTpiDr5+mjH5QhnVED0lgAtG75ZXmewDIeeshssgYR6C CTZKDLJTRJf2iYWMThV49qLXo9Rw61psWFdz0SNwf5Yd+xCI -----END CERTIFICATE-----Generated at Sun Aug 24 16:08:54 2025 by rpki-client