$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/u8qkXdwGLOfMfWqiVAm-PLTKaos.roa File: u8qkXdwGLOfMfWqiVAm-PLTKaos.roa (raw, json) Hash identifier: Io5KLNBTIbhthR3PxiCGohjcKo03U712a/QgV6V04Z0= Subject key identifier: BB:CA:A4:5D:DC:06:2C:E7:CC:7D:6A:A2:54:09:BE:3C:B4:CA:6A:8B Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Certificate serial: 0F80 Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/u8qkXdwGLOfMfWqiVAm-PLTKaos.roa Signing time: Fri 22 Aug 2025 08:51:26 +0000 ROA not before: Fri 22 Aug 2025 08:51:26 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18429 IP address blocks: 2407:4900::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3968 (0xf80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Validity Not Before: Aug 22 08:51:26 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=BBCAA45DDC062CE7CC7D6AA25409BE3CB4CA6A8B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:2a:15:b1:bf:a8:e9:e5:35:73:2e:f9:8c:5c: 16:ba:fe:68:c1:db:d9:ab:ca:ec:c7:6c:9c:47:f4: 02:a6:5f:26:7f:40:97:d2:2e:55:6a:ab:cd:69:46: 3c:3e:cb:87:f7:61:37:20:6c:06:be:df:67:ce:00: 0a:bd:a0:94:f5:99:41:37:4c:b0:2a:43:5b:58:3a: c3:04:1a:87:ad:f9:e1:d3:1f:c8:bb:79:f8:b1:bf: a4:1c:b9:99:ff:4d:c6:ba:16:f0:fd:8b:ef:31:7d: 62:41:6b:fe:11:99:55:60:18:92:89:df:24:80:88: c8:86:14:e7:76:d9:4e:0e:38:00:b0:fe:82:8b:2e: 6a:fe:03:17:82:cd:ab:83:1a:8f:59:c7:20:5a:36: fc:7d:9e:f8:70:56:36:dc:87:ff:10:d8:17:7a:09: a5:f9:06:cd:21:cb:6f:30:12:3d:10:0c:ba:98:ee: cc:e6:26:06:46:85:11:88:53:bc:14:87:a8:15:45: e0:d7:3f:4d:0b:77:a8:69:11:54:a0:71:f2:9f:d3: 56:8f:61:ff:e0:a6:63:da:be:e3:54:f4:21:78:e7: d7:7f:23:2e:7c:92:65:28:bd:d1:eb:51:be:90:0e: df:5f:23:fd:84:d3:c0:32:8c:9b:72:1d:82:52:b3: a0:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:CA:A4:5D:DC:06:2C:E7:CC:7D:6A:A2:54:09:BE:3C:B4:CA:6A:8B X509v3 Authority Key Identifier: keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/u8qkXdwGLOfMfWqiVAm-PLTKaos.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:4900::/32 Signature Algorithm: sha256WithRSAEncryption 99:80:b3:4f:cb:64:85:6a:1f:8e:98:41:1e:57:ae:4c:eb:33: 67:3b:99:1f:ac:7c:78:c1:76:d1:aa:91:d8:5e:43:71:9c:d3: 84:c3:44:f3:1f:43:cc:ad:ac:9e:2d:4a:c9:6f:9f:f9:c0:8b: 10:af:9a:a2:81:f6:ad:7b:c9:7b:b2:f7:f3:98:6b:90:4c:a2: 1f:85:36:9a:74:9a:58:53:e6:9a:fc:67:6d:07:df:76:2a:60: c0:47:fb:48:d1:e8:fb:93:36:80:c6:a2:fc:bd:ba:ba:24:35: 87:79:fc:80:2e:e0:e1:45:b3:ef:eb:19:b8:34:93:17:59:f3: 08:4b:b7:f2:a1:d4:44:90:f0:f1:82:df:d5:72:fa:c4:c0:e6: 37:40:ea:e0:05:14:89:f7:c2:f6:42:5d:aa:cf:6a:9a:74:a9: 78:9d:09:aa:bf:5e:63:4b:4b:1d:80:92:e4:81:f0:c0:c0:c0: 7e:77:b1:c4:ab:fe:c9:b5:8f:f5:b8:fb:19:8e:52:96:1e:d4: 2b:ec:12:74:a1:e6:15:bc:b9:47:25:d5:c1:98:a0:46:73:5c: ed:8b:e8:80:ac:0f:6e:db:bf:57:cb:9b:41:e2:97:87:b0:b3: 05:de:b4:65:eb:33:7d:3b:13:86:b8:6e:14:43:83:cc:aa:79: b2:a8:32:69 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICD4AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yNTA4MjIw ODUxMjZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEJCQ0FBNDVEREMwNjJD RTdDQzdENkFBMjU0MDlCRTNDQjRDQTZBOEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD8KhWxv6jp5TVzLvmMXBa6/mjB29mryuzHbJxH9AKmXyZ/QJfS LlVqq81pRjw+y4f3YTcgbAa+32fOAAq9oJT1mUE3TLAqQ1tYOsMEGoet+eHTH8i7 efixv6QcuZn/Tca6FvD9i+8xfWJBa/4RmVVgGJKJ3ySAiMiGFOd22U4OOACw/oKL Lmr+AxeCzauDGo9ZxyBaNvx9nvhwVjbch/8Q2Bd6CaX5Bs0hy28wEj0QDLqY7szm JgZGhRGIU7wUh6gVReDXP00Ld6hpEVSgcfKf01aPYf/gpmPavuNU9CF459d/Iy58 kmUovdHrUb6QDt9fI/2E08AyjJtyHYJSs6C9AgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUu8qkXdwGLOfMfWqiVAm+PLTKaoswHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0 X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC91OHFrWGR3R0xPZk1mV3FpVkFt LVBMVEthb3Mucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAdJ ADANBgkqhkiG9w0BAQsFAAOCAQEAmYCzT8tkhWofjphBHleuTOszZzuZH6x8eMF2 0aqR2F5DcZzThMNE8x9DzK2sni1KyW+f+cCLEK+aooH2rXvJe7L385hrkEyiH4U2 mnSaWFPmmvxnbQffdipgwEf7SNHo+5M2gMai/L26uiQ1h3n8gC7g4UWz7+sZuDST F1nzCEu38qHURJDw8YLf1XL6xMDmN0Dq4AUUiffC9kJdqs9qmnSpeJ0Jqr9eY0tL HYCS5IHwwMDAfnexxKv+ybWP9bj7GY5Slh7UK+wSdKHmFby5RyXVwZigRnNc7Yvo gKwPbtu/V8ubQeKXh7CzBd60ZeszfTsThrhuFEODzKp5sqgyaQ== -----END CERTIFICATE-----Generated at Sun Aug 24 16:08:55 2025 by rpki-client