$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/COCHENTEK/-WSQqOC_7N1zxLLs0tmhd-uAmq8.roa File: -WSQqOC_7N1zxLLs0tmhd-uAmq8.roa (raw, json) Hash identifier: /xePpZ4HviSYBwI02P7yTfmeLQNj3oxKUGvCznKcFas= Subject key identifier: F9:64:90:A8:E0:BF:EC:DD:73:C4:B2:EC:D2:D9:A1:77:EB:80:9A:AF Certificate issuer: /CN=A736CFF1948740614D0321E63B8403EB9AB9748D Certificate serial: 0327 Authority key identifier: A7:36:CF:F1:94:87:40:61:4D:03:21:E6:3B:84:03:EB:9A:B9:74:8D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pzbP8ZSHQGFNAyHmO4QD65q5dI0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/COCHENTEK/-WSQqOC_7N1zxLLs0tmhd-uAmq8.roa Signing time: Fri 22 Aug 2025 08:48:50 +0000 ROA not before: Fri 22 Aug 2025 08:48:50 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 983 IP address blocks: 2400:bea0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/COCHENTEK/pzbP8ZSHQGFNAyHmO4QD65q5dI0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/COCHENTEK/pzbP8ZSHQGFNAyHmO4QD65q5dI0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/pzbP8ZSHQGFNAyHmO4QD65q5dI0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 807 (0x327) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A736CFF1948740614D0321E63B8403EB9AB9748D Validity Not Before: Aug 22 08:48:50 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F96490A8E0BFECDD73C4B2ECD2D9A177EB809AAF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:71:38:86:44:62:83:a6:b4:98:e1:fa:f3:c8: fd:ac:95:79:ed:e9:3e:28:bd:09:ef:3a:01:4c:18: fa:bf:23:53:44:aa:31:e9:57:a8:81:e3:80:cc:d8: 99:7e:93:be:99:1d:0a:a2:22:84:c4:c2:30:29:f7: 95:b9:2f:07:bd:51:9f:27:03:f0:d1:d0:dd:d7:a8: be:d6:43:84:cd:b2:3c:f5:3a:1a:e6:1d:d3:64:0e: b3:4d:87:84:f3:e9:97:4f:1c:43:d3:97:52:4d:a7: 15:00:21:cb:76:15:ce:c5:f7:9a:eb:ad:bd:35:1f: 1c:43:01:1f:9e:f7:1e:13:94:c1:57:7e:70:f2:01: 7b:d1:ca:c4:b2:f4:71:c1:24:96:31:bb:1a:2c:41: 0c:7c:db:ca:da:81:30:38:4e:1e:45:1a:db:1b:64: e1:30:ec:bf:34:01:2b:2d:1d:1a:4d:75:47:be:93: a4:85:8e:50:c8:12:1a:b4:a1:a8:27:dd:34:1b:23: ed:f9:4b:ea:45:94:e2:ae:88:f6:d9:7b:2b:a9:99: 3e:a9:7b:25:36:d2:f1:4f:0c:ae:f9:17:98:4a:35: 2d:53:62:b0:4d:56:47:94:c2:2d:40:96:02:05:b8: 53:26:0a:38:72:80:89:93:fe:e1:8b:0a:da:52:90: 36:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:64:90:A8:E0:BF:EC:DD:73:C4:B2:EC:D2:D9:A1:77:EB:80:9A:AF X509v3 Authority Key Identifier: keyid:A7:36:CF:F1:94:87:40:61:4D:03:21:E6:3B:84:03:EB:9A:B9:74:8D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCHENTEK/pzbP8ZSHQGFNAyHmO4QD65q5dI0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pzbP8ZSHQGFNAyHmO4QD65q5dI0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCHENTEK/-WSQqOC_7N1zxLLs0tmhd-uAmq8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2400:bea0::/32 Signature Algorithm: sha256WithRSAEncryption 80:d0:45:e2:63:cb:84:1d:2f:bd:36:e4:fd:2f:4c:52:b7:89: 85:f3:4c:ae:b0:77:12:69:58:28:10:53:ca:84:3d:ab:23:c9: b6:d4:e4:05:d6:0a:92:e9:4a:f9:c5:dc:e3:2f:e6:90:ae:c3: 68:2f:7a:c0:97:4d:b0:dc:96:f0:2e:3c:7a:36:2e:40:96:72: 66:b7:ad:6a:58:08:e9:2b:6b:5f:31:4c:af:c7:e2:60:92:c7: cf:46:66:60:43:23:43:97:f7:09:f1:eb:83:ca:46:59:aa:c2: d5:3e:f3:09:bb:7d:3b:98:b1:19:3e:c0:fd:af:64:0f:53:5a: b1:03:82:14:cc:67:0a:e0:f0:78:1b:da:9d:ff:ac:98:2f:ca: 4a:dd:98:54:ea:c3:b2:59:3c:79:64:b2:8b:5f:45:29:d8:b5: e9:5b:6a:d7:2c:53:83:6a:3e:a0:94:d3:9b:82:fa:78:55:52: 16:92:fe:cb:59:a0:d0:c2:c0:f2:48:cd:1f:e7:22:37:06:c6: 22:31:18:92:fb:15:e4:94:b2:3e:71:47:24:8e:5a:2f:e4:bd: a0:c9:b4:02:b9:0e:9f:54:fa:4f:80:10:c3:8f:9a:9a:66:57: 8a:cf:51:b6:75:da:6a:17:b6:1c:d6:c7:43:b6:ca:db:de:30: 40:65:93:b9 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgICAycwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTcz NkNGRjE5NDg3NDA2MTREMDMyMUU2M0I4NDAzRUI5QUI5NzQ4RDAeFw0yNTA4MjIw ODQ4NTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEY5NjQ5MEE4RTBCRkVD REQ3M0M0QjJFQ0QyRDlBMTc3RUI4MDlBQUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGcTiGRGKDprSY4frzyP2slXnt6T4ovQnvOgFMGPq/I1NEqjHp V6iB44DM2Jl+k76ZHQqiIoTEwjAp95W5Lwe9UZ8nA/DR0N3XqL7WQ4TNsjz1Ohrm HdNkDrNNh4Tz6ZdPHEPTl1JNpxUAIct2Fc7F95rrrb01HxxDAR+e9x4TlMFXfnDy AXvRysSy9HHBJJYxuxosQQx828ragTA4Th5FGtsbZOEw7L80ASstHRpNdUe+k6SF jlDIEhq0oagn3TQbI+35S+pFlOKuiPbZeyupmT6peyU20vFPDK75F5hKNS1TYrBN VkeUwi1AlgIFuFMmCjhygImT/uGLCtpSkDbrAgMBAAGjggH1MIIB8TAdBgNVHQ4E FgQU+WSQqOC/7N1zxLLs0tmhd+uAmq8wHwYDVR0jBBgwFoAUpzbP8ZSHQGFNAyHm O4QD65q5dI0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ09DSEVO VEVLL3B6YlA4WlNIUUdGTkF5SG1PNFFENjVxNWRJMC5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvcHpiUDhaU0hRR0ZOQXlIbU80UUQ2NXE1ZEkwLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ09DSEVOVEVLLy1XU1FxT0NfN04x enhMTHMwdG1oZC11QW1xOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAkAL6gMA0GCSqGSIb3DQEBCwUAA4IBAQCA0EXiY8uEHS+9NuT9L0xSt4mF 80yusHcSaVgoEFPKhD2rI8m21OQF1gqS6Ur5xdzjL+aQrsNoL3rAl02w3JbwLjx6 Ni5AlnJmt61qWAjpK2tfMUyvx+JgksfPRmZgQyNDl/cJ8euDykZZqsLVPvMJu307 mLEZPsD9r2QPU1qxA4IUzGcK4PB4G9qd/6yYL8pK3ZhU6sOyWTx5ZLKLX0Up2LXp W2rXLFODaj6glNObgvp4VVIWkv7LWaDQwsDySM0f5yI3BsYiMRiS+xXklLI+cUck jlov5L2gybQCuQ6fVPpPgBDDj5qaZleKz1G2ddpqF7Yc1sdDtsrb3jBAZZO5 -----END CERTIFICATE-----Generated at Sun Aug 24 09:44:42 2025 by rpki-client