$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/KdpH8cV1v0H1cy9g7anzfEpIW-s.roa File: KdpH8cV1v0H1cy9g7anzfEpIW-s.roa (raw, json) Hash identifier: ZkDkUu8sWV4IufPjcEzVO8U3dZQAcu53bguvDZXeBr4= Subject key identifier: 29:DA:47:F1:C5:75:BF:41:F5:73:2F:60:ED:A9:F3:7C:4A:48:5B:EB Certificate issuer: /CN=ABD4DDB4BF932C5006B704B9828410174AC412AD Certificate serial: 0224 Authority key identifier: AB:D4:DD:B4:BF:93:2C:50:06:B7:04:B9:82:84:10:17:4A:C4:12:AD Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/KdpH8cV1v0H1cy9g7anzfEpIW-s.roa Signing time: Fri 22 Aug 2025 09:03:38 +0000 ROA not before: Fri 22 Aug 2025 09:03:38 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 150766 IP address blocks: 36.50.229.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/q9TdtL-TLFAGtwS5goQQF0rEEq0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/q9TdtL-TLFAGtwS5goQQF0rEEq0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 548 (0x224) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABD4DDB4BF932C5006B704B9828410174AC412AD Validity Not Before: Aug 22 09:03:38 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=29DA47F1C575BF41F5732F60EDA9F37C4A485BEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:5d:84:6c:cd:fd:74:30:9e:c6:c4:0d:85:03: c0:3f:60:f3:95:73:a5:9c:04:d0:e7:4e:51:14:22: 34:8c:3a:3c:27:1d:b1:06:bf:e1:58:10:93:77:c1: fe:86:cb:51:ed:74:a0:30:fe:a0:c3:bb:aa:fd:b0: 63:2b:4a:eb:9f:eb:8d:a0:17:89:71:e4:88:48:28: 1b:60:6a:52:08:d8:8c:cc:5f:68:82:73:82:b3:0e: b2:7f:ab:08:0a:c7:e1:8f:e3:21:99:98:8e:f1:17: 11:0c:69:51:69:8f:40:82:cf:fa:60:3c:07:34:06: 3d:23:0c:a3:4f:8e:4f:87:a8:d7:08:c7:68:63:3a: 5c:db:cb:80:a8:93:4b:7d:45:f3:eb:29:a6:26:1d: 7c:81:62:e9:d8:d1:ef:3b:18:04:8d:9f:0a:54:ce: 8e:0f:6d:0d:f8:2a:e4:85:bc:25:43:ef:ff:a3:de: 62:ff:d1:1a:ba:34:b2:05:d5:52:9a:ef:e5:6d:da: 66:a4:f8:de:72:59:81:b7:d8:2b:55:9f:c5:a4:a0: 00:97:6d:2f:38:dc:e8:48:74:f3:2b:e6:5b:6f:13: 14:0f:f0:c1:7c:d5:01:99:9e:11:85:34:63:78:74: f1:69:11:06:72:44:45:e3:ab:2b:67:5d:a9:2e:37: 3e:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:DA:47:F1:C5:75:BF:41:F5:73:2F:60:ED:A9:F3:7C:4A:48:5B:EB X509v3 Authority Key Identifier: keyid:AB:D4:DD:B4:BF:93:2C:50:06:B7:04:B9:82:84:10:17:4A:C4:12:AD X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/q9TdtL-TLFAGtwS5goQQF0rEEq0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/KdpH8cV1v0H1cy9g7anzfEpIW-s.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 36.50.229.0/24 Signature Algorithm: sha256WithRSAEncryption 92:6a:6f:7d:c2:da:d4:94:9f:62:9b:5d:68:16:af:d4:0a:33: 4b:f6:78:18:d7:8c:2c:4e:b4:46:68:61:8e:96:c5:f0:5f:2f: 9c:c8:3d:8e:1a:70:79:00:1e:e4:61:08:24:23:64:5e:76:f3: 77:3d:b6:6e:eb:cc:38:ac:99:b9:b3:00:6f:b0:ea:e2:fe:da: 6c:6d:10:8b:69:5f:70:25:a8:74:d5:01:19:91:cc:92:bd:4c: 78:0a:51:0c:ff:1d:c9:88:61:4d:7e:1a:66:a8:10:7b:a0:15: 41:4a:ea:2d:52:5f:90:a0:92:8a:22:a9:64:de:86:cd:1b:25: 26:dd:55:d3:3d:ff:4c:de:0e:ac:a3:06:3f:eb:d5:eb:76:e4: a3:f2:32:94:9b:7c:10:01:bb:f7:c6:ac:15:e4:59:cc:50:cc: cb:c6:aa:0f:2d:d7:5a:1f:47:5e:7f:1f:eb:3f:1a:15:14:b6: 49:3c:ec:9d:71:2a:bd:8b:1f:cd:cc:68:a6:cc:e3:28:94:a2: f0:a0:c8:1e:c5:aa:1f:b7:c2:e8:67:eb:06:e7:f3:7c:e2:96: 74:a1:16:b7:8b:ce:d1:80:4d:18:68:9d:4f:f0:78:e2:e2:ec: c4:89:e3:c8:29:05:39:a7:5c:a7:9e:88:8b:f2:2c:3c:3a:5f: 41:09:5d:e6 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICAiQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJE NEREQjRCRjkzMkM1MDA2QjcwNEI5ODI4NDEwMTc0QUM0MTJBRDAeFw0yNTA4MjIw OTAzMzhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDI5REE0N0YxQzU3NUJG NDFGNTczMkY2MEVEQTlGMzdDNEE0ODVCRUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbXYRszf10MJ7GxA2FA8A/YPOVc6WcBNDnTlEUIjSMOjwnHbEG v+FYEJN3wf6Gy1HtdKAw/qDDu6r9sGMrSuuf642gF4lx5IhIKBtgalII2IzMX2iC c4KzDrJ/qwgKx+GP4yGZmI7xFxEMaVFpj0CCz/pgPAc0Bj0jDKNPjk+HqNcIx2hj Olzby4Cok0t9RfPrKaYmHXyBYunY0e87GASNnwpUzo4PbQ34KuSFvCVD7/+j3mL/ 0Rq6NLIF1VKa7+Vt2mak+N5yWYG32CtVn8WkoACXbS843OhIdPMr5ltvExQP8MF8 1QGZnhGFNGN4dPFpEQZyREXjqytnXakuNz7pAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUKdpH8cV1v0H1cy9g7anzfEpIW+swHwYDVR0jBBgwFoAUq9TdtL+TLFAGtwS5 goQQF0rEEq0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ09DT0RJ R0lUL3E5VGR0TC1UTEZBR3R3UzVnb1FRRjByRUVxMC5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvcTlUZHRMLVRMRkFHdHdTNWdvUVFGMHJFRXEwLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ09DT0RJR0lUL0tkcEg4Y1YxdjBI MWN5OWc3YW56ZkVwSVctcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAkMuUwDQYJKoZIhvcNAQELBQADggEBAJJqb33C2tSUn2KbXWgWr9QKM0v2 eBjXjCxOtEZoYY6WxfBfL5zIPY4acHkAHuRhCCQjZF5283c9tm7rzDismbmzAG+w 6uL+2mxtEItpX3AlqHTVARmRzJK9THgKUQz/HcmIYU1+GmaoEHugFUFK6i1SX5Cg kooiqWTehs0bJSbdVdM9/0zeDqyjBj/r1et25KPyMpSbfBABu/fGrBXkWcxQzMvG qg8t11ofR15/H+s/GhUUtkk87J1xKr2LH83MaKbM4yiUovCgyB7Fqh+3wuhn6wbn 83zilnShFreLztGATRhonU/weOLi7MSJ48gpBTmnXKeeiIvyLDw6X0EJXeY= -----END CERTIFICATE-----Generated at Sun Aug 24 06:37:29 2025 by rpki-client