$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/COLIN/6TjwKDrClg78bCdYFtLTHYCZEyM.roa File: 6TjwKDrClg78bCdYFtLTHYCZEyM.roa (raw, json) Hash identifier: TJ37wEp8wY0ZRhQboc6gl6pchs31bN5aJGoirnwF0v0= Subject key identifier: E9:38:F0:28:3A:C2:96:0E:FC:6C:27:58:16:D2:D3:1D:80:99:13:23 Certificate issuer: /CN=9700C068EFA9A6B2E6879310C9AEA030DC8B2AD1 Certificate serial: 026C Authority key identifier: 97:00:C0:68:EF:A9:A6:B2:E6:87:93:10:C9:AE:A0:30:DC:8B:2A:D1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lwDAaO-pprLmh5MQya6gMNyLKtE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/COLIN/6TjwKDrClg78bCdYFtLTHYCZEyM.roa Signing time: Fri 22 Aug 2025 09:02:18 +0000 ROA not before: Fri 22 Aug 2025 09:02:18 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 150768 IP address blocks: 103.6.124.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/COLIN/lwDAaO-pprLmh5MQya6gMNyLKtE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/COLIN/lwDAaO-pprLmh5MQya6gMNyLKtE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/lwDAaO-pprLmh5MQya6gMNyLKtE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 620 (0x26c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9700C068EFA9A6B2E6879310C9AEA030DC8B2AD1 Validity Not Before: Aug 22 09:02:18 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E938F0283AC2960EFC6C275816D2D31D80991323 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:85:d3:62:13:72:33:b7:79:24:81:ae:4d:d1: 9e:fc:34:14:09:50:91:80:d3:8f:07:e3:8e:6d:b7: 79:dc:a8:e9:3a:62:eb:3a:44:01:8a:a1:f8:be:3f: a4:0b:37:e7:60:01:f9:b3:5b:ac:9e:b8:a6:15:e9: 7e:91:82:7f:72:aa:83:61:e8:0e:4a:5b:8d:16:b8: b8:f1:f7:24:4f:45:8d:bc:b3:ef:dd:cf:c7:08:5e: c8:e2:eb:1e:e5:3a:ce:03:9a:ec:52:17:f7:d4:cd: 44:ef:ea:d4:6a:51:11:bc:d4:ca:8c:a0:a0:03:5c: c2:53:71:8b:cf:b9:aa:e5:ca:64:59:5d:1d:25:6f: c6:4b:f1:06:0d:01:3f:cd:92:19:53:f0:ac:94:04: 99:b3:f3:54:70:1c:bd:13:d1:48:d2:17:be:b8:9e: d3:4e:9b:6b:54:4a:1f:3b:99:e0:79:f3:d0:16:77: c5:ff:a2:45:b1:ad:e6:a6:2e:7d:dd:4d:46:ba:09: 52:cb:b7:29:97:39:24:a3:f4:46:86:ed:a7:71:ac: de:99:c5:99:12:96:ce:52:cb:4d:a2:09:ad:8e:58: 6f:da:7c:15:ef:69:87:ff:84:73:a4:06:10:a7:ce: f9:a4:97:b7:c1:88:f7:89:1e:e7:02:a5:42:df:e0: 1d:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:38:F0:28:3A:C2:96:0E:FC:6C:27:58:16:D2:D3:1D:80:99:13:23 X509v3 Authority Key Identifier: keyid:97:00:C0:68:EF:A9:A6:B2:E6:87:93:10:C9:AE:A0:30:DC:8B:2A:D1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COLIN/lwDAaO-pprLmh5MQya6gMNyLKtE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lwDAaO-pprLmh5MQya6gMNyLKtE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COLIN/6TjwKDrClg78bCdYFtLTHYCZEyM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.6.124.0/23 Signature Algorithm: sha256WithRSAEncryption 12:7c:59:46:17:b4:67:67:b7:2a:ff:be:ca:52:d2:ea:e2:25: dc:84:47:fd:92:c7:f8:80:f2:1c:70:60:f7:1c:24:a8:1a:56: b2:75:5e:fe:0b:37:39:e9:e3:1b:23:d5:37:3b:c7:60:1b:f1: 0e:7e:a5:5f:65:45:81:87:f4:90:ea:c9:d0:19:5f:39:7a:4a: ac:a7:96:cf:b7:54:2a:5e:a6:4c:27:ee:a5:ba:2d:33:0d:a3: 11:b0:6a:e6:34:af:98:7a:49:b9:08:87:ea:49:8d:10:0c:ab: 2a:54:0b:4e:c7:71:12:b7:a0:2f:e8:d5:d6:1b:de:7e:8d:55: 4b:38:06:40:8d:82:aa:da:4d:3b:7a:0a:2a:a0:0b:44:9b:42: f4:03:dd:36:0b:0c:93:65:a1:ea:bd:80:e8:af:5d:a6:04:c6: cb:54:76:5e:e4:d0:95:72:c0:37:29:cd:1f:ef:47:a6:f7:d1: ee:d0:29:b9:ba:c5:15:f3:f9:57:e3:70:39:80:26:82:fd:7a: 58:7e:ee:e3:16:b1:dd:17:5b:c9:e7:35:9b:ab:4f:3c:ad:56: 21:1a:f8:c8:06:e1:a4:12:9b:8a:dd:73:5a:e6:da:a5:4d:89: fc:c0:a4:12:b8:0c:38:88:8b:75:c3:10:5e:f3:48:9e:d7:24: 7b:14:1b:cc -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICAmwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTcw MEMwNjhFRkE5QTZCMkU2ODc5MzEwQzlBRUEwMzBEQzhCMkFEMTAeFw0yNTA4MjIw OTAyMThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEU5MzhGMDI4M0FDMjk2 MEVGQzZDMjc1ODE2RDJEMzFEODA5OTEzMjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDChdNiE3Izt3kkga5N0Z78NBQJUJGA048H445tt3ncqOk6Yus6 RAGKofi+P6QLN+dgAfmzW6yeuKYV6X6Rgn9yqoNh6A5KW40WuLjx9yRPRY28s+/d z8cIXsji6x7lOs4DmuxSF/fUzUTv6tRqURG81MqMoKADXMJTcYvPuarlymRZXR0l b8ZL8QYNAT/NkhlT8KyUBJmz81RwHL0T0UjSF764ntNOm2tUSh87meB589AWd8X/ okWxreamLn3dTUa6CVLLtymXOSSj9EaG7adxrN6ZxZkSls5Sy02iCa2OWG/afBXv aYf/hHOkBhCnzvmkl7fBiPeJHucCpULf4B0RAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU6TjwKDrClg78bCdYFtLTHYCZEyMwHwYDVR0jBBgwFoAUlwDAaO+pprLmh5MQ ya6gMNyLKtEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ09MSU4v bHdEQWFPLXBwckxtaDVNUXlhNmdNTnlMS3RFLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9sd0RBYU8tcHByTG1oNU1ReWE2Z01OeUxLdEUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DT0xJTi82VGp3S0RyQ2xnNzhiQ2RZRnRM VEhZQ1pFeU0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZwZ8 MA0GCSqGSIb3DQEBCwUAA4IBAQASfFlGF7RnZ7cq/77KUtLq4iXchEf9ksf4gPIc cGD3HCSoGlaydV7+Czc56eMbI9U3O8dgG/EOfqVfZUWBh/SQ6snQGV85ekqsp5bP t1QqXqZMJ+6lui0zDaMRsGrmNK+Yekm5CIfqSY0QDKsqVAtOx3ESt6Av6NXWG95+ jVVLOAZAjYKq2k07egoqoAtEm0L0A902CwyTZaHqvYDor12mBMbLVHZe5NCVcsA3 Kc0f70em99Hu0Cm5usUV8/lX43A5gCaC/XpYfu7jFrHdF1vJ5zWbq088rVYhGvjI BuGkEpuK3XNa5tqlTYn8wKQSuAw4iIt1wxBe80ie1yR7FBvM -----END CERTIFICATE-----Generated at Sun Aug 24 09:45:17 2025 by rpki-client