$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CPSYS/Yuy0l4pnnBzAIOsP9xCrl4oiL4c.roa File: Yuy0l4pnnBzAIOsP9xCrl4oiL4c.roa (raw, json) Hash identifier: +Ynuii0mJidSKGaAA8fJlN+edGoofTL8lYarYgp9WuA= Subject key identifier: 62:EC:B4:97:8A:67:9C:1C:C0:20:EB:0F:F7:10:AB:97:8A:22:2F:87 Certificate issuer: /CN=1F877983527470E200D5AE06A01588213555FEE6 Certificate serial: 0348 Authority key identifier: 1F:87:79:83:52:74:70:E2:00:D5:AE:06:A0:15:88:21:35:55:FE:E6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/H4d5g1J0cOIA1a4GoBWIITVV_uY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/Yuy0l4pnnBzAIOsP9xCrl4oiL4c.roa Signing time: Fri 22 Aug 2025 08:50:49 +0000 ROA not before: Fri 22 Aug 2025 08:50:49 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 63908 IP address blocks: 2400:b0a0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/H4d5g1J0cOIA1a4GoBWIITVV_uY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/H4d5g1J0cOIA1a4GoBWIITVV_uY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/H4d5g1J0cOIA1a4GoBWIITVV_uY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 840 (0x348) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F877983527470E200D5AE06A01588213555FEE6 Validity Not Before: Aug 22 08:50:49 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=62ECB4978A679C1CC020EB0FF710AB978A222F87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:64:60:9e:1f:5a:71:3b:b8:59:26:3b:cd:90: a2:d0:ad:27:b9:90:f2:03:5c:56:f1:2f:34:7a:c3: 1a:e4:fa:b3:be:7f:8a:c8:eb:e7:5d:25:8d:51:cc: 81:29:56:e5:a9:de:ac:e2:bb:de:70:ae:02:2a:4d: 0f:42:81:8f:ca:4a:3e:f8:94:d5:fa:f4:3f:36:70: 83:51:aa:0b:da:bf:9a:e5:da:c8:a1:87:e8:11:2e: c6:ab:6e:b7:95:43:43:89:27:9f:37:3e:15:aa:4d: e7:79:c9:07:eb:e7:10:41:92:6c:1e:5f:a6:c6:5a: 10:aa:ed:c6:10:8c:16:d0:76:28:89:f0:75:d7:6a: 73:d5:43:f0:33:3b:a5:b7:f9:ae:d1:fb:a3:cd:a8: a7:5a:3e:cd:4c:3b:91:a6:70:4a:45:cf:cd:0e:6f: ba:a9:d3:a8:d7:8e:72:f4:ed:ee:55:be:c8:f4:51: 3d:52:49:31:92:1e:28:79:2f:b6:05:c8:fc:bf:0b: 67:7d:97:a7:66:8a:33:09:ba:37:27:d8:53:12:94: a8:fd:f8:30:d4:c3:cb:f5:f7:a3:03:cc:27:fe:86: 03:e2:ce:07:89:76:f2:4d:0c:02:9d:0e:41:1a:77: c0:ee:fa:97:c5:b3:cf:73:a5:b5:a0:c9:75:e5:c3: 79:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:EC:B4:97:8A:67:9C:1C:C0:20:EB:0F:F7:10:AB:97:8A:22:2F:87 X509v3 Authority Key Identifier: keyid:1F:87:79:83:52:74:70:E2:00:D5:AE:06:A0:15:88:21:35:55:FE:E6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/H4d5g1J0cOIA1a4GoBWIITVV_uY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/H4d5g1J0cOIA1a4GoBWIITVV_uY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/Yuy0l4pnnBzAIOsP9xCrl4oiL4c.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2400:b0a0::/32 Signature Algorithm: sha256WithRSAEncryption 6c:d8:f2:dc:f4:60:3c:59:a5:29:d2:5b:45:fc:a9:1c:2a:cd: 1a:02:a0:bf:9d:1b:e8:65:5b:ea:b1:9f:3b:f4:48:55:37:c5: 52:6e:18:76:bd:3f:94:48:f1:66:7f:ae:f3:56:50:79:4d:f4: ed:c2:f8:53:f9:26:89:58:2f:85:bd:81:89:38:75:4d:23:77: 20:be:e7:b4:d2:96:c9:d2:7d:6c:07:59:b7:cf:e7:54:27:49: ae:c6:27:c8:22:a0:d7:cc:f7:6b:77:38:73:00:a6:45:b4:f2: 25:f1:0e:49:36:27:f5:ac:97:cd:ae:71:5a:3b:67:03:6f:85: 58:06:22:63:2f:63:b5:4c:ea:e8:69:9a:ff:3a:3c:4e:1d:85: ed:0a:d0:9d:4f:e0:c4:be:8b:b5:1a:d0:9e:3e:84:f8:7b:af: 32:69:0b:3c:b2:a1:f9:a8:52:46:e7:07:60:ec:94:db:b5:1a: 63:cc:a1:ca:2c:8c:68:e8:d0:f2:1d:e0:60:c3:cd:05:d4:41: 96:88:23:85:3f:92:a3:60:62:ad:d9:61:32:0d:4b:d4:4b:51: 0b:a5:6c:1b:bc:94:7e:59:b4:83:b3:dd:68:e0:ac:69:37:a3: 0c:94:8e:a4:2c:d5:64:f3:af:6a:de:bd:a2:9a:49:cd:15:ac: 60:64:62:19 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICA0gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUY4 Nzc5ODM1Mjc0NzBFMjAwRDVBRTA2QTAxNTg4MjEzNTU1RkVFNjAeFw0yNTA4MjIw ODUwNDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDYyRUNCNDk3OEE2NzlD MUNDMDIwRUIwRkY3MTBBQjk3OEEyMjJGODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUZGCeH1pxO7hZJjvNkKLQrSe5kPIDXFbxLzR6wxrk+rO+f4rI 6+ddJY1RzIEpVuWp3qziu95wrgIqTQ9CgY/KSj74lNX69D82cINRqgvav5rl2sih h+gRLsarbreVQ0OJJ583PhWqTed5yQfr5xBBkmweX6bGWhCq7cYQjBbQdiiJ8HXX anPVQ/AzO6W3+a7R+6PNqKdaPs1MO5GmcEpFz80Ob7qp06jXjnL07e5Vvsj0UT1S STGSHih5L7YFyPy/C2d9l6dmijMJujcn2FMSlKj9+DDUw8v196MDzCf+hgPizgeJ dvJNDAKdDkEad8Du+pfFs89zpbWgyXXlw3lRAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUYuy0l4pnnBzAIOsP9xCrl4oiL4cwHwYDVR0jBBgwFoAUH4d5g1J0cOIA1a4G oBWIITVV/uYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1BTWVMv SDRkNWcxSjBjT0lBMWE0R29CV0lJVFZWX3VZLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9INGQ1ZzFKMGNPSUExYTRHb0JXSUlUVlZfdVkuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DUFNZUy9ZdXkwbDRwbm5CekFJT3NQOXhD cmw0b2lMNGMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJACw oDANBgkqhkiG9w0BAQsFAAOCAQEAbNjy3PRgPFmlKdJbRfypHCrNGgKgv50b6GVb 6rGfO/RIVTfFUm4Ydr0/lEjxZn+u81ZQeU307cL4U/kmiVgvhb2BiTh1TSN3IL7n tNKWydJ9bAdZt8/nVCdJrsYnyCKg18z3a3c4cwCmRbTyJfEOSTYn9ayXza5xWjtn A2+FWAYiYy9jtUzq6Gma/zo8Th2F7QrQnU/gxL6LtRrQnj6E+HuvMmkLPLKh+ahS RucHYOyU27UaY8yhyiyMaOjQ8h3gYMPNBdRBlogjhT+So2BirdlhMg1L1EtRC6Vs G7yUflm0g7PdaOCsaTejDJSOpCzVZPOvat69oppJzRWsYGRiGQ== -----END CERTIFICATE-----Generated at Sun Aug 24 13:38:05 2025 by rpki-client