$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/-_ai9VO1uBJMqmkBAoIBnPkW9Pw.roa File: -_ai9VO1uBJMqmkBAoIBnPkW9Pw.roa (raw, json) Hash identifier: XCfD957Pod38Fbrk5M7grbA95Js3I1uiTN74PdQPsLM= Subject key identifier: FB:F6:A2:F5:53:B5:B8:12:4C:AA:69:01:02:82:01:9C:F9:16:F4:FC Certificate issuer: /CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B Certificate serial: 0DBF Authority key identifier: 6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/-_ai9VO1uBJMqmkBAoIBnPkW9Pw.roa Signing time: Fri 22 Aug 2025 08:56:40 +0000 ROA not before: Fri 22 Aug 2025 08:56:40 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18046 IP address blocks: 103.130.36.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3519 (0xdbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B Validity Not Before: Aug 22 08:56:40 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=FBF6A2F553B5B8124CAA69010282019CF916F4FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:81:aa:8b:8b:3b:bb:5f:fc:03:9f:7e:47:f5: da:98:5e:a9:b7:c5:ee:10:45:64:57:22:71:65:2a: a7:4d:f3:96:75:0a:72:4f:de:53:e0:eb:10:4f:2e: 4e:5a:aa:44:44:60:73:4c:c5:be:7e:ff:ae:1c:c8: a4:08:72:01:cb:47:76:47:36:8c:a8:7b:27:83:68: 72:c6:8c:1d:83:e1:1a:6b:b2:7d:6d:7f:f8:a6:f5: 36:31:73:76:48:3e:d0:43:77:f6:3c:e9:c2:62:31: 13:f6:62:01:5b:de:6a:80:d4:00:d5:22:98:6b:5f: e9:b5:69:61:f0:8e:2f:83:47:75:36:95:d6:d8:33: c0:0c:cb:36:84:50:ca:05:48:e0:c8:55:92:65:8f: 75:37:29:6a:7f:96:d1:13:69:4f:15:0d:82:a1:73: 80:43:26:1f:f7:2b:ae:90:d6:86:a4:fe:ad:c1:3a: 1e:89:08:51:0d:1a:0d:34:11:eb:29:9d:cd:12:b3: b2:83:90:e1:d5:68:49:29:33:00:9b:1c:ae:77:89: e1:0a:a2:92:11:9b:a6:11:c1:6c:cf:5f:9a:80:2b: 80:5a:4a:ae:86:5d:02:d8:7a:2b:d6:44:28:30:65: a8:48:05:ec:c8:7c:f1:70:73:57:da:2c:f5:f6:07: cf:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:F6:A2:F5:53:B5:B8:12:4C:AA:69:01:02:82:01:9C:F9:16:F4:FC X509v3 Authority Key Identifier: keyid:6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/-_ai9VO1uBJMqmkBAoIBnPkW9Pw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.130.36.0/22 Signature Algorithm: sha256WithRSAEncryption 3c:fd:e9:0d:72:2a:41:01:f1:32:16:04:7b:b2:77:24:ed:5b: e4:71:65:ce:44:a9:89:68:98:75:1c:8f:ea:c3:ab:81:d0:61: 11:f2:6c:c6:89:a7:30:f3:06:cb:2b:ec:be:52:70:82:3f:94: 81:77:eb:19:9f:1f:1c:73:78:4f:44:f4:04:e3:b7:6c:91:cd: 87:6f:a8:9a:4f:a7:f9:3f:ec:c8:be:7a:f9:39:30:e1:b8:74: 08:ae:f6:5e:a7:c9:26:a3:cf:7a:be:06:6d:bc:ce:4c:88:45: ed:3c:21:2f:ac:55:f0:f3:46:87:a7:1a:dc:ff:f1:38:9c:f5: da:c5:fb:02:d2:c7:49:9b:53:06:82:3b:f4:6f:6d:a9:ba:a6: 28:15:ce:ca:a6:6d:5b:09:0f:11:8e:de:c2:b6:88:dd:40:60: 22:7c:e1:ad:46:33:23:cb:b2:f1:f7:ce:1a:7f:29:fa:78:45: b0:30:a6:7e:0e:b3:f1:cb:18:1a:1b:77:57:57:e4:a4:00:48: da:2a:41:2a:20:24:c3:cd:79:3d:cf:51:90:e6:d8:0a:78:d5: 57:aa:ad:36:80:e9:90:d8:cc:e6:b8:f7:17:d4:ff:51:8e:88: 34:f7:87:4b:5b:50:4f:3e:fd:eb:ba:07:5d:4b:01:81:24:f3: 4f:28:fa:68 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDb8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkZE RUEzNDcwNzE1MjI5MEMxRDI2MDZGRkJGQzY5QjkyN0Q0MEE1QjAeFw0yNTA4MjIw ODU2NDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEZCRjZBMkY1NTNCNUI4 MTI0Q0FBNjkwMTAyODIwMTlDRjkxNkY0RkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWgaqLizu7X/wDn35H9dqYXqm3xe4QRWRXInFlKqdN85Z1CnJP 3lPg6xBPLk5aqkREYHNMxb5+/64cyKQIcgHLR3ZHNoyoeyeDaHLGjB2D4Rprsn1t f/im9TYxc3ZIPtBDd/Y86cJiMRP2YgFb3mqA1ADVIphrX+m1aWHwji+DR3U2ldbY M8AMyzaEUMoFSODIVZJlj3U3KWp/ltETaU8VDYKhc4BDJh/3K66Q1oak/q3BOh6J CFENGg00Eespnc0Ss7KDkOHVaEkpMwCbHK53ieEKopIRm6YRwWzPX5qAK4BaSq6G XQLYeivWRCgwZahIBezIfPFwc1faLPX2B88dAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU+/ai9VO1uBJMqmkBAoIBnPkW9PwwHwYDVR0jBBgwFoAUb96jRwcVIpDB0mBv +/xpuSfUClswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1lDQ0FU Vi9iOTZqUndjVklwREIwbUJ2LV94cHVTZlVDbHMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL2I5NmpSd2NWSXBEQjBtQnYtX3hwdVNmVUNscy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NZQ0NBVFYvLV9haTlWTzF1QkpNcW1r QkFvSUJuUGtXOVB3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AmeCJDANBgkqhkiG9w0BAQsFAAOCAQEAPP3pDXIqQQHxMhYEe7J3JO1b5HFlzkSp iWiYdRyP6sOrgdBhEfJsxomnMPMGyyvsvlJwgj+UgXfrGZ8fHHN4T0T0BOO3bJHN h2+omk+n+T/syL56+Tkw4bh0CK72XqfJJqPPer4GbbzOTIhF7TwhL6xV8PNGh6ca 3P/xOJz12sX7AtLHSZtTBoI79G9tqbqmKBXOyqZtWwkPEY7ewraI3UBgInzhrUYz I8uy8ffOGn8p+nhFsDCmfg6z8csYGht3V1fkpABI2ipBKiAkw815Pc9RkObYCnjV V6qtNoDpkNjM5rj3F9T/UY6INPeHS1tQTz7967oHXUsBgSTzTyj6aA== -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:25 2025 by rpki-client