$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/4wdwylUJcRLEldrxUSwC8AaIgD8.roa File: 4wdwylUJcRLEldrxUSwC8AaIgD8.roa (raw, json) Hash identifier: YjWjFkDIMWZ8Z8dH5yOrTngNU3vPiZ9fOh+Ng7zumDw= Subject key identifier: E3:07:70:CA:55:09:71:12:C4:95:DA:F1:51:2C:02:F0:06:88:80:3F Certificate issuer: /CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B Certificate serial: 0DC1 Authority key identifier: 6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/4wdwylUJcRLEldrxUSwC8AaIgD8.roa Signing time: Fri 22 Aug 2025 08:56:40 +0000 ROA not before: Fri 22 Aug 2025 08:56:40 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4780 IP address blocks: 61.57.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3521 (0xdc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B Validity Not Before: Aug 22 08:56:40 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E30770CA55097112C495DAF1512C02F00688803F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:dd:9b:86:18:58:82:0d:1d:81:82:7b:2c:f6: a5:af:71:c6:a5:a5:47:68:a6:4b:11:f0:69:df:12: 16:a5:cc:f1:93:b8:2e:7c:f3:23:76:44:ba:c0:76: ff:69:31:77:54:55:fe:9b:f1:fe:71:7b:a6:ff:ec: a8:e0:04:b1:f3:d0:0d:d1:11:87:3a:6d:c1:55:95: af:e4:33:5d:1a:e4:67:2c:fc:eb:dc:a1:2c:00:32: f4:e1:65:ff:fd:85:28:b4:97:13:81:80:17:39:6f: f9:0b:91:5e:ec:f2:02:cb:75:0a:6e:8f:56:a5:ea: 3d:a5:11:f7:f9:8d:6c:60:52:da:f5:06:59:89:30: ab:e2:14:26:58:8b:a3:2d:79:df:f5:16:ac:5d:e6: 63:67:4d:4b:7e:0c:5d:9c:f0:8f:5a:55:66:57:5e: 74:62:cc:c7:a4:da:78:9b:ff:d9:a8:89:b5:cb:42: 31:32:42:d3:30:31:32:2d:c4:2d:2d:1c:9c:3c:5d: e8:6b:70:92:9f:96:a3:d4:24:aa:e9:42:57:47:c2: a1:c2:fe:2e:ff:20:3a:a4:c2:7e:0f:de:f3:1b:95: d3:72:1f:94:f3:73:96:0f:90:55:e6:21:ab:4b:45: a7:29:8b:c3:8c:dd:39:81:11:a5:bf:82:f2:2b:0c: 34:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:07:70:CA:55:09:71:12:C4:95:DA:F1:51:2C:02:F0:06:88:80:3F X509v3 Authority Key Identifier: keyid:6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/4wdwylUJcRLEldrxUSwC8AaIgD8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.57.208.0/20 Signature Algorithm: sha256WithRSAEncryption 0c:7e:5d:82:98:2b:7b:38:3d:5f:c2:59:1f:df:1f:34:95:75: 34:e1:86:93:7e:6e:7f:aa:fd:a8:11:2c:30:c2:10:1b:b0:f0: b7:7b:49:7a:55:ca:f5:c3:80:39:c6:ca:47:7a:47:d2:b3:cb: fe:be:28:50:17:e5:cf:2d:54:1c:ed:15:3c:ff:fb:da:32:6a: 8d:05:40:a7:a8:6b:e5:3e:72:96:9b:1f:fa:86:18:ff:ca:04: 5f:3d:d8:e8:38:8e:b2:e9:e2:a3:fe:94:69:3a:41:d7:9e:f7: 7c:f6:31:f1:70:4a:37:5c:ba:8a:1c:e4:c1:c3:9e:49:43:10: ff:fe:ee:4b:2e:bf:11:01:8e:7b:9f:6c:4d:26:0f:78:db:82: 67:30:c7:fc:b9:29:34:ae:71:7b:fe:67:5f:ca:3a:ad:88:bf: c8:e6:68:0a:05:25:a3:a1:e8:59:d5:a7:96:6b:74:13:3e:f9: 72:50:e2:5f:c4:87:ea:80:01:4f:2c:47:6a:28:6d:63:9f:b6: 7b:9c:c2:f7:ed:23:5c:93:81:5d:5a:a4:a9:08:d6:f9:b4:1d: d7:db:06:ca:e7:46:86:20:61:3d:e0:c7:7c:1b:b2:2f:4e:21: 0c:08:9b:2d:4d:c9:79:d6:51:17:f0:35:01:60:90:70:d2:c1: b7:47:f3:46 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDcEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkZE RUEzNDcwNzE1MjI5MEMxRDI2MDZGRkJGQzY5QjkyN0Q0MEE1QjAeFw0yNTA4MjIw ODU2NDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEUzMDc3MENBNTUwOTcx MTJDNDk1REFGMTUxMkMwMkYwMDY4ODgwM0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCh3ZuGGFiCDR2Bgnss9qWvccalpUdopksR8GnfEhalzPGTuC58 8yN2RLrAdv9pMXdUVf6b8f5xe6b/7KjgBLHz0A3REYc6bcFVla/kM10a5Gcs/Ovc oSwAMvThZf/9hSi0lxOBgBc5b/kLkV7s8gLLdQpuj1al6j2lEff5jWxgUtr1BlmJ MKviFCZYi6Mted/1Fqxd5mNnTUt+DF2c8I9aVWZXXnRizMek2nib/9moibXLQjEy QtMwMTItxC0tHJw8XehrcJKflqPUJKrpQldHwqHC/i7/IDqkwn4P3vMbldNyH5Tz c5YPkFXmIatLRacpi8OM3TmBEaW/gvIrDDSjAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU4wdwylUJcRLEldrxUSwC8AaIgD8wHwYDVR0jBBgwFoAUb96jRwcVIpDB0mBv +/xpuSfUClswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1lDQ0FU Vi9iOTZqUndjVklwREIwbUJ2LV94cHVTZlVDbHMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL2I5NmpSd2NWSXBEQjBtQnYtX3hwdVNmVUNscy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NZQ0NBVFYvNHdkd3lsVUpjUkxFbGRy eFVTd0M4QWFJZ0Q4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BD050DANBgkqhkiG9w0BAQsFAAOCAQEADH5dgpgrezg9X8JZH98fNJV1NOGGk35u f6r9qBEsMMIQG7Dwt3tJelXK9cOAOcbKR3pH0rPL/r4oUBflzy1UHO0VPP/72jJq jQVAp6hr5T5ylpsf+oYY/8oEXz3Y6DiOsunio/6UaTpB1573fPYx8XBKN1y6ihzk wcOeSUMQ//7uSy6/EQGOe59sTSYPeNuCZzDH/LkpNK5xe/5nX8o6rYi/yOZoCgUl o6HoWdWnlmt0Ez75clDiX8SH6oABTyxHaihtY5+2e5zC9+0jXJOBXVqkqQjW+bQd 19sGyudGhiBhPeDHfBuyL04hDAibLU3JedZRF/A1AWCQcNLBt0fzRg== -----END CERTIFICATE-----Generated at Sun Aug 24 07:24:09 2025 by rpki-client