$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/8YnEiZWRaS3RbOhN1mk-FjExacs.roa File: 8YnEiZWRaS3RbOhN1mk-FjExacs.roa (raw, json) Hash identifier: vN3F2E1FMCKOlmgG3yMLRtmIYezbitzdoQVyYEroJnE= Subject key identifier: F1:89:C4:89:95:91:69:2D:D1:6C:E8:4D:D6:69:3E:16:31:31:69:CB Certificate issuer: /CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B Certificate serial: 0DC6 Authority key identifier: 6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/8YnEiZWRaS3RbOhN1mk-FjExacs.roa Signing time: Fri 22 Aug 2025 08:56:41 +0000 ROA not before: Fri 22 Aug 2025 08:56:41 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18046 IP address blocks: 103.130.44.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3526 (0xdc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B Validity Not Before: Aug 22 08:56:41 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F189C4899591692DD16CE84DD6693E16313169CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:af:1e:40:e8:13:aa:01:d6:5d:d6:f6:1b:ab: c3:8b:68:64:6c:b2:63:af:d5:21:15:90:85:05:7a: 54:08:c8:af:ac:82:ec:f6:b8:6d:4d:a2:eb:23:11: 88:12:ab:3d:1f:5f:23:54:ff:1a:71:88:f6:ea:36: f0:38:2d:0a:07:98:25:67:a5:b3:e3:92:0e:81:5c: 35:3b:2d:1f:c6:53:a4:bf:39:04:ba:23:c5:88:26: cf:ff:73:bf:a2:ee:8d:fa:d9:59:3d:c8:fa:0a:d3: dd:3f:16:fe:5c:70:e1:1b:84:9a:cc:fc:04:2a:80: a3:9a:87:da:71:f0:15:1f:fc:96:10:74:ad:20:31: f4:79:0f:53:37:4b:82:d5:c0:aa:b6:af:b2:23:a7: 9d:17:72:a2:dd:f8:0c:90:df:88:72:bf:d9:32:3e: 22:ed:d7:42:61:bb:c9:b1:68:fa:36:c9:98:82:1c: 70:1a:4b:85:be:12:61:4d:3d:ad:07:1c:85:e0:06: 83:7f:2a:83:c0:89:7d:31:50:3d:d4:50:e9:c3:d0: 5d:c7:43:27:95:c1:f0:54:b3:68:02:14:0d:2e:18: 55:a4:6f:8b:2c:3f:65:ab:7f:85:4d:69:a5:cf:ca: 18:cd:4c:06:4c:43:00:53:b6:fe:3d:2c:8b:56:c5: f1:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:89:C4:89:95:91:69:2D:D1:6C:E8:4D:D6:69:3E:16:31:31:69:CB X509v3 Authority Key Identifier: keyid:6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/8YnEiZWRaS3RbOhN1mk-FjExacs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.130.44.0/22 Signature Algorithm: sha256WithRSAEncryption 28:de:fd:5e:89:95:29:e4:55:5a:68:1e:e6:df:b1:2c:79:ff: c9:43:77:1d:b9:82:0c:1c:c0:48:97:73:4f:ef:de:d8:36:8c: dd:6c:10:cd:6c:0c:e1:bd:a6:f0:d0:f0:f4:2f:d3:42:2b:bb: 9b:32:ae:84:5d:e4:6b:7b:dd:c3:04:72:cb:e7:ac:32:90:8c: 87:bc:17:1c:44:6d:a1:b2:e9:a6:34:32:35:7a:72:b5:30:22: 7f:90:f6:36:af:ac:9a:ee:10:9d:be:42:76:cc:03:56:a6:f4: 49:d2:ed:22:78:64:4d:ae:b7:06:f3:37:93:6a:28:07:97:6d: 0c:86:e0:30:cf:a8:ac:01:35:f5:7c:0f:06:a1:a4:39:29:93: a2:7d:a7:3e:b3:78:29:48:9f:b4:f6:21:2a:60:1b:2e:a6:36: c2:71:ae:f3:5b:d7:3e:73:43:88:57:37:9b:e8:1d:7a:35:58: f4:f7:9b:5f:73:41:6e:fb:e8:3e:47:39:01:f9:fe:3a:45:1d: 87:0a:08:8a:80:67:0e:14:a3:5a:bf:66:62:09:85:f6:ed:d2: 53:e8:9e:5a:31:b9:a2:56:07:06:26:04:04:14:e8:29:29:0e: 1a:86:d9:6f:83:53:d8:2c:a9:c8:09:2a:6f:71:91:76:48:8a: 1e:ed:cb:16 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDcYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkZE RUEzNDcwNzE1MjI5MEMxRDI2MDZGRkJGQzY5QjkyN0Q0MEE1QjAeFw0yNTA4MjIw ODU2NDFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEYxODlDNDg5OTU5MTY5 MkREMTZDRTg0REQ2NjkzRTE2MzEzMTY5Q0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCTrx5A6BOqAdZd1vYbq8OLaGRssmOv1SEVkIUFelQIyK+sguz2 uG1NousjEYgSqz0fXyNU/xpxiPbqNvA4LQoHmCVnpbPjkg6BXDU7LR/GU6S/OQS6 I8WIJs//c7+i7o362Vk9yPoK090/Fv5ccOEbhJrM/AQqgKOah9px8BUf/JYQdK0g MfR5D1M3S4LVwKq2r7Ijp50XcqLd+AyQ34hyv9kyPiLt10Jhu8mxaPo2yZiCHHAa S4W+EmFNPa0HHIXgBoN/KoPAiX0xUD3UUOnD0F3HQyeVwfBUs2gCFA0uGFWkb4ss P2Wrf4VNaaXPyhjNTAZMQwBTtv49LItWxfH9AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU8YnEiZWRaS3RbOhN1mk+FjExacswHwYDVR0jBBgwFoAUb96jRwcVIpDB0mBv +/xpuSfUClswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1lDQ0FU Vi9iOTZqUndjVklwREIwbUJ2LV94cHVTZlVDbHMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL2I5NmpSd2NWSXBEQjBtQnYtX3hwdVNmVUNscy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NZQ0NBVFYvOFluRWlaV1JhUzNSYk9o TjFtay1GakV4YWNzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AmeCLDANBgkqhkiG9w0BAQsFAAOCAQEAKN79XomVKeRVWmge5t+xLHn/yUN3HbmC DBzASJdzT+/e2DaM3WwQzWwM4b2m8NDw9C/TQiu7mzKuhF3ka3vdwwRyy+esMpCM h7wXHERtobLppjQyNXpytTAif5D2Nq+smu4Qnb5CdswDVqb0SdLtInhkTa63BvM3 k2ooB5dtDIbgMM+orAE19XwPBqGkOSmTon2nPrN4KUiftPYhKmAbLqY2wnGu81vX PnNDiFc3m+gdejVY9PebX3NBbvvoPkc5Afn+OkUdhwoIioBnDhSjWr9mYgmF9u3S U+ieWjG5olYHBiYEBBToKSkOGobZb4NT2CypyAkqb3GRdkiKHu3LFg== -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:24 2025 by rpki-client