$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/ZlQZvPJY1wL2GuyX6_QYq4pgEWI.roa File: ZlQZvPJY1wL2GuyX6_QYq4pgEWI.roa (raw, json) Hash identifier: US9unaX9h0rVbbzTLtmU6epTD//yIIiHJF/pCXNn2iU= Subject key identifier: 66:54:19:BC:F2:58:D7:02:F6:1A:EC:97:EB:F4:18:AB:8A:60:11:62 Certificate issuer: /CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B Certificate serial: 0DC8 Authority key identifier: 6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/ZlQZvPJY1wL2GuyX6_QYq4pgEWI.roa Signing time: Fri 22 Aug 2025 08:56:42 +0000 ROA not before: Fri 22 Aug 2025 08:56:42 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 61.60.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3528 (0xdc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B Validity Not Before: Aug 22 08:56:42 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=665419BCF258D702F61AEC97EBF418AB8A601162 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:38:80:9e:bc:eb:0a:24:f0:da:71:3e:da:2b: 61:e0:0f:68:2b:87:81:f9:30:d1:7f:c0:b3:4f:e5: 55:d2:13:12:f8:06:76:13:79:51:71:bc:7c:16:60: c6:3d:e3:67:e3:2b:20:e8:8c:6d:14:60:4b:69:f3: 42:80:82:8f:e2:eb:9a:06:27:99:30:64:f1:76:bf: d4:c6:91:09:c9:62:10:c5:a4:06:a5:62:3f:c8:1a: de:47:a8:e3:e6:85:ad:55:1a:ae:d6:ce:df:89:a0: 55:5a:01:3b:0e:27:1a:b6:68:d8:1a:63:eb:f4:f5: c0:32:d6:dc:49:0e:be:ef:b0:31:a9:c9:9e:0d:51: 62:a1:98:2f:23:7a:be:82:74:76:49:0f:55:c8:9c: af:2e:1d:05:7e:74:38:db:68:90:bd:55:e1:b7:37: 08:3e:29:e7:30:52:c2:01:4b:7f:c2:48:4b:73:f0: dd:8a:3f:f4:73:52:9f:c3:66:4a:f6:93:26:90:c1: 6c:e9:75:19:c2:38:da:9e:39:6e:62:7e:de:ef:7f: 80:f1:ec:19:1c:f2:5e:51:59:5a:65:4d:11:44:ba: f5:63:a1:47:68:7d:6d:d8:dc:5c:53:0e:52:a7:4e: 58:26:e5:48:7d:62:f6:ef:76:38:c9:75:d1:06:4b: 6f:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:54:19:BC:F2:58:D7:02:F6:1A:EC:97:EB:F4:18:AB:8A:60:11:62 X509v3 Authority Key Identifier: keyid:6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/ZlQZvPJY1wL2GuyX6_QYq4pgEWI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.60.240.0/20 Signature Algorithm: sha256WithRSAEncryption a4:4b:57:c8:08:91:89:3f:f9:86:26:93:e1:92:4b:c4:21:f2: 5b:7c:e5:3e:34:f0:12:53:83:56:11:b5:a9:e0:1a:cf:3b:51: 4f:12:4d:18:ea:80:3c:ae:dd:7b:fe:55:89:5a:ef:88:ef:2c: dd:d2:c3:c7:fa:07:d9:3f:52:10:fe:91:a7:76:ac:c3:6b:8f: 87:07:8d:aa:ed:b4:91:93:a7:16:dc:ab:c6:1b:8d:a4:e4:70: e5:61:70:2e:70:3d:6a:93:19:94:22:7e:eb:84:36:26:c3:f2: 92:36:ee:8c:78:f0:cf:4e:af:03:a9:e5:25:be:9d:08:66:33: 96:85:67:70:d4:de:a7:92:99:43:c9:c4:99:2e:85:90:d4:e5: 40:22:43:07:a6:76:5c:1c:35:79:19:75:6a:05:10:0d:66:25: 9e:0d:6c:9f:f3:18:00:f8:28:3f:51:06:cb:f0:50:95:24:ee: d5:40:4f:3b:80:30:77:27:93:32:46:b6:35:a4:8c:22:a7:7a: 7a:e4:9d:da:b0:14:03:48:df:6d:0b:0f:f3:1e:78:74:6e:40: f8:3f:d0:22:77:48:6f:d2:c4:d8:5c:80:a0:d3:53:0d:17:9a: 57:03:b6:78:fe:55:19:e0:be:35:7b:6c:71:13:be:b6:89:d2: bf:df:ff:e8 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDcgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkZE RUEzNDcwNzE1MjI5MEMxRDI2MDZGRkJGQzY5QjkyN0Q0MEE1QjAeFw0yNTA4MjIw ODU2NDJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDY2NTQxOUJDRjI1OEQ3 MDJGNjFBRUM5N0VCRjQxOEFCOEE2MDExNjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTOICevOsKJPDacT7aK2HgD2grh4H5MNF/wLNP5VXSExL4BnYT eVFxvHwWYMY942fjKyDojG0UYEtp80KAgo/i65oGJ5kwZPF2v9TGkQnJYhDFpAal Yj/IGt5HqOPmha1VGq7Wzt+JoFVaATsOJxq2aNgaY+v09cAy1txJDr7vsDGpyZ4N UWKhmC8jer6CdHZJD1XInK8uHQV+dDjbaJC9VeG3Nwg+KecwUsIBS3/CSEtz8N2K P/RzUp/DZkr2kyaQwWzpdRnCONqeOW5ift7vf4Dx7Bkc8l5RWVplTRFEuvVjoUdo fW3Y3FxTDlKnTlgm5Uh9YvbvdjjJddEGS29XAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUZlQZvPJY1wL2GuyX6/QYq4pgEWIwHwYDVR0jBBgwFoAUb96jRwcVIpDB0mBv +/xpuSfUClswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1lDQ0FU Vi9iOTZqUndjVklwREIwbUJ2LV94cHVTZlVDbHMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL2I5NmpSd2NWSXBEQjBtQnYtX3hwdVNmVUNscy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NZQ0NBVFYvWmxRWnZQSlkxd0wyR3V5 WDZfUVlxNHBnRVdJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BD088DANBgkqhkiG9w0BAQsFAAOCAQEApEtXyAiRiT/5hiaT4ZJLxCHyW3zlPjTw ElODVhG1qeAazztRTxJNGOqAPK7de/5ViVrviO8s3dLDx/oH2T9SEP6Rp3asw2uP hweNqu20kZOnFtyrxhuNpORw5WFwLnA9apMZlCJ+64Q2JsPykjbujHjwz06vA6nl Jb6dCGYzloVncNTep5KZQ8nEmS6FkNTlQCJDB6Z2XBw1eRl1agUQDWYlng1sn/MY APgoP1EGy/BQlSTu1UBPO4AwdyeTMka2NaSMIqd6euSd2rAUA0jfbQsP8x54dG5A +D/QIndIb9LE2FyAoNNTDReaVwO2eP5VGeC+NXtscRO+tonSv9//6A== -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:19 2025 by rpki-client