$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/aaBDyrWFuMcWKEjLZwjNwIds9AQ.roa File: aaBDyrWFuMcWKEjLZwjNwIds9AQ.roa (raw, json) Hash identifier: Gr838RugwzT9CbqsM6il5bTlMVgbjKP1rWfNuR5GthQ= Subject key identifier: 69:A0:43:CA:B5:85:B8:C7:16:28:48:CB:67:08:CD:C0:87:6C:F4:04 Certificate issuer: /CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B Certificate serial: 0DC5 Authority key identifier: 6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/aaBDyrWFuMcWKEjLZwjNwIds9AQ.roa Signing time: Fri 22 Aug 2025 08:56:41 +0000 ROA not before: Fri 22 Aug 2025 08:56:41 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18046 IP address blocks: 103.130.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3525 (0xdc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B Validity Not Before: Aug 22 08:56:41 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=69A043CAB585B8C7162848CB6708CDC0876CF404 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:6d:23:40:45:60:49:0c:92:80:50:37:ab:56: 78:fa:4b:0f:24:fa:c8:0a:f6:cf:c9:4f:0f:65:05: 04:02:66:36:f2:43:02:47:b6:c0:cf:5e:a7:78:e7: 95:1c:a4:c9:2a:b3:3d:d7:26:b9:c6:fa:92:9e:96: 3b:9c:17:1c:f4:0a:a8:79:54:88:dc:b2:2b:b9:19: c1:5c:ee:cf:42:20:6a:b4:4a:41:d4:d4:88:6c:2f: f7:2e:99:d4:26:c7:1d:32:bc:42:16:21:e1:46:38: 89:cd:d5:52:2c:df:24:a0:49:1c:03:13:7b:47:ad: 90:3a:e6:c3:6b:fd:43:f2:56:94:80:ee:03:cc:27: b4:5d:f1:02:43:eb:ce:02:c4:8c:70:5d:9a:e4:4e: f9:11:99:bf:1b:0a:16:27:ff:f9:f4:da:ff:72:a6: ff:20:c5:8a:f7:5c:04:9a:f5:9c:8b:3c:89:88:c4: 58:69:91:60:12:7f:c1:23:3f:1e:eb:a2:11:7f:39: f4:3a:d8:73:ca:36:7e:c4:d8:07:ea:e6:e6:fb:1a: 8f:2f:26:82:c0:fc:67:3b:63:e4:66:c2:19:13:f8: 1b:ee:46:fa:f8:84:e9:66:7e:a8:ac:1b:17:32:09: 9f:25:f7:12:55:8e:11:b0:56:fd:1e:17:e0:6c:8a: 16:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:A0:43:CA:B5:85:B8:C7:16:28:48:CB:67:08:CD:C0:87:6C:F4:04 X509v3 Authority Key Identifier: keyid:6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/aaBDyrWFuMcWKEjLZwjNwIds9AQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.130.20.0/22 Signature Algorithm: sha256WithRSAEncryption 46:9a:d9:ca:72:eb:8d:8e:d6:ca:5b:68:4a:0a:e4:ed:5f:54: 67:9c:09:99:aa:08:a6:4a:e3:28:5d:c3:e8:80:aa:35:bb:a9: f7:8f:69:9b:4d:98:52:07:79:98:04:eb:64:7c:bf:8c:f9:eb: ca:85:fc:ce:80:e9:00:bf:67:39:e9:3b:07:b3:3b:ec:02:ad: ec:ec:6a:4e:9d:1a:a4:52:d3:41:c2:f6:df:06:4e:54:84:50: 90:80:d1:de:a5:7c:0c:71:3b:de:14:5c:2d:7f:33:37:13:3a: 8e:78:c5:07:73:57:bb:1e:1b:d8:54:a1:05:d7:2f:48:24:45: 25:22:b9:9f:76:62:b6:bb:2a:e3:60:85:ad:d8:d8:aa:72:e0: 8f:0a:b5:d9:1e:f6:58:a6:fb:aa:7b:d4:8d:c9:6c:18:d6:4b: 77:59:d0:21:ac:23:80:41:f7:8b:23:81:a8:7a:85:e3:25:74: ee:7a:b7:af:e7:af:af:07:0a:2f:f9:e1:96:62:ae:ba:c1:18: c3:30:91:cb:0c:3e:88:0f:a2:6a:8b:33:bc:43:e6:47:a2:5e: 65:82:81:aa:47:98:9f:0a:bc:8d:4b:68:78:58:b3:29:b0:d0: 54:6e:25:3a:88:d5:19:d7:88:c6:6d:46:0d:84:ce:fb:03:0b: f0:86:18:4a -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDcUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkZE RUEzNDcwNzE1MjI5MEMxRDI2MDZGRkJGQzY5QjkyN0Q0MEE1QjAeFw0yNTA4MjIw ODU2NDFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDY5QTA0M0NBQjU4NUI4 QzcxNjI4NDhDQjY3MDhDREMwODc2Q0Y0MDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2bSNARWBJDJKAUDerVnj6Sw8k+sgK9s/JTw9lBQQCZjbyQwJH tsDPXqd455UcpMkqsz3XJrnG+pKeljucFxz0Cqh5VIjcsiu5GcFc7s9CIGq0SkHU 1IhsL/cumdQmxx0yvEIWIeFGOInN1VIs3ySgSRwDE3tHrZA65sNr/UPyVpSA7gPM J7Rd8QJD684CxIxwXZrkTvkRmb8bChYn//n02v9ypv8gxYr3XASa9ZyLPImIxFhp kWASf8EjPx7rohF/OfQ62HPKNn7E2Afq5ub7Go8vJoLA/Gc7Y+RmwhkT+BvuRvr4 hOlmfqisGxcyCZ8l9xJVjhGwVv0eF+BsihbXAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUaaBDyrWFuMcWKEjLZwjNwIds9AQwHwYDVR0jBBgwFoAUb96jRwcVIpDB0mBv +/xpuSfUClswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1lDQ0FU Vi9iOTZqUndjVklwREIwbUJ2LV94cHVTZlVDbHMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL2I5NmpSd2NWSXBEQjBtQnYtX3hwdVNmVUNscy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NZQ0NBVFYvYWFCRHlyV0Z1TWNXS0Vq TFp3ak53SWRzOUFRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AmeCFDANBgkqhkiG9w0BAQsFAAOCAQEARprZynLrjY7WyltoSgrk7V9UZ5wJmaoI pkrjKF3D6ICqNbup949pm02YUgd5mATrZHy/jPnryoX8zoDpAL9nOek7B7M77AKt 7OxqTp0apFLTQcL23wZOVIRQkIDR3qV8DHE73hRcLX8zNxM6jnjFB3NXux4b2FSh BdcvSCRFJSK5n3Zitrsq42CFrdjYqnLgjwq12R72WKb7qnvUjclsGNZLd1nQIawj gEH3iyOBqHqF4yV07nq3r+evrwcKL/nhlmKuusEYwzCRyww+iA+iaoszvEPmR6Je ZYKBqkeYnwq8jUtoeFizKbDQVG4lOojVGdeIxm1GDYTO+wML8IYYSg== -----END CERTIFICATE-----Generated at Sun Aug 24 07:28:23 2025 by rpki-client