$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/oNJvx4A7PXt5uyVsqxYqoAo1wb8.roa File: oNJvx4A7PXt5uyVsqxYqoAo1wb8.roa (raw, json) Hash identifier: BYYp7e8Yz96ldV00G1d0k07qTSVFLhfDVMpiDDMvMto= Subject key identifier: A0:D2:6F:C7:80:3B:3D:7B:79:BB:25:6C:AB:16:2A:A0:0A:35:C1:BF Certificate issuer: /CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B Certificate serial: 0DC7 Authority key identifier: 6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/oNJvx4A7PXt5uyVsqxYqoAo1wb8.roa Signing time: Fri 22 Aug 2025 08:56:42 +0000 ROA not before: Fri 22 Aug 2025 08:56:42 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4780 IP address blocks: 61.58.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3527 (0xdc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B Validity Not Before: Aug 22 08:56:42 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=A0D26FC7803B3D7B79BB256CAB162AA00A35C1BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:bb:c3:d6:2b:ff:6a:b9:fc:14:c6:45:ea:d3: 26:f8:00:5b:5b:c6:23:2d:df:0d:d2:6c:b9:6d:39: 71:ee:be:62:d4:47:cf:0e:25:cd:1d:be:ae:d8:66: cf:38:10:73:f3:f0:3f:13:73:59:0c:4c:63:59:98: 56:13:59:db:ca:be:0d:e6:28:dc:4d:8e:af:05:be: 1b:9b:db:92:f9:f9:88:23:3c:b6:45:cd:23:9e:b2: d5:50:e8:08:85:10:f7:33:ca:00:5f:d6:62:26:bd: b8:ee:e7:7f:06:ac:dd:14:d1:f0:cf:fa:b8:66:e3: 01:84:3d:35:13:c8:a6:4b:f2:fc:5b:4d:4a:0a:d2: a8:9e:9f:6d:66:c2:52:6f:14:3b:a6:9d:e5:05:6a: 18:6a:40:50:51:6c:99:01:8e:f0:06:6b:9b:dd:75: c6:4b:e6:64:73:7a:00:0e:83:d0:58:d5:a5:b5:b4: 4d:a2:38:95:17:07:68:e5:f8:bd:68:46:84:c9:b3: 94:71:9b:60:77:47:14:1a:34:f0:2b:d9:01:2f:ae: c8:9b:3a:9b:1a:d0:6e:a9:fe:60:46:b5:bf:29:50: 44:e8:55:cf:d4:24:03:85:e2:07:f2:67:33:d2:7d: 27:45:77:3f:e1:61:b8:5b:86:bc:80:98:d4:ee:ff: 44:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:D2:6F:C7:80:3B:3D:7B:79:BB:25:6C:AB:16:2A:A0:0A:35:C1:BF X509v3 Authority Key Identifier: keyid:6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/oNJvx4A7PXt5uyVsqxYqoAo1wb8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.58.16.0/20 Signature Algorithm: sha256WithRSAEncryption 01:8d:54:5d:4a:7a:59:89:98:21:93:cb:93:fd:87:e6:24:ea: 76:44:60:84:da:ac:14:08:73:45:75:72:ae:a6:b3:0d:2e:7f: 6c:c5:89:5b:09:74:03:6a:31:c1:ee:e5:8d:d0:af:ac:2e:e1: 92:f8:d5:a8:61:3a:94:03:72:da:47:d9:30:9c:73:43:95:c5: 71:93:31:d3:63:ac:64:72:f6:c8:28:d9:08:55:86:b6:79:5b: f1:cd:47:58:ec:af:14:12:4f:eb:26:53:c6:0d:68:f4:97:ec: e5:60:00:8d:b3:aa:1e:33:8f:b5:60:04:b6:ad:f7:1c:45:ad: e3:09:9f:43:d6:ac:ff:ab:80:34:e7:62:83:42:4a:f5:d9:7f: d6:b0:3c:f4:8d:dd:6d:25:1a:40:83:39:13:ce:75:1f:7a:9b: 7d:d4:fc:82:6a:10:2a:e5:95:24:a5:a1:e1:b6:35:16:97:88: 44:a4:84:92:6e:12:cf:30:80:a2:09:40:3d:2c:fb:08:b2:13: 71:f0:97:0e:ac:0d:e7:b4:c2:db:51:3c:54:9a:2d:ac:94:8e: f0:55:7d:2d:15:0e:a1:0c:08:2d:96:31:ff:26:0b:1a:b3:18: 01:49:7f:58:4e:47:9e:8e:1f:de:a6:33:a7:85:85:b2:8e:f6: b2:8d:7a:36 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDccwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkZE RUEzNDcwNzE1MjI5MEMxRDI2MDZGRkJGQzY5QjkyN0Q0MEE1QjAeFw0yNTA4MjIw ODU2NDJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEEwRDI2RkM3ODAzQjNE N0I3OUJCMjU2Q0FCMTYyQUEwMEEzNUMxQkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIu8PWK/9qufwUxkXq0yb4AFtbxiMt3w3SbLltOXHuvmLUR88O Jc0dvq7YZs84EHPz8D8Tc1kMTGNZmFYTWdvKvg3mKNxNjq8Fvhub25L5+YgjPLZF zSOestVQ6AiFEPczygBf1mImvbju538GrN0U0fDP+rhm4wGEPTUTyKZL8vxbTUoK 0qien21mwlJvFDumneUFahhqQFBRbJkBjvAGa5vddcZL5mRzegAOg9BY1aW1tE2i OJUXB2jl+L1oRoTJs5Rxm2B3RxQaNPAr2QEvrsibOpsa0G6p/mBGtb8pUEToVc/U JAOF4gfyZzPSfSdFdz/hYbhbhryAmNTu/0QPAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUoNJvx4A7PXt5uyVsqxYqoAo1wb8wHwYDVR0jBBgwFoAUb96jRwcVIpDB0mBv +/xpuSfUClswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1lDQ0FU Vi9iOTZqUndjVklwREIwbUJ2LV94cHVTZlVDbHMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL2I5NmpSd2NWSXBEQjBtQnYtX3hwdVNmVUNscy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NZQ0NBVFYvb05Kdng0QTdQWHQ1dXlW c3F4WXFvQW8xd2I4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BD06EDANBgkqhkiG9w0BAQsFAAOCAQEAAY1UXUp6WYmYIZPLk/2H5iTqdkRghNqs FAhzRXVyrqazDS5/bMWJWwl0A2oxwe7ljdCvrC7hkvjVqGE6lANy2kfZMJxzQ5XF cZMx02OsZHL2yCjZCFWGtnlb8c1HWOyvFBJP6yZTxg1o9Jfs5WAAjbOqHjOPtWAE tq33HEWt4wmfQ9as/6uANOdig0JK9dl/1rA89I3dbSUaQIM5E851H3qbfdT8gmoQ KuWVJKWh4bY1FpeIRKSEkm4SzzCAoglAPSz7CLITcfCXDqwN57TC21E8VJotrJSO 8FV9LRUOoQwILZYx/yYLGrMYAUl/WE5Hno4f3qYzp4WFso72so16Ng== -----END CERTIFICATE-----Generated at Sun Aug 24 07:26:37 2025 by rpki-client