$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWINS/YYHGbqkWA1THF62wbMHbCyM1qa8.roa File: YYHGbqkWA1THF62wbMHbCyM1qa8.roa (raw, json) Hash identifier: SC++PTCltOSoQwAy1wWM2DeiSDXIpa9FSy78QqfkR8Y= Subject key identifier: 61:81:C6:6E:A9:16:03:54:C7:17:AD:B0:6C:C1:DB:0B:23:35:A9:AF Certificate issuer: /CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791 Certificate serial: 0DD6 Authority key identifier: 61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YYHGbqkWA1THF62wbMHbCyM1qa8.roa Signing time: Fri 22 Aug 2025 08:52:49 +0000 ROA not before: Fri 22 Aug 2025 08:52:49 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 138915 IP address blocks: 43.224.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3542 (0xdd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791 Validity Not Before: Aug 22 08:52:49 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=6181C66EA9160354C717ADB06CC1DB0B2335A9AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:15:d6:90:c9:fa:fc:69:8c:a0:06:78:d2:e3: 1a:06:96:72:06:e1:82:7c:77:d9:f1:e6:b3:fd:fe: 62:25:09:7a:53:71:c4:b2:69:86:cf:ac:72:89:f2: 45:dc:1e:6d:0c:e5:3b:69:d7:b3:8d:51:fb:fe:82: 31:fa:e9:b1:9b:ce:cb:44:58:68:45:7c:85:ce:9f: ba:af:40:ae:f3:d2:a6:36:ff:ff:32:d9:13:b5:36: 30:cd:c6:ab:88:1a:fa:fb:81:b3:e1:12:b4:77:b2: 89:41:92:5f:c3:33:85:af:63:d1:4e:34:f5:3e:58: ba:e8:9a:90:96:d6:4c:82:f5:76:ec:26:57:d7:6f: 3f:f5:a7:f9:98:a7:6a:74:d0:13:38:ff:38:1f:ee: e8:9a:f7:bd:5d:91:6c:fc:9e:59:08:e8:0a:b3:c2: 83:48:6b:a1:ab:f2:03:91:ef:a9:4e:c6:e4:13:8a: 99:9c:31:6e:3b:18:6d:2a:18:20:e5:44:a2:29:dd: 95:0d:9c:30:3f:f4:e9:ef:bd:48:fe:81:f1:2a:82: 06:02:a1:f4:01:b8:58:64:ed:6c:f5:85:38:19:18: bf:ae:08:70:f0:d5:16:9c:4a:a2:1b:eb:59:ce:ee: 98:d2:4e:e7:c6:6b:28:13:bf:b4:4c:78:ee:af:b9: 5c:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:81:C6:6E:A9:16:03:54:C7:17:AD:B0:6C:C1:DB:0B:23:35:A9:AF X509v3 Authority Key Identifier: keyid:61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YYHGbqkWA1THF62wbMHbCyM1qa8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.224.20.0/24 Signature Algorithm: sha256WithRSAEncryption 13:f4:e0:06:c7:11:ec:1e:c5:4e:50:f1:5d:6b:09:2d:ff:ea: bb:a2:15:8d:bc:2a:b5:ed:bb:2a:29:aa:66:2e:bd:24:c2:f8: 44:be:2b:62:f3:4d:b9:5a:ab:cd:45:40:8f:63:01:45:fa:30: 39:fb:31:fc:ce:ae:aa:de:70:e4:93:69:61:7e:60:99:c2:1c: fe:02:da:88:c8:54:c3:d3:54:c1:73:31:f4:ff:0b:5b:99:2f: 74:7e:fd:22:bb:fd:2c:e6:80:a8:b2:60:6c:ef:e2:38:b2:33: c2:49:7b:55:b0:e4:b6:97:93:79:48:24:cf:ff:b3:0a:bf:78: 04:63:ee:1e:44:a0:79:6b:7f:77:8a:76:dd:d4:7e:23:aa:b7: 4a:01:c6:25:aa:3d:33:c2:86:db:73:63:30:02:fe:0b:9d:66: 78:59:e9:9e:92:99:bf:a8:ee:21:f0:2c:db:11:f1:f2:ef:91: 0c:d5:c2:78:ca:b5:6a:dd:b0:86:6c:aa:53:de:26:9a:2b:68: 8e:13:f8:28:82:5c:da:b8:6c:fa:3b:0e:3e:a9:f0:06:8c:dc: 32:50:e6:00:35:81:b9:5e:9b:98:ae:f9:b2:29:32:79:2d:54: f4:92:7a:16:ff:1f:21:bb:4e:55:9b:6a:e7:53:c1:37:4b:bb: 3a:53:15:14 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDdYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjE1 RjlCRDk4Q0M3MEU4ODM2RDAxQTk0ODFDMTlDNUMyRDQ1RDc5MTAeFw0yNTA4MjIw ODUyNDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDYxODFDNjZFQTkxNjAz NTRDNzE3QURCMDZDQzFEQjBCMjMzNUE5QUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSFdaQyfr8aYygBnjS4xoGlnIG4YJ8d9nx5rP9/mIlCXpTccSy aYbPrHKJ8kXcHm0M5Ttp17ONUfv+gjH66bGbzstEWGhFfIXOn7qvQK7z0qY2//8y 2RO1NjDNxquIGvr7gbPhErR3solBkl/DM4WvY9FONPU+WLrompCW1kyC9XbsJlfX bz/1p/mYp2p00BM4/zgf7uia971dkWz8nlkI6AqzwoNIa6Gr8gOR76lOxuQTipmc MW47GG0qGCDlRKIp3ZUNnDA/9OnvvUj+gfEqggYCofQBuFhk7Wz1hTgZGL+uCHDw 1RacSqIb61nO7pjSTufGaygTv7RMeO6vuVyfAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUYYHGbqkWA1THF62wbMHbCyM1qa8wHwYDVR0jBBgwFoAUYV+b2YzHDog20BqU gcGcXC1F15EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdJTlMv WVYtYjJZekhEb2cyMEJxVWdjR2NYQzFGMTVFLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9ZVi1iMll6SERvZzIwQnFVZ2NHY1hDMUYxNUUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9EV0lOUy9ZWUhHYnFrV0ExVEhGNjJ3Yk1I YkN5TTFxYTgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAK+AU MA0GCSqGSIb3DQEBCwUAA4IBAQAT9OAGxxHsHsVOUPFdawkt/+q7ohWNvCq17bsq KapmLr0kwvhEviti8025WqvNRUCPYwFF+jA5+zH8zq6q3nDkk2lhfmCZwhz+AtqI yFTD01TBczH0/wtbmS90fv0iu/0s5oCosmBs7+I4sjPCSXtVsOS2l5N5SCTP/7MK v3gEY+4eRKB5a393inbd1H4jqrdKAcYlqj0zwobbc2MwAv4LnWZ4Wemekpm/qO4h 8CzbEfHy75EM1cJ4yrVq3bCGbKpT3iaaK2iOE/goglzauGz6Ow4+qfAGjNwyUOYA NYG5XpuYrvmyKTJ5LVT0knoW/x8hu05Vm2rnU8E3S7s6UxUU -----END CERTIFICATE-----Generated at Sun Aug 24 09:04:16 2025 by rpki-client