$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/C8iRXCfqhssSBRhIEnrCDDkPTsM.roa File: C8iRXCfqhssSBRhIEnrCDDkPTsM.roa (raw, json) Hash identifier: OWzAuKwnu7+193BwT4u5mYNFWN2M8PExFaGwLAaHIys= Subject key identifier: 0B:C8:91:5C:27:EA:86:CB:12:05:18:48:12:7A:C2:0C:39:0F:4E:C3 Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0E84 Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/C8iRXCfqhssSBRhIEnrCDDkPTsM.roa Signing time: Fri 22 Aug 2025 09:03:20 +0000 ROA not before: Fri 22 Aug 2025 09:03:20 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9244 IP address blocks: 61.56.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 02:44:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3716 (0xe84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Aug 22 09:03:20 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=0BC8915C27EA86CB12051848127AC20C390F4EC3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:b5:a4:46:d9:01:60:c1:54:ea:45:ea:ce:5f: c4:15:d0:c4:69:76:30:f6:a6:96:03:ac:70:e2:43: 7a:2a:d1:f5:9f:c1:a4:ba:b2:b9:e8:a6:81:09:89: 56:3a:e5:52:74:11:22:bf:fb:2a:98:66:71:5c:b8: 64:28:94:a1:59:ec:7b:ce:35:ec:b6:8a:71:b8:27: 44:93:bf:7e:9d:a7:bf:5f:cf:54:f2:91:28:a4:2c: 23:6c:ee:65:da:57:01:eb:a2:ac:f5:ca:d0:fd:21: 27:cc:5a:79:9a:a0:fe:6e:d9:3d:e5:01:33:c7:30: be:6b:1c:ce:61:be:e2:28:70:89:c5:7a:f3:58:f0: bc:97:9f:2c:db:9c:bb:e8:17:1d:51:82:a5:78:ca: 1c:9d:88:51:3d:41:c0:b5:ae:fb:f1:1f:a4:62:f5: ca:7a:f2:c4:a7:c8:99:0d:de:0e:0a:cf:99:3f:bd: 1a:2b:53:bf:3d:cf:8d:55:9d:4f:3b:25:9c:18:83: 66:8f:9b:3a:09:8b:b5:b0:97:20:6c:d0:77:f4:07: 62:6d:45:d0:3b:5b:9f:86:8e:0e:b7:70:5f:63:93: 78:24:92:c9:b4:0f:f0:63:f6:4a:33:66:0b:b5:9c: da:fa:f1:18:4e:16:f5:53:7b:fc:fd:2e:d2:97:f5: d2:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:C8:91:5C:27:EA:86:CB:12:05:18:48:12:7A:C2:0C:39:0F:4E:C3 X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/C8iRXCfqhssSBRhIEnrCDDkPTsM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.56.67.0/24 Signature Algorithm: sha256WithRSAEncryption 57:71:26:aa:80:a9:ed:d1:9d:ab:d8:91:51:0b:83:5f:6c:1e: 7a:fb:ce:67:bd:b0:5a:e0:7d:f0:2e:d9:83:3b:c3:6a:bb:7d: cb:2f:8d:75:23:1a:37:08:a0:09:2a:16:4e:e7:ef:35:1f:91: 26:50:4b:c1:dc:e5:5d:40:80:17:41:dd:08:67:12:a4:0f:24: f6:42:8f:43:65:e2:4d:e9:08:3f:ab:d6:ce:97:b2:a1:82:8e: f6:27:23:18:e8:3f:3f:74:7a:10:92:e3:ad:40:49:0d:7f:4d: de:1f:d1:04:7d:1d:ca:74:e3:cf:2b:1c:06:5d:da:c5:93:d5: f0:da:7b:82:f8:58:a8:aa:9d:78:1d:fd:94:18:9f:fc:bf:93: cb:2c:be:5c:7d:7d:71:88:d1:5b:36:44:28:6d:77:54:e1:84: 41:f3:e3:06:65:d7:b0:a6:df:ce:03:57:86:bc:69:db:df:7d: 73:53:1e:dc:ad:64:18:30:2f:a2:99:45:8e:9c:e0:b0:9c:8b: 02:45:00:0f:90:d3:13:87:73:63:6a:bd:1e:e8:b1:66:cb:5c: 8f:18:86:1a:39:66:ec:58:fa:85:e7:df:9c:df:a7:2f:71:71: 48:18:06:6d:93:2b:4a:c1:17:74:df:a6:40:d9:05:07:62:e4: 8e:f1:d5:c0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDoQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yNTA4MjIw OTAzMjBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDBCQzg5MTVDMjdFQTg2 Q0IxMjA1MTg0ODEyN0FDMjBDMzkwRjRFQzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDptaRG2QFgwVTqRerOX8QV0MRpdjD2ppYDrHDiQ3oq0fWfwaS6 srnopoEJiVY65VJ0ESK/+yqYZnFcuGQolKFZ7HvONey2inG4J0STv36dp79fz1Ty kSikLCNs7mXaVwHroqz1ytD9ISfMWnmaoP5u2T3lATPHML5rHM5hvuIocInFevNY 8LyXnyzbnLvoFx1RgqV4yhydiFE9QcC1rvvxH6Ri9cp68sSnyJkN3g4Kz5k/vRor U789z41VnU87JZwYg2aPmzoJi7WwlyBs0Hf0B2JtRdA7W5+Gjg63cF9jk3gkksm0 D/Bj9kozZgu1nNr68RhOFvVTe/z9LtKX9dJ7AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUC8iRXCfqhssSBRhIEnrCDDkPTsMwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL0M4aVJYQ2ZxaHNzU0JSaElF bnJDRERrUFRzTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAA9 OEMwDQYJKoZIhvcNAQELBQADggEBAFdxJqqAqe3RnavYkVELg19sHnr7zme9sFrg ffAu2YM7w2q7fcsvjXUjGjcIoAkqFk7n7zUfkSZQS8Hc5V1AgBdB3QhnEqQPJPZC j0Nl4k3pCD+r1s6XsqGCjvYnIxjoPz90ehCS461ASQ1/Td4f0QR9Hcp0488rHAZd 2sWT1fDae4L4WKiqnXgd/ZQYn/y/k8ssvlx9fXGI0Vs2RChtd1ThhEHz4wZl17Cm 384DV4a8advffXNTHtytZBgwL6KZRY6c4LCciwJFAA+Q0xOHc2NqvR7osWbLXI8Y hho5ZuxY+oXn35zfpy9xcUgYBm2TK0rBF3TfpkDZBQdi5I7x1cA= -----END CERTIFICATE-----Generated at Mon Aug 25 01:28:35 2025 by rpki-client