$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/5bTRCzRBQ5NRMc26TJfloAFow7E.roa File: 5bTRCzRBQ5NRMc26TJfloAFow7E.roa (raw, json) Hash identifier: Cx9PKTf5CbLKF66pkBE8QBkCbD/TMJh5wUFsPRZNXT0= Subject key identifier: E5:B4:D1:0B:34:41:43:93:51:31:CD:BA:4C:97:E5:A0:01:68:C3:B1 Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9 Certificate serial: 0E0D Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/5bTRCzRBQ5NRMc26TJfloAFow7E.roa Signing time: Fri 22 Aug 2025 08:54:22 +0000 ROA not before: Fri 22 Aug 2025 08:54:22 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4782 IP address blocks: 61.67.64.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3597 (0xe0d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9 Validity Not Before: Aug 22 08:54:22 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E5B4D10B344143935131CDBA4C97E5A00168C3B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:73:00:36:87:af:79:42:09:3d:70:f9:6b:86: 74:2c:9c:06:55:09:0b:0f:b5:2c:31:29:c1:af:52: 47:99:98:f3:2f:13:1c:11:ab:06:81:70:bf:64:f3: 86:f2:90:53:3d:d2:29:b8:89:ce:6a:8d:71:4b:19: 4c:cd:34:5e:3a:a6:0d:79:1b:a3:66:aa:90:3d:ef: 74:ec:17:e3:f2:bc:f5:61:07:47:a1:a0:bf:e5:a4: 18:8b:94:bb:3e:2d:c6:60:70:b7:bb:28:f1:88:9b: 7f:57:e2:3e:16:a9:2a:97:26:91:ab:d6:5d:be:98: 67:d8:78:63:da:1d:f0:07:d7:b1:f6:dd:d2:f2:2e: eb:b3:a8:77:f3:52:7a:fc:04:cb:fc:0e:cc:92:51: 57:2b:ed:72:b6:ea:b9:de:97:2a:ab:12:e3:b1:0e: f4:4e:e6:9c:08:e1:8f:ad:2c:a5:5d:8c:cb:cb:61: 6c:09:4d:63:c2:05:53:95:aa:32:21:ab:cd:0d:82: 42:80:5a:0e:e9:00:4e:ec:ab:a1:7d:49:97:44:ee: 9e:6c:96:67:00:67:0b:f0:e1:84:ad:56:53:69:d7: 9a:6e:bd:8d:1d:03:a3:d2:eb:cf:33:b0:62:5b:f4: fa:78:03:eb:a9:c3:5e:d0:36:f0:b1:df:c3:be:9a: 03:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:B4:D1:0B:34:41:43:93:51:31:CD:BA:4C:97:E5:A0:01:68:C3:B1 X509v3 Authority Key Identifier: keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/5bTRCzRBQ5NRMc26TJfloAFow7E.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.67.64.0/19 Signature Algorithm: sha256WithRSAEncryption 5e:33:1b:21:4c:33:89:03:90:ff:41:d4:79:76:14:0c:bb:9f: cf:88:95:f7:3a:bf:05:89:72:c0:d4:69:63:70:2d:18:34:7b: 16:b5:f7:f0:fc:bd:73:f7:28:c8:c6:fb:bb:c0:2d:56:fb:37: c4:dc:65:99:87:d4:0f:7b:11:e2:b2:75:b9:9e:55:f2:cd:51: af:c7:f0:bf:6d:63:5a:43:d7:e3:50:56:9e:d0:69:ee:8d:17: 95:1d:9e:1b:bc:e9:96:bb:79:05:22:84:9f:38:20:ec:59:70: 0f:18:17:22:a5:fb:b6:7c:a8:70:f3:bd:65:ec:f0:0f:ff:0b: 43:59:ec:29:31:00:f5:53:43:2f:bd:eb:1d:f8:73:52:4b:1f: 1f:42:c9:99:c5:89:9b:87:0a:5b:3c:02:63:b8:01:92:04:a5: f1:66:ce:f5:eb:7b:f6:ed:96:00:c5:14:af:b6:f6:b3:9f:ff: 4b:6f:11:90:ce:40:da:f7:c8:c1:17:83:65:2e:ed:6a:3f:70: 43:ab:93:cf:cd:9e:89:11:7e:69:70:70:1f:f0:ef:6f:22:f3: 1e:94:0e:b9:0a:8d:e4:bc:ec:dd:62:c6:4d:d6:6f:87:7c:2c: 48:41:50:96:bb:6f:a6:d6:fb:71:1f:fc:b3:7e:10:e0:de:72: 36:01:c2:15 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDg0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVG RTUzQzYxMUI0RkQ1NkIzRjY4MzE5RUVDQTYyODlGM0YwRjJBOTAeFw0yNTA4MjIw ODU0MjJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEU1QjREMTBCMzQ0MTQz OTM1MTMxQ0RCQTRDOTdFNUEwMDE2OEMzQjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxcwA2h695Qgk9cPlrhnQsnAZVCQsPtSwxKcGvUkeZmPMvExwR qwaBcL9k84bykFM90im4ic5qjXFLGUzNNF46pg15G6NmqpA973TsF+PyvPVhB0eh oL/lpBiLlLs+LcZgcLe7KPGIm39X4j4WqSqXJpGr1l2+mGfYeGPaHfAH17H23dLy LuuzqHfzUnr8BMv8DsySUVcr7XK26rnelyqrEuOxDvRO5pwI4Y+tLKVdjMvLYWwJ TWPCBVOVqjIhq80NgkKAWg7pAE7sq6F9SZdE7p5slmcAZwvw4YStVlNp15puvY0d A6PS688zsGJb9Pp4A+upw17QNvCx38O+mgOnAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU5bTRCzRBQ5NRMc26TJfloAFow7EwHwYDVR0jBBgwFoAUdf5TxhG0/Vaz9oMZ 7spiifPw8qkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL2Rm NVR4aEcwX1ZhejlvTVo3c3BpaWZQdzhxay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev ZGY1VHhoRzBfVmF6OW9NWjdzcGlpZlB3OHFrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOLzViVFJDelJCUTVOUk1jMjZUSmZsb0FG b3c3RS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAU9Q0AwDQYJ KoZIhvcNAQELBQADggEBAF4zGyFMM4kDkP9B1Hl2FAy7n8+Ilfc6vwWJcsDUaWNw LRg0exa19/D8vXP3KMjG+7vALVb7N8TcZZmH1A97EeKydbmeVfLNUa/H8L9tY1pD 1+NQVp7Qae6NF5Udnhu86Za7eQUihJ84IOxZcA8YFyKl+7Z8qHDzvWXs8A//C0NZ 7CkxAPVTQy+96x34c1JLHx9CyZnFiZuHCls8AmO4AZIEpfFmzvXre/btlgDFFK+2 9rOf/0tvEZDOQNr3yMEXg2Uu7Wo/cEOrk8/NnokRfmlwcB/w728i8x6UDrkKjeS8 7N1ixk3Wb4d8LEhBUJa7b6bW+3Ef/LN+EODecjYBwhU= -----END CERTIFICATE-----Generated at Sun Aug 24 07:23:14 2025 by rpki-client