$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/yfNOAQrRKX4zqmL29T3Km1A2Jh8.roa File: yfNOAQrRKX4zqmL29T3Km1A2Jh8.roa (raw, json) Hash identifier: tC17t4J5U/MdDLcoWvBmR6q0e8oyTR9+c6P1vriFD+w= Subject key identifier: C9:F3:4E:01:0A:D1:29:7E:33:AA:62:F6:F5:3D:CA:9B:50:36:26:1F Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9 Certificate serial: 0EAC Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/yfNOAQrRKX4zqmL29T3Km1A2Jh8.roa Signing time: Wed 25 Mar 2026 02:55:22 +0000 ROA not before: Wed 25 Mar 2026 02:55:22 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4782 IP address blocks: 210.69.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 08:29:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3756 (0xeac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9 Validity Not Before: Mar 25 02:55:22 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C9F34E010AD1297E33AA62F6F53DCA9B5036261F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:6f:10:20:06:dc:c9:3b:de:e8:96:45:db:12: e4:09:4a:50:ba:b0:42:94:7a:23:3b:b0:88:54:fe: 7a:ef:ca:a3:8a:59:27:2f:bf:09:06:86:bc:59:38: d1:20:5e:fb:5a:c9:25:cc:9f:f7:b3:54:94:6b:e1: aa:30:44:69:cd:8e:f1:29:d8:12:db:9c:79:f3:ec: e5:b8:0c:9e:9f:ad:ff:11:ed:8b:ab:25:34:58:a5: 01:b7:99:d0:8c:54:f4:8e:c0:79:59:b0:26:e1:75: 01:97:d5:56:95:fc:92:51:e3:ae:e9:f8:8c:78:6d: cd:e2:b5:24:94:d6:d9:33:cd:bd:ba:52:c1:1c:d5: 55:0f:5b:e7:a8:90:2d:0b:4e:41:67:09:68:37:f8: 05:bd:9a:f2:28:d1:cb:0f:fa:bb:c5:e7:bb:ad:6f: e5:7e:a9:ae:8a:35:d2:ff:56:81:b5:ba:fc:23:76: c5:47:ab:eb:19:10:ed:3f:01:79:99:6c:0d:8e:f1: bc:ce:9e:1a:62:61:c5:8e:f9:b8:69:3a:db:ff:48: 9f:bd:6b:44:cf:49:c6:87:0f:ed:c6:33:8f:d3:db: c4:28:d9:43:74:b5:b4:33:c7:99:d1:ac:41:40:c3: 9a:86:4d:fd:53:03:88:cc:f6:47:b0:ee:22:ef:db: 9f:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:F3:4E:01:0A:D1:29:7E:33:AA:62:F6:F5:3D:CA:9B:50:36:26:1F X509v3 Authority Key Identifier: keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/yfNOAQrRKX4zqmL29T3Km1A2Jh8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.69.234.0/24 Signature Algorithm: sha256WithRSAEncryption a7:f3:35:98:cb:13:71:61:c3:1f:0e:dc:68:37:63:b3:ce:7e: cf:40:b4:c4:61:aa:60:3f:b3:16:8a:14:f9:c3:66:4a:89:bb: 39:a5:a1:c1:26:49:28:dc:03:fc:91:9a:b9:b5:5a:3e:51:4f: 6e:ae:b1:ba:33:c6:c4:cb:d8:96:cb:1a:c0:7c:12:6b:71:38: a1:f9:e4:b4:2e:16:ec:f7:b4:7b:73:62:67:0f:b2:48:e6:e8: 82:89:45:2c:d2:27:00:0e:24:df:59:1f:a8:72:f2:1b:32:ca: 0a:b3:ce:18:d3:4e:8d:d9:a8:b7:45:58:a5:f6:f6:04:4a:c7: be:da:67:7f:b1:3d:7c:82:8f:4b:ce:20:74:37:10:10:34:33: 1b:c4:8f:e2:2d:ba:d1:66:93:2c:1d:66:99:05:3c:91:5f:c4: cd:96:0d:a1:aa:c6:37:bc:16:55:14:83:7b:f7:29:81:15:e6: 0c:1d:36:6a:8e:5b:42:8e:da:50:c1:d3:7d:21:3b:ae:bb:ab: 5b:ce:ed:4f:01:ab:ea:e3:de:8a:57:6a:de:9c:c6:f9:87:2f: 26:fc:7b:cb:e6:3a:d4:89:a3:77:c4:ac:32:4d:41:12:05:5f: b8:e1:df:4d:c0:9a:15:d5:c3:76:b2:e2:24:0c:4b:f2:b8:70: 37:55:10:55 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDqwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVG RTUzQzYxMUI0RkQ1NkIzRjY4MzE5RUVDQTYyODlGM0YwRjJBOTAeFw0yNjAzMjUw MjU1MjJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEM5RjM0RTAxMEFEMTI5 N0UzM0FBNjJGNkY1M0RDQTlCNTAzNjI2MUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIbxAgBtzJO97olkXbEuQJSlC6sEKUeiM7sIhU/nrvyqOKWScv vwkGhrxZONEgXvtaySXMn/ezVJRr4aowRGnNjvEp2BLbnHnz7OW4DJ6frf8R7Yur JTRYpQG3mdCMVPSOwHlZsCbhdQGX1VaV/JJR467p+Ix4bc3itSSU1tkzzb26UsEc 1VUPW+eokC0LTkFnCWg3+AW9mvIo0csP+rvF57utb+V+qa6KNdL/VoG1uvwjdsVH q+sZEO0/AXmZbA2O8bzOnhpiYcWO+bhpOtv/SJ+9a0TPScaHD+3GM4/T28Qo2UN0 tbQzx5nRrEFAw5qGTf1TA4jM9kew7iLv25/rAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUyfNOAQrRKX4zqmL29T3Km1A2Jh8wHwYDVR0jBBgwFoAUdf5TxhG0/Vaz9oMZ 7spiifPw8qkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL2Rm NVR4aEcwX1ZhejlvTVo3c3BpaWZQdzhxay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev ZGY1VHhoRzBfVmF6OW9NWjdzcGlpZlB3OHFrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL3lmTk9BUXJSS1g0enFtTDI5VDNLbTFB MkpoOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADSReowDQYJ KoZIhvcNAQELBQADggEBAKfzNZjLE3Fhwx8O3Gg3Y7POfs9AtMRhqmA/sxaKFPnD ZkqJuzmlocEmSSjcA/yRmrm1Wj5RT26usbozxsTL2JbLGsB8EmtxOKH55LQuFuz3 tHtzYmcPskjm6IKJRSzSJwAOJN9ZH6hy8hsyygqzzhjTTo3ZqLdFWKX29gRKx77a Z3+xPXyCj0vOIHQ3EBA0MxvEj+ItutFmkywdZpkFPJFfxM2WDaGqxje8FlUUg3v3 KYEV5gwdNmqOW0KO2lDB030hO667q1vO7U8Bq+rj3opXat6cxvmHLyb8e8vmOtSJ o3fErDJNQRIFX7jh303AmhXVw3ay4iQMS/K4cDdVEFU= -----END CERTIFICATE-----Generated at Fri Mar 27 05:17:28 2026 by rpki-client