$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GTBC/-6XlqYefJPvBCDTecVvfA87eIQk.roa File: -6XlqYefJPvBCDTecVvfA87eIQk.roa (raw, json) Hash identifier: B6mSOMwxjzCSL4uGuRR94JwvqQRl5johxv5gEn98Arw= Subject key identifier: FB:A5:E5:A9:87:9F:24:FB:C1:08:34:DE:71:5B:DF:03:CE:DE:21:09 Certificate issuer: /CN=DBA793D0FFE611AC397F197570E19785046EE739 Certificate serial: 0D81 Authority key identifier: DB:A7:93:D0:FF:E6:11:AC:39:7F:19:75:70:E1:97:85:04:6E:E7:39 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/26eT0P_mEaw5fxl1cOGXhQRu5zk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/-6XlqYefJPvBCDTecVvfA87eIQk.roa Signing time: Fri 22 Aug 2025 09:01:51 +0000 ROA not before: Fri 22 Aug 2025 09:01:51 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18413 IP address blocks: 61.67.0.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/26eT0P_mEaw5fxl1cOGXhQRu5zk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/26eT0P_mEaw5fxl1cOGXhQRu5zk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/26eT0P_mEaw5fxl1cOGXhQRu5zk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3457 (0xd81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DBA793D0FFE611AC397F197570E19785046EE739 Validity Not Before: Aug 22 09:01:51 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=FBA5E5A9879F24FBC10834DE715BDF03CEDE2109 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:8f:0b:48:cd:62:ee:f6:ad:bf:90:69:83:0f: 8f:09:ba:2d:0b:37:56:ee:30:43:d3:fe:92:fe:49: b7:51:7e:0f:64:8f:88:4e:a0:89:96:6b:df:76:1c: b6:e2:43:19:88:dc:92:75:9b:ea:b2:6e:43:95:3d: 14:98:d9:f3:f9:98:49:55:70:b7:5b:df:fb:d2:10: fe:41:ee:4f:72:e9:31:c7:56:33:77:e5:2a:a4:0a: 8a:df:5c:c7:83:52:20:df:50:9b:a8:40:14:ce:f1: 59:c3:3c:05:92:56:99:4e:c5:4b:24:6d:8d:5e:b8: 2d:71:ca:b8:f3:79:2d:96:7f:4a:c6:41:e0:f3:4b: 99:4a:ec:6f:62:b3:06:d4:76:70:10:c6:8c:5b:3e: e6:c9:46:62:d7:05:62:f1:5c:f2:c8:15:6d:ce:d5: 6b:2b:3e:9b:02:66:a0:e3:9d:de:41:ee:fc:f2:7e: bb:53:22:fe:b7:8e:a7:b7:7a:ff:4f:4c:08:42:d6: 95:5e:80:97:a3:66:0b:dd:89:84:9d:1c:68:76:9e: 6d:82:e7:a5:bc:22:83:f6:7d:57:f7:d8:cc:76:b5: 3e:20:19:34:eb:8c:b9:5c:53:86:50:e9:12:c2:d7: 88:bf:91:87:a6:6e:c4:46:bd:d2:b8:fe:ac:fd:9e: db:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:A5:E5:A9:87:9F:24:FB:C1:08:34:DE:71:5B:DF:03:CE:DE:21:09 X509v3 Authority Key Identifier: keyid:DB:A7:93:D0:FF:E6:11:AC:39:7F:19:75:70:E1:97:85:04:6E:E7:39 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/26eT0P_mEaw5fxl1cOGXhQRu5zk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/26eT0P_mEaw5fxl1cOGXhQRu5zk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/-6XlqYefJPvBCDTecVvfA87eIQk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.67.0.0/20 Signature Algorithm: sha256WithRSAEncryption 60:ab:e4:d4:91:50:71:3f:3c:02:0c:37:74:68:5d:e0:6d:94: d3:04:8a:b2:cd:0c:e5:59:0e:94:34:4d:c6:99:a4:43:2c:e7: c1:55:00:67:a0:02:b7:48:a0:4b:a7:88:8a:27:4e:00:88:c7: 99:e9:aa:a9:ad:a6:3d:ef:b1:e2:0a:2f:6d:dc:5f:c2:8b:de: 3c:e0:f9:53:13:6a:f7:f7:d0:52:7f:1a:4a:ad:44:bf:e4:02: 80:5e:03:05:b0:38:5a:af:76:67:1d:f2:1c:5d:b2:4a:b2:83: 64:b2:fc:93:62:5c:e1:d1:5e:6c:06:66:56:3d:09:b7:b9:df: ce:b8:01:d7:64:09:8c:ce:ba:6d:c1:2e:8a:03:8c:40:d6:f0: ae:25:75:64:fa:53:2a:9f:c6:b7:39:60:59:0d:fc:2f:10:9b: e5:0f:8f:ac:62:5c:aa:b6:9b:51:3e:4d:a1:fd:75:96:b7:34: fd:8f:d5:ab:37:c5:f4:bc:06:9b:07:28:9f:34:85:5b:bb:3f: 89:cf:96:ce:15:d5:23:0e:89:13:f1:62:c7:67:5b:b5:a7:be: 67:f7:dc:3f:6b:0a:b4:3c:73:19:2f:04:35:99:6c:0c:a7:88: 26:f0:56:8e:37:57:ee:e6:c4:af:19:87:79:37:77:6e:8f:9a: c9:a0:63:0b -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDYEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREJB NzkzRDBGRkU2MTFBQzM5N0YxOTc1NzBFMTk3ODUwNDZFRTczOTAeFw0yNTA4MjIw OTAxNTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEZCQTVFNUE5ODc5RjI0 RkJDMTA4MzRERTcxNUJERjAzQ0VERTIxMDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJjwtIzWLu9q2/kGmDD48Jui0LN1buMEPT/pL+SbdRfg9kj4hO oImWa992HLbiQxmI3JJ1m+qybkOVPRSY2fP5mElVcLdb3/vSEP5B7k9y6THHVjN3 5SqkCorfXMeDUiDfUJuoQBTO8VnDPAWSVplOxUskbY1euC1xyrjzeS2Wf0rGQeDz S5lK7G9iswbUdnAQxoxbPubJRmLXBWLxXPLIFW3O1WsrPpsCZqDjnd5B7vzyfrtT Iv63jqe3ev9PTAhC1pVegJejZgvdiYSdHGh2nm2C56W8IoP2fVf32Mx2tT4gGTTr jLlcU4ZQ6RLC14i/kYembsRGvdK4/qz9ntt5AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU+6XlqYefJPvBCDTecVvfA87eIQkwHwYDVR0jBBgwFoAU26eT0P/mEaw5fxl1 cOGXhQRu5zkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1RCQy8y NmVUMFBfbUVhdzVmeGwxY09HWGhRUnU1emsuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzI2ZVQwUF9tRWF3NWZ4bDFjT0dYaFFSdTV6ay5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0dUQkMvLTZYbHFZZWZKUHZCQ0RUZWNWdmZB ODdlSVFrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBD1DADAN BgkqhkiG9w0BAQsFAAOCAQEAYKvk1JFQcT88Agw3dGhd4G2U0wSKss0M5VkOlDRN xpmkQyznwVUAZ6ACt0igS6eIiidOAIjHmemqqa2mPe+x4govbdxfwovePOD5UxNq 9/fQUn8aSq1Ev+QCgF4DBbA4Wq92Zx3yHF2ySrKDZLL8k2Jc4dFebAZmVj0Jt7nf zrgB12QJjM66bcEuigOMQNbwriV1ZPpTKp/GtzlgWQ38LxCb5Q+PrGJcqrabUT5N of11lrc0/Y/VqzfF9LwGmwconzSFW7s/ic+WzhXVIw6JE/Fix2dbtae+Z/fcP2sK tDxzGS8ENZlsDKeIJvBWjjdX7ubErxmHeTd3bo+ayaBjCw== -----END CERTIFICATE-----Generated at Sun Aug 24 09:44:55 2025 by rpki-client