$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GTBC/DBi1Ydl2R3h38Z9OZnTS2qJ02Xk.roa File: DBi1Ydl2R3h38Z9OZnTS2qJ02Xk.roa (raw, json) Hash identifier: qohafgvfJUb040Cb/UP9X/0+Wd6dUFazYSoupcgjpg8= Subject key identifier: 0C:18:B5:61:D9:76:47:78:77:F1:9F:4E:66:74:D2:DA:A2:74:D9:79 Certificate issuer: /CN=DBA793D0FFE611AC397F197570E19785046EE739 Certificate serial: 0D7A Authority key identifier: DB:A7:93:D0:FF:E6:11:AC:39:7F:19:75:70:E1:97:85:04:6E:E7:39 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/26eT0P_mEaw5fxl1cOGXhQRu5zk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/DBi1Ydl2R3h38Z9OZnTS2qJ02Xk.roa Signing time: Mon 18 Aug 2025 06:14:36 +0000 ROA not before: Mon 18 Aug 2025 06:14:36 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18046 IP address blocks: 61.65.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/26eT0P_mEaw5fxl1cOGXhQRu5zk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/26eT0P_mEaw5fxl1cOGXhQRu5zk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/26eT0P_mEaw5fxl1cOGXhQRu5zk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Aug 2025 23:43:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3450 (0xd7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DBA793D0FFE611AC397F197570E19785046EE739 Validity Not Before: Aug 18 06:14:36 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0C18B561D976477877F19F4E6674D2DAA274D979 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:0e:51:f3:35:db:95:53:bc:8f:89:b1:fb:b3: e9:f0:52:72:ee:a9:2c:94:d9:4a:1e:14:3e:2d:1f: 42:7a:f6:6a:99:fc:6e:59:e7:e5:42:23:b5:41:da: 03:39:38:29:3f:2c:72:85:e4:bd:dd:9a:52:3a:0b: 1b:05:64:2b:20:60:38:d9:5a:d3:25:66:a4:4f:32: 3e:21:7e:b1:ba:7f:7e:8a:31:e0:d9:d9:40:1b:c9: 7c:f2:a0:a4:40:5f:82:e6:11:22:d5:6d:1f:3f:72: 25:7a:3c:19:d8:a3:49:79:8b:85:99:ad:b4:95:32: 07:91:07:0b:77:d5:13:a0:95:7e:f8:86:9d:a8:31: 55:91:31:e4:aa:9d:57:7f:d4:99:e6:5d:cb:89:61: c1:29:c2:eb:ad:0c:20:87:1e:85:33:da:90:25:d8: 65:83:57:91:0c:3c:47:23:1e:9e:3b:d5:5a:36:a8: 74:0f:01:22:c2:41:07:70:42:56:be:b8:46:99:68: 00:6e:ba:f7:56:4b:8f:0c:db:ad:e8:ad:99:95:0b: 62:fa:1f:45:a9:24:6a:fc:2f:ff:38:8e:20:00:35: 98:70:89:14:7e:d7:bd:66:9e:fc:b7:cd:51:52:22: 1d:e0:bc:57:45:c2:e0:17:53:11:c7:db:67:35:17: b5:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:18:B5:61:D9:76:47:78:77:F1:9F:4E:66:74:D2:DA:A2:74:D9:79 X509v3 Authority Key Identifier: keyid:DB:A7:93:D0:FF:E6:11:AC:39:7F:19:75:70:E1:97:85:04:6E:E7:39 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/26eT0P_mEaw5fxl1cOGXhQRu5zk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/26eT0P_mEaw5fxl1cOGXhQRu5zk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/DBi1Ydl2R3h38Z9OZnTS2qJ02Xk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.65.208.0/20 Signature Algorithm: sha256WithRSAEncryption b0:04:50:97:1a:99:80:9d:1a:2a:32:4e:ce:44:84:cf:fe:b2: 17:71:2c:1b:9d:e4:c3:8c:32:20:3f:8f:07:b7:e6:ec:2e:be: 55:d7:90:16:9c:2a:3b:d8:c1:32:75:bb:38:42:b0:ea:f0:e6: f3:08:52:dd:14:89:68:c7:10:c7:d7:45:66:64:7f:09:f5:33: 6d:b6:f4:53:69:50:7f:c3:b6:df:64:c8:28:0a:fe:10:06:22: ba:f9:e6:9e:32:ad:83:ae:93:9c:9b:6e:31:c3:db:56:b9:6d: 3e:50:65:5f:b5:b5:06:d6:cb:03:58:a0:a7:f2:6b:f9:a9:4c: e2:df:36:aa:c5:34:3d:77:c0:48:34:91:00:9c:6c:86:92:dd: 29:b3:ec:61:36:c8:5f:f0:09:ec:63:db:ae:22:63:a5:de:d6: bf:6b:c0:07:11:4f:fb:5b:97:f6:cc:d6:a4:b0:b4:74:67:ba: 3a:0e:a9:56:9a:59:f7:89:cb:2f:73:db:2a:77:a1:b6:12:bc: 2a:fe:33:d6:7c:25:f7:92:db:c5:c8:0a:77:3d:5e:c7:f5:ce: 9e:bd:a2:fa:26:9c:64:94:b5:f2:26:84:ad:25:42:42:19:6c: 0c:0c:94:bc:dd:8e:75:8a:0a:c7:d6:ea:79:1f:e7:f6:08:f0: f4:a3:06:fd -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDXowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREJB NzkzRDBGRkU2MTFBQzM5N0YxOTc1NzBFMTk3ODUwNDZFRTczOTAeFw0yNTA4MTgw NjE0MzZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDBDMThCNTYxRDk3NjQ3 Nzg3N0YxOUY0RTY2NzREMkRBQTI3NEQ5NzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2DlHzNduVU7yPibH7s+nwUnLuqSyU2UoeFD4tH0J69mqZ/G5Z 5+VCI7VB2gM5OCk/LHKF5L3dmlI6CxsFZCsgYDjZWtMlZqRPMj4hfrG6f36KMeDZ 2UAbyXzyoKRAX4LmESLVbR8/ciV6PBnYo0l5i4WZrbSVMgeRBwt31ROglX74hp2o MVWRMeSqnVd/1JnmXcuJYcEpwuutDCCHHoUz2pAl2GWDV5EMPEcjHp471Vo2qHQP ASLCQQdwQla+uEaZaABuuvdWS48M263orZmVC2L6H0WpJGr8L/84jiAANZhwiRR+ 171mnvy3zVFSIh3gvFdFwuAXUxHH22c1F7W1AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUDBi1Ydl2R3h38Z9OZnTS2qJ02XkwHwYDVR0jBBgwFoAU26eT0P/mEaw5fxl1 cOGXhQRu5zkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1RCQy8y NmVUMFBfbUVhdzVmeGwxY09HWGhRUnU1emsuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzI2ZVQwUF9tRWF3NWZ4bDFjT0dYaFFSdTV6ay5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0dUQkMvREJpMVlkbDJSM2gzOFo5T1puVFMy cUowMlhrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBD1B0DAN BgkqhkiG9w0BAQsFAAOCAQEAsARQlxqZgJ0aKjJOzkSEz/6yF3EsG53kw4wyID+P B7fm7C6+VdeQFpwqO9jBMnW7OEKw6vDm8whS3RSJaMcQx9dFZmR/CfUzbbb0U2lQ f8O232TIKAr+EAYiuvnmnjKtg66TnJtuMcPbVrltPlBlX7W1BtbLA1igp/Jr+alM 4t82qsU0PXfASDSRAJxshpLdKbPsYTbIX/AJ7GPbriJjpd7Wv2vABxFP+1uX9szW pLC0dGe6Og6pVppZ94nLL3PbKnehthK8Kv4z1nwl95LbxcgKdz1ex/XOnr2i+iac ZJS18iaErSVCQhlsDAyUvN2OdYoKx9bqeR/n9gjw9KMG/Q== -----END CERTIFICATE-----Generated at Sat Aug 23 22:22:38 2025 by rpki-client