$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GTBC/SJpxXvMLY61iJQ_7KM7dPo0JU9c.roa File: SJpxXvMLY61iJQ_7KM7dPo0JU9c.roa (raw, json) Hash identifier: x6TCKNzNlLuErevnaAykr2y9A9vQXNBdxZT5YroUC5Q= Subject key identifier: 48:9A:71:5E:F3:0B:63:AD:62:25:0F:FB:28:CE:DD:3E:8D:09:53:D7 Certificate issuer: /CN=DBA793D0FFE611AC397F197570E19785046EE739 Certificate serial: 0D80 Authority key identifier: DB:A7:93:D0:FF:E6:11:AC:39:7F:19:75:70:E1:97:85:04:6E:E7:39 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/26eT0P_mEaw5fxl1cOGXhQRu5zk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/SJpxXvMLY61iJQ_7KM7dPo0JU9c.roa Signing time: Fri 22 Aug 2025 09:01:50 +0000 ROA not before: Fri 22 Aug 2025 09:01:50 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18413 IP address blocks: 61.65.192.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/26eT0P_mEaw5fxl1cOGXhQRu5zk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/26eT0P_mEaw5fxl1cOGXhQRu5zk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/26eT0P_mEaw5fxl1cOGXhQRu5zk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3456 (0xd80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DBA793D0FFE611AC397F197570E19785046EE739 Validity Not Before: Aug 22 09:01:50 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=489A715EF30B63AD62250FFB28CEDD3E8D0953D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:fe:6a:ed:f8:bb:ca:64:c1:0c:73:c9:84:38: 71:c1:41:a5:b8:09:2c:21:0e:39:d4:67:18:58:64: be:b8:07:e7:e0:d9:30:f9:15:bf:fa:de:61:72:83: df:8d:22:59:d4:b1:74:5f:ca:da:0c:a0:16:65:7e: 72:9c:88:18:e8:62:3b:ed:9a:3e:70:36:0e:76:51: 42:a7:2d:64:bb:7f:60:c8:a6:a8:0a:17:f1:ec:ea: 94:2a:01:69:65:dd:91:12:cd:01:b3:62:6d:a0:6e: d8:8a:94:70:da:a4:20:dc:2d:bb:c1:8d:44:6e:04: 31:40:16:55:fe:95:1e:35:25:cf:99:a8:ce:9d:0d: 6e:cc:25:f3:61:01:93:fc:b4:82:87:de:e1:db:ba: 47:9a:ff:bf:48:c3:1e:fe:e1:06:4d:61:8b:f9:57: 42:34:0a:eb:70:03:56:99:0d:8b:d9:c0:ca:9e:3c: f6:4d:3b:96:e2:99:06:35:3a:c1:3f:97:67:0e:68: e9:fd:22:b6:57:05:12:81:82:fa:f5:35:4b:d8:64: 3e:b5:65:05:30:b7:87:9c:89:46:2f:91:ba:c3:b9: e2:de:ec:7e:b1:2e:1a:a1:38:2e:57:11:1b:6c:a9: 7b:02:42:fe:99:7b:91:ad:8a:aa:f5:c4:d7:45:2d: 9f:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:9A:71:5E:F3:0B:63:AD:62:25:0F:FB:28:CE:DD:3E:8D:09:53:D7 X509v3 Authority Key Identifier: keyid:DB:A7:93:D0:FF:E6:11:AC:39:7F:19:75:70:E1:97:85:04:6E:E7:39 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/26eT0P_mEaw5fxl1cOGXhQRu5zk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/26eT0P_mEaw5fxl1cOGXhQRu5zk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/SJpxXvMLY61iJQ_7KM7dPo0JU9c.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.65.192.0/20 Signature Algorithm: sha256WithRSAEncryption 6e:6d:5e:78:dc:6c:ed:7c:0b:08:62:f0:a0:42:9d:68:fc:08: a2:c8:8c:f7:98:8d:bc:ac:b7:fc:a0:2d:a9:3a:af:cf:f7:86: 0d:a8:f9:ef:9d:66:c8:dc:eb:ce:74:67:d1:b6:22:9c:fb:ea: 40:7e:1b:31:00:18:2b:2b:f3:16:b0:fb:72:a8:5a:67:5f:d5: 04:5d:e8:59:08:c0:fc:01:74:08:b9:a8:39:83:6f:52:9c:de: 2d:2f:70:59:34:b8:5a:87:c3:dd:c9:50:6e:3f:6c:a1:40:eb: 66:d9:d9:cd:be:e8:0c:c8:fe:68:32:7c:ac:d5:d0:5f:fc:5c: 18:63:18:71:ae:1a:53:50:7b:35:01:d6:7b:d9:09:cc:e9:90: b2:d2:ef:75:c5:fd:8b:3b:e0:8f:f2:26:b9:3a:1b:da:bb:2a: f4:fe:65:20:7e:24:27:32:60:81:6e:d3:35:fa:a9:31:56:2a: c0:72:53:c0:44:51:7a:9a:d1:af:9a:a8:eb:ae:29:ff:e9:53: ed:2f:16:5b:27:28:54:6c:eb:8d:52:d7:22:7a:6c:c7:bb:0f: eb:ca:a4:7f:49:5b:11:09:70:53:71:99:59:a5:d4:6d:e3:66: 3c:45:8e:5b:5c:e9:44:59:a8:5d:07:85:d4:51:e2:55:67:f2: bb:f0:41:99 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDYAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREJB NzkzRDBGRkU2MTFBQzM5N0YxOTc1NzBFMTk3ODUwNDZFRTczOTAeFw0yNTA4MjIw OTAxNTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQ4OUE3MTVFRjMwQjYz QUQ2MjI1MEZGQjI4Q0VERDNFOEQwOTUzRDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCn/mrt+LvKZMEMc8mEOHHBQaW4CSwhDjnUZxhYZL64B+fg2TD5 Fb/63mFyg9+NIlnUsXRfytoMoBZlfnKciBjoYjvtmj5wNg52UUKnLWS7f2DIpqgK F/Hs6pQqAWll3ZESzQGzYm2gbtiKlHDapCDcLbvBjURuBDFAFlX+lR41Jc+ZqM6d DW7MJfNhAZP8tIKH3uHbukea/79Iwx7+4QZNYYv5V0I0CutwA1aZDYvZwMqePPZN O5bimQY1OsE/l2cOaOn9IrZXBRKBgvr1NUvYZD61ZQUwt4eciUYvkbrDueLe7H6x LhqhOC5XERtsqXsCQv6Ze5Gtiqr1xNdFLZ/5AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUSJpxXvMLY61iJQ/7KM7dPo0JU9cwHwYDVR0jBBgwFoAU26eT0P/mEaw5fxl1 cOGXhQRu5zkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1RCQy8y NmVUMFBfbUVhdzVmeGwxY09HWGhRUnU1emsuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzI2ZVQwUF9tRWF3NWZ4bDFjT0dYaFFSdTV6ay5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0dUQkMvU0pweFh2TUxZNjFpSlFfN0tNN2RQ bzBKVTljLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBD1BwDAN BgkqhkiG9w0BAQsFAAOCAQEAbm1eeNxs7XwLCGLwoEKdaPwIosiM95iNvKy3/KAt qTqvz/eGDaj5751myNzrznRn0bYinPvqQH4bMQAYKyvzFrD7cqhaZ1/VBF3oWQjA /AF0CLmoOYNvUpzeLS9wWTS4WofD3clQbj9soUDrZtnZzb7oDMj+aDJ8rNXQX/xc GGMYca4aU1B7NQHWe9kJzOmQstLvdcX9izvgj/ImuTob2rsq9P5lIH4kJzJggW7T NfqpMVYqwHJTwERReprRr5qo664p/+lT7S8WWycoVGzrjVLXInpsx7sP68qkf0lb EQlwU3GZWaXUbeNmPEWOW1zpRFmoXQeF1FHiVWfyu/BBmQ== -----END CERTIFICATE-----Generated at Sun Aug 24 09:39:58 2025 by rpki-client