$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HLCATV/Z5SiAWE0PbwfRd_K_gIQo0pK6UI.roa File: Z5SiAWE0PbwfRd_K_gIQo0pK6UI.roa (raw, json) Hash identifier: lXYvP8MjpBTkDm4iWOO5SshIFgA2N0rPtOM9kyJZxxg= Subject key identifier: 67:94:A2:01:61:34:3D:BC:1F:45:DF:CA:FE:02:10:A3:4A:4A:E9:42 Certificate issuer: /CN=28CB5CCFC90738D224CAEAC15E1C251000446BAA Certificate serial: 0D16 Authority key identifier: 28:CB:5C:CF:C9:07:38:D2:24:CA:EA:C1:5E:1C:25:10:00:44:6B:AA Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KMtcz8kHONIkyurBXhwlEABEa6o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HLCATV/Z5SiAWE0PbwfRd_K_gIQo0pK6UI.roa Signing time: Fri 22 Aug 2025 08:56:12 +0000 ROA not before: Fri 22 Aug 2025 08:56:12 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9676 IP address blocks: 211.76.80.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HLCATV/KMtcz8kHONIkyurBXhwlEABEa6o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HLCATV/KMtcz8kHONIkyurBXhwlEABEa6o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KMtcz8kHONIkyurBXhwlEABEa6o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3350 (0xd16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28CB5CCFC90738D224CAEAC15E1C251000446BAA Validity Not Before: Aug 22 08:56:12 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=6794A20161343DBC1F45DFCAFE0210A34A4AE942 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:94:a0:b9:9f:54:fc:59:60:da:5c:17:a8:11: e4:a7:65:39:62:cf:d7:15:8f:ad:f7:cf:b8:91:31: 89:36:be:16:b9:a8:ad:43:63:e7:93:c0:65:aa:7a: 82:08:d0:07:7b:a2:ef:ae:7a:37:62:56:98:20:ff: 76:dc:ea:7f:c5:16:11:04:64:a8:0a:d9:b2:85:db: a6:90:d9:a0:10:4a:2e:56:c5:5c:f8:5e:22:3d:15: 6d:07:39:82:fa:85:43:44:4a:99:02:5f:e1:f6:40: e6:1e:6c:69:08:dd:ce:9f:ab:e2:d0:53:fa:0c:62: 82:3b:63:b1:67:bf:bb:cf:d8:1e:40:47:5a:07:dc: 95:fc:84:cc:8b:0c:f2:b6:5c:f4:39:fd:76:49:25: 41:5b:7b:c3:88:65:e4:db:51:0f:78:33:9c:99:82: 46:03:90:0f:85:e1:b7:ee:16:13:e5:77:1c:97:00: 5d:49:ef:76:d8:5f:83:5f:34:7a:98:63:dc:8c:14: bf:7b:4a:fd:38:c4:89:86:c4:ef:d6:cd:f8:51:64: 84:9d:35:86:17:1d:ff:54:dd:6e:e8:cb:6c:7a:09: 3e:d5:be:67:c1:54:d2:29:3c:f8:cc:f1:9f:51:07: 6e:47:eb:08:49:4c:69:4d:43:3a:0f:1d:5a:39:9d: f1:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:94:A2:01:61:34:3D:BC:1F:45:DF:CA:FE:02:10:A3:4A:4A:E9:42 X509v3 Authority Key Identifier: keyid:28:CB:5C:CF:C9:07:38:D2:24:CA:EA:C1:5E:1C:25:10:00:44:6B:AA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HLCATV/KMtcz8kHONIkyurBXhwlEABEa6o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KMtcz8kHONIkyurBXhwlEABEa6o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HLCATV/Z5SiAWE0PbwfRd_K_gIQo0pK6UI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.80.0/20 Signature Algorithm: sha256WithRSAEncryption 2a:2e:3a:86:71:10:d4:9f:b4:45:47:69:88:6b:e4:65:d8:e4: 5e:9b:ba:a1:08:bf:5e:aa:1f:e6:b8:37:87:bc:94:c4:fb:fe: da:60:11:e5:55:33:fe:51:63:49:88:c8:f3:b7:21:f6:a3:1d: 74:4c:5f:de:7e:1e:2c:73:49:67:fe:a0:1d:47:6c:21:fe:28: b5:3b:e1:8c:75:49:40:73:0b:c4:42:85:bd:cb:99:bc:a3:d0: b0:4d:4b:68:42:c8:89:be:c0:81:ef:44:e0:99:dd:3c:9b:87: c6:c3:ea:85:15:fb:2b:bc:7f:12:ea:0c:86:b4:1b:4f:11:7d: ee:94:c5:15:3e:ec:24:9a:60:8c:39:b1:b5:9b:e1:1c:72:85: ad:c9:7e:64:23:8a:74:04:42:d5:c4:ac:f8:e4:6f:eb:28:d7: eb:69:70:2a:69:44:e5:16:79:13:4a:fe:81:f2:78:4e:84:5d: 24:8d:da:36:09:20:df:9a:07:e8:2e:7d:2c:5f:63:f7:22:7c: d6:3c:41:71:a5:f1:75:f6:62:75:8b:f9:33:19:35:48:e5:ef: 97:d3:bb:e1:8e:99:a9:41:15:31:81:6d:48:ae:4e:21:68:b7: 65:9e:a5:95:ad:6b:a2:9d:e9:47:29:8e:0f:e6:c6:65:99:77: f6:66:4d:29 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDRYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjhD QjVDQ0ZDOTA3MzhEMjI0Q0FFQUMxNUUxQzI1MTAwMDQ0NkJBQTAeFw0yNTA4MjIw ODU2MTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDY3OTRBMjAxNjEzNDNE QkMxRjQ1REZDQUZFMDIxMEEzNEE0QUU5NDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDhlKC5n1T8WWDaXBeoEeSnZTliz9cVj633z7iRMYk2vha5qK1D Y+eTwGWqeoII0Ad7ou+uejdiVpgg/3bc6n/FFhEEZKgK2bKF26aQ2aAQSi5WxVz4 XiI9FW0HOYL6hUNESpkCX+H2QOYebGkI3c6fq+LQU/oMYoI7Y7Fnv7vP2B5AR1oH 3JX8hMyLDPK2XPQ5/XZJJUFbe8OIZeTbUQ94M5yZgkYDkA+F4bfuFhPldxyXAF1J 73bYX4NfNHqYY9yMFL97Sv04xImGxO/WzfhRZISdNYYXHf9U3W7oy2x6CT7VvmfB VNIpPPjM8Z9RB25H6whJTGlNQzoPHVo5nfEXAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUZ5SiAWE0PbwfRd/K/gIQo0pK6UIwHwYDVR0jBBgwFoAUKMtcz8kHONIkyurB XhwlEABEa6owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSExDQVRW L0tNdGN6OGtIT05Ja3l1ckJYaHdsRUFCRWE2by5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvS010Y3o4a0hPTklreXVyQlhod2xFQUJFYTZvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSExDQVRWL1o1U2lBV0UwUGJ3ZlJkX0tf Z0lRbzBwSzZVSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATT TFAwDQYJKoZIhvcNAQELBQADggEBACouOoZxENSftEVHaYhr5GXY5F6buqEIv16q H+a4N4e8lMT7/tpgEeVVM/5RY0mIyPO3IfajHXRMX95+HixzSWf+oB1HbCH+KLU7 4Yx1SUBzC8RChb3Lmbyj0LBNS2hCyIm+wIHvROCZ3Tybh8bD6oUV+yu8fxLqDIa0 G08Rfe6UxRU+7CSaYIw5sbWb4Rxyha3JfmQjinQEQtXErPjkb+so1+tpcCppROUW eRNK/oHyeE6EXSSN2jYJIN+aB+gufSxfY/cifNY8QXGl8XX2YnWL+TMZNUjl75fT u+GOmalBFTGBbUiuTiFot2WepZWta6Kd6Ucpjg/mxmWZd/ZmTSk= -----END CERTIFICATE-----Generated at Sun Aug 24 09:44:47 2025 by rpki-client