$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HST/6NvLJCnpYe8NfT-AKQzJOoMHJuY.roa File: 6NvLJCnpYe8NfT-AKQzJOoMHJuY.roa (raw, json) Hash identifier: 7e9CZHN5bmzpVmNRXeiwpsSJupAKEn5CJCfJAGmhK2g= Subject key identifier: E8:DB:CB:24:29:E9:61:EF:0D:7D:3F:80:29:0C:C9:3A:83:07:26:E6 Certificate issuer: /CN=833D5BF79B45C730ED141CB539A508D01AA30908 Certificate serial: 0AF2 Authority key identifier: 83:3D:5B:F7:9B:45:C7:30:ED:14:1C:B5:39:A5:08:D0:1A:A3:09:08 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gz1b95tFxzDtFBy1OaUI0BqjCQg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/6NvLJCnpYe8NfT-AKQzJOoMHJuY.roa Signing time: Fri 22 Aug 2025 08:48:59 +0000 ROA not before: Fri 22 Aug 2025 08:48:59 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131666 IP address blocks: 211.76.190.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/gz1b95tFxzDtFBy1OaUI0BqjCQg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/gz1b95tFxzDtFBy1OaUI0BqjCQg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gz1b95tFxzDtFBy1OaUI0BqjCQg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2802 (0xaf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=833D5BF79B45C730ED141CB539A508D01AA30908 Validity Not Before: Aug 22 08:48:59 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E8DBCB2429E961EF0D7D3F80290CC93A830726E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:df:e8:49:94:79:df:18:76:52:0b:79:49:30: a0:ad:ab:89:1a:aa:10:e5:d9:55:06:51:37:b1:13: f5:ce:95:19:2d:02:da:0a:35:a3:4f:ce:00:88:79: c5:af:92:75:40:b8:04:ce:c9:c6:9e:34:4d:03:4d: 9c:73:f3:4d:bb:64:bc:c3:e3:ee:ae:13:71:69:45: 81:fe:18:99:4f:2b:1a:73:fe:bc:a3:d5:04:45:f3: 72:39:04:54:1e:21:2d:17:a2:db:2a:c3:5c:02:6f: 5c:80:0a:cf:cb:96:ba:51:99:bb:d8:b5:82:58:7d: 25:2b:33:18:3b:96:9d:e9:0f:2f:56:6f:81:be:7a: 6d:4e:0b:74:88:99:a2:91:ca:fa:3b:8a:6d:2c:0d: 7c:0d:ba:8e:31:1b:54:d2:f5:cc:79:6e:08:b5:4b: 7c:11:dc:0b:f9:81:31:6e:80:e9:ec:98:cd:cf:83: 14:e7:ec:2c:c9:71:7e:c6:09:e6:a0:2a:54:e7:17: 58:b2:b3:5b:36:4c:fc:3a:74:ee:38:da:e7:cc:bf: 6e:94:5c:f2:f7:97:95:dc:45:fc:86:d7:88:c9:5b: 69:0f:50:5f:b3:d0:db:82:c1:cf:9b:78:89:81:35: ba:20:bc:26:db:7a:0e:aa:35:4d:2c:5f:c7:f5:b4: 79:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:DB:CB:24:29:E9:61:EF:0D:7D:3F:80:29:0C:C9:3A:83:07:26:E6 X509v3 Authority Key Identifier: keyid:83:3D:5B:F7:9B:45:C7:30:ED:14:1C:B5:39:A5:08:D0:1A:A3:09:08 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/gz1b95tFxzDtFBy1OaUI0BqjCQg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gz1b95tFxzDtFBy1OaUI0BqjCQg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/6NvLJCnpYe8NfT-AKQzJOoMHJuY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.190.0/23 Signature Algorithm: sha256WithRSAEncryption 3a:9f:19:63:2d:69:ed:88:d9:be:9e:ce:91:52:d2:1e:c7:d7: 67:19:ff:b5:2e:1d:02:4e:96:28:b1:bb:0a:b8:42:8d:04:0a: bf:26:ad:e2:53:94:ce:a6:46:9d:02:ac:b8:a9:8b:3a:0a:19: 67:69:a2:61:cb:be:79:0b:60:19:ee:a6:78:aa:40:0e:e9:d6: 8d:26:56:d6:2e:08:d6:d3:77:c4:09:a2:45:09:32:5f:4f:03: 55:a3:ca:d7:80:61:16:14:c0:4f:fe:88:88:66:7d:a2:29:78: da:3a:3c:b3:f9:fe:ff:c9:7d:86:ef:81:a3:1a:b8:9a:b9:cf: 88:61:8f:74:bf:c0:72:3b:2d:81:a1:ca:c5:c2:77:e7:72:e3: 54:32:86:7f:b7:71:78:fd:97:cc:2b:45:d4:29:57:33:ba:3e: b2:cf:54:6d:41:5a:e0:42:3b:6e:f6:f4:7e:83:3a:8c:f0:9a: 31:ae:5f:b4:35:ef:05:65:a2:a3:3c:5a:65:6e:a8:49:ea:c3: 88:3f:62:92:84:b2:d0:ad:70:26:58:b7:75:93:c3:48:5a:1f: 81:63:09:ec:1f:f7:dd:ec:3d:c4:fe:06:de:2e:bd:2f:f2:4c: d0:9c:a9:d5:54:1e:44:01:53:d2:91:e2:fc:cd:d4:20:b8:26: 22:52:0a:30 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICCvIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMz RDVCRjc5QjQ1QzczMEVEMTQxQ0I1MzlBNTA4RDAxQUEzMDkwODAeFw0yNTA4MjIw ODQ4NTlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEU4REJDQjI0MjlFOTYx RUYwRDdEM0Y4MDI5MENDOTNBODMwNzI2RTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/3+hJlHnfGHZSC3lJMKCtq4kaqhDl2VUGUTexE/XOlRktAtoK NaNPzgCIecWvknVAuATOycaeNE0DTZxz8027ZLzD4+6uE3FpRYH+GJlPKxpz/ryj 1QRF83I5BFQeIS0Xotsqw1wCb1yACs/LlrpRmbvYtYJYfSUrMxg7lp3pDy9Wb4G+ em1OC3SImaKRyvo7im0sDXwNuo4xG1TS9cx5bgi1S3wR3Av5gTFugOnsmM3PgxTn 7CzJcX7GCeagKlTnF1iys1s2TPw6dO442ufMv26UXPL3l5XcRfyG14jJW2kPUF+z 0NuCwc+beImBNbogvCbbeg6qNU0sX8f1tHktAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU6NvLJCnpYe8NfT+AKQzJOoMHJuYwHwYDVR0jBBgwFoAUgz1b95tFxzDtFBy1 OaUI0BqjCQgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSFNUL2d6 MWI5NXRGeHpEdEZCeTFPYVVJMEJxakNRZy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev Z3oxYjk1dEZ4ekR0RkJ5MU9hVUkwQnFqQ1FnLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvSFNULzZOdkxKQ25wWWU4TmZULUFLUXpKT29N SEp1WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHTTL4wDQYJ KoZIhvcNAQELBQADggEBADqfGWMtae2I2b6ezpFS0h7H12cZ/7UuHQJOliixuwq4 Qo0ECr8mreJTlM6mRp0CrLipizoKGWdpomHLvnkLYBnupniqQA7p1o0mVtYuCNbT d8QJokUJMl9PA1WjyteAYRYUwE/+iIhmfaIpeNo6PLP5/v/JfYbvgaMauJq5z4hh j3S/wHI7LYGhysXCd+dy41Qyhn+3cXj9l8wrRdQpVzO6PrLPVG1BWuBCO2729H6D OozwmjGuX7Q17wVloqM8WmVuqEnqw4g/YpKEstCtcCZYt3WTw0haH4FjCewf993s PcT+Bt4uvS/yTNCcqdVUHkQBU9KR4vzN1CC4JiJSCjA= -----END CERTIFICATE-----Generated at Sun Aug 24 07:43:42 2025 by rpki-client