$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ISTVC/kHBDvUKcEMDlwJu3E9Z26G6A1X4.roa File: kHBDvUKcEMDlwJu3E9Z26G6A1X4.roa (raw, json) Hash identifier: V/P6UL3wvuqvvEIHRSdweu4azKzkq0+g3/uOgL1wE64= Subject key identifier: 90:70:43:BD:42:9C:10:C0:E5:C0:9B:B7:13:D6:76:E8:6E:80:D5:7E Certificate issuer: /CN=6887985DB19E5FD82F962B420ECC0FC4ED730D02 Certificate serial: 04A1 Authority key identifier: 68:87:98:5D:B1:9E:5F:D8:2F:96:2B:42:0E:CC:0F:C4:ED:73:0D:02 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/aIeYXbGeX9gvlitCDswPxO1zDQI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/kHBDvUKcEMDlwJu3E9Z26G6A1X4.roa Signing time: Wed 04 Mar 2026 05:55:12 +0000 ROA not before: Wed 04 Mar 2026 05:55:12 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 152614 IP address blocks: 2407:e4c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/aIeYXbGeX9gvlitCDswPxO1zDQI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/aIeYXbGeX9gvlitCDswPxO1zDQI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/aIeYXbGeX9gvlitCDswPxO1zDQI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 08:29:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1185 (0x4a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6887985DB19E5FD82F962B420ECC0FC4ED730D02 Validity Not Before: Mar 4 05:55:12 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=907043BD429C10C0E5C09BB713D676E86E80D57E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:4c:e0:ba:ba:7b:d7:af:6c:e3:4c:3f:78:47: 02:84:e1:fd:d6:b7:4c:a3:54:5c:4a:b0:78:3b:90: ca:f7:21:db:f6:b4:24:64:b9:cd:9f:3b:a2:e0:fa: a7:59:d8:1c:86:54:33:ff:8c:a6:8a:79:ee:d2:0a: 83:2c:02:9d:8e:5d:5e:2d:62:a9:aa:88:ea:d0:19: 90:a6:bf:d9:ce:cf:c7:9a:b6:dd:4b:a8:0c:6a:cf: a2:89:39:38:c2:68:34:92:97:51:3d:46:cc:81:7f: 6b:59:ea:1f:0a:8d:e5:2f:ee:83:4d:3b:31:0a:9e: 79:b0:a0:a1:07:d5:37:09:a7:c1:da:4a:18:3b:7f: 62:b0:af:81:ef:43:6c:9a:a1:f9:20:2f:a8:5b:7b: 1f:de:1b:41:15:81:4b:2f:c7:f6:a5:d8:5e:dd:6f: d6:a7:7b:d7:3d:ec:40:05:0e:3a:da:6a:80:e1:b7: 86:96:ad:d3:00:24:dd:ba:5b:cb:f3:35:54:26:0c: c8:bc:b5:29:8c:f5:b7:98:8e:87:89:ff:b6:4f:04: 48:64:da:e8:7f:92:4c:b9:66:1f:9c:58:dd:7c:02: 9b:d7:ff:d3:e4:eb:65:35:29:d1:44:c2:dc:c9:fc: 08:53:58:d3:a3:1b:c3:c0:50:9a:cc:e7:26:10:e1: 07:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:70:43:BD:42:9C:10:C0:E5:C0:9B:B7:13:D6:76:E8:6E:80:D5:7E X509v3 Authority Key Identifier: keyid:68:87:98:5D:B1:9E:5F:D8:2F:96:2B:42:0E:CC:0F:C4:ED:73:0D:02 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/aIeYXbGeX9gvlitCDswPxO1zDQI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/aIeYXbGeX9gvlitCDswPxO1zDQI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/kHBDvUKcEMDlwJu3E9Z26G6A1X4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:e4c0::/48 Signature Algorithm: sha256WithRSAEncryption 1b:3d:f0:16:7d:f7:88:d4:92:39:ca:f5:46:d6:ae:f2:d3:60: f1:38:73:46:6a:67:ec:be:3e:34:3d:3c:07:ec:b9:ec:8e:81: c6:47:3e:ba:89:d4:ff:74:af:83:25:94:7a:89:30:96:13:bc: 3e:d4:ec:1f:f9:89:62:9a:1f:88:f3:34:c9:3d:60:11:57:3d: 17:98:bd:32:f2:19:aa:e9:d0:8a:7f:c0:ce:dd:f3:1a:31:51: 8c:a9:8c:3b:73:31:0c:47:a0:21:ca:13:9a:f9:74:77:2e:e1: 99:5a:e7:f7:31:f3:f0:36:33:48:f3:8a:bc:0e:cb:16:34:50: 65:15:32:ec:06:ab:8d:5b:0e:51:b8:3a:19:87:49:03:f3:82: 09:d8:48:eb:82:75:5f:23:57:6d:0f:62:04:29:1a:df:76:65: 49:3a:5f:e6:1d:c5:90:01:ab:cb:48:c1:75:2a:55:3a:82:5a: 22:87:5e:bc:08:f3:bf:45:eb:fe:2a:4f:e4:cd:33:1d:e1:3e: ed:ac:54:f4:ea:40:6c:ea:0a:9c:73:5f:2a:5d:bf:bd:3d:91: a4:6e:d4:ed:99:d9:a1:c7:6c:e8:c2:b3:19:df:57:6b:7b:f0: 7c:85:9e:fe:be:a6:29:58:be:78:48:96:f6:9e:60:ab:95:c4: 00:47:ea:31 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICBKEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjg4 Nzk4NURCMTlFNUZEODJGOTYyQjQyMEVDQzBGQzRFRDczMEQwMjAeFw0yNjAzMDQw NTU1MTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDkwNzA0M0JENDI5QzEw QzBFNUMwOUJCNzEzRDY3NkU4NkU4MEQ1N0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGTOC6unvXr2zjTD94RwKE4f3Wt0yjVFxKsHg7kMr3Idv2tCRk uc2fO6Lg+qdZ2ByGVDP/jKaKee7SCoMsAp2OXV4tYqmqiOrQGZCmv9nOz8eatt1L qAxqz6KJOTjCaDSSl1E9RsyBf2tZ6h8KjeUv7oNNOzEKnnmwoKEH1TcJp8HaShg7 f2Kwr4HvQ2yaofkgL6hbex/eG0EVgUsvx/al2F7db9ane9c97EAFDjraaoDht4aW rdMAJN26W8vzNVQmDMi8tSmM9beYjoeJ/7ZPBEhk2uh/kky5Zh+cWN18ApvX/9Pk 62U1KdFEwtzJ/AhTWNOjG8PAUJrM5yYQ4QcRAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUkHBDvUKcEMDlwJu3E9Z26G6A1X4wHwYDVR0jBBgwFoAUaIeYXbGeX9gvlitC DswPxO1zDQIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSVNUVkMv YUllWVhiR2VYOWd2bGl0Q0Rzd1B4TzF6RFFJLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9hSWVZWGJHZVg5Z3ZsaXRDRHN3UHhPMXpEUUkuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9JU1RWQy9rSEJEdlVLY0VNRGx3SnUzRTla MjZHNkExWDQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAfk wAAAMA0GCSqGSIb3DQEBCwUAA4IBAQAbPfAWffeI1JI5yvVG1q7y02DxOHNGamfs vj40PTwH7LnsjoHGRz66idT/dK+DJZR6iTCWE7w+1Owf+Ylimh+I8zTJPWARVz0X mL0y8hmq6dCKf8DO3fMaMVGMqYw7czEMR6AhyhOa+XR3LuGZWuf3MfPwNjNI84q8 DssWNFBlFTLsBquNWw5RuDoZh0kD84IJ2EjrgnVfI1dtD2IEKRrfdmVJOl/mHcWQ AavLSMF1KlU6gloih168CPO/Rev+Kk/kzTMd4T7trFT06kBs6gqcc18qXb+9PZGk btTtmdmhx2zowrMZ31dre/B8hZ7+vqYpWL54SJb2nmCrlcQAR+ox -----END CERTIFICATE-----Generated at Fri Mar 27 06:37:40 2026 by rpki-client