$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/Ij6f4IyKxHLhwe5XduT66B1S66s.roa File: Ij6f4IyKxHLhwe5XduT66B1S66s.roa (raw, json) Hash identifier: gsA6fFquB9i6BFaVRYV5XamdQUgdg9vu78wKdRzx0jI= Subject key identifier: 22:3E:9F:E0:8C:8A:C4:72:E1:C1:EE:57:76:E4:FA:E8:1D:52:EB:AB Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C Certificate serial: 0E27 Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Ij6f4IyKxHLhwe5XduT66B1S66s.roa Signing time: Fri 22 Aug 2025 09:03:30 +0000 ROA not before: Fri 22 Aug 2025 09:03:30 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18042 IP address blocks: 61.67.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3623 (0xe27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C Validity Not Before: Aug 22 09:03:30 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=223E9FE08C8AC472E1C1EE5776E4FAE81D52EBAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:7d:c1:a4:53:12:e3:fd:4c:a2:9a:35:67:75: 41:95:e4:0a:91:9b:86:4a:d1:7c:22:04:4f:64:63: a5:40:18:52:9a:6f:f7:da:de:8a:9c:a1:c1:a0:30: e1:cd:c5:2d:14:8d:32:8f:b8:b5:5b:2a:98:24:99: 4e:4f:7c:3f:32:f8:cb:88:de:c6:dc:e8:20:21:2a: e9:5f:22:61:37:1c:c6:c8:e4:d6:31:60:f4:af:f0: 8e:c5:d2:4b:86:ec:09:8b:41:2d:91:2e:08:c2:e7: 96:97:6d:e3:ff:34:c1:6f:7a:fc:61:e8:29:dd:07: 07:96:88:95:92:67:54:08:a6:10:a3:b7:7c:38:c1: 91:9c:31:56:8c:ff:40:0e:1d:c9:40:a0:01:7b:54: 53:c5:d0:82:60:7d:d0:56:51:d1:a1:90:cc:c1:74: 2e:b7:cf:a9:02:93:b1:2c:9d:4c:f9:4d:c7:f5:ef: c2:3e:f1:e0:8e:91:6b:59:e7:da:36:61:1c:3c:54: 9f:19:60:65:39:ed:cb:87:aa:f3:e0:1e:ba:a6:f7: d4:34:e2:e4:4b:aa:02:a1:02:36:c3:0c:ef:33:48: 91:31:2b:a6:8e:00:be:bb:4a:3b:22:b5:7c:79:66: a1:f2:8b:f8:f2:82:8c:60:89:8b:18:cb:38:1f:c2: 54:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:3E:9F:E0:8C:8A:C4:72:E1:C1:EE:57:76:E4:FA:E8:1D:52:EB:AB X509v3 Authority Key Identifier: keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Ij6f4IyKxHLhwe5XduT66B1S66s.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.67.209.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:43:fb:27:83:7d:0b:88:da:c1:8e:ba:5a:9d:ed:11:4e:ea: 98:bd:c2:0d:6f:cc:77:00:27:6f:00:fe:31:61:f3:2d:c6:76: 16:89:4d:ca:ce:db:4d:c1:19:cd:92:e4:cb:e4:a2:93:8c:79: a1:2d:c5:ad:6c:ca:fd:ef:e4:e2:12:1a:35:0b:df:0b:13:4d: 82:76:c3:8b:84:88:aa:3d:0a:fc:7a:f6:ae:0b:89:0d:ef:21: 60:e9:4b:a6:0e:9b:c9:9c:06:b9:16:3c:a8:66:c0:14:c4:ad: 33:f8:8a:6b:40:1c:3c:3b:37:b6:7b:e0:57:86:18:33:f1:8f: df:5d:cf:4a:5e:e6:53:52:53:ac:f2:b3:cf:4f:87:d0:46:ee: 02:5e:ab:a5:43:4f:6e:1f:a0:e2:f3:73:2f:e8:0b:96:c6:ff: 86:f4:fe:f0:6f:10:0c:65:61:d7:19:34:b2:86:a7:24:9c:27: f0:00:99:88:aa:68:80:b8:ed:20:40:6e:ef:50:ac:d3:19:c4: 37:9c:63:40:9f:7a:34:fa:8f:46:44:cd:46:f0:ad:94:46:5b: 55:53:5b:f8:2a:08:57:8d:2c:70:9f:76:39:6e:5f:7b:99:64: 95:a7:a2:76:f3:92:b1:8e:50:b1:69:fc:08:c8:b3:f7:6f:a8: d7:cf:56:db -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDicwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkRC RUQ3NTFEQThGMDE5MzA0MThFMkRFMjQzMkQwRDAzQTk3REE3QzAeFw0yNTA4MjIw OTAzMzBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDIyM0U5RkUwOEM4QUM0 NzJFMUMxRUU1Nzc2RTRGQUU4MUQ1MkVCQUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4fcGkUxLj/UyimjVndUGV5AqRm4ZK0XwiBE9kY6VAGFKab/fa 3oqcocGgMOHNxS0UjTKPuLVbKpgkmU5PfD8y+MuI3sbc6CAhKulfImE3HMbI5NYx YPSv8I7F0kuG7AmLQS2RLgjC55aXbeP/NMFvevxh6CndBweWiJWSZ1QIphCjt3w4 wZGcMVaM/0AOHclAoAF7VFPF0IJgfdBWUdGhkMzBdC63z6kCk7EsnUz5Tcf178I+ 8eCOkWtZ59o2YRw8VJ8ZYGU57cuHqvPgHrqm99Q04uRLqgKhAjbDDO8zSJExK6aO AL67SjsitXx5ZqHyi/jygoxgiYsYyzgfwlTVAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUIj6f4IyKxHLhwe5XduT66B1S66swHwYDVR0jBBgwFoAULb7XUdqPAZMEGOLe JDLQ0DqX2nwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0JUL0xi N1hVZHFQQVpNRUdPTGVKRExRMERxWDJudy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev TGI3WFVkcVBBWk1FR09MZUpETFEwRHFYMm53LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0JUL0lqNmY0SXlLeEhMaHdlNVhkdVQ2NkIx UzY2cy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAA9Q9EwDQYJ KoZIhvcNAQELBQADggEBAEtD+yeDfQuI2sGOulqd7RFO6pi9wg1vzHcAJ28A/jFh 8y3GdhaJTcrO203BGc2S5MvkopOMeaEtxa1syv3v5OISGjUL3wsTTYJ2w4uEiKo9 Cvx69q4LiQ3vIWDpS6YOm8mcBrkWPKhmwBTErTP4imtAHDw7N7Z74FeGGDPxj99d z0pe5lNSU6zys89Ph9BG7gJeq6VDT24foOLzcy/oC5bG/4b0/vBvEAxlYdcZNLKG pyScJ/AAmYiqaIC47SBAbu9QrNMZxDecY0CfejT6j0ZEzUbwrZRGW1VTW/gqCFeN LHCfdjluX3uZZJWnonbzkrGOULFp/AjIs/dvqNfPVts= -----END CERTIFICATE-----Generated at Sun Aug 24 11:45:13 2025 by rpki-client