$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/PgFw_kQab2Hova7f0mCsqPEDPpc.roa File: PgFw_kQab2Hova7f0mCsqPEDPpc.roa (raw, json) Hash identifier: 4Vo4TdvpjYxsegF3rOrqcvMZoW3ot053J21/xeoG6p0= Subject key identifier: 3E:01:70:FE:44:1A:6F:61:E8:BD:AE:DF:D2:60:AC:A8:F1:03:3E:97 Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C Certificate serial: 0E24 Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/PgFw_kQab2Hova7f0mCsqPEDPpc.roa Signing time: Fri 22 Aug 2025 09:03:29 +0000 ROA not before: Fri 22 Aug 2025 09:03:29 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18042 IP address blocks: 61.63.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3620 (0xe24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C Validity Not Before: Aug 22 09:03:29 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=3E0170FE441A6F61E8BDAEDFD260ACA8F1033E97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:70:e5:f6:7e:ae:93:55:db:2e:b5:08:b1:4e: 23:f0:62:55:e2:1c:06:87:78:90:79:1e:c4:82:05: 45:84:6a:94:b9:f6:bd:20:0c:86:59:f7:4d:2a:a3: 4b:8e:2c:98:69:89:0a:42:e5:4e:06:cf:dc:ec:ea: 39:b2:ef:cd:d9:cc:f6:09:1e:05:82:ce:e3:9f:ad: 1f:7d:1e:c2:e8:eb:e4:64:ee:53:13:e3:e1:31:34: f1:13:8b:6c:48:57:74:f6:19:eb:ab:41:fd:0e:63: df:2d:31:31:c0:b1:8a:20:01:64:0e:d9:3f:1f:15: 5a:8d:9d:b0:09:1e:e7:47:90:a2:a8:ad:d6:84:83: 61:a8:33:f9:87:f1:02:2e:66:97:6e:a1:d6:37:3a: 07:34:c1:83:8e:42:10:32:e2:3a:41:17:e7:f0:ed: 46:49:07:25:94:c0:65:5e:2d:99:dd:db:2b:1e:61: d9:33:38:d9:7b:d6:dd:fb:20:5e:31:cd:f4:5d:a3: 18:2a:17:51:d1:c9:de:62:db:a7:e5:03:e6:47:5c: 27:e3:7a:50:b7:0f:90:b5:af:67:75:30:09:1a:d5: 5b:44:79:44:54:bb:68:cc:71:dc:11:3c:d0:a6:57: a0:e3:da:86:9f:b4:72:38:72:fc:ec:a9:83:4b:a5: 3e:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:01:70:FE:44:1A:6F:61:E8:BD:AE:DF:D2:60:AC:A8:F1:03:3E:97 X509v3 Authority Key Identifier: keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/PgFw_kQab2Hova7f0mCsqPEDPpc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.63.63.0/24 Signature Algorithm: sha256WithRSAEncryption 84:9f:48:b5:67:14:18:37:3b:ee:f5:0a:33:74:ae:b0:39:92: 3b:13:12:b8:19:5b:cb:2c:a7:d7:49:b5:16:57:77:58:f3:3f: fc:4f:6b:3b:3b:2b:4a:bc:62:2c:6d:86:a7:b4:44:fc:49:3f: f2:86:00:4a:41:ea:d7:e6:e7:21:3d:f1:40:ec:e8:a6:54:fd: 8e:5d:89:82:cc:77:e5:79:a0:df:42:37:18:8f:7b:7e:44:ea: 7e:1f:52:67:76:8e:9f:fd:70:3b:be:ee:50:81:b8:3a:f8:df: 45:30:c9:71:51:ab:6b:95:74:30:7a:88:34:65:da:d9:d2:38: b4:71:b3:e5:13:52:ed:73:83:63:5e:83:e7:3b:20:cd:b3:2a: 68:45:19:9c:0e:50:fe:7c:af:d6:77:3f:d2:65:31:66:c9:3f: 21:31:94:fa:5b:ef:bc:38:32:46:8d:6b:28:e5:ea:96:40:79: 9b:19:cd:56:6b:84:ed:4c:c1:bc:a5:eb:03:81:b4:b0:ca:f8: f0:74:61:76:93:a1:32:e4:5d:df:8c:0f:59:70:a4:dd:7a:d6: f3:c7:f0:0e:28:f2:93:a1:89:fb:d7:eb:76:09:ed:b4:7d:7a: 89:e5:91:68:15:7e:ea:89:89:46:9d:21:92:a6:89:c5:eb:c8: 14:d0:63:93 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDiQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkRC RUQ3NTFEQThGMDE5MzA0MThFMkRFMjQzMkQwRDAzQTk3REE3QzAeFw0yNTA4MjIw OTAzMjlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDNFMDE3MEZFNDQxQTZG NjFFOEJEQUVERkQyNjBBQ0E4RjEwMzNFOTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLcOX2fq6TVdsutQixTiPwYlXiHAaHeJB5HsSCBUWEapS59r0g DIZZ900qo0uOLJhpiQpC5U4Gz9zs6jmy783ZzPYJHgWCzuOfrR99HsLo6+Rk7lMT 4+ExNPETi2xIV3T2GeurQf0OY98tMTHAsYogAWQO2T8fFVqNnbAJHudHkKKordaE g2GoM/mH8QIuZpduodY3Ogc0wYOOQhAy4jpBF+fw7UZJByWUwGVeLZnd2yseYdkz ONl71t37IF4xzfRdoxgqF1HRyd5i26flA+ZHXCfjelC3D5C1r2d1MAka1VtEeURU u2jMcdwRPNCmV6Dj2oaftHI4cvzsqYNLpT7dAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUPgFw/kQab2Hova7f0mCsqPEDPpcwHwYDVR0jBBgwFoAULb7XUdqPAZMEGOLe JDLQ0DqX2nwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0JUL0xi N1hVZHFQQVpNRUdPTGVKRExRMERxWDJudy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev TGI3WFVkcVBBWk1FR09MZUpETFEwRHFYMm53LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0JUL1BnRndfa1FhYjJIb3ZhN2YwbUNzcVBF RFBwYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAA9Pz8wDQYJ KoZIhvcNAQELBQADggEBAISfSLVnFBg3O+71CjN0rrA5kjsTErgZW8ssp9dJtRZX d1jzP/xPazs7K0q8Yixthqe0RPxJP/KGAEpB6tfm5yE98UDs6KZU/Y5diYLMd+V5 oN9CNxiPe35E6n4fUmd2jp/9cDu+7lCBuDr430UwyXFRq2uVdDB6iDRl2tnSOLRx s+UTUu1zg2Neg+c7IM2zKmhFGZwOUP58r9Z3P9JlMWbJPyExlPpb77w4MkaNayjl 6pZAeZsZzVZrhO1Mwbyl6wOBtLDK+PB0YXaToTLkXd+MD1lwpN161vPH8A4o8pOh ifvX63YJ7bR9eonlkWgVfuqJiUadIZKmicXryBTQY5M= -----END CERTIFICATE-----Generated at Sun Aug 24 11:39:26 2025 by rpki-client