$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/zl9xzwaoOgzLs7KQJS5FQoygftY.roa File: zl9xzwaoOgzLs7KQJS5FQoygftY.roa (raw, json) Hash identifier: 9UM/XTXQw7YhhyYSYZA0CTsKQhRadDLp8koSReo8UU8= Subject key identifier: CE:5F:71:CF:06:A8:3A:0C:CB:B3:B2:90:25:2E:45:42:8C:A0:7E:D6 Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C Certificate serial: 0E2D Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/zl9xzwaoOgzLs7KQJS5FQoygftY.roa Signing time: Fri 22 Aug 2025 09:03:31 +0000 ROA not before: Fri 22 Aug 2025 09:03:31 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18042 IP address blocks: 58.86.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3629 (0xe2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C Validity Not Before: Aug 22 09:03:31 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=CE5F71CF06A83A0CCBB3B290252E45428CA07ED6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b8:e2:3d:6b:f1:fe:b4:1c:20:d2:a2:38:c9: 69:05:90:4f:d8:62:1a:f2:ea:5c:70:65:1a:5b:cc: 1e:37:f4:7a:5e:b3:e9:05:b1:b6:7d:fd:20:f3:76: 49:b8:99:8b:31:63:fb:4a:32:25:e6:01:b6:1d:a5: 95:3c:e6:74:4a:7a:3b:75:e0:62:0e:27:83:c0:b8: 09:c8:14:57:39:bf:36:f4:2d:0b:87:ab:7d:dc:d1: cb:bd:e9:74:0c:ad:20:af:3d:fe:2c:da:90:39:13: a4:5e:cd:5c:78:b2:a4:1f:5d:cc:c9:6f:be:0c:64: c4:a6:95:24:94:fc:61:bd:be:3c:8e:47:46:93:1e: ec:99:1f:2d:51:3d:38:48:aa:f6:0f:90:65:77:c2: f1:a8:35:e3:ed:0a:20:aa:b5:60:e6:59:b0:06:11: fb:b0:4e:67:26:e5:4a:c8:26:02:09:5e:60:d4:c4: 7f:06:57:9a:90:bf:66:0e:0b:85:9b:7d:54:44:a5: 18:12:c9:14:15:d4:88:c4:a2:bb:90:32:79:4a:c5: 36:18:a9:f7:81:58:f4:93:98:bf:ce:cd:1f:b9:5d: e6:69:fd:0c:dc:10:07:50:80:42:e5:25:ca:24:80: 53:75:b7:45:76:00:84:39:21:ca:e9:b4:bd:bc:11: fb:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:5F:71:CF:06:A8:3A:0C:CB:B3:B2:90:25:2E:45:42:8C:A0:7E:D6 X509v3 Authority Key Identifier: keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/zl9xzwaoOgzLs7KQJS5FQoygftY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 58.86.55.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:8e:2c:77:30:8c:f6:f8:45:bb:c5:25:2c:c1:87:20:35:9f: 23:7d:c4:4c:e4:de:f6:41:1e:0d:fa:0e:15:dc:21:1e:af:a6: 19:0c:4a:4f:2f:19:db:f7:7c:c5:d6:d3:d0:b9:50:c5:65:b9: eb:16:d6:57:6f:6c:f3:26:b3:10:b8:af:be:d8:e4:6d:06:f0: 61:66:2e:cc:fd:23:ba:a0:4a:0a:da:f2:16:ed:cf:35:75:f3: 07:d4:7d:47:2d:a9:e6:32:fa:35:b6:25:1f:ab:b7:30:36:90: f7:0c:c8:08:0c:79:ca:61:00:be:eb:12:a1:77:36:7d:cd:07: 96:ac:76:8d:10:0d:26:dd:a7:82:8d:d4:92:db:12:a5:5b:ab: 2d:ee:ce:43:94:02:90:d1:b1:a3:fb:80:d3:39:fa:82:00:73: 4f:e0:b4:0b:13:85:55:4b:e0:9a:f0:88:ce:ac:7d:8f:7f:fd: ca:ed:58:ae:6b:3e:a1:32:cb:a2:28:17:62:c7:50:22:10:ce: d2:f6:54:30:82:9c:7e:be:79:3c:18:4e:49:00:11:2f:67:5b: 60:b9:66:f0:2d:63:a1:cf:83:7f:00:51:79:f3:ab:84:c3:da: ce:ed:44:5d:4c:dd:13:4a:71:be:b7:e6:43:4a:39:5d:e8:72: 47:20:b3:a8 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDi0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkRC RUQ3NTFEQThGMDE5MzA0MThFMkRFMjQzMkQwRDAzQTk3REE3QzAeFw0yNTA4MjIw OTAzMzFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKENFNUY3MUNGMDZBODNB MENDQkIzQjI5MDI1MkU0NTQyOENBMDdFRDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTuOI9a/H+tBwg0qI4yWkFkE/YYhry6lxwZRpbzB439Hpes+kF sbZ9/SDzdkm4mYsxY/tKMiXmAbYdpZU85nRKejt14GIOJ4PAuAnIFFc5vzb0LQuH q33c0cu96XQMrSCvPf4s2pA5E6RezVx4sqQfXczJb74MZMSmlSSU/GG9vjyOR0aT HuyZHy1RPThIqvYPkGV3wvGoNePtCiCqtWDmWbAGEfuwTmcm5UrIJgIJXmDUxH8G V5qQv2YOC4WbfVREpRgSyRQV1IjEoruQMnlKxTYYqfeBWPSTmL/OzR+5XeZp/Qzc EAdQgELlJcokgFN1t0V2AIQ5IcrptL28EftdAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUzl9xzwaoOgzLs7KQJS5FQoygftYwHwYDVR0jBBgwFoAULb7XUdqPAZMEGOLe JDLQ0DqX2nwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0JUL0xi N1hVZHFQQVpNRUdPTGVKRExRMERxWDJudy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev TGI3WFVkcVBBWk1FR09MZUpETFEwRHFYMm53LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0JUL3psOXh6d2FvT2d6THM3S1FKUzVGUW95 Z2Z0WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAA6VjcwDQYJ KoZIhvcNAQELBQADggEBAF6OLHcwjPb4RbvFJSzBhyA1nyN9xEzk3vZBHg36DhXc IR6vphkMSk8vGdv3fMXW09C5UMVluesW1ldvbPMmsxC4r77Y5G0G8GFmLsz9I7qg Sgra8hbtzzV18wfUfUctqeYy+jW2JR+rtzA2kPcMyAgMecphAL7rEqF3Nn3NB5as do0QDSbdp4KN1JLbEqVbqy3uzkOUApDRsaP7gNM5+oIAc0/gtAsThVVL4JrwiM6s fY9//crtWK5rPqEyy6IoF2LHUCIQztL2VDCCnH6+eTwYTkkAES9nW2C5ZvAtY6HP g38AUXnzq4TD2s7tRF1M3RNKcb635kNKOV3ockcgs6g= -----END CERTIFICATE-----Generated at Sun Aug 24 11:46:47 2025 by rpki-client