$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/62mjHZmcdW9Kz_DhYWWeTz8volU.roa File: 62mjHZmcdW9Kz_DhYWWeTz8volU.roa (raw, json) Hash identifier: EBzCwCAOPHQjKkms2cwH36EBJ/GR8ad8Xtw0fPYamsQ= Subject key identifier: EB:69:A3:1D:99:9C:75:6F:4A:CF:F0:E1:61:65:9E:4F:3F:2F:A2:55 Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Certificate serial: 0F21 Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/62mjHZmcdW9Kz_DhYWWeTz8volU.roa Signing time: Fri 22 Aug 2025 09:03:49 +0000 ROA not before: Fri 22 Aug 2025 09:03:49 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4780 IP address blocks: 211.78.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3873 (0xf21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Validity Not Before: Aug 22 09:03:49 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=EB69A31D999C756F4ACFF0E161659E4F3F2FA255 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a5:d0:f4:3c:d4:07:39:b5:4c:bd:0e:12:70: c8:74:90:14:37:e3:ef:02:4a:6b:0c:45:da:07:19: 38:98:37:b4:06:50:07:5e:4c:54:ab:97:af:15:40: 63:8f:93:9a:b7:7a:ba:f8:76:28:a4:a6:b6:69:02: 70:2e:92:91:14:68:c9:ea:5b:b1:55:af:2b:ce:53: e0:66:36:24:19:b0:cf:b1:9b:65:29:bd:9c:35:82: 7c:52:af:c4:0a:e6:b9:3e:53:5b:45:7a:17:c4:c7: 69:b8:e0:5f:0e:e7:98:a3:6a:06:8a:e3:de:8d:37: cc:6f:cb:35:32:b1:7b:b4:ef:cf:d1:f7:fc:3c:c3: 2f:7a:8a:fb:ae:c0:57:b6:93:ff:f3:72:4f:f4:e4: 69:4f:27:70:0a:bb:9a:d6:28:83:c4:0c:f0:b3:e6: ea:9b:a7:74:f0:58:3d:52:7b:a7:92:86:8d:03:4e: 22:29:c2:1e:a5:c0:26:b8:d9:26:6f:1c:bb:c9:c3: c3:0e:15:7c:b5:d3:9c:f4:b5:81:5e:f3:a4:13:f4: ee:c2:ff:7f:2d:b8:67:01:1f:1b:b1:ef:31:d7:da: 3a:5e:4f:e6:99:ee:e8:fa:47:26:3d:0e:b9:a8:bd: c2:33:ec:61:f0:a9:ba:23:df:5d:a8:24:30:46:c1: 50:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:69:A3:1D:99:9C:75:6F:4A:CF:F0:E1:61:65:9E:4F:3F:2F:A2:55 X509v3 Authority Key Identifier: keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/62mjHZmcdW9Kz_DhYWWeTz8volU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.78.4.0/22 Signature Algorithm: sha256WithRSAEncryption 9b:98:6d:56:93:c2:4a:52:37:92:70:2d:71:08:e5:c6:1c:bd: 40:dc:8e:6d:08:a0:8f:f7:21:d6:2f:ba:4d:c7:ce:d9:05:ab: 3f:97:9e:9f:a8:1c:f2:de:ff:93:94:27:ae:a2:06:f7:2a:0b: 54:8e:88:c3:c9:93:78:a0:ec:87:1f:48:f1:e8:c3:d0:29:42: d2:ff:96:dd:bd:1c:8d:2f:f1:80:f5:8d:7c:d8:12:df:79:41: 0e:ad:5b:35:86:0b:42:5b:36:86:9e:d6:33:90:19:69:c7:07: dc:5a:08:f8:46:23:d7:71:c9:e8:81:0a:11:82:aa:80:fa:22: 7d:18:51:29:85:68:d8:36:d8:3f:10:44:ee:61:68:97:1b:6f: 1b:aa:60:7d:1a:cc:04:0c:c0:6e:00:92:40:5c:83:3b:ee:97: 18:b5:ef:a4:53:22:50:8b:ab:4d:24:be:00:13:63:4c:11:f2: 80:a5:b6:4b:49:02:f4:80:77:bd:75:cc:98:af:c0:46:f6:28: 0f:9d:d9:43:25:09:20:a0:d2:e0:b9:20:8c:b1:6c:a3:a3:bc: 12:84:e6:79:00:d3:f9:e6:e6:b3:82:e7:fa:c9:9b:2a:19:5d: a1:4f:26:1e:8d:2f:1d:3c:36:3b:69:c1:69:05:a6:3d:27:db: 82:31:e0:29 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDyEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3 MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yNTA4MjIw OTAzNDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEVCNjlBMzFEOTk5Qzc1 NkY0QUNGRjBFMTYxNjU5RTRGM0YyRkEyNTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3pdD0PNQHObVMvQ4ScMh0kBQ34+8CSmsMRdoHGTiYN7QGUAde TFSrl68VQGOPk5q3err4diikprZpAnAukpEUaMnqW7FVryvOU+BmNiQZsM+xm2Up vZw1gnxSr8QK5rk+U1tFehfEx2m44F8O55ijagaK496NN8xvyzUysXu078/R9/w8 wy96ivuuwFe2k//zck/05GlPJ3AKu5rWKIPEDPCz5uqbp3TwWD1Se6eSho0DTiIp wh6lwCa42SZvHLvJw8MOFXy105z0tYFe86QT9O7C/38tuGcBHxux7zHX2jpeT+aZ 7uj6RyY9DrmovcIz7GHwqboj312oJDBGwVAdAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU62mjHZmcdW9Kz/DhYWWeTz8volUwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0dULzYybWpIWm1jZFc5S3pfRGhZV1dlVHo4 dm9sVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALTTgQwDQYJ KoZIhvcNAQELBQADggEBAJuYbVaTwkpSN5JwLXEI5cYcvUDcjm0IoI/3IdYvuk3H ztkFqz+Xnp+oHPLe/5OUJ66iBvcqC1SOiMPJk3ig7IcfSPHow9ApQtL/lt29HI0v 8YD1jXzYEt95QQ6tWzWGC0JbNoae1jOQGWnHB9xaCPhGI9dxyeiBChGCqoD6In0Y USmFaNg22D8QRO5haJcbbxuqYH0azAQMwG4AkkBcgzvulxi176RTIlCLq00kvgAT Y0wR8oCltktJAvSAd711zJivwEb2KA+d2UMlCSCg0uC5IIyxbKOjvBKE5nkA0/nm 5rOC5/rJmyoZXaFPJh6NLx08NjtpwWkFpj0n24Ix4Ck= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:27 2025 by rpki-client