$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/78_UBtJDIdbXJXorh8l5IQ0hdmc.roa File: 78_UBtJDIdbXJXorh8l5IQ0hdmc.roa (raw, json) Hash identifier: tzQKF3bJVjzNQZunwaJ3inKF3Pc/j9VVpTGXQNldhCI= Subject key identifier: EF:CF:D4:06:D2:43:21:D6:D7:25:7A:2B:87:C9:79:21:0D:21:76:67 Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Certificate serial: 0F01 Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/78_UBtJDIdbXJXorh8l5IQ0hdmc.roa Signing time: Fri 22 Aug 2025 09:03:43 +0000 ROA not before: Fri 22 Aug 2025 09:03:43 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 11414 IP address blocks: 61.61.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3841 (0xf01) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Validity Not Before: Aug 22 09:03:43 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=EFCFD406D24321D6D7257A2B87C979210D217667 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:3b:be:1c:02:e1:1e:4c:20:6a:6f:47:04:c7: 9c:14:65:d9:ff:df:0f:08:16:cb:cd:8e:47:15:d8: d9:6f:f5:8a:8f:a0:5e:04:04:58:97:01:6f:21:f1: 23:f2:d5:82:f4:21:47:e6:41:9a:d3:30:82:ac:ec: 64:56:85:e0:15:5f:11:0c:47:ab:91:b7:f0:34:84: 19:08:42:b2:ed:fa:ad:c8:58:92:6a:0f:4b:85:b5: ba:ab:34:1f:58:c8:13:94:0d:ec:00:5d:ab:31:f3: d8:14:87:08:3c:41:a3:74:fe:3d:c2:f7:19:2d:7f: 4e:e2:a6:fd:d6:6a:bd:e2:ca:87:89:24:ce:63:3b: f0:85:2c:d9:ae:6b:aa:70:c0:4e:bc:d1:cc:14:fc: ba:4e:21:3f:77:9c:66:cc:f9:a4:89:4d:d3:85:78: dc:de:ec:4d:96:67:be:54:68:88:b1:b2:09:ed:94: 7a:99:e3:76:fe:b2:46:51:3d:ca:96:de:fb:b5:b1: 13:0e:09:3a:59:3e:cd:89:0f:8a:1e:6b:1e:65:5f: 24:df:63:8b:b4:f2:62:a1:59:d6:4d:31:14:b6:99: 17:1f:d1:92:3a:d3:a5:02:fe:42:d8:dd:42:20:ca: aa:32:bf:2c:e8:43:5f:d9:d3:65:fc:2f:90:36:00: 2a:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:CF:D4:06:D2:43:21:D6:D7:25:7A:2B:87:C9:79:21:0D:21:76:67 X509v3 Authority Key Identifier: keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/78_UBtJDIdbXJXorh8l5IQ0hdmc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.6.0/24 Signature Algorithm: sha256WithRSAEncryption 99:ed:cb:ce:16:3a:7c:a7:87:d3:41:90:48:19:de:0f:95:db: 9d:0b:99:cc:81:fd:4c:e9:6d:24:b6:59:90:03:87:09:2b:d1: ed:ff:e6:3a:04:8d:c7:b7:f6:dc:77:5e:6d:4b:de:56:71:bd: 7e:a7:ff:e0:a2:e4:8a:f6:32:59:d4:7c:1d:28:3a:a2:0b:26: 9a:0c:bb:16:ba:f5:2a:fa:e5:55:33:3a:f5:8e:8b:5a:4f:dd: 9f:30:7b:1d:74:8b:c0:b5:7f:77:66:3b:29:01:a3:2e:d9:c0: 64:e5:25:f8:fd:11:d3:bf:49:45:14:63:2b:28:a0:d4:e2:3a: 84:4b:90:a1:21:94:ff:16:80:d8:40:ea:f2:75:c7:03:c7:a3: fc:74:34:7d:12:df:e2:21:79:e9:ff:43:1c:62:57:ef:aa:6f: af:70:22:73:29:d4:af:63:05:69:f8:e3:a4:0e:0a:37:6f:51: f7:54:b1:bb:93:33:57:f8:a5:bf:47:58:b5:61:8a:c1:15:91: 27:43:d9:81:06:4a:1f:55:dc:a0:7e:19:d3:1e:2c:f9:6e:5e: 69:65:17:a8:e2:3c:d1:ed:2a:37:59:73:da:a5:2b:ce:90:82: 0e:87:50:22:af:3a:c6:23:66:c8:19:cd:38:ec:8b:8c:fb:c9: c6:54:4c:30 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDwEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3 MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yNTA4MjIw OTAzNDNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEVGQ0ZENDA2RDI0MzIx RDZENzI1N0EyQjg3Qzk3OTIxMEQyMTc2NjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrO74cAuEeTCBqb0cEx5wUZdn/3w8IFsvNjkcV2Nlv9YqPoF4E BFiXAW8h8SPy1YL0IUfmQZrTMIKs7GRWheAVXxEMR6uRt/A0hBkIQrLt+q3IWJJq D0uFtbqrNB9YyBOUDewAXasx89gUhwg8QaN0/j3C9xktf07ipv3War3iyoeJJM5j O/CFLNmua6pwwE680cwU/LpOIT93nGbM+aSJTdOFeNze7E2WZ75UaIixsgntlHqZ 43b+skZRPcqW3vu1sRMOCTpZPs2JD4oeax5lXyTfY4u08mKhWdZNMRS2mRcf0ZI6 06UC/kLY3UIgyqoyvyzoQ1/Z02X8L5A2ACq1AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU78/UBtJDIdbXJXorh8l5IQ0hdmcwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0dULzc4X1VCdEpESWRiWEpYb3JoOGw1SVEw aGRtYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAA9PQYwDQYJ KoZIhvcNAQELBQADggEBAJnty84WOnynh9NBkEgZ3g+V250LmcyB/UzpbSS2WZAD hwkr0e3/5joEjce39tx3Xm1L3lZxvX6n/+Ci5Ir2MlnUfB0oOqILJpoMuxa69Sr6 5VUzOvWOi1pP3Z8wex10i8C1f3dmOykBoy7ZwGTlJfj9EdO/SUUUYysooNTiOoRL kKEhlP8WgNhA6vJ1xwPHo/x0NH0S3+Iheen/QxxiV++qb69wInMp1K9jBWn446QO CjdvUfdUsbuTM1f4pb9HWLVhisEVkSdD2YEGSh9V3KB+GdMeLPluXmllF6jiPNHt KjdZc9qlK86Qgg6HUCKvOsYjZsgZzTjsi4z7ycZUTDA= -----END CERTIFICATE-----Generated at Sun Aug 24 05:19:55 2025 by rpki-client