$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/ACIHOXOTOsU0PpfOzoTKcTk64hA.roa File: ACIHOXOTOsU0PpfOzoTKcTk64hA.roa (raw, json) Hash identifier: 5xD5NNvoM+PzAW3mPx55xaWUDVSJsqYPXdNMKFAZAV4= Subject key identifier: 00:22:07:39:73:93:3A:C5:34:3E:97:CE:CE:84:CA:71:39:3A:E2:10 Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Certificate serial: 0F15 Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/ACIHOXOTOsU0PpfOzoTKcTk64hA.roa Signing time: Fri 22 Aug 2025 09:03:47 +0000 ROA not before: Fri 22 Aug 2025 09:03:47 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131602 IP address blocks: 211.78.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3861 (0xf15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Validity Not Before: Aug 22 09:03:47 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=0022073973933AC5343E97CECE84CA71393AE210 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:4b:df:63:5b:99:e4:ca:eb:69:74:e5:d9:43: 28:66:c1:04:bb:46:29:5f:45:9f:c7:63:5d:37:3f: f8:9c:29:42:b6:de:35:5a:44:b8:a1:6c:7c:27:28: 07:47:58:17:24:6f:1d:a5:28:2b:f9:84:28:dd:d9: a8:40:7b:ef:12:5b:03:cd:c8:9b:4e:83:a3:ba:f8: df:a7:78:39:66:bc:18:03:c0:5e:35:88:cb:bb:a7: 31:01:a8:63:54:4c:5d:47:cd:69:63:5b:ba:2b:2d: d0:1f:80:08:0c:55:22:b0:cd:73:fc:8a:64:c5:6d: 4b:be:fe:32:59:25:03:ba:84:11:82:d5:87:0f:4d: fa:9f:c0:f2:a5:30:ff:9d:6d:9c:64:ce:3f:d2:16: 76:f1:0b:de:62:d1:d1:57:d1:17:57:45:ac:a5:ad: 93:cb:8e:84:33:31:37:58:22:60:f3:3f:fc:a3:c5: fd:2c:88:73:42:c4:01:6f:0c:3c:f9:23:2e:f5:bb: 0c:7c:1f:fd:86:99:28:46:dc:f7:f3:67:24:e1:ce: 11:cf:1f:c0:89:28:63:75:66:9d:67:86:fd:e7:53: f3:b3:20:83:35:85:60:8a:16:79:85:ef:0a:07:1f: d6:36:4a:f5:4a:9f:cb:80:12:1b:a1:55:a2:a8:89: 79:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:22:07:39:73:93:3A:C5:34:3E:97:CE:CE:84:CA:71:39:3A:E2:10 X509v3 Authority Key Identifier: keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/ACIHOXOTOsU0PpfOzoTKcTk64hA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.78.4.0/22 Signature Algorithm: sha256WithRSAEncryption 1d:13:27:ab:1f:5c:cd:88:45:c6:b9:25:b8:8d:56:26:d1:dc: 16:f7:a3:c6:1f:0f:18:9b:19:d7:55:d3:7d:b0:6e:5f:92:ca: b8:61:16:b0:59:54:85:09:0a:5b:6c:09:55:e7:59:48:23:3b: 3e:ca:28:8d:a0:15:30:b8:b9:dc:05:aa:d1:e1:88:ec:2e:b6: 7e:9b:40:55:90:a4:83:bd:df:36:cb:52:de:a3:1c:82:72:37: d4:ee:c1:a3:d8:6a:63:ad:95:40:e1:ce:be:8f:4f:6f:f8:30: 8d:2a:d5:ff:76:18:6e:34:d5:70:3b:f4:a1:09:ae:51:9a:f3: 86:c5:8c:20:0b:b2:30:1d:d6:d1:4e:14:fc:8d:1f:81:af:c9: 6a:e9:3a:76:eb:2d:fc:9f:0c:53:8e:9f:24:0a:12:9f:62:e4: a3:b9:92:ef:32:1c:bf:be:03:92:74:ca:30:97:f2:1b:16:41: 7a:4f:dd:ed:d0:3c:ce:b4:39:13:0a:87:a8:36:29:fc:e5:88: 66:e2:79:94:06:74:ef:5c:6c:e5:8b:27:3b:48:ea:89:95:cd: a1:f7:fc:d0:56:5d:2e:4b:6e:2b:8b:14:23:93:e1:b8:84:f2: ea:1c:07:8b:c4:63:76:44:1a:d2:40:b9:62:93:68:24:79:cb: 04:70:6a:e4 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDxUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3 MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yNTA4MjIw OTAzNDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDAwMjIwNzM5NzM5MzNB QzUzNDNFOTdDRUNFODRDQTcxMzkzQUUyMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmS99jW5nkyutpdOXZQyhmwQS7RilfRZ/HY103P/icKUK23jVa RLihbHwnKAdHWBckbx2lKCv5hCjd2ahAe+8SWwPNyJtOg6O6+N+neDlmvBgDwF41 iMu7pzEBqGNUTF1HzWljW7orLdAfgAgMVSKwzXP8imTFbUu+/jJZJQO6hBGC1YcP TfqfwPKlMP+dbZxkzj/SFnbxC95i0dFX0RdXRaylrZPLjoQzMTdYImDzP/yjxf0s iHNCxAFvDDz5Iy71uwx8H/2GmShG3PfzZyThzhHPH8CJKGN1Zp1nhv3nU/OzIIM1 hWCKFnmF7woHH9Y2SvVKn8uAEhuhVaKoiXn/AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUACIHOXOTOsU0PpfOzoTKcTk64hAwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL0FDSUhPWE9UT3NVMFBwZk96b1RLY1Rr NjRoQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALTTgQwDQYJ KoZIhvcNAQELBQADggEBAB0TJ6sfXM2IRca5JbiNVibR3Bb3o8YfDxibGddV032w bl+SyrhhFrBZVIUJCltsCVXnWUgjOz7KKI2gFTC4udwFqtHhiOwutn6bQFWQpIO9 3zbLUt6jHIJyN9TuwaPYamOtlUDhzr6PT2/4MI0q1f92GG401XA79KEJrlGa84bF jCALsjAd1tFOFPyNH4GvyWrpOnbrLfyfDFOOnyQKEp9i5KO5ku8yHL++A5J0yjCX 8hsWQXpP3e3QPM60ORMKh6g2KfzliGbieZQGdO9cbOWLJztI6omVzaH3/NBWXS5L biuLFCOT4biE8uocB4vEY3ZEGtJAuWKTaCR5ywRwauQ= -----END CERTIFICATE-----Generated at Sun Aug 24 07:26:36 2025 by rpki-client