$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/H74xX_NsmXccxs6sRwY8WlTNDLA.roa File: H74xX_NsmXccxs6sRwY8WlTNDLA.roa (raw, json) Hash identifier: ABjfYjhAyvcy+GyW+rNYwLN7yypCOoNaWZm5x6N4V4k= Subject key identifier: 1F:BE:31:5F:F3:6C:99:77:1C:C6:CE:AC:47:06:3C:5A:54:CD:0C:B0 Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Certificate serial: 0F29 Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/H74xX_NsmXccxs6sRwY8WlTNDLA.roa Signing time: Fri 22 Aug 2025 09:03:51 +0000 ROA not before: Fri 22 Aug 2025 09:03:51 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 54994 IP address blocks: 61.61.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3881 (0xf29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Validity Not Before: Aug 22 09:03:51 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1FBE315FF36C99771CC6CEAC47063C5A54CD0CB0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ac:7c:41:0a:68:75:5f:b7:59:01:7e:30:01: ea:2e:60:cc:b1:29:cb:90:9a:b3:84:1d:17:56:3f: a4:59:44:39:be:db:f1:4a:f6:cb:bf:46:e1:99:a4: d0:82:98:f2:e3:4e:4f:df:24:9b:03:53:31:52:62: 09:26:f5:82:c0:84:38:86:2c:ae:bc:12:82:84:88: bf:4d:86:a7:55:2b:f9:3b:36:af:a4:2e:90:95:e6: fc:4b:eb:a7:05:be:5d:87:70:83:1d:59:3a:34:9b: da:49:3a:a3:d8:be:8a:23:51:25:35:bf:51:55:23: bc:ab:6c:42:b7:f2:5f:94:5a:35:ee:67:23:28:31: b0:4e:c1:56:d3:7f:11:92:85:4a:4f:af:34:18:76: df:75:17:f5:bd:97:3e:ed:3f:63:2b:f9:79:d2:f8: eb:bb:30:54:16:be:70:6a:28:14:04:36:e2:fb:af: bf:96:7a:63:ea:9a:09:b6:80:6f:e3:7d:98:18:bc: 17:62:1f:9a:5f:ec:32:48:0c:c7:2b:1a:3e:d9:fd: 98:6a:24:88:02:18:eb:c2:6c:f4:19:c9:e6:71:2b: 4a:aa:a7:f3:c8:42:cd:53:99:d3:3d:24:3f:ec:08: 72:27:84:73:1f:9e:91:c5:e0:3b:ed:4c:08:66:82: 22:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:BE:31:5F:F3:6C:99:77:1C:C6:CE:AC:47:06:3C:5A:54:CD:0C:B0 X509v3 Authority Key Identifier: keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/H74xX_NsmXccxs6sRwY8WlTNDLA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.69.0/24 Signature Algorithm: sha256WithRSAEncryption 50:ce:3f:b3:e5:96:44:21:8b:d5:e2:d8:1d:ff:f4:0d:3f:b8: 5b:26:6f:9f:79:3c:bc:7f:d0:61:fa:50:74:d0:41:8f:cb:50: a5:cc:c9:f0:a5:ee:cc:bb:39:b4:06:3e:80:b0:83:be:04:7f: ec:9d:f6:b3:a9:7f:56:ed:0a:5f:0e:79:36:0d:3d:28:ea:b0: 61:88:50:20:7d:a0:99:72:a6:8f:1a:fe:c4:4a:ff:fd:10:a2: 6e:16:c3:06:42:c5:24:6e:75:4c:bf:be:f4:99:eb:f4:5c:35: a2:fd:e0:1a:f2:76:4a:28:7b:7c:5a:ca:f1:d6:83:78:f1:d1: c5:c0:14:e7:35:30:42:69:1a:6c:83:73:e7:1d:5d:d1:e5:02: f8:2e:fd:aa:59:13:22:53:65:08:17:f3:9a:80:a9:88:f4:6d: b4:17:f3:2b:ac:95:bc:6a:53:ef:98:fa:86:b2:69:16:77:eb: 0b:f0:dd:02:3b:46:9b:75:be:39:e4:7d:b5:cb:04:39:f7:ea: 7e:10:e2:bf:12:8d:14:01:e5:00:a4:ff:26:cc:9c:2c:f4:d9: 15:0d:e9:09:0d:33:90:9f:dc:54:b0:72:1d:cb:1c:57:61:e6: 80:cc:b8:58:e1:2f:0a:a9:22:f2:84:d9:04:68:95:e4:fb:11: b1:a9:ec:41 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDykwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3 MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yNTA4MjIw OTAzNTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDFGQkUzMTVGRjM2Qzk5 NzcxQ0M2Q0VBQzQ3MDYzQzVBNTRDRDBDQjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8rHxBCmh1X7dZAX4wAeouYMyxKcuQmrOEHRdWP6RZRDm+2/FK 9su/RuGZpNCCmPLjTk/fJJsDUzFSYgkm9YLAhDiGLK68EoKEiL9NhqdVK/k7Nq+k LpCV5vxL66cFvl2HcIMdWTo0m9pJOqPYvoojUSU1v1FVI7yrbEK38l+UWjXuZyMo MbBOwVbTfxGShUpPrzQYdt91F/W9lz7tP2Mr+XnS+Ou7MFQWvnBqKBQENuL7r7+W emPqmgm2gG/jfZgYvBdiH5pf7DJIDMcrGj7Z/ZhqJIgCGOvCbPQZyeZxK0qqp/PI Qs1TmdM9JD/sCHInhHMfnpHF4DvtTAhmgiIVAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUH74xX/NsmXccxs6sRwY8WlTNDLAwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL0g3NHhYX05zbVhjY3hzNnNSd1k4V2xU TkRMQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAA9PUUwDQYJ KoZIhvcNAQELBQADggEBAFDOP7PllkQhi9Xi2B3/9A0/uFsmb595PLx/0GH6UHTQ QY/LUKXMyfCl7sy7ObQGPoCwg74Ef+yd9rOpf1btCl8OeTYNPSjqsGGIUCB9oJly po8a/sRK//0Qom4WwwZCxSRudUy/vvSZ6/RcNaL94Brydkooe3xayvHWg3jx0cXA FOc1MEJpGmyDc+cdXdHlAvgu/apZEyJTZQgX85qAqYj0bbQX8yuslbxqU++Y+oay aRZ36wvw3QI7Rpt1vjnkfbXLBDn36n4Q4r8SjRQB5QCk/ybMnCz02RUN6QkNM5Cf 3FSwch3LHFdh5oDMuFjhLwqpIvKE2QRoleT7EbGp7EE= -----END CERTIFICATE-----Generated at Sun Aug 24 07:33:17 2025 by rpki-client