$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/Wc-SGKnE9skvnLLCk-GCzOXxPPw.roa File: Wc-SGKnE9skvnLLCk-GCzOXxPPw.roa (raw, json) Hash identifier: 5YDuPF5G+CLHxJmZ/pClJuvLeJCV3LQmrEYwCXlSo9o= Subject key identifier: 59:CF:92:18:A9:C4:F6:C9:2F:9C:B2:C2:93:E1:82:CC:E5:F1:3C:FC Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Certificate serial: 0F13 Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/Wc-SGKnE9skvnLLCk-GCzOXxPPw.roa Signing time: Fri 22 Aug 2025 09:03:46 +0000 ROA not before: Fri 22 Aug 2025 09:03:46 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9922 IP address blocks: 61.61.4.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3859 (0xf13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Validity Not Before: Aug 22 09:03:46 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=59CF9218A9C4F6C92F9CB2C293E182CCE5F13CFC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:71:f5:a4:8d:31:d2:33:37:8d:ee:bf:91:73: 3b:79:b4:10:ad:d6:38:9c:7a:b8:31:1f:ef:a1:94: c8:95:9a:6b:e2:27:d7:3d:ce:a6:8b:12:b1:04:00: d2:5a:05:5b:bf:01:a7:21:0e:de:83:82:6b:2e:a5: 94:50:62:1c:7d:eb:d4:12:9e:45:c3:b5:f4:9d:d6: cd:c9:e1:a0:82:3a:c1:23:d2:57:7f:b2:a1:a1:bb: 04:11:4a:2e:a5:71:52:f4:f3:b7:ee:4b:6c:e9:47: b9:a7:15:57:e5:32:46:18:c8:a9:cb:a1:ce:bd:2d: 84:de:1b:83:48:fb:ac:68:67:5f:fa:ee:53:68:c7: 2a:3f:97:eb:f9:54:dc:42:8c:08:9d:8d:a5:71:68: e4:83:9b:4b:cc:c2:79:60:50:9b:ba:80:16:e6:c6: 82:ee:e6:32:b8:3e:bd:f5:23:ca:d5:59:e9:3f:93: f1:65:52:e1:2d:ae:5a:98:89:a3:e6:f9:f5:0c:6a: 53:54:15:f6:c1:14:94:e1:14:f5:5d:8c:81:83:80: 34:73:0e:29:bc:2e:ee:ac:ea:76:cf:52:c6:a4:03: 8f:b4:82:84:96:df:45:15:6e:be:7f:d4:c5:c7:d2: a2:d4:38:00:98:da:1a:84:53:ac:8c:67:73:c3:a8: 66:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:CF:92:18:A9:C4:F6:C9:2F:9C:B2:C2:93:E1:82:CC:E5:F1:3C:FC X509v3 Authority Key Identifier: keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/Wc-SGKnE9skvnLLCk-GCzOXxPPw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.4.0/23 Signature Algorithm: sha256WithRSAEncryption 2c:fd:0b:21:35:4e:1f:19:59:90:bf:64:73:0f:7e:77:ed:32: 4d:11:31:e4:62:92:1f:74:0d:15:69:b5:5a:b4:5e:83:cd:fc: 57:a9:56:d1:a3:7b:22:2f:e1:92:29:fb:8f:99:45:85:3c:b9: be:82:5c:12:07:79:71:25:fc:f9:f2:04:fa:c0:f4:2a:f4:a9: c2:5a:f6:02:f8:3f:60:9b:5c:d0:ba:65:02:2d:f9:4a:3f:64: dc:d8:f8:c5:e4:d8:44:f9:d4:dc:f6:5e:53:27:9a:8c:c3:09: b7:6c:62:5b:8e:e5:a5:38:b2:7b:38:cb:c7:6f:19:f7:02:6a: 24:1b:18:72:fa:2c:8d:d6:2c:f8:69:61:75:9f:24:39:e8:1a: 97:b5:3a:86:35:bc:cb:ff:dd:ee:66:6d:5f:d6:9d:a6:43:14: a4:47:38:0d:46:6e:3a:51:03:cf:9d:52:f0:b0:79:3d:cd:56: 4c:4d:30:46:6d:a9:d0:12:0f:17:4b:3c:88:02:d0:fb:3d:b0: 15:c4:68:a3:3d:3b:77:ae:de:aa:2c:8c:8c:f2:6c:0c:3c:41: a8:32:31:08:ce:7c:a4:8d:9f:22:8f:f7:97:91:e3:0a:7f:f9: 56:52:32:d5:bc:dd:eb:6b:49:9d:42:c1:d7:1e:07:79:38:f2: e8:77:a8:81 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDxMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3 MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yNTA4MjIw OTAzNDZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDU5Q0Y5MjE4QTlDNEY2 QzkyRjlDQjJDMjkzRTE4MkNDRTVGMTNDRkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3cfWkjTHSMzeN7r+Rczt5tBCt1jicergxH++hlMiVmmviJ9c9 zqaLErEEANJaBVu/AachDt6DgmsupZRQYhx969QSnkXDtfSd1s3J4aCCOsEj0ld/ sqGhuwQRSi6lcVL087fuS2zpR7mnFVflMkYYyKnLoc69LYTeG4NI+6xoZ1/67lNo xyo/l+v5VNxCjAidjaVxaOSDm0vMwnlgUJu6gBbmxoLu5jK4Pr31I8rVWek/k/Fl UuEtrlqYiaPm+fUMalNUFfbBFJThFPVdjIGDgDRzDim8Lu6s6nbPUsakA4+0goSW 30UVbr5/1MXH0qLUOACY2hqEU6yMZ3PDqGbVAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUWc+SGKnE9skvnLLCk+GCzOXxPPwwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1djLVNHS25FOXNrdm5MTENrLUdDek9Y eFBQdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAE9PQQwDQYJ KoZIhvcNAQELBQADggEBACz9CyE1Th8ZWZC/ZHMPfnftMk0RMeRikh90DRVptVq0 XoPN/FepVtGjeyIv4ZIp+4+ZRYU8ub6CXBIHeXEl/PnyBPrA9Cr0qcJa9gL4P2Cb XNC6ZQIt+Uo/ZNzY+MXk2ET51Nz2XlMnmozDCbdsYluO5aU4sns4y8dvGfcCaiQb GHL6LI3WLPhpYXWfJDnoGpe1OoY1vMv/3e5mbV/WnaZDFKRHOA1GbjpRA8+dUvCw eT3NVkxNMEZtqdASDxdLPIgC0Ps9sBXEaKM9O3eu3qosjIzybAw8QagyMQjOfKSN nyKP95eR4wp/+VZSMtW83etrSZ1CwdceB3k48uh3qIE= -----END CERTIFICATE-----Generated at Sun Aug 24 07:31:57 2025 by rpki-client