$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/aTWPPzAxEgrRAWP65Qmy_f41mME.roa File: aTWPPzAxEgrRAWP65Qmy_f41mME.roa (raw, json) Hash identifier: Q3QluCfp52P+gNZJF0oJncslbjpsjg6omBCxxGa5u1M= Subject key identifier: 69:35:8F:3F:30:31:12:0A:D1:01:63:FA:E5:09:B2:FD:FE:35:98:C1 Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Certificate serial: 0F20 Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/aTWPPzAxEgrRAWP65Qmy_f41mME.roa Signing time: Fri 22 Aug 2025 09:03:49 +0000 ROA not before: Fri 22 Aug 2025 09:03:49 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9919 IP address blocks: 61.61.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3872 (0xf20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Validity Not Before: Aug 22 09:03:49 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=69358F3F3031120AD10163FAE509B2FDFE3598C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:a6:e1:06:8f:13:67:3f:79:b1:05:13:3c:b0: b3:5c:93:b8:04:46:4e:0e:2c:2c:98:ef:86:ba:c3: 59:51:32:d4:65:15:6a:f8:aa:3e:56:67:e1:e1:47: 67:99:71:38:b3:4f:0f:5b:46:e4:17:51:9e:2f:40: 28:ce:9b:ab:95:ef:7c:ee:75:cb:3a:5f:02:5b:e3: b2:d5:dd:21:ae:12:05:94:f3:7d:f6:95:9d:b4:c9: 19:90:7d:f1:7b:fc:1e:bf:dc:73:85:30:09:a7:b9: 08:95:f6:3c:67:1e:83:84:94:20:cd:6b:2e:94:b2: c2:43:ea:06:32:fc:3e:f2:42:2f:89:f4:0a:04:72: 90:b3:e8:ac:6e:64:0b:a3:d4:72:2e:71:f2:72:13: 08:a1:a7:73:96:2b:3d:98:38:ab:8a:d9:64:d3:de: 76:1f:ea:3c:1d:22:92:7a:9c:a6:72:ad:1f:39:9e: 02:a1:03:c9:75:6e:33:7a:cb:db:99:ad:b1:7a:f1: 06:87:3b:bc:35:da:da:ae:91:e0:01:a5:57:b2:72: 1b:90:d9:17:9c:ec:64:97:fb:4e:c4:fa:4c:54:1c: 9f:2a:22:c5:62:18:a3:be:07:11:99:d7:62:97:ae: 39:eb:21:32:e1:78:41:f5:c5:75:13:f8:e6:0d:fc: 86:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:35:8F:3F:30:31:12:0A:D1:01:63:FA:E5:09:B2:FD:FE:35:98:C1 X509v3 Authority Key Identifier: keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/aTWPPzAxEgrRAWP65Qmy_f41mME.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.0.0/17 Signature Algorithm: sha256WithRSAEncryption 50:bd:ce:0b:3f:fb:37:70:e4:40:c9:e9:8d:cb:9c:1b:84:be: 4b:d6:07:e7:f2:2c:91:65:89:97:cd:95:fc:9a:51:70:82:7c: 9d:21:8e:97:24:21:b6:c0:44:41:80:81:b0:a2:69:05:23:d2: 23:84:9b:2e:51:fd:83:30:5c:dd:6d:df:7e:12:ae:d4:04:39: 7e:2b:cc:fe:e3:e8:ee:7c:cb:01:d3:9c:3e:62:fe:83:11:35: 4c:81:27:8c:52:ec:09:20:7a:3f:58:6c:28:77:f6:b1:44:6a: 08:df:44:b6:ec:a6:71:9e:f5:5c:98:da:f1:41:b9:ac:30:77: df:a5:ff:5e:a0:67:eb:43:d1:58:f0:8b:7d:97:7b:28:1c:2d: 9e:3c:45:90:74:bb:51:41:77:1a:db:57:09:cd:39:0f:25:01: 4a:67:7a:ea:24:65:7a:c7:96:08:2b:31:c0:65:fb:67:b6:a4: 5e:89:80:42:12:ce:88:f1:f6:41:5d:7e:d8:db:dc:10:13:3b: 4e:cd:dd:a8:db:fc:b6:62:29:bf:bb:42:68:71:df:51:8f:8d: 5e:a0:95:a0:e0:12:8a:49:91:c7:d3:85:44:0a:5a:7e:c7:f2: 65:c7:9e:d4:0b:f2:aa:8f:c4:62:ad:fd:f7:30:3a:df:9c:04: a9:8d:9e:43 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDyAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3 MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yNTA4MjIw OTAzNDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDY5MzU4RjNGMzAzMTEy MEFEMTAxNjNGQUU1MDlCMkZERkUzNTk4QzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDqpuEGjxNnP3mxBRM8sLNck7gERk4OLCyY74a6w1lRMtRlFWr4 qj5WZ+HhR2eZcTizTw9bRuQXUZ4vQCjOm6uV73zudcs6XwJb47LV3SGuEgWU8332 lZ20yRmQffF7/B6/3HOFMAmnuQiV9jxnHoOElCDNay6UssJD6gYy/D7yQi+J9AoE cpCz6KxuZAuj1HIucfJyEwihp3OWKz2YOKuK2WTT3nYf6jwdIpJ6nKZyrR85ngKh A8l1bjN6y9uZrbF68QaHO7w12tqukeABpVeychuQ2Rec7GSX+07E+kxUHJ8qIsVi GKO+BxGZ12KXrjnrITLheEH1xXUT+OYN/IZdAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUaTWPPzAxEgrRAWP65Qmy/f41mMEwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL2FUV1BQekF4RWdyUkFXUDY1UW15X2Y0 MW1NRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAc9PQAwDQYJ KoZIhvcNAQELBQADggEBAFC9zgs/+zdw5EDJ6Y3LnBuEvkvWB+fyLJFliZfNlfya UXCCfJ0hjpckIbbAREGAgbCiaQUj0iOEmy5R/YMwXN1t334SrtQEOX4rzP7j6O58 ywHTnD5i/oMRNUyBJ4xS7Akgej9YbCh39rFEagjfRLbspnGe9VyY2vFBuawwd9+l /16gZ+tD0Vjwi32XeygcLZ48RZB0u1FBdxrbVwnNOQ8lAUpneuokZXrHlggrMcBl +2e2pF6JgEISzojx9kFdftjb3BATO07N3ajb/LZiKb+7Qmhx31GPjV6glaDgEopJ kcfThUQKWn7H8mXHntQL8qqPxGKt/fcwOt+cBKmNnkM= -----END CERTIFICATE-----Generated at Sun Aug 24 05:34:04 2025 by rpki-client