$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/dIHdnEdMkm5ppbp2CZlnDYIAmaI.roa File: dIHdnEdMkm5ppbp2CZlnDYIAmaI.roa (raw, json) Hash identifier: TpCBdo6NU32N4YbrNJf7uYPbbkY1CxwCVQl67QIX/YA= Subject key identifier: 74:81:DD:9C:47:4C:92:6E:69:A5:BA:76:09:99:67:0D:82:00:99:A2 Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Certificate serial: 0F1A Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/dIHdnEdMkm5ppbp2CZlnDYIAmaI.roa Signing time: Fri 22 Aug 2025 09:03:47 +0000 ROA not before: Fri 22 Aug 2025 09:03:47 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4780 IP address blocks: 61.61.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3866 (0xf1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Validity Not Before: Aug 22 09:03:47 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7481DD9C474C926E69A5BA760999670D820099A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:81:de:2c:fe:49:2b:5f:23:98:18:6a:d5:a3: 60:07:a3:ca:e2:f4:51:4c:04:8b:1d:16:21:a0:27: 2b:62:96:e9:54:dc:d8:b6:8d:7b:f5:f7:a5:94:3d: 5f:1f:f2:61:ca:02:be:94:ef:02:65:70:de:05:c8: e0:66:19:e0:1f:f0:0a:dd:df:81:a6:75:65:09:09: 70:61:0c:cd:ba:36:d9:5f:c9:d4:76:b6:d0:11:94: cc:ad:10:de:83:74:65:4e:68:79:b5:7c:00:37:aa: e4:2c:54:88:86:19:8c:79:b6:63:e4:ed:ed:59:1f: 40:50:4b:c4:6f:31:c7:e1:fb:b2:69:5f:db:14:79: fb:b3:2b:8e:5b:dc:11:6f:48:92:43:c7:18:fb:da: 01:7d:f2:2c:8e:87:28:12:4e:ff:89:14:7b:14:ff: 63:4b:47:f9:6c:36:8f:50:36:3d:75:88:96:c0:07: 60:ce:aa:b0:21:df:99:89:0c:08:b1:50:0c:2e:0b: 0e:00:f8:e9:04:13:71:ac:c7:c4:bc:dd:f3:bd:93: 45:45:70:f3:c5:83:e2:ae:ac:51:50:0d:36:43:69: 48:ce:da:a8:7f:67:ce:bb:13:16:98:b7:9f:01:2d: 19:91:4f:5d:7d:eb:fc:ef:be:90:c8:49:64:bc:c4: 0f:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:81:DD:9C:47:4C:92:6E:69:A5:BA:76:09:99:67:0D:82:00:99:A2 X509v3 Authority Key Identifier: keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/dIHdnEdMkm5ppbp2CZlnDYIAmaI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.128.0/18 Signature Algorithm: sha256WithRSAEncryption 75:c6:24:74:87:0c:b0:a5:a8:dc:94:b5:11:bd:8d:c6:ac:a0: cc:9e:8f:f8:8d:c8:f2:ad:0d:7c:c8:01:09:cf:4e:72:5a:0f: 49:47:a9:77:4a:e9:39:5f:72:7a:b5:85:d2:17:03:d3:b1:dd: dd:dc:7a:72:cc:a9:80:75:97:8a:d8:d6:29:0d:ce:23:fc:34: dd:ca:91:18:56:9e:4b:82:0f:f8:c4:fa:84:54:5b:54:12:31: 31:d4:10:c7:65:a7:72:00:3f:63:9d:08:91:f4:be:78:33:3c: e7:8a:de:a0:9b:d8:e9:01:cb:62:78:7a:1d:79:96:e5:50:b3: 2a:21:93:62:a8:b6:75:a9:bc:b4:01:5d:4b:88:18:db:32:87: 4d:9a:c5:d7:5a:ff:96:41:2f:ee:b1:61:e9:67:f0:82:6d:37: 52:ec:4b:e2:f9:ec:aa:fd:85:05:f6:5d:42:63:42:f5:2a:b2: d5:4d:14:e9:25:6f:6b:ec:7c:da:ab:ae:51:5c:97:68:88:8b: 6b:61:9f:79:8f:2c:3b:44:86:ef:6c:eb:c3:5f:5f:87:b7:04: c9:bd:e1:dc:15:5e:77:94:80:df:13:b3:8f:e7:4f:06:85:4e: c0:c4:43:d8:3a:32:13:99:2d:01:99:41:dd:6b:31:91:2f:98: 40:6a:c6:15 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDxowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3 MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yNTA4MjIw OTAzNDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDc0ODFERDlDNDc0Qzky NkU2OUE1QkE3NjA5OTk2NzBEODIwMDk5QTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmgd4s/kkrXyOYGGrVo2AHo8ri9FFMBIsdFiGgJytilulU3Ni2 jXv196WUPV8f8mHKAr6U7wJlcN4FyOBmGeAf8Ard34GmdWUJCXBhDM26NtlfydR2 ttARlMytEN6DdGVOaHm1fAA3quQsVIiGGYx5tmPk7e1ZH0BQS8RvMcfh+7JpX9sU efuzK45b3BFvSJJDxxj72gF98iyOhygSTv+JFHsU/2NLR/lsNo9QNj11iJbAB2DO qrAh35mJDAixUAwuCw4A+OkEE3Gsx8S83fO9k0VFcPPFg+KurFFQDTZDaUjO2qh/ Z867ExaYt58BLRmRT1196/zvvpDISWS8xA8FAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUdIHdnEdMkm5ppbp2CZlnDYIAmaIwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL2RJSGRuRWRNa201cHBicDJDWmxuRFlJ QW1hSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAY9PYAwDQYJ KoZIhvcNAQELBQADggEBAHXGJHSHDLClqNyUtRG9jcasoMyej/iNyPKtDXzIAQnP TnJaD0lHqXdK6Tlfcnq1hdIXA9Ox3d3cenLMqYB1l4rY1ikNziP8NN3KkRhWnkuC D/jE+oRUW1QSMTHUEMdlp3IAP2OdCJH0vngzPOeK3qCb2OkBy2J4eh15luVQsyoh k2KotnWpvLQBXUuIGNsyh02axdda/5ZBL+6xYeln8IJtN1LsS+L57Kr9hQX2XUJj QvUqstVNFOklb2vsfNqrrlFcl2iIi2thn3mPLDtEhu9s68NfX4e3BMm94dwVXneU gN8Ts4/nTwaFTsDEQ9g6MhOZLQGZQd1rMZEvmEBqxhU= -----END CERTIFICATE-----Generated at Sun Aug 24 07:28:22 2025 by rpki-client