$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/eVoNxRXOyNLE1Wq0_qKrmliCTdE.roa File: eVoNxRXOyNLE1Wq0_qKrmliCTdE.roa (raw, json) Hash identifier: R7Y6IUVZJ/K9SVaakvxclpsSgmlDEhMN9fV1snb4YlA= Subject key identifier: 79:5A:0D:C5:15:CE:C8:D2:C4:D5:6A:B4:FE:A2:AB:9A:58:82:4D:D1 Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Certificate serial: 0F09 Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/eVoNxRXOyNLE1Wq0_qKrmliCTdE.roa Signing time: Fri 22 Aug 2025 09:03:45 +0000 ROA not before: Fri 22 Aug 2025 09:03:45 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18049 IP address blocks: 211.78.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3849 (0xf09) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Validity Not Before: Aug 22 09:03:45 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=795A0DC515CEC8D2C4D56AB4FEA2AB9A58824DD1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:d8:92:bc:1b:c9:83:37:64:05:cb:1b:89:38: 80:21:b0:08:99:9a:b7:3b:f8:b0:fd:01:90:1e:68: 86:9f:a6:8e:51:d1:6c:20:25:40:a1:c7:83:5d:da: c5:08:24:f4:b6:1c:a9:56:81:5c:82:b8:fc:4d:49: fb:1b:7c:81:66:2e:be:95:0d:eb:18:9e:c8:37:f7: 20:7e:21:e0:2a:f4:98:51:14:03:09:6d:40:a8:5c: a2:c1:87:96:c4:68:d1:93:4f:7f:9f:f8:fb:b9:b1: c2:7a:cc:b7:2d:e1:5a:64:8f:18:2f:33:6b:33:ff: c0:49:29:b5:b8:80:0d:43:0d:a3:7b:9a:c9:02:65: f8:a6:20:ed:e9:65:b4:77:f2:31:1e:c7:c4:b2:56: 2e:28:48:a8:b6:ff:22:36:9b:92:51:76:53:60:2f: 1c:ef:ad:c5:80:27:d9:3d:6e:10:c9:e3:40:3d:b3: 12:ab:bf:79:cd:9c:7a:d8:de:d0:d3:ef:f4:82:19: 7b:1c:26:6a:39:33:3c:d4:ce:b8:84:b3:13:52:8e: 95:8e:c9:c0:97:8c:6e:3a:fd:93:ee:7c:c3:10:e5: ed:28:4b:9c:48:06:13:10:79:72:ca:a4:d0:84:2c: c4:93:fb:d0:9b:02:88:d9:3c:8d:df:21:b0:e3:65: f7:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:5A:0D:C5:15:CE:C8:D2:C4:D5:6A:B4:FE:A2:AB:9A:58:82:4D:D1 X509v3 Authority Key Identifier: keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/eVoNxRXOyNLE1Wq0_qKrmliCTdE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.78.32.0/19 Signature Algorithm: sha256WithRSAEncryption 47:af:1b:9d:ef:28:c1:93:02:69:75:2f:f7:7c:69:e6:d3:3d: 19:ad:60:0a:2d:47:4e:94:56:39:2c:a9:35:3d:9e:08:fd:cf: e4:9d:40:c1:6a:e2:90:b3:74:64:e7:95:ff:d9:cb:5f:13:33: 4f:4c:3c:c1:3c:a3:bc:27:b7:38:c6:64:ff:16:4a:45:b7:ae: d3:a7:97:48:e4:ec:5f:5c:17:d5:2e:48:19:da:89:3b:2f:62: 60:e3:68:da:8b:bf:a4:20:0a:5f:97:50:26:b0:50:5e:a5:7d: 70:ac:0f:ff:89:db:07:6b:b2:37:e4:93:57:54:e9:f8:a8:7d: 9b:c8:83:41:53:76:ef:a8:0b:56:2b:e6:66:d5:c8:2a:14:d9: 22:37:70:f7:fa:b9:44:4b:57:42:49:f3:75:95:d9:ae:b4:c5: 85:d3:8e:85:84:52:18:dd:cd:65:a6:28:94:6b:6a:0d:f4:cd: 30:39:0e:b8:a7:ab:9a:c3:e9:f1:9d:72:6f:e1:f7:22:b9:13: d3:fd:c5:9a:39:53:53:51:ec:d2:b3:73:bd:1b:0c:ac:f2:40: 06:e9:97:d2:e8:c5:39:da:b9:77:29:f8:eb:1e:e2:3e:53:e7: 55:5a:05:2c:b0:5a:83:4d:1b:15:93:bf:e6:22:f5:4f:23:b9: 55:32:b1:85 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDwkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3 MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yNTA4MjIw OTAzNDVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDc5NUEwREM1MTVDRUM4 RDJDNEQ1NkFCNEZFQTJBQjlBNTg4MjRERDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCd2JK8G8mDN2QFyxuJOIAhsAiZmrc7+LD9AZAeaIafpo5R0Wwg JUChx4Nd2sUIJPS2HKlWgVyCuPxNSfsbfIFmLr6VDesYnsg39yB+IeAq9JhRFAMJ bUCoXKLBh5bEaNGTT3+f+Pu5scJ6zLct4VpkjxgvM2sz/8BJKbW4gA1DDaN7mskC ZfimIO3pZbR38jEex8SyVi4oSKi2/yI2m5JRdlNgLxzvrcWAJ9k9bhDJ40A9sxKr v3nNnHrY3tDT7/SCGXscJmo5MzzUzriEsxNSjpWOycCXjG46/ZPufMMQ5e0oS5xI BhMQeXLKpNCELMST+9CbAojZPI3fIbDjZfcpAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUeVoNxRXOyNLE1Wq0/qKrmliCTdEwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL2VWb054UlhPeU5MRTFXcTBfcUtybWxp Q1RkRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXTTiAwDQYJ KoZIhvcNAQELBQADggEBAEevG53vKMGTAml1L/d8aebTPRmtYAotR06UVjksqTU9 ngj9z+SdQMFq4pCzdGTnlf/Zy18TM09MPME8o7wntzjGZP8WSkW3rtOnl0jk7F9c F9UuSBnaiTsvYmDjaNqLv6QgCl+XUCawUF6lfXCsD/+J2wdrsjfkk1dU6fiofZvI g0FTdu+oC1Yr5mbVyCoU2SI3cPf6uURLV0JJ83WV2a60xYXTjoWEUhjdzWWmKJRr ag30zTA5Drinq5rD6fGdcm/h9yK5E9P9xZo5U1NR7NKzc70bDKzyQAbpl9LoxTna uXcp+Ose4j5T51VaBSywWoNNGxWTv+Yi9U8juVUysYU= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:26 2025 by rpki-client