$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/jYIcgCr4YL87GoXXiBIkvQpozBk.roa File: jYIcgCr4YL87GoXXiBIkvQpozBk.roa (raw, json) Hash identifier: IEKUuDH4wRGMOLqoB2RttH1qIOWv393PnDg5k5Nuh4U= Subject key identifier: 8D:82:1C:80:2A:F8:60:BF:3B:1A:85:D7:88:12:24:BD:0A:68:CC:19 Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Certificate serial: 0F0B Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/jYIcgCr4YL87GoXXiBIkvQpozBk.roa Signing time: Fri 22 Aug 2025 09:03:45 +0000 ROA not before: Fri 22 Aug 2025 09:03:45 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18049 IP address blocks: 61.61.60.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3851 (0xf0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Validity Not Before: Aug 22 09:03:45 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8D821C802AF860BF3B1A85D7881224BD0A68CC19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:51:21:fc:27:c7:48:05:da:3e:a2:05:b8:35: 91:4c:94:83:a6:50:49:d7:59:c1:fe:67:fb:b3:d1: 62:f5:8f:95:6e:25:e8:b1:a8:16:0e:35:e6:ce:44: d3:4d:27:de:e4:0c:a5:9a:54:0f:77:14:e3:3b:0e: a7:25:03:71:2d:ca:4e:d0:15:b3:d5:bf:81:33:68: 9e:90:5e:9d:d3:ec:e8:c5:86:fb:3d:c2:18:39:76: 53:b3:7e:74:8f:9c:36:ee:96:97:be:36:d1:b8:0f: 18:5d:36:1e:a5:12:7a:8a:be:aa:51:f6:b9:b3:23: e7:14:30:68:af:14:92:c3:de:ab:08:2d:56:fd:1b: a2:cc:42:e3:a1:47:7a:74:8e:43:eb:98:cf:4d:ce: 2a:76:9c:16:44:3b:67:4c:e7:ab:9e:19:51:5a:0b: d0:7e:a4:da:49:a9:eb:6a:82:82:81:94:47:02:4d: c2:5f:74:0c:45:9e:28:4b:dd:2c:82:df:f6:55:33: 59:5c:ec:6e:49:c8:ce:54:c4:6c:7c:41:c2:09:ef: 0a:12:4b:41:4e:ff:44:59:25:0f:92:be:e5:e9:f4: 65:7d:e2:0a:21:9e:61:8c:24:14:7e:9c:1d:0c:cf: a0:40:21:3a:62:2f:91:38:ba:c5:8f:53:c0:a5:a7: cd:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:82:1C:80:2A:F8:60:BF:3B:1A:85:D7:88:12:24:BD:0A:68:CC:19 X509v3 Authority Key Identifier: keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/jYIcgCr4YL87GoXXiBIkvQpozBk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.60.0/22 Signature Algorithm: sha256WithRSAEncryption 39:09:a8:0f:09:bb:1a:4c:30:13:44:88:4c:e7:6c:21:34:20: 6c:60:fc:c8:2f:0c:c2:5a:b9:8c:0a:46:6f:5f:5e:b1:fd:89: f1:56:d8:1d:29:ec:28:b3:40:5b:4a:02:26:a6:0c:67:4f:72: eb:fd:22:9a:c0:cc:af:cb:b8:e5:39:60:e0:83:19:3f:c0:74: a6:cd:aa:87:d9:86:97:b7:74:83:25:b3:a3:54:e9:02:2e:da: dc:d9:fa:e0:7b:1c:7a:b8:a8:a8:a2:5c:d2:47:3f:a4:f7:ad: cd:5f:3b:21:02:57:77:21:52:8c:cc:38:09:b9:8c:0e:57:41: 2c:9f:76:52:b1:8c:b0:d0:0a:00:de:f3:08:46:8d:83:a9:28: f3:64:7b:12:4b:66:00:3a:e0:4e:35:1d:53:b9:c4:b2:7a:92: eb:b8:0d:97:e2:46:cd:83:6c:8b:f6:8e:bf:7f:37:50:cd:55: c9:cf:aa:43:55:76:07:44:e7:a9:2d:8a:9b:d6:04:9f:fb:68: 00:86:e7:e9:d7:0d:d2:67:4c:65:ad:66:1d:b9:14:ae:33:be: c0:4c:7d:21:43:11:79:6b:6b:17:00:4e:20:c4:e4:ef:a7:7a: aa:9f:60:a6:3f:25:40:60:7f:dc:57:93:47:7f:9e:cb:2a:2c: 33:42:79:7c -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDwswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3 MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yNTA4MjIw OTAzNDVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDhEODIxQzgwMkFGODYw QkYzQjFBODVENzg4MTIyNEJEMEE2OENDMTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPUSH8J8dIBdo+ogW4NZFMlIOmUEnXWcH+Z/uz0WL1j5VuJeix qBYONebORNNNJ97kDKWaVA93FOM7DqclA3Etyk7QFbPVv4EzaJ6QXp3T7OjFhvs9 whg5dlOzfnSPnDbulpe+NtG4DxhdNh6lEnqKvqpR9rmzI+cUMGivFJLD3qsILVb9 G6LMQuOhR3p0jkPrmM9Nzip2nBZEO2dM56ueGVFaC9B+pNpJqetqgoKBlEcCTcJf dAxFnihL3SyC3/ZVM1lc7G5JyM5UxGx8QcIJ7woSS0FO/0RZJQ+SvuXp9GV94goh nmGMJBR+nB0Mz6BAITpiL5E4usWPU8Clp81BAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUjYIcgCr4YL87GoXXiBIkvQpozBkwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL2pZSWNnQ3I0WUw4N0dvWFhpQklrdlFw b3pCay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAI9PTwwDQYJ KoZIhvcNAQELBQADggEBADkJqA8JuxpMMBNEiEznbCE0IGxg/MgvDMJauYwKRm9f XrH9ifFW2B0p7CizQFtKAiamDGdPcuv9IprAzK/LuOU5YOCDGT/AdKbNqofZhpe3 dIMls6NU6QIu2tzZ+uB7HHq4qKiiXNJHP6T3rc1fOyECV3chUozMOAm5jA5XQSyf dlKxjLDQCgDe8whGjYOpKPNkexJLZgA64E41HVO5xLJ6kuu4DZfiRs2DbIv2jr9/ N1DNVcnPqkNVdgdE56ktipvWBJ/7aACG5+nXDdJnTGWtZh25FK4zvsBMfSFDEXlr axcATiDE5O+neqqfYKY/JUBgf9xXk0d/nssqLDNCeXw= -----END CERTIFICATE-----Generated at Sun Aug 24 07:31:58 2025 by rpki-client