$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/jml1W8V-JWrUMYEfD4LoD6fnLyk.roa File: jml1W8V-JWrUMYEfD4LoD6fnLyk.roa (raw, json) Hash identifier: vEFrklYGbdqTvx5INNvsxRaXYYoWxyPGw3wOeOwNVws= Subject key identifier: 8E:69:75:5B:C5:7E:25:6A:D4:31:81:1F:0F:82:E8:0F:A7:E7:2F:29 Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Certificate serial: 0F12 Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/jml1W8V-JWrUMYEfD4LoD6fnLyk.roa Signing time: Fri 22 Aug 2025 09:03:46 +0000 ROA not before: Fri 22 Aug 2025 09:03:46 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9918 IP address blocks: 211.78.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3858 (0xf12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Validity Not Before: Aug 22 09:03:46 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8E69755BC57E256AD431811F0F82E80FA7E72F29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ab:1d:ca:38:42:42:9e:d3:74:bc:f5:f0:36: 2c:f1:e8:8f:e8:5f:ff:9b:29:f8:d2:1f:f4:db:31: 1a:f1:e2:eb:da:87:4a:df:5a:32:59:1d:2d:67:9b: 7c:1b:60:c5:bd:cf:c1:39:25:16:a8:4f:71:9e:0d: 41:bd:37:97:ff:45:af:05:0c:99:42:35:09:5d:51: 2f:e5:72:52:8a:18:69:2d:57:e3:68:cb:88:81:f9: 93:1c:78:ec:30:fe:7a:45:02:03:4b:a3:aa:33:ca: 20:c3:e1:6f:3d:a6:a6:34:60:20:08:81:c5:71:16: 07:ef:b0:f1:70:09:fa:ce:f0:c6:34:bc:a5:7b:b5: 8e:d1:31:0e:d3:2f:a8:1c:a1:92:b4:b7:34:61:d8: 92:5f:63:89:33:67:4f:95:57:88:65:54:82:0e:08: 50:6c:79:b8:3e:15:e2:56:86:e0:0a:45:6d:36:0f: 4f:74:cf:ee:6f:6b:08:dc:6c:85:24:af:e8:cb:c3: 44:d4:d5:2d:80:7e:32:c2:01:2c:d4:14:28:7c:90: 7f:c3:9f:b5:7a:75:b6:46:40:c4:12:c6:de:c6:e2: 34:6d:61:87:14:8d:f3:30:3a:aa:21:69:27:2e:f1: ee:b2:76:76:1a:3c:a3:a2:3e:cf:b2:a2:a9:4b:58: 8e:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:69:75:5B:C5:7E:25:6A:D4:31:81:1F:0F:82:E8:0F:A7:E7:2F:29 X509v3 Authority Key Identifier: keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/jml1W8V-JWrUMYEfD4LoD6fnLyk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.78.0.0/18 Signature Algorithm: sha256WithRSAEncryption 84:3e:1b:f9:d0:2a:3b:b5:e7:f5:46:df:70:61:9b:fe:a3:a1: 58:f2:51:aa:c8:cb:49:ef:a8:85:87:13:e9:a5:f9:00:e2:65: d7:9b:72:24:09:93:dc:e9:f5:b2:ac:f1:0b:b7:2d:9c:10:a6: ce:58:0e:29:20:ea:8e:eb:c1:0a:49:0a:38:8f:92:0c:79:42: db:bd:5e:4f:16:bb:cf:6b:d3:e5:f0:6d:b1:1f:71:ef:ce:30: ae:7d:68:99:77:9f:10:33:81:76:0b:92:39:39:de:22:b4:3a: f6:d9:9b:74:98:37:56:dd:06:2e:fe:c5:40:80:5f:f3:20:85: 1f:ef:9e:d2:58:bb:e8:05:71:c3:63:f1:ac:7b:3f:60:54:a5: c6:17:8a:26:56:ad:e8:60:3f:40:c1:89:6f:5a:4f:38:de:f9: 0a:c0:5b:09:66:9f:e4:e9:ec:36:9f:49:d0:63:31:2e:9e:d1: 4d:d6:f9:92:26:6d:44:68:30:e2:ac:06:99:43:1d:22:c0:ac: 30:2c:6a:a3:f1:fb:54:fd:94:83:15:b7:02:fd:62:e3:37:e9: 90:02:1d:1d:b8:d2:1d:7f:bb:30:37:c6:ae:27:e8:e1:b7:5b: e1:0a:c3:c3:b9:e3:fa:93:75:28:0c:4d:2d:21:33:e3:04:b5: 34:08:6c:52 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDxIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3 MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yNTA4MjIw OTAzNDZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDhFNjk3NTVCQzU3RTI1 NkFENDMxODExRjBGODJFODBGQTdFNzJGMjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqqx3KOEJCntN0vPXwNizx6I/oX/+bKfjSH/TbMRrx4uvah0rf WjJZHS1nm3wbYMW9z8E5JRaoT3GeDUG9N5f/Ra8FDJlCNQldUS/lclKKGGktV+No y4iB+ZMceOww/npFAgNLo6ozyiDD4W89pqY0YCAIgcVxFgfvsPFwCfrO8MY0vKV7 tY7RMQ7TL6gcoZK0tzRh2JJfY4kzZ0+VV4hlVIIOCFBsebg+FeJWhuAKRW02D090 z+5vawjcbIUkr+jLw0TU1S2AfjLCASzUFCh8kH/Dn7V6dbZGQMQSxt7G4jRtYYcU jfMwOqohaScu8e6ydnYaPKOiPs+yoqlLWI4vAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUjml1W8V+JWrUMYEfD4LoD6fnLykwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL2ptbDFXOFYtSldyVU1ZRWZENExvRDZm bkx5ay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbTTgAwDQYJ KoZIhvcNAQELBQADggEBAIQ+G/nQKju15/VG33Bhm/6joVjyUarIy0nvqIWHE+ml +QDiZdebciQJk9zp9bKs8Qu3LZwQps5YDikg6o7rwQpJCjiPkgx5Qtu9Xk8Wu89r 0+XwbbEfce/OMK59aJl3nxAzgXYLkjk53iK0OvbZm3SYN1bdBi7+xUCAX/MghR/v ntJYu+gFccNj8ax7P2BUpcYXiiZWrehgP0DBiW9aTzje+QrAWwlmn+Tp7DafSdBj MS6e0U3W+ZImbURoMOKsBplDHSLArDAsaqPx+1T9lIMVtwL9YuM36ZACHR240h1/ uzA3xq4n6OG3W+EKw8O54/qTdSgMTS0hM+MEtTQIbFI= -----END CERTIFICATE-----Generated at Sun Aug 24 07:24:13 2025 by rpki-client