$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/ox50FLZUQO3vBaRb5YjHlHTANYE.roa File: ox50FLZUQO3vBaRb5YjHlHTANYE.roa (raw, json) Hash identifier: agU1k6uUQs3obX02EZlw31Vw/Ind/3zhVqfxcP0ZKCM= Subject key identifier: A3:1E:74:14:B6:54:40:ED:EF:05:A4:5B:E5:88:C7:94:74:C0:35:81 Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Certificate serial: 0F16 Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/ox50FLZUQO3vBaRb5YjHlHTANYE.roa Signing time: Fri 22 Aug 2025 09:03:47 +0000 ROA not before: Fri 22 Aug 2025 09:03:47 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131627 IP address blocks: 61.61.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3862 (0xf16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Validity Not Before: Aug 22 09:03:47 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=A31E7414B65440EDEF05A45BE588C79474C03581 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:07:14:12:bd:0a:3f:c8:ac:02:2b:84:2c:99: 67:de:eb:88:53:bd:a2:31:0c:8f:e4:a6:6f:61:f2: 5d:58:6b:8c:52:d0:bd:68:65:b6:4c:c4:f4:24:3d: 0c:c7:8d:6f:02:8b:f8:65:c5:ab:dc:f7:0a:7f:8a: b5:23:c9:ac:ea:f4:ab:a9:77:b7:36:ce:ec:e6:ff: b7:b2:f1:82:05:72:dd:6b:f4:15:26:99:a8:16:01: ed:5b:87:23:a6:f6:f2:dc:54:c8:2a:02:51:c1:68: df:f2:ea:76:54:cb:60:b3:27:12:a7:2b:54:96:6a: c9:68:ad:bb:26:06:b9:ad:42:6e:c9:ca:b7:3a:10: 67:e4:b3:9d:2a:9c:2e:6a:87:47:6c:22:04:89:63: 24:e4:84:86:d3:44:25:90:b7:18:1e:08:0a:c7:98: ef:11:e7:95:1f:05:5b:9f:a9:50:21:61:22:f6:08: e7:f2:3e:03:57:15:cf:17:e3:b2:ff:06:0f:31:00: 59:bb:dc:aa:f0:ce:9d:3a:cb:38:69:fb:1f:cf:a1: 0a:05:52:47:34:16:25:27:50:6b:6c:14:f3:fc:43: de:bf:02:15:9a:12:c8:aa:40:2c:29:ab:65:68:89: ef:6b:c4:15:4b:cc:c4:87:fc:b3:84:ad:a6:90:f3: c5:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:1E:74:14:B6:54:40:ED:EF:05:A4:5B:E5:88:C7:94:74:C0:35:81 X509v3 Authority Key Identifier: keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/ox50FLZUQO3vBaRb5YjHlHTANYE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.69.0/24 Signature Algorithm: sha256WithRSAEncryption 99:99:da:94:cb:9c:93:7f:38:cd:b2:cb:52:00:4a:ce:ea:c4: 89:9f:61:e4:95:c3:2d:66:69:8b:ec:fb:72:de:44:1d:fd:e9: b5:6b:f5:ec:a9:5c:39:6e:2b:47:dd:0f:9e:f0:07:90:f6:19: 71:b1:07:1a:72:65:26:ef:eb:83:0c:f6:ac:ff:c6:62:f1:ab: 9b:b2:53:f3:3e:06:fe:46:6c:7d:95:fa:b7:5c:36:31:e4:fe: 32:65:e6:1c:a7:8e:b3:ba:fb:b4:0b:62:09:c5:16:b3:69:5a: 87:95:e7:3c:81:ba:7d:63:8d:77:ef:43:ad:56:6d:4c:cd:58: e0:bc:d4:49:c6:fb:a8:0c:ee:f0:0f:0e:01:cf:8b:90:7f:34: 56:ab:6a:26:c6:ba:34:89:07:01:c0:5e:24:46:15:97:b5:30: c0:43:d4:f8:dc:bc:de:71:ad:06:74:3a:4b:f0:b3:94:8f:fb: 65:11:28:48:9d:91:41:72:6e:18:12:2c:89:52:65:14:f2:cd: e3:39:8b:3e:ba:f2:24:15:47:8c:a2:17:99:d1:3c:7e:4b:cc: 31:81:9e:01:9a:cd:63:fe:f7:10:a4:b4:df:d9:d1:67:e1:56: c6:ee:d5:a1:ac:93:ca:d4:29:e7:25:f3:48:69:5d:e4:97:17: 19:0b:ec:87 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDxYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3 MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yNTA4MjIw OTAzNDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEEzMUU3NDE0QjY1NDQw RURFRjA1QTQ1QkU1ODhDNzk0NzRDMDM1ODEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCsBxQSvQo/yKwCK4QsmWfe64hTvaIxDI/kpm9h8l1Ya4xS0L1o ZbZMxPQkPQzHjW8Ci/hlxavc9wp/irUjyazq9Kupd7c2zuzm/7ey8YIFct1r9BUm magWAe1bhyOm9vLcVMgqAlHBaN/y6nZUy2CzJxKnK1SWaslorbsmBrmtQm7Jyrc6 EGfks50qnC5qh0dsIgSJYyTkhIbTRCWQtxgeCArHmO8R55UfBVufqVAhYSL2COfy PgNXFc8X47L/Bg8xAFm73Krwzp06yzhp+x/PoQoFUkc0FiUnUGtsFPP8Q96/AhWa EsiqQCwpq2Voie9rxBVLzMSH/LOEraaQ88UFAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUox50FLZUQO3vBaRb5YjHlHTANYEwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL294NTBGTFpVUU8zdkJhUmI1WWpIbEhU QU5ZRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAA9PUUwDQYJ KoZIhvcNAQELBQADggEBAJmZ2pTLnJN/OM2yy1IASs7qxImfYeSVwy1maYvs+3Le RB396bVr9eypXDluK0fdD57wB5D2GXGxBxpyZSbv64MM9qz/xmLxq5uyU/M+Bv5G bH2V+rdcNjHk/jJl5hynjrO6+7QLYgnFFrNpWoeV5zyBun1jjXfvQ61WbUzNWOC8 1EnG+6gM7vAPDgHPi5B/NFaraibGujSJBwHAXiRGFZe1MMBD1PjcvN5xrQZ0Okvw s5SP+2URKEidkUFybhgSLIlSZRTyzeM5iz668iQVR4yiF5nRPH5LzDGBngGazWP+ 9xCktN/Z0WfhVsbu1aGsk8rUKecl80hpXeSXFxkL7Ic= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:38 2025 by rpki-client