$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/s4m62x9fbH36PBwYlxUd6nfDUso.roa File: s4m62x9fbH36PBwYlxUd6nfDUso.roa (raw, json) Hash identifier: HPWPGsRqBklg8wpx4A8Tx3z4kAhB8PEewyxxpU3B37Y= Subject key identifier: B3:89:BA:DB:1F:5F:6C:7D:FA:3C:1C:18:97:15:1D:EA:77:C3:52:CA Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Certificate serial: 0F19 Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/s4m62x9fbH36PBwYlxUd6nfDUso.roa Signing time: Fri 22 Aug 2025 09:03:47 +0000 ROA not before: Fri 22 Aug 2025 09:03:47 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9919 IP address blocks: 61.61.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3865 (0xf19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Validity Not Before: Aug 22 09:03:47 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B389BADB1F5F6C7DFA3C1C1897151DEA77C352CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:eb:e2:b4:d9:d1:da:df:51:33:18:db:db:54: e6:f8:c9:f8:7e:d3:d9:18:26:57:7e:82:fa:56:15: eb:54:12:38:04:7e:ca:e3:a4:e0:30:d3:6c:c0:bf: ba:a9:d1:f1:85:8f:c7:07:5c:f7:1b:3a:bf:8d:7c: 8a:7a:41:cf:c7:a1:48:e2:7c:79:97:43:01:d2:ee: 52:b2:d9:60:1b:6f:5b:48:01:37:bd:14:39:07:59: 39:da:ea:4e:3b:2d:9b:bb:e7:43:09:26:da:a7:f2: ca:eb:cf:61:f4:6f:a3:72:4d:d1:aa:9b:0b:b2:2b: f5:f1:50:72:ea:5a:6a:ae:fd:8e:88:65:fe:8c:12: 44:2e:dd:e3:08:59:7f:85:cc:d5:24:d2:ed:d7:38: d7:10:2b:fa:cc:de:f6:19:1d:12:17:ed:e1:89:f7: c9:9e:1d:b6:c6:bd:58:20:68:2d:31:39:70:b4:37: 70:5b:23:f4:2c:13:6e:40:d0:bd:65:a0:7f:d4:a0: 20:7e:96:6c:cd:16:9f:a2:08:3f:b4:c0:2b:93:c8: 58:60:88:41:81:43:38:25:72:db:38:93:54:30:17: 8f:68:d0:0a:3d:37:02:f1:99:a6:50:f4:4b:60:51: 8f:ac:f6:ad:a4:d3:f3:52:d0:b1:99:c0:79:6c:5e: 70:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:89:BA:DB:1F:5F:6C:7D:FA:3C:1C:18:97:15:1D:EA:77:C3:52:CA X509v3 Authority Key Identifier: keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/s4m62x9fbH36PBwYlxUd6nfDUso.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.128.0/18 Signature Algorithm: sha256WithRSAEncryption 94:5f:b8:a3:82:cb:e7:3d:fb:84:61:3d:e0:f6:bd:40:e8:65: 1f:a2:6c:9e:a4:ec:05:9f:bc:c4:ab:fc:6b:65:79:05:f5:79: 8f:1f:4d:5d:25:6f:64:e6:85:9b:70:6d:7c:1f:db:ba:e7:f0: 76:44:1a:e3:fb:df:6c:e5:81:18:15:ca:00:37:72:36:45:2a: de:bb:3f:c5:a7:fd:f4:15:a4:31:b7:bc:dc:11:d5:ac:18:f1: 85:cc:a4:85:4d:f6:46:6a:a2:e6:60:5d:fa:29:ff:a8:4f:38: 83:c8:d5:e3:50:13:ff:7b:6c:ad:ed:1a:9b:d4:12:d5:de:27: 6b:04:ac:d4:99:ff:12:55:e0:45:10:ea:b4:4e:0f:bd:70:54: fa:a4:4b:9b:d1:93:60:d2:35:8a:d1:86:5f:6a:6a:b0:82:87: fc:86:04:ff:fa:de:fd:dc:dc:1e:3b:a8:74:c5:a4:1d:e1:26: 45:7c:7f:5a:76:d5:ac:92:a0:2c:59:14:54:02:ea:aa:39:ca: 75:9e:84:1d:5c:ee:97:49:1a:a4:42:28:49:52:8e:81:99:8f: 95:c0:6e:6b:bc:8e:34:5f:4f:cc:94:a2:15:58:12:6b:81:8b: 18:97:d8:95:8e:58:ab:5d:b3:c4:7e:c4:e2:e4:61:81:47:bc: 4e:31:b3:c2 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDxkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3 MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yNTA4MjIw OTAzNDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEIzODlCQURCMUY1RjZD N0RGQTNDMUMxODk3MTUxREVBNzdDMzUyQ0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCl6+K02dHa31EzGNvbVOb4yfh+09kYJld+gvpWFetUEjgEfsrj pOAw02zAv7qp0fGFj8cHXPcbOr+NfIp6Qc/HoUjifHmXQwHS7lKy2WAbb1tIATe9 FDkHWTna6k47LZu750MJJtqn8srrz2H0b6NyTdGqmwuyK/XxUHLqWmqu/Y6IZf6M EkQu3eMIWX+FzNUk0u3XONcQK/rM3vYZHRIX7eGJ98meHbbGvVggaC0xOXC0N3Bb I/QsE25A0L1loH/UoCB+lmzNFp+iCD+0wCuTyFhgiEGBQzglcts4k1QwF49o0Ao9 NwLxmaZQ9EtgUY+s9q2k0/NS0LGZwHlsXnAfAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUs4m62x9fbH36PBwYlxUd6nfDUsowHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL3M0bTYyeDlmYkgzNlBCd1lseFVkNm5m RFVzby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAY9PYAwDQYJ KoZIhvcNAQELBQADggEBAJRfuKOCy+c9+4RhPeD2vUDoZR+ibJ6k7AWfvMSr/Gtl eQX1eY8fTV0lb2TmhZtwbXwf27rn8HZEGuP732zlgRgVygA3cjZFKt67P8Wn/fQV pDG3vNwR1awY8YXMpIVN9kZqouZgXfop/6hPOIPI1eNQE/97bK3tGpvUEtXeJ2sE rNSZ/xJV4EUQ6rROD71wVPqkS5vRk2DSNYrRhl9qarCCh/yGBP/63v3c3B47qHTF pB3hJkV8f1p21aySoCxZFFQC6qo5ynWehB1c7pdJGqRCKElSjoGZj5XAbmu8jjRf T8yUohVYEmuBixiX2JWOWKtds8R+xOLkYYFHvE4xs8I= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:25 2025 by rpki-client