$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/s6ErXl-J3txucuDJhgDQVokBV50.roa File: s6ErXl-J3txucuDJhgDQVokBV50.roa (raw, json) Hash identifier: o40QoKtRm7P+B/kIUz0Q4dv/ng0eEaefe70HpbPmkPc= Subject key identifier: B3:A1:2B:5E:5F:89:DE:DC:6E:72:E0:C9:86:00:D0:56:89:01:57:9D Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Certificate serial: 0F0F Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/s6ErXl-J3txucuDJhgDQVokBV50.roa Signing time: Fri 22 Aug 2025 09:03:45 +0000 ROA not before: Fri 22 Aug 2025 09:03:45 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18049 IP address blocks: 61.61.44.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3855 (0xf0f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Validity Not Before: Aug 22 09:03:45 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B3A12B5E5F89DEDC6E72E0C98600D0568901579D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:69:0c:ed:30:a3:10:c0:46:b7:28:be:c3:bc: 96:22:e9:13:ae:57:87:3c:fc:e2:a2:f8:83:f0:06: 6f:65:55:f7:0a:e5:ca:55:94:30:9d:02:d0:f9:02: 22:63:3d:f3:5b:99:fb:db:f3:c7:8d:96:21:1b:de: 85:b4:16:a9:8b:b5:4a:55:e6:f4:38:97:46:eb:02: c9:0b:af:0a:58:0d:ad:e7:de:84:ac:2f:45:e7:6e: 6f:94:7c:48:c3:ce:4c:d8:9c:c6:d9:af:2e:db:90: 8d:ce:92:7b:27:59:c3:9d:8d:07:d1:d9:38:b4:74: ae:19:e7:28:c0:b8:69:55:75:b9:2c:30:21:df:82: ce:36:41:38:77:4d:f3:71:69:b3:79:97:4e:d7:bf: e5:62:d3:9e:f9:99:3b:8e:85:f8:75:90:d0:dd:6d: 71:de:09:5d:45:81:7a:4f:5e:c1:01:8b:1f:be:bb: 0a:85:27:4a:60:52:4d:76:75:78:84:25:a3:02:de: 61:84:d4:30:cb:91:0b:7d:95:b3:6d:6b:dd:f2:f9: e9:e8:d5:d2:7f:bb:b1:37:dd:98:d5:3e:80:3c:ce: 61:62:bd:5c:c8:5c:25:fd:20:37:1e:65:57:4b:3a: 12:e5:54:8e:06:91:9f:d9:b9:0e:79:55:e9:a6:7f: d9:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:A1:2B:5E:5F:89:DE:DC:6E:72:E0:C9:86:00:D0:56:89:01:57:9D X509v3 Authority Key Identifier: keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/s6ErXl-J3txucuDJhgDQVokBV50.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.44.0/22 Signature Algorithm: sha256WithRSAEncryption 41:07:c7:c9:cf:57:0d:85:6a:17:f5:0c:23:bb:e0:d0:68:76: 48:2b:e9:f3:a3:65:35:19:3e:15:dc:57:a1:70:bc:01:a5:8c: 7f:d9:13:9d:f8:06:68:e9:5d:d2:3b:6f:c4:02:0e:b4:ee:99: 63:d4:2d:8f:15:26:62:2e:d8:f9:3b:2a:32:7d:e1:c2:d5:05: da:90:26:ca:ac:c6:43:42:32:ad:1e:39:09:60:28:23:a5:3c: e0:66:7d:d0:4b:11:6e:58:0b:f4:ad:84:4a:82:66:94:bf:56: 12:70:a1:87:18:d9:23:c0:94:a4:e1:63:6b:3c:36:bc:4d:3d: 82:0a:d0:80:ae:cd:02:ca:c0:d2:2e:d5:68:64:45:aa:ee:93: 8f:9b:f9:d5:ad:2a:7a:04:73:b7:ab:32:1a:e4:9d:8c:45:5b: 22:b1:b2:6d:b7:5b:05:ef:ba:4b:92:80:71:39:d6:59:f9:41: c8:63:ac:ba:6d:27:a2:6c:33:b1:c9:8c:a6:a3:f9:95:31:43: 22:ed:14:5c:6d:6b:30:6b:27:5b:f3:d5:d9:e1:64:1b:51:ee: 1d:c4:94:bf:ca:80:7c:17:c4:2b:22:87:62:1c:ba:f1:36:7b: 87:bd:82:44:66:9d:b6:06:47:24:da:d1:77:6a:10:6e:9a:dc: f5:31:3d:fd -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDw8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3 MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yNTA4MjIw OTAzNDVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEIzQTEyQjVFNUY4OURF REM2RTcyRTBDOTg2MDBEMDU2ODkwMTU3OUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCiaQztMKMQwEa3KL7DvJYi6ROuV4c8/OKi+IPwBm9lVfcK5cpV lDCdAtD5AiJjPfNbmfvb88eNliEb3oW0FqmLtUpV5vQ4l0brAskLrwpYDa3n3oSs L0Xnbm+UfEjDzkzYnMbZry7bkI3OknsnWcOdjQfR2Ti0dK4Z5yjAuGlVdbksMCHf gs42QTh3TfNxabN5l07Xv+Vi0575mTuOhfh1kNDdbXHeCV1FgXpPXsEBix++uwqF J0pgUk12dXiEJaMC3mGE1DDLkQt9lbNta93y+eno1dJ/u7E33ZjVPoA8zmFivVzI XCX9IDceZVdLOhLlVI4GkZ/ZuQ55Vemmf9nRAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUs6ErXl+J3txucuDJhgDQVokBV50wHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL3M2RXJYbC1KM3R4dWN1REpoZ0RRVm9r QlY1MC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAI9PSwwDQYJ KoZIhvcNAQELBQADggEBAEEHx8nPVw2Fahf1DCO74NBodkgr6fOjZTUZPhXcV6Fw vAGljH/ZE534BmjpXdI7b8QCDrTumWPULY8VJmIu2Pk7KjJ94cLVBdqQJsqsxkNC Mq0eOQlgKCOlPOBmfdBLEW5YC/SthEqCZpS/VhJwoYcY2SPAlKThY2s8NrxNPYIK 0ICuzQLKwNIu1WhkRaruk4+b+dWtKnoEc7erMhrknYxFWyKxsm23WwXvukuSgHE5 1ln5QchjrLptJ6JsM7HJjKaj+ZUxQyLtFFxtazBrJ1vz1dnhZBtR7h3ElL/KgHwX xCsih2IcuvE2e4e9gkRmnbYGRyTa0XdqEG6a3PUxPf0= -----END CERTIFICATE-----Generated at Sun Aug 24 07:31:05 2025 by rpki-client