$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/sKor8KxNCRwreiqJDrNzhzGRVmM.roa File: sKor8KxNCRwreiqJDrNzhzGRVmM.roa (raw, json) Hash identifier: w5pWSKU9vvBRdEdMA5vzf9o91xglDiRkmDZnuFto+ao= Subject key identifier: B0:AA:2B:F0:AC:4D:09:1C:2B:7A:2A:89:0E:B3:73:87:31:91:56:63 Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Certificate serial: 0F1B Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/sKor8KxNCRwreiqJDrNzhzGRVmM.roa Signing time: Fri 22 Aug 2025 09:03:48 +0000 ROA not before: Fri 22 Aug 2025 09:03:48 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18049 IP address blocks: 61.61.8.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3867 (0xf1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Validity Not Before: Aug 22 09:03:48 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B0AA2BF0AC4D091C2B7A2A890EB3738731915663 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:db:2a:0c:5b:97:38:b9:f4:37:42:5f:c6:30: 40:51:cc:fd:b4:db:6a:1f:19:53:ec:00:b4:4c:4d: be:43:2b:bd:de:1a:4a:53:05:2a:a3:b8:fa:60:2c: 47:ab:cb:03:af:41:ec:cd:b2:5c:70:4b:f7:53:90: 9c:8e:2f:3d:c8:1e:77:0b:d4:11:33:39:0e:3a:5f: d3:bd:8f:b6:6c:0f:f1:6d:c0:23:42:98:b3:81:c3: 02:44:ac:34:65:d3:4c:c7:75:81:93:40:4a:18:84: 58:47:b7:51:53:7f:83:c0:33:5c:28:d4:4c:f4:cd: cf:d0:e9:d3:d0:dc:a9:16:af:da:43:ab:ea:f2:c8: 72:4b:03:d1:ec:1b:23:1d:a9:72:a9:d2:52:3c:92: c3:a0:75:ea:b8:db:d8:b8:83:89:a3:94:b2:6a:34: d8:bf:06:2c:91:c9:92:ea:16:c4:cb:a7:86:db:dc: a8:80:9c:05:22:89:15:07:3a:c7:01:d8:91:ff:22: 4c:7f:21:59:86:d4:0a:0f:4b:7d:1d:c3:59:58:bb: 50:8d:45:1a:d8:7f:f7:fb:f3:8c:02:dd:b0:5f:b3: 81:ba:5f:ac:c2:1e:05:37:7b:c1:67:9b:47:14:03: 25:c5:51:66:4d:9c:61:b9:4f:b2:3b:85:d5:cd:f7: d1:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:AA:2B:F0:AC:4D:09:1C:2B:7A:2A:89:0E:B3:73:87:31:91:56:63 X509v3 Authority Key Identifier: keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/sKor8KxNCRwreiqJDrNzhzGRVmM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.8.0/21 Signature Algorithm: sha256WithRSAEncryption 49:28:9c:d6:29:46:a9:9d:ce:f2:c7:a2:4e:10:f6:f7:e3:c6: 53:58:a4:a2:ab:dc:1d:1c:d2:a7:b8:b9:48:95:64:93:0a:16: 8a:90:be:dc:bc:7b:6e:9e:0f:70:0d:7a:d8:3a:df:85:cd:2b: 58:c1:7a:48:09:10:c5:b9:73:d7:d7:8d:77:bb:25:bd:e3:e8: 74:05:b0:b3:98:87:c1:72:2f:08:61:20:c5:10:29:f0:f0:a0: 0c:fb:4c:8a:10:76:78:aa:8c:ac:a9:24:09:00:c1:01:e5:54: bc:09:28:79:5d:22:91:e3:fb:88:d4:91:c8:bf:fb:8b:8e:28: 30:8d:3c:86:8b:c3:d9:6e:94:ba:cb:10:56:34:bd:85:ec:14: c4:13:d2:51:40:b9:62:75:12:45:7f:0f:44:5e:8a:92:24:3a: 12:6a:50:59:a2:69:44:2b:05:b3:78:a8:1e:fc:1d:e1:1d:d5: 0a:ee:d6:3c:f0:d1:7e:f7:27:89:b9:57:31:5a:e2:56:c0:0f: cb:fc:0d:da:f0:ba:35:e5:07:29:cd:5a:11:18:53:31:08:e6: 7c:c2:e8:4d:7b:ad:bb:21:a8:68:2d:90:c8:4e:c5:7d:e8:0c: 91:4a:15:9c:31:3b:d9:5f:dd:b7:8a:8d:d8:63:92:02:bf:16: 8d:84:bd:08 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDxswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3 MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yNTA4MjIw OTAzNDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEIwQUEyQkYwQUM0RDA5 MUMyQjdBMkE4OTBFQjM3Mzg3MzE5MTU2NjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDm2yoMW5c4ufQ3Ql/GMEBRzP2022ofGVPsALRMTb5DK73eGkpT BSqjuPpgLEerywOvQezNslxwS/dTkJyOLz3IHncL1BEzOQ46X9O9j7ZsD/FtwCNC mLOBwwJErDRl00zHdYGTQEoYhFhHt1FTf4PAM1wo1Ez0zc/Q6dPQ3KkWr9pDq+ry yHJLA9HsGyMdqXKp0lI8ksOgdeq429i4g4mjlLJqNNi/BiyRyZLqFsTLp4bb3KiA nAUiiRUHOscB2JH/Ikx/IVmG1AoPS30dw1lYu1CNRRrYf/f784wC3bBfs4G6X6zC HgU3e8Fnm0cUAyXFUWZNnGG5T7I7hdXN99HzAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUsKor8KxNCRwreiqJDrNzhzGRVmMwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL3NLb3I4S3hOQ1J3cmVpcUpEck56aHpH UlZtTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAM9PQgwDQYJ KoZIhvcNAQELBQADggEBAEkonNYpRqmdzvLHok4Q9vfjxlNYpKKr3B0c0qe4uUiV ZJMKFoqQvty8e26eD3ANetg634XNK1jBekgJEMW5c9fXjXe7Jb3j6HQFsLOYh8Fy LwhhIMUQKfDwoAz7TIoQdniqjKypJAkAwQHlVLwJKHldIpHj+4jUkci/+4uOKDCN PIaLw9lulLrLEFY0vYXsFMQT0lFAuWJ1EkV/D0ReipIkOhJqUFmiaUQrBbN4qB78 HeEd1Qru1jzw0X73J4m5VzFa4lbAD8v8DdrwujXlBynNWhEYUzEI5nzC6E17rbsh qGgtkMhOxX3oDJFKFZwxO9lf3beKjdhjkgK/Fo2EvQg= -----END CERTIFICATE-----Generated at Sun Aug 24 07:33:09 2025 by rpki-client