$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/txPZ6Dh72oaVkL2IJbsqbRYKm-g.roa File: txPZ6Dh72oaVkL2IJbsqbRYKm-g.roa (raw, json) Hash identifier: 3o532nBcczyPCsN5nSnHLPCkK6e98JO0U28Et6OpmBc= Subject key identifier: B7:13:D9:E8:38:7B:DA:86:95:90:BD:88:25:BB:2A:6D:16:0A:9B:E8 Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Certificate serial: 0F28 Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/txPZ6Dh72oaVkL2IJbsqbRYKm-g.roa Signing time: Fri 22 Aug 2025 09:03:51 +0000 ROA not before: Fri 22 Aug 2025 09:03:51 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 36408 IP address blocks: 61.61.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3880 (0xf28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Validity Not Before: Aug 22 09:03:51 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B713D9E8387BDA869590BD8825BB2A6D160A9BE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:4d:1f:ca:27:df:42:fe:a4:eb:8a:17:4f:81: 21:5a:20:33:6b:9b:0b:8c:ad:ab:f0:95:ff:3e:d8: b4:b5:74:fc:fd:90:a0:37:64:9b:65:f7:3c:b7:98: 7d:68:5e:6e:2b:b2:3c:cb:bd:10:95:70:4b:6f:9a: d1:81:8f:f2:1f:64:e9:8d:c9:e7:35:4f:f3:b2:e8: 16:6e:c8:cd:40:e5:2a:ad:d0:d0:0e:16:66:dc:ae: 11:52:90:53:2c:6f:f9:54:e8:4d:96:fe:b6:a5:5d: 25:e4:18:e1:72:83:27:c9:20:dd:db:4e:bb:94:40: 2c:8a:f3:e5:39:65:87:53:40:af:d8:cc:8e:26:ce: 16:7a:79:1c:53:89:61:cb:0b:d2:e0:75:7f:1f:da: 56:9b:89:45:16:46:4a:d5:5e:17:7c:c8:41:3f:fc: 83:f7:50:0b:28:5b:61:97:3b:ee:95:6d:e3:35:f2: 53:b9:e8:61:31:39:df:0d:8d:71:34:63:a1:1a:59: 13:52:70:59:75:09:87:2d:62:59:76:90:f6:e5:e6: a4:8c:4c:c1:b8:b0:b2:09:5e:c2:31:ff:55:14:42: 8a:fe:d4:84:e5:22:b0:4d:59:59:6c:32:f8:2a:d4: cc:56:04:51:bc:70:2b:c8:26:8d:9a:23:49:31:bd: e3:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:13:D9:E8:38:7B:DA:86:95:90:BD:88:25:BB:2A:6D:16:0A:9B:E8 X509v3 Authority Key Identifier: keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/txPZ6Dh72oaVkL2IJbsqbRYKm-g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.69.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:44:2f:0f:88:bf:04:25:ba:77:f0:2e:91:af:4c:ea:1e:e6: 57:b9:7a:65:1b:24:b3:aa:9a:c8:ff:22:53:b7:34:89:6d:d4: 17:ec:5d:55:3c:61:dd:4f:10:cc:b6:14:36:24:b9:70:78:87: 4c:01:ed:31:87:39:f8:28:fd:fc:67:d3:79:3e:61:33:11:b2: 7e:34:4e:46:6b:ed:8d:62:0e:aa:5e:ee:00:d3:00:ab:da:92: a7:9a:bc:c4:3c:f8:c1:50:10:67:bd:d9:63:f8:91:9a:41:80: b8:bf:9f:9a:b7:e4:bb:fc:54:dd:04:83:2c:41:62:79:f9:cc: d3:f6:56:2b:36:ba:d7:a5:d2:0a:bc:f4:bb:8a:43:b0:36:a5: 51:5e:81:8d:72:9a:35:97:06:92:b8:8a:32:64:2d:2b:e9:b0: 88:da:1f:4a:89:2f:7f:86:7f:a4:06:1f:a3:ed:c1:0a:ea:68: bb:b8:26:11:2b:6d:72:82:67:e1:e6:a7:0b:8c:15:39:e7:81: b7:19:f0:c3:c1:e8:97:fa:73:41:63:e2:a7:da:39:29:ca:58: 3a:a8:62:88:8b:5a:f6:5c:3b:dc:a0:7b:ba:63:9f:9b:86:24: 3c:d9:9d:5a:2e:d9:67:c9:b6:ab:0a:8a:b4:98:ef:2d:82:96: 26:59:c3:84 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDygwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3 MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yNTA4MjIw OTAzNTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEI3MTNEOUU4Mzg3QkRB ODY5NTkwQkQ4ODI1QkIyQTZEMTYwQTlCRTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCZTR/KJ99C/qTrihdPgSFaIDNrmwuMravwlf8+2LS1dPz9kKA3 ZJtl9zy3mH1oXm4rsjzLvRCVcEtvmtGBj/IfZOmNyec1T/Oy6BZuyM1A5Sqt0NAO FmbcrhFSkFMsb/lU6E2W/ralXSXkGOFygyfJIN3bTruUQCyK8+U5ZYdTQK/YzI4m zhZ6eRxTiWHLC9LgdX8f2labiUUWRkrVXhd8yEE//IP3UAsoW2GXO+6VbeM18lO5 6GExOd8NjXE0Y6EaWRNScFl1CYctYll2kPbl5qSMTMG4sLIJXsIx/1UUQor+1ITl IrBNWVlsMvgq1MxWBFG8cCvIJo2aI0kxveMdAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUtxPZ6Dh72oaVkL2IJbsqbRYKm+gwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL3R4UFo2RGg3Mm9hVmtMMklKYnNxYlJZ S20tZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAA9PUUwDQYJ KoZIhvcNAQELBQADggEBAHpELw+IvwQlunfwLpGvTOoe5le5emUbJLOqmsj/IlO3 NIlt1BfsXVU8Yd1PEMy2FDYkuXB4h0wB7TGHOfgo/fxn03k+YTMRsn40TkZr7Y1i Dqpe7gDTAKvakqeavMQ8+MFQEGe92WP4kZpBgLi/n5q35Lv8VN0EgyxBYnn5zNP2 Vis2utel0gq89LuKQ7A2pVFegY1ymjWXBpK4ijJkLSvpsIjaH0qJL3+Gf6QGH6Pt wQrqaLu4JhErbXKCZ+HmpwuMFTnngbcZ8MPB6Jf6c0Fj4qfaOSnKWDqoYoiLWvZc O9yge7pjn5uGJDzZnVou2WfJtqsKirSY7y2CliZZw4Q= -----END CERTIFICATE-----Generated at Sun Aug 24 07:29:33 2025 by rpki-client