$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KKCO/zElcDX8txAiKF_nW3UuL27WFm-o.roa File: zElcDX8txAiKF_nW3UuL27WFm-o.roa (raw, json) Hash identifier: +K7BgWnfJX1+YlJoSHdk6dprDkM4g/+Bv/t19+nc8zA= Subject key identifier: CC:49:5C:0D:7F:2D:C4:08:8A:17:F9:D6:DD:4B:8B:DB:B5:85:9B:EA Certificate issuer: /CN=828BD19EFA8EBE59EF407BB7FAB6898F754C7EC1 Certificate serial: 110C Authority key identifier: 82:8B:D1:9E:FA:8E:BE:59:EF:40:7B:B7:FA:B6:89:8F:75:4C:7E:C1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/govRnvqOvlnvQHu3-raJj3VMfsE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/zElcDX8txAiKF_nW3UuL27WFm-o.roa Signing time: Fri 22 Aug 2025 09:01:29 +0000 ROA not before: Fri 22 Aug 2025 09:01:29 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131645 IP address blocks: 2404:63c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/govRnvqOvlnvQHu3-raJj3VMfsE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4364 (0x110c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=828BD19EFA8EBE59EF407BB7FAB6898F754C7EC1 Validity Not Before: Aug 22 09:01:29 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=CC495C0D7F2DC4088A17F9D6DD4B8BDBB5859BEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:08:17:7b:f9:85:ad:b4:1a:a0:c2:b8:7e:15: 60:e6:fa:8e:b9:7f:24:bf:51:31:9e:47:76:05:9f: f5:9c:6b:56:f4:9b:0c:55:d5:3c:07:f5:ec:cf:e4: d1:83:10:3c:38:1b:6b:80:63:1a:46:55:d9:1b:42: 42:b0:91:a0:f5:93:81:27:61:cf:bd:d5:b6:93:0b: 38:70:f7:e2:d2:4b:9d:ea:2d:a1:11:ce:9e:59:11: d0:d9:d9:fe:1a:4b:d8:36:25:18:da:ed:bd:bb:28: f2:20:60:d3:06:2b:e6:ae:c3:fc:60:f5:eb:b1:8b: 05:75:fc:50:a0:66:5d:f2:d6:e2:fd:cb:e5:7d:75: d6:52:6b:37:82:64:6b:dd:08:cf:f1:c0:b9:da:2d: cb:7d:a9:24:a9:ac:fc:74:1a:85:de:0d:31:16:80: 4a:7d:d4:43:17:a8:55:e7:4e:64:99:fd:da:9d:cc: c2:69:61:f3:0a:16:cb:b5:a6:e1:e7:64:7e:66:6e: 0d:76:1a:55:0c:36:12:10:cf:8b:59:d9:15:e8:fb: eb:48:e7:d8:46:54:ce:f6:a7:67:31:37:be:98:34: 13:1b:7c:22:62:5a:ad:3e:e2:f2:cf:29:59:77:56: 67:11:74:6b:e5:d7:be:cb:f3:fe:16:f4:07:b2:e4: 96:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:49:5C:0D:7F:2D:C4:08:8A:17:F9:D6:DD:4B:8B:DB:B5:85:9B:EA X509v3 Authority Key Identifier: keyid:82:8B:D1:9E:FA:8E:BE:59:EF:40:7B:B7:FA:B6:89:8F:75:4C:7E:C1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/govRnvqOvlnvQHu3-raJj3VMfsE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/zElcDX8txAiKF_nW3UuL27WFm-o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2404:63c0::/32 Signature Algorithm: sha256WithRSAEncryption 01:fd:27:f8:f6:22:19:4c:42:99:07:d3:5e:63:86:09:a1:9e: ee:f6:98:59:2d:4a:33:b3:0f:e4:1e:d3:53:0b:6d:dd:74:ae: e1:a5:3c:2e:8c:50:c3:eb:08:62:3e:08:b0:3c:a8:c4:24:84: 9d:e7:2a:9c:61:ea:cb:a9:74:55:f0:16:fd:f4:28:44:33:6f: 15:0b:a7:e5:ed:a0:70:9c:f4:8b:47:65:2a:54:03:1f:e3:27: 45:ab:15:c2:d8:d5:8a:57:62:f5:13:52:73:ad:35:d5:4c:25: cc:58:a3:e7:d3:e5:58:d3:d1:51:7a:44:cf:bb:74:bc:80:17: c9:19:e1:83:b7:4a:a8:78:a1:a9:04:a2:80:1b:d2:0a:36:13: 05:72:4d:97:e1:ef:6a:14:85:24:47:5c:1f:12:15:4f:ef:b1: 42:c1:e0:15:89:1a:dc:cc:38:d1:b6:98:00:93:b2:81:22:33: 52:3c:98:4f:62:ee:0f:66:58:bf:85:e7:fc:2a:11:eb:57:ce: fb:51:bd:9f:a9:6d:ad:26:4e:45:df:5a:7d:52:0d:05:6c:f8: ab:28:89:ba:a5:c1:98:81:57:e6:2a:5b:aa:99:a2:18:07:0f: d7:f6:d5:a0:0d:d1:67:f3:ab:94:07:99:6d:06:8c:1e:87:fa: 73:f2:5d:76 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICEQwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODI4 QkQxOUVGQThFQkU1OUVGNDA3QkI3RkFCNjg5OEY3NTRDN0VDMTAeFw0yNTA4MjIw OTAxMjlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKENDNDk1QzBEN0YyREM0 MDg4QTE3RjlENkRENEI4QkRCQjU4NTlCRUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtCBd7+YWttBqgwrh+FWDm+o65fyS/UTGeR3YFn/Wca1b0mwxV 1TwH9ezP5NGDEDw4G2uAYxpGVdkbQkKwkaD1k4EnYc+91baTCzhw9+LSS53qLaER zp5ZEdDZ2f4aS9g2JRja7b27KPIgYNMGK+auw/xg9euxiwV1/FCgZl3y1uL9y+V9 ddZSazeCZGvdCM/xwLnaLct9qSSprPx0GoXeDTEWgEp91EMXqFXnTmSZ/dqdzMJp YfMKFsu1puHnZH5mbg12GlUMNhIQz4tZ2RXo++tI59hGVM72p2cxN76YNBMbfCJi Wq0+4vLPKVl3VmcRdGvl177L8/4W9Aey5JbNAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUzElcDX8txAiKF/nW3UuL27WFm+owHwYDVR0jBBgwFoAUgovRnvqOvlnvQHu3 +raJj3VMfsEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0tDTy9n b3ZSbnZxT3ZsbnZRSHUzLXJhSmozVk1mc0UuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2dvdlJudnFPdmxudlFIdTMtcmFKajNWTWZzRS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0tLQ08vekVsY0RYOHR4QWlLRl9uVzNVdUwy N1dGbS1vLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQEY8Aw DQYJKoZIhvcNAQELBQADggEBAAH9J/j2IhlMQpkH015jhgmhnu72mFktSjOzD+Qe 01MLbd10ruGlPC6MUMPrCGI+CLA8qMQkhJ3nKpxh6supdFXwFv30KEQzbxULp+Xt oHCc9ItHZSpUAx/jJ0WrFcLY1YpXYvUTUnOtNdVMJcxYo+fT5VjT0VF6RM+7dLyA F8kZ4YO3Sqh4oakEooAb0go2EwVyTZfh72oUhSRHXB8SFU/vsULB4BWJGtzMONG2 mACTsoEiM1I8mE9i7g9mWL+F5/wqEetXzvtRvZ+pba0mTkXfWn1SDQVs+Ksoibql wZiBV+YqW6qZohgHD9f21aAN0Wfzq5QHmW0GjB6H+nPyXXY= -----END CERTIFICATE-----Generated at Sun Aug 24 11:42:24 2025 by rpki-client