$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/t8HBcv2u7CUmOL6RdPtpC0MG24M.roa File: t8HBcv2u7CUmOL6RdPtpC0MG24M.roa (raw, json) Hash identifier: 2TE/1Y16dI6YeJi2lK6nwLpfuBlrvhL3hTcOOgg7mDg= Subject key identifier: B7:C1:C1:72:FD:AE:EC:25:26:38:BE:91:74:FB:69:0B:43:06:DB:83 Certificate issuer: /CN=602CBCE32DD76D0BB39F5A706324248869119435 Certificate serial: 0D84 Authority key identifier: 60:2C:BC:E3:2D:D7:6D:0B:B3:9F:5A:70:63:24:24:88:69:11:94:35 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YCy84y3XbQuzn1pwYyQkiGkRlDU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/t8HBcv2u7CUmOL6RdPtpC0MG24M.roa Signing time: Fri 22 Aug 2025 08:43:53 +0000 ROA not before: Fri 22 Aug 2025 08:43:53 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131587 IP address blocks: 2400:d580::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/YCy84y3XbQuzn1pwYyQkiGkRlDU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/YCy84y3XbQuzn1pwYyQkiGkRlDU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/YCy84y3XbQuzn1pwYyQkiGkRlDU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3460 (0xd84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=602CBCE32DD76D0BB39F5A706324248869119435 Validity Not Before: Aug 22 08:43:53 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B7C1C172FDAEEC252638BE9174FB690B4306DB83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:56:18:b6:db:88:5a:25:c6:e6:e6:7f:8e:45: 59:09:b3:73:fc:da:08:ce:fa:53:b6:58:1f:69:8b: 98:19:cd:f5:3a:44:56:2a:47:28:82:a4:59:22:18: b5:20:e1:b9:ae:07:48:1c:8e:d7:2b:63:fb:2f:12: 72:a6:6a:ac:f5:8a:c2:94:56:63:ca:59:88:c2:f5: 26:51:10:72:d3:01:4c:69:e6:32:59:98:a2:05:a0: 27:be:5a:57:a3:a7:f4:fe:5e:95:dc:5b:5f:68:98: 7e:87:e5:e2:09:c8:e5:79:10:fe:4e:83:0a:97:3b: 19:79:f5:01:83:f7:d4:6e:ed:4e:b2:09:30:df:dc: 07:1c:1d:56:1d:dc:ce:0f:98:52:23:8f:5b:91:07: 3b:d8:7a:37:f8:91:a9:19:05:7c:38:c6:21:49:ef: ed:cf:e5:35:c7:32:54:c4:6d:55:e3:a7:84:c3:10: 7d:ee:20:36:08:09:4a:6f:42:8b:b4:70:92:82:27: 27:c7:1e:88:2c:f2:68:7f:ea:28:81:50:c4:54:7c: dc:b7:ed:83:dd:a7:12:dc:3b:24:4b:ff:4c:54:71: ec:93:99:79:47:f1:b2:40:38:d5:d0:1c:f9:28:9e: 3b:af:77:a2:92:50:bd:45:f8:88:be:42:31:ef:e0: cd:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:C1:C1:72:FD:AE:EC:25:26:38:BE:91:74:FB:69:0B:43:06:DB:83 X509v3 Authority Key Identifier: keyid:60:2C:BC:E3:2D:D7:6D:0B:B3:9F:5A:70:63:24:24:88:69:11:94:35 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/YCy84y3XbQuzn1pwYyQkiGkRlDU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YCy84y3XbQuzn1pwYyQkiGkRlDU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/t8HBcv2u7CUmOL6RdPtpC0MG24M.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2400:d580::/32 Signature Algorithm: sha256WithRSAEncryption 6b:2a:5e:e8:c7:3b:cd:07:ae:99:a1:b4:94:59:b5:05:32:28: 6b:18:0c:9e:76:10:5c:a8:d7:5e:b2:a9:83:06:60:a7:0d:92: ae:4a:81:1c:0b:ad:2d:de:25:ae:32:97:83:0f:77:db:51:c2: 8e:27:15:bd:97:ad:ce:9b:fc:87:49:26:e5:9d:79:3e:87:99: dc:c7:ed:72:4d:ba:0b:13:cf:3a:fb:5b:5c:8e:8e:a5:18:aa: 32:dc:10:ce:46:99:1f:d0:4a:c0:a0:99:09:63:7b:93:68:8d: bb:4d:19:4a:ba:b4:14:17:57:e3:46:f3:30:be:60:e3:cc:c9: 71:81:71:74:cc:ae:7b:95:6b:62:5b:9b:4d:80:ce:b8:c9:9f: 8c:cf:de:53:07:63:09:1a:6e:1a:d6:6a:3a:43:ec:56:a9:ad: a9:37:03:d9:71:15:6a:68:f3:d4:d4:65:32:bb:ef:f0:c3:76: 2e:40:b3:84:2e:62:2b:bf:0f:9c:f4:5d:92:14:f7:fa:69:5e: 17:06:26:bb:0e:7f:e3:0e:0b:65:7e:87:2d:2a:24:c2:0f:05: 63:a2:3b:41:2a:54:e2:8a:67:6d:92:b8:d5:66:9b:6f:df:bc: 6c:4a:cd:7c:d7:9c:41:0b:c5:19:f7:60:66:9f:ee:4b:26:a0: 41:de:9c:5c -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICDYQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjAy Q0JDRTMyREQ3NkQwQkIzOUY1QTcwNjMyNDI0ODg2OTExOTQzNTAeFw0yNTA4MjIw ODQzNTNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEI3QzFDMTcyRkRBRUVD MjUyNjM4QkU5MTc0RkI2OTBCNDMwNkRCODMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJVhi224haJcbm5n+ORVkJs3P82gjO+lO2WB9pi5gZzfU6RFYq RyiCpFkiGLUg4bmuB0gcjtcrY/svEnKmaqz1isKUVmPKWYjC9SZREHLTAUxp5jJZ mKIFoCe+Wlejp/T+XpXcW19omH6H5eIJyOV5EP5OgwqXOxl59QGD99Ru7U6yCTDf 3AccHVYd3M4PmFIjj1uRBzvYejf4kakZBXw4xiFJ7+3P5TXHMlTEbVXjp4TDEH3u IDYICUpvQou0cJKCJyfHHogs8mh/6iiBUMRUfNy37YPdpxLcOyRL/0xUceyTmXlH 8bJAONXQHPkonjuvd6KSUL1F+Ii+QjHv4M1XAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUt8HBcv2u7CUmOL6RdPtpC0MG24MwHwYDVR0jBBgwFoAUYCy84y3XbQuzn1pw YyQkiGkRlDUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUVHQUlD QkMvWUN5ODR5M1hiUXV6bjFwd1l5UWtpR2tSbERVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9ZQ3k4NHkzWGJRdXpuMXB3WXlRa2lHa1JsRFUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9NRUdBSUNCQy90OEhCY3YydTdDVW1P TDZSZFB0cEMwTUcyNE0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH AwUAJADVgDANBgkqhkiG9w0BAQsFAAOCAQEAaype6Mc7zQeumaG0lFm1BTIoaxgM nnYQXKjXXrKpgwZgpw2SrkqBHAutLd4lrjKXgw9321HCjicVvZetzpv8h0km5Z15 PoeZ3Mftck26CxPPOvtbXI6OpRiqMtwQzkaZH9BKwKCZCWN7k2iNu00ZSrq0FBdX 40bzML5g48zJcYFxdMyue5VrYlubTYDOuMmfjM/eUwdjCRpuGtZqOkPsVqmtqTcD 2XEVamjz1NRlMrvv8MN2LkCzhC5iK78PnPRdkhT3+mleFwYmuw5/4w4LZX6HLSok wg8FY6I7QSpU4opnbZK41Wabb9+8bErNfNecQQvFGfdgZp/uSyagQd6cXA== -----END CERTIFICATE-----Generated at Sun Aug 24 09:43:21 2025 by rpki-client