$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MKY/6HslMCCY-Cyi113YsyofHI2TydM.roa File: 6HslMCCY-Cyi113YsyofHI2TydM.roa (raw, json) Hash identifier: IIPIDGO4yrHgM2gEPfvpB94ra/9ThLTOxx2c6Vsw8tU= Subject key identifier: E8:7B:25:30:20:98:F8:2C:A2:D7:5D:D8:B3:2A:1F:1C:8D:93:C9:D3 Certificate issuer: /CN=9D9E97B00D2E15C41AE7071732018C2B137E53A1 Certificate serial: 0D8F Authority key identifier: 9D:9E:97:B0:0D:2E:15:C4:1A:E7:07:17:32:01:8C:2B:13:7E:53:A1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/nZ6XsA0uFcQa5wcXMgGMKxN-U6E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MKY/6HslMCCY-Cyi113YsyofHI2TydM.roa Signing time: Fri 22 Aug 2025 08:51:45 +0000 ROA not before: Fri 22 Aug 2025 08:51:45 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 7478 IP address blocks: 210.244.192.0/19 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MKY/nZ6XsA0uFcQa5wcXMgGMKxN-U6E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MKY/nZ6XsA0uFcQa5wcXMgGMKxN-U6E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/nZ6XsA0uFcQa5wcXMgGMKxN-U6E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3471 (0xd8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9D9E97B00D2E15C41AE7071732018C2B137E53A1 Validity Not Before: Aug 22 08:51:45 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E87B25302098F82CA2D75DD8B32A1F1C8D93C9D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:81:46:8f:12:69:03:db:45:fd:17:08:4e:0c: cd:e5:a2:50:1a:dd:ad:6a:8f:5c:fc:2c:a2:d4:08: 3a:6b:58:6e:24:c5:3c:e3:b5:c5:5b:2e:38:10:43: 8e:ba:32:bf:cc:ac:a8:8f:bc:05:24:4a:f1:bf:65: 7f:cf:35:68:06:4e:4d:cb:9e:8c:53:d7:25:37:35: c4:b7:e2:36:8f:24:24:7c:aa:2b:0a:da:5d:cd:5d: d1:bd:ed:92:96:f4:42:4a:c4:ce:35:7b:5e:52:13: 4e:d7:4d:d6:89:73:5a:e0:97:fe:b9:de:e5:b0:54: 6c:af:03:44:0a:72:42:0b:b0:42:21:87:5c:34:33: bf:76:f6:97:12:65:c2:9d:16:b4:25:57:b2:48:f2: af:6d:dc:55:1a:02:78:5c:27:e8:91:23:7b:84:44: 19:39:3d:6b:42:7a:58:ab:08:88:37:40:ca:e2:ac: 86:e1:bf:b2:0c:a1:8b:7c:6b:8e:f4:ca:50:0f:4f: f6:e2:26:8b:b0:d8:6d:07:22:95:6d:14:13:dd:59: 4f:f5:5a:53:f2:eb:15:ba:e8:81:c3:02:2d:2a:67: 2c:c2:d8:74:80:1d:fa:3e:a2:2f:f4:b1:d3:af:4a: dc:3f:be:23:19:9e:13:d7:2f:5b:08:d1:d4:e5:f3: 1d:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:7B:25:30:20:98:F8:2C:A2:D7:5D:D8:B3:2A:1F:1C:8D:93:C9:D3 X509v3 Authority Key Identifier: keyid:9D:9E:97:B0:0D:2E:15:C4:1A:E7:07:17:32:01:8C:2B:13:7E:53:A1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MKY/nZ6XsA0uFcQa5wcXMgGMKxN-U6E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/nZ6XsA0uFcQa5wcXMgGMKxN-U6E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MKY/6HslMCCY-Cyi113YsyofHI2TydM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.244.192.0/19 Signature Algorithm: sha256WithRSAEncryption 0c:72:a1:c5:62:41:14:80:a9:89:d8:0d:fc:59:95:7a:29:65: 1f:4c:61:86:e9:03:f0:48:c7:5b:20:ae:8d:76:a5:80:fe:63: f9:a7:21:7d:79:eb:40:62:e0:4a:fe:64:e6:9d:3b:ec:e7:02: 23:16:af:28:45:89:e0:5b:e0:94:66:47:79:fa:04:89:7f:b5: 16:35:81:39:cc:f1:73:3b:78:ce:6f:f2:a1:31:48:8a:97:ce: ec:2c:22:53:cd:cd:bf:25:03:a8:88:bb:0f:bd:78:8a:e7:22: fb:8e:46:28:d3:91:c1:45:39:d1:e5:46:fd:7a:bb:58:2b:f6: 87:5a:69:d4:18:a7:aa:b2:47:8e:e0:8f:f5:52:5d:4e:ee:94: 58:fe:9a:ab:7f:d1:62:3d:43:5a:ee:62:fa:4e:ae:d1:26:8c: 16:b8:dd:7f:27:ea:d9:ed:5a:4c:7f:a1:02:43:27:b4:80:f4: 8a:ab:68:64:c4:6e:ed:06:c3:15:1d:06:2b:4e:7d:07:03:de: ec:73:9f:e3:af:ed:1b:ed:4c:28:63:78:42:9f:6d:d5:8c:8d: 76:c5:31:1d:6a:13:ac:fd:fd:69:c2:6a:f5:25:f6:f3:bf:36: 88:2f:e6:7b:27:77:3b:ad:42:dd:81:26:9c:19:bc:65:60:0f: e2:5f:ea:a3 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDY8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUQ5 RTk3QjAwRDJFMTVDNDFBRTcwNzE3MzIwMThDMkIxMzdFNTNBMTAeFw0yNTA4MjIw ODUxNDVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEU4N0IyNTMwMjA5OEY4 MkNBMkQ3NUREOEIzMkExRjFDOEQ5M0M5RDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWgUaPEmkD20X9FwhODM3lolAa3a1qj1z8LKLUCDprWG4kxTzj tcVbLjgQQ466Mr/MrKiPvAUkSvG/ZX/PNWgGTk3LnoxT1yU3NcS34jaPJCR8qisK 2l3NXdG97ZKW9EJKxM41e15SE07XTdaJc1rgl/653uWwVGyvA0QKckILsEIhh1w0 M7929pcSZcKdFrQlV7JI8q9t3FUaAnhcJ+iRI3uERBk5PWtCelirCIg3QMrirIbh v7IMoYt8a470ylAPT/biJouw2G0HIpVtFBPdWU/1WlPy6xW66IHDAi0qZyzC2HSA Hfo+oi/0sdOvStw/viMZnhPXL1sI0dTl8x2lAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU6HslMCCY+Cyi113YsyofHI2TydMwHwYDVR0jBBgwFoAUnZ6XsA0uFcQa5wcX MgGMKxN+U6EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUtZL25a NlhzQTB1RmNRYTV3Y1hNZ0dNS3hOLVU2RS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev blo2WHNBMHVGY1FhNXdjWE1nR01LeE4tVTZFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvTUtZLzZIc2xNQ0NZLUN5aTExM1lzeW9mSEky VHlkTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXS9MAwDQYJ KoZIhvcNAQELBQADggEBAAxyocViQRSAqYnYDfxZlXopZR9MYYbpA/BIx1sgro12 pYD+Y/mnIX1560Bi4Er+ZOadO+znAiMWryhFieBb4JRmR3n6BIl/tRY1gTnM8XM7 eM5v8qExSIqXzuwsIlPNzb8lA6iIuw+9eIrnIvuORijTkcFFOdHlRv16u1gr9oda adQYp6qyR47gj/VSXU7ulFj+mqt/0WI9Q1ruYvpOrtEmjBa43X8n6tntWkx/oQJD J7SA9IqraGTEbu0GwxUdBitOfQcD3uxzn+Ov7RvtTChjeEKfbdWMjXbFMR1qE6z9 /WnCavUl9vO/Nogv5nsndzutQt2BJpwZvGVgD+Jf6qM= -----END CERTIFICATE-----Generated at Sun Aug 24 09:45:12 2025 by rpki-client