$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NKBNET/tD6C8fAbkv4Tw-j0az_FdowFa6g.roa File: tD6C8fAbkv4Tw-j0az_FdowFa6g.roa (raw, json) Hash identifier: E1/GW3SC5d67/+/8Koshd/Wi/2b0bOuMZ4db7+CIyzI= Subject key identifier: B4:3E:82:F1:F0:1B:92:FE:13:C3:E8:F4:6B:3F:C5:76:8C:05:6B:A8 Certificate issuer: /CN=8051F2ECEFC242E9AF9F1E454A4FB796591B8DAB Certificate serial: 145F Authority key identifier: 80:51:F2:EC:EF:C2:42:E9:AF:9F:1E:45:4A:4F:B7:96:59:1B:8D:AB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gFHy7O_CQumvnx5FSk-3llkbjas.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/tD6C8fAbkv4Tw-j0az_FdowFa6g.roa Signing time: Fri 22 Aug 2025 08:50:47 +0000 ROA not before: Fri 22 Aug 2025 08:50:47 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 7482 IP address blocks: 103.130.48.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/gFHy7O_CQumvnx5FSk-3llkbjas.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/gFHy7O_CQumvnx5FSk-3llkbjas.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gFHy7O_CQumvnx5FSk-3llkbjas.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5215 (0x145f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8051F2ECEFC242E9AF9F1E454A4FB796591B8DAB Validity Not Before: Aug 22 08:50:47 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B43E82F1F01B92FE13C3E8F46B3FC5768C056BA8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:26:8f:30:c0:41:35:ce:1f:74:a4:83:02:41: 29:8e:91:d2:4a:93:4e:b2:c6:75:25:14:52:c5:18: fe:79:4a:88:4a:ab:b2:56:d2:37:00:3a:d3:82:d2: 1f:86:d4:aa:fc:ab:48:ca:ba:f2:0d:9a:5a:4c:ea: 06:b3:08:76:e0:2a:a9:19:7a:bf:92:54:d1:46:bf: b8:09:68:b7:87:0e:91:99:2c:86:0a:05:1d:6e:3e: 44:39:55:5f:2e:e8:11:33:5c:5c:8c:87:a7:0b:92: b4:15:21:89:49:47:5b:87:99:98:49:28:cd:c8:d8: d4:54:f5:e4:cb:6c:f2:4a:a2:e4:6f:af:78:17:9e: 9a:88:bc:6b:39:b3:2c:2b:fe:11:f8:72:af:7d:05: 30:cf:f8:34:67:92:c2:9f:50:16:bb:96:f5:98:17: f8:0c:28:bc:ed:7f:ff:8f:ae:d6:a5:33:1a:d3:9a: 55:3f:56:17:bf:4b:17:fe:a1:f2:0e:44:f9:5c:62: bd:23:c2:ba:f1:00:06:47:ae:df:97:ca:df:82:42: ee:84:92:c9:03:44:fd:c9:d0:89:55:e6:f7:2a:8c: 61:9c:3d:d6:11:22:ed:b5:d8:58:78:03:1a:78:12: e1:9f:dc:fb:8c:10:8f:eb:49:29:e3:e0:fc:78:70: 58:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:3E:82:F1:F0:1B:92:FE:13:C3:E8:F4:6B:3F:C5:76:8C:05:6B:A8 X509v3 Authority Key Identifier: keyid:80:51:F2:EC:EF:C2:42:E9:AF:9F:1E:45:4A:4F:B7:96:59:1B:8D:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/gFHy7O_CQumvnx5FSk-3llkbjas.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gFHy7O_CQumvnx5FSk-3llkbjas.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/tD6C8fAbkv4Tw-j0az_FdowFa6g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.130.48.0/22 Signature Algorithm: sha256WithRSAEncryption 77:33:6c:5d:7f:2e:88:b5:dd:3a:21:36:fe:a0:bc:96:ca:ed: 82:8e:87:d0:e4:d4:aa:09:c5:7d:c7:aa:3a:48:dd:92:a6:b8: 89:41:7d:39:95:cd:43:d3:c7:f0:7a:4c:7b:55:a1:72:4f:2f: 32:bb:fe:6b:0b:20:8e:a1:16:7c:9b:51:86:71:a2:f4:03:62: db:10:bd:51:d7:78:31:99:fe:b0:a6:3b:0f:7e:71:47:d7:c2: 45:18:0a:17:a8:65:86:2a:ad:16:51:38:ae:e9:70:55:18:a0: 53:cb:65:dc:7e:89:a6:0f:7e:37:26:5d:6b:4f:f6:dd:8a:1e: 92:9f:77:6b:22:c6:16:3c:bf:44:a9:2d:d6:ae:d1:0e:30:e8: 01:61:b2:b5:48:63:49:11:5e:56:85:6a:fc:61:e8:7c:81:bc: 81:db:cc:f9:4c:96:ce:85:70:31:e3:c2:11:d0:82:8f:70:6a: 51:a0:a6:44:36:06:cb:91:ec:ba:ca:ce:3a:07:67:2d:ad:64: fa:19:be:43:fa:a4:a0:72:0c:15:48:ba:f4:d1:4d:9a:92:4b: 0d:58:0c:ba:82:67:4b:e3:74:b5:21:6c:74:79:81:88:97:7a: 5f:30:45:47:ee:69:a2:41:fe:9c:2f:16:10:70:79:d5:26:8b: d0:ed:61:c6 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICFF8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODA1 MUYyRUNFRkMyNDJFOUFGOUYxRTQ1NEE0RkI3OTY1OTFCOERBQjAeFw0yNTA4MjIw ODUwNDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEI0M0U4MkYxRjAxQjky RkUxM0MzRThGNDZCM0ZDNTc2OEMwNTZCQTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCgJo8wwEE1zh90pIMCQSmOkdJKk06yxnUlFFLFGP55SohKq7JW 0jcAOtOC0h+G1Kr8q0jKuvINmlpM6gazCHbgKqkZer+SVNFGv7gJaLeHDpGZLIYK BR1uPkQ5VV8u6BEzXFyMh6cLkrQVIYlJR1uHmZhJKM3I2NRU9eTLbPJKouRvr3gX npqIvGs5sywr/hH4cq99BTDP+DRnksKfUBa7lvWYF/gMKLztf/+PrtalMxrTmlU/ Vhe/Sxf+ofIORPlcYr0jwrrxAAZHrt+Xyt+CQu6EkskDRP3J0IlV5vcqjGGcPdYR Iu212Fh4Axp4EuGf3PuMEI/rSSnj4Px4cFhbAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUtD6C8fAbkv4Tw+j0az/FdowFa6gwHwYDVR0jBBgwFoAUgFHy7O/CQumvnx5F Sk+3llkbjaswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTktCTkVU L2dGSHk3T19DUXVtdm54NUZTay0zbGxrYmphcy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvZ0ZIeTdPX0NRdW12bng1RlNrLTNsbGtiamFzLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvTktCTkVUL3RENkM4ZkFia3Y0VHctajBh el9GZG93RmE2Zy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn gjAwDQYJKoZIhvcNAQELBQADggEBAHczbF1/Loi13TohNv6gvJbK7YKOh9Dk1KoJ xX3HqjpI3ZKmuIlBfTmVzUPTx/B6THtVoXJPLzK7/msLII6hFnybUYZxovQDYtsQ vVHXeDGZ/rCmOw9+cUfXwkUYCheoZYYqrRZROK7pcFUYoFPLZdx+iaYPfjcmXWtP 9t2KHpKfd2sixhY8v0SpLdau0Q4w6AFhsrVIY0kRXlaFavxh6HyBvIHbzPlMls6F cDHjwhHQgo9walGgpkQ2BsuR7LrKzjoHZy2tZPoZvkP6pKByDBVIuvTRTZqSSw1Y DLqCZ0vjdLUhbHR5gYiXel8wRUfuaaJB/pwvFhBwedUmi9DtYcY= -----END CERTIFICATE-----Generated at Sun Aug 24 12:07:59 2025 by rpki-client