$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/cE-KGBoHDTDeIuel3Xtkm7uaLVk.roa File: cE-KGBoHDTDeIuel3Xtkm7uaLVk.roa (raw, json) Hash identifier: ClROMiwNwkqKR8uZXhFrlJraar+33eQ4u1saXlpDUnQ= Subject key identifier: 70:4F:8A:18:1A:07:0D:30:DE:22:E7:A5:DD:7B:64:9B:BB:9A:2D:59 Certificate issuer: /CN=B4320FD78DFB6A4D1C92322F794966B8525DFDD2 Certificate serial: 5A78 Authority key identifier: B4:32:0F:D7:8D:FB:6A:4D:1C:92:32:2F:79:49:66:B8:52:5D:FD:D2 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/cE-KGBoHDTDeIuel3Xtkm7uaLVk.roa Signing time: Fri 22 Aug 2025 08:55:53 +0000 ROA not before: Fri 22 Aug 2025 08:55:53 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38851 IP address blocks: 43.227.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/tDIP1437ak0ckjIveUlmuFJd_dI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/tDIP1437ak0ckjIveUlmuFJd_dI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23160 (0x5a78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4320FD78DFB6A4D1C92322F794966B8525DFDD2 Validity Not Before: Aug 22 08:55:53 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=704F8A181A070D30DE22E7A5DD7B649BBB9A2D59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a7:91:b7:4c:a7:cd:d3:73:3e:24:ce:67:28: b9:4b:c8:e2:b6:c6:15:d5:e9:66:f4:cb:cc:d6:66: 56:58:63:82:84:66:2b:8d:de:f3:63:81:91:7f:5c: da:bc:ae:07:37:63:85:21:9a:f3:c5:d9:09:5c:a1: 10:e9:83:ed:c9:7b:05:ef:8b:a5:e3:c0:88:85:28: b7:fe:c5:15:b4:96:80:07:52:75:42:c8:0c:39:a7: 79:65:15:5b:ad:b3:26:7b:39:e4:01:54:41:98:48: 76:09:35:6d:6b:e4:cd:5a:56:1a:62:df:3f:2b:d9: cd:f4:0c:de:c5:93:ee:15:66:2d:96:65:0a:cc:52: 24:0e:ce:12:44:b2:cf:23:d0:a5:13:16:02:5d:f9: 2c:8c:67:40:f8:07:96:c9:91:06:e0:80:24:2a:e7: 0e:c9:0e:5e:28:c0:cd:bb:88:04:ea:e3:71:09:da: 4c:b4:30:90:8a:28:5a:ac:25:2b:f7:90:ea:5a:9c: 22:56:36:66:b5:0d:da:16:e1:54:89:f9:0c:7f:f7: d6:23:0e:8c:c7:b4:59:46:46:65:80:c4:29:b8:9c: b8:32:98:ba:43:89:e1:9b:d9:2c:19:82:1f:27:f9: fd:5a:37:a1:d1:79:58:3c:5a:27:63:2f:0f:b9:64: d4:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:4F:8A:18:1A:07:0D:30:DE:22:E7:A5:DD:7B:64:9B:BB:9A:2D:59 X509v3 Authority Key Identifier: keyid:B4:32:0F:D7:8D:FB:6A:4D:1C:92:32:2F:79:49:66:B8:52:5D:FD:D2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/tDIP1437ak0ckjIveUlmuFJd_dI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/cE-KGBoHDTDeIuel3Xtkm7uaLVk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.227.25.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:dd:2b:d1:4c:10:a5:df:dd:f4:27:37:b6:fe:96:86:88:ee: 53:b6:8a:7b:a5:0e:f0:3b:3a:62:78:6e:b4:ed:f6:eb:06:70: 14:9a:f5:b4:6d:4b:44:5a:7d:44:22:9a:af:db:4c:9c:fe:b7: 1e:d8:b7:8c:41:05:e5:52:64:49:fc:ad:e3:27:2e:3b:7e:54: f0:57:37:c3:a2:84:4a:3d:4a:5c:b4:c8:25:7b:b7:55:44:78: 5e:7b:ba:7f:bb:c1:bc:c4:b5:1a:2e:0f:e3:58:e2:3f:b0:d5: fa:9f:f9:1d:93:13:67:a1:87:2d:16:a1:b2:64:5d:0a:26:73: 99:ff:b3:0a:58:31:54:90:9a:bb:46:fc:14:d3:7a:75:93:f4: 07:ac:44:b1:10:8f:2d:fb:25:ab:42:2b:1b:38:f1:07:4d:21: 06:53:f8:c3:5e:3e:cc:e4:42:dd:cf:1b:43:6c:8a:f3:84:d9: 0b:2b:14:53:19:3d:fe:8c:84:f2:b5:26:c8:7d:ed:2d:bc:dc: 1b:d0:0a:32:ff:b7:87:b8:e6:d5:f1:6d:ca:bb:03:c5:07:b2: 14:c0:bd:3b:16:87:d1:86:4d:96:4f:3d:1b:98:2a:b3:73:7d: c4:36:7b:56:d7:20:f7:d4:aa:c0:44:44:7f:c1:b6:a1:5e:0d: 43:64:fe:45 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICWngwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjQz MjBGRDc4REZCNkE0RDFDOTIzMjJGNzk0OTY2Qjg1MjVERkREMjAeFw0yNTA4MjIw ODU1NTNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDcwNEY4QTE4MUEwNzBE MzBERTIyRTdBNUREN0I2NDlCQkI5QTJENTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5p5G3TKfN03M+JM5nKLlLyOK2xhXV6Wb0y8zWZlZYY4KEZiuN 3vNjgZF/XNq8rgc3Y4UhmvPF2QlcoRDpg+3JewXvi6XjwIiFKLf+xRW0loAHUnVC yAw5p3llFVutsyZ7OeQBVEGYSHYJNW1r5M1aVhpi3z8r2c30DN7Fk+4VZi2WZQrM UiQOzhJEss8j0KUTFgJd+SyMZ0D4B5bJkQbggCQq5w7JDl4owM27iATq43EJ2ky0 MJCKKFqsJSv3kOpanCJWNma1DdoW4VSJ+Qx/99YjDozHtFlGRmWAxCm4nLgymLpD ieGb2SwZgh8n+f1aN6HReVg8WidjLw+5ZNRDAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUcE+KGBoHDTDeIuel3Xtkm7uaLVkwHwYDVR0jBBgwFoAUtDIP1437ak0ckjIv eUlmuFJd/dIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTlRDQ0FU Vi90RElQMTQzN2FrMGNrakl2ZVVsbXVGSmRfZEkuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL3RESVAxNDM3YWswY2tqSXZlVWxtdUZKZF9kSS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL05UQ0NBVFYvY0UtS0dCb0hEVERlSXVl bDNYdGttN3VhTFZrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ACvjGTANBgkqhkiG9w0BAQsFAAOCAQEAOt0r0UwQpd/d9Cc3tv6WhojuU7aKe6UO 8Ds6YnhutO326wZwFJr1tG1LRFp9RCKar9tMnP63Hti3jEEF5VJkSfyt4ycuO35U 8Fc3w6KESj1KXLTIJXu3VUR4Xnu6f7vBvMS1Gi4P41jiP7DV+p/5HZMTZ6GHLRah smRdCiZzmf+zClgxVJCau0b8FNN6dZP0B6xEsRCPLfslq0IrGzjxB00hBlP4w14+ zORC3c8bQ2yK84TZCysUUxk9/oyE8rUmyH3tLbzcG9AKMv+3h7jm1fFtyrsDxQey FMC9OxaH0YZNlk89G5gqs3N9xDZ7Vtcg99SqwEREf8G2oV4NQ2T+RQ== -----END CERTIFICATE-----Generated at Sun Aug 24 07:05:08 2025 by rpki-client