$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/ru6lQnJqGBo31IH4LvVZaH4Fwcs.roa File: ru6lQnJqGBo31IH4LvVZaH4Fwcs.roa (raw, json) Hash identifier: O5zSbWgxSDvr/PYw+u1eZVycS8QVwm6W/x93U3VHz/8= Subject key identifier: AE:EE:A5:42:72:6A:18:1A:37:D4:81:F8:2E:F5:59:68:7E:05:C1:CB Certificate issuer: /CN=B4320FD78DFB6A4D1C92322F794966B8525DFDD2 Certificate serial: 5A7D Authority key identifier: B4:32:0F:D7:8D:FB:6A:4D:1C:92:32:2F:79:49:66:B8:52:5D:FD:D2 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/ru6lQnJqGBo31IH4LvVZaH4Fwcs.roa Signing time: Fri 22 Aug 2025 08:55:54 +0000 ROA not before: Fri 22 Aug 2025 08:55:54 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38851 IP address blocks: 43.227.24.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/tDIP1437ak0ckjIveUlmuFJd_dI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/tDIP1437ak0ckjIveUlmuFJd_dI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23165 (0x5a7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4320FD78DFB6A4D1C92322F794966B8525DFDD2 Validity Not Before: Aug 22 08:55:54 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=AEEEA542726A181A37D481F82EF559687E05C1CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:16:2d:ae:03:7b:81:d3:7f:c2:20:c4:7d:86: d2:d5:9f:3e:ee:35:ef:b4:2f:2a:34:84:ca:b7:4b: 7a:79:13:53:0b:61:85:82:3c:84:fe:c7:01:17:5c: 5a:d1:1d:1f:af:96:2a:21:06:44:98:2e:f8:81:f7: e1:97:62:26:19:8c:27:8c:f2:62:45:81:5d:12:70: 44:bc:11:3c:39:cf:58:2f:48:51:88:0c:99:7e:9e: ca:1d:e7:d3:5a:d6:ad:3c:c8:53:30:fe:fd:87:a9: a4:18:71:09:52:39:1c:33:c9:30:34:79:e9:06:74: 85:61:4e:7e:1e:d8:74:bb:4f:96:6b:a8:0f:7c:7e: 22:9a:4e:1f:6a:73:be:4b:70:2a:bb:8b:62:41:89: 80:f0:53:88:fe:1c:00:f5:9a:96:ed:d7:55:5a:d0: e3:fa:fc:97:77:96:8f:21:b0:0b:85:b0:77:f9:98: f7:0d:04:e3:57:6c:50:ef:45:e5:7f:d0:9c:fb:53: b0:ac:28:a2:55:8f:93:aa:0b:12:84:75:17:46:f3: ab:98:90:08:d3:9e:3a:d4:9a:16:8c:0e:ea:90:f0: 24:0b:aa:83:f8:d0:b6:d2:8c:bc:0a:c7:b1:53:d2: 8b:ab:0d:2b:ca:ac:a9:ae:66:5e:52:04:06:7a:6f: aa:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:EE:A5:42:72:6A:18:1A:37:D4:81:F8:2E:F5:59:68:7E:05:C1:CB X509v3 Authority Key Identifier: keyid:B4:32:0F:D7:8D:FB:6A:4D:1C:92:32:2F:79:49:66:B8:52:5D:FD:D2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/tDIP1437ak0ckjIveUlmuFJd_dI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/ru6lQnJqGBo31IH4LvVZaH4Fwcs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.227.24.0/23 Signature Algorithm: sha256WithRSAEncryption 84:e5:32:23:fb:80:0e:6b:7f:9b:67:ea:3f:13:a9:5e:43:9f: 1f:a6:91:60:ad:a4:bb:75:f7:25:bd:0b:11:fd:0b:cb:fd:54: ee:76:f4:06:70:5b:0d:41:f0:9b:20:b4:ea:03:ea:ce:3c:1f: 2e:0b:ac:3c:b6:f7:65:a3:c5:27:33:ff:92:ea:6e:87:99:11: a9:b9:b8:ca:a6:d7:b9:2e:cb:1c:53:af:1b:32:7f:89:de:16: cb:7c:18:86:7a:d2:67:5c:9e:13:cd:02:c3:c6:91:1b:ee:c5: 75:e4:e4:84:59:04:d8:fa:5c:81:98:30:63:da:9b:a6:f5:c7: 8a:92:8a:70:48:2a:00:74:ba:e1:02:19:19:a8:32:e3:47:0c: b8:f7:f2:52:bb:87:c5:d0:aa:15:28:dd:87:d1:7b:77:c8:01: a7:f5:5d:07:fa:16:80:64:ba:f8:e3:4d:21:b2:90:41:e1:70: b6:92:ac:cc:02:72:56:10:bc:a9:cd:94:d7:6e:ae:0b:05:53: 32:a4:94:ba:ca:d5:7e:db:af:95:07:3d:0a:35:f2:42:64:b2: bd:1a:39:11:3b:18:95:82:ae:24:70:b0:ee:3d:5e:93:85:18: 20:ac:be:1e:26:b3:86:54:4f:e6:a1:62:4d:23:03:da:64:8c: b9:67:b9:8e -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICWn0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjQz MjBGRDc4REZCNkE0RDFDOTIzMjJGNzk0OTY2Qjg1MjVERkREMjAeFw0yNTA4MjIw ODU1NTRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEFFRUVBNTQyNzI2QTE4 MUEzN0Q0ODFGODJFRjU1OTY4N0UwNUMxQ0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8Fi2uA3uB03/CIMR9htLVnz7uNe+0Lyo0hMq3S3p5E1MLYYWC PIT+xwEXXFrRHR+vliohBkSYLviB9+GXYiYZjCeM8mJFgV0ScES8ETw5z1gvSFGI DJl+nsod59Na1q08yFMw/v2HqaQYcQlSORwzyTA0eekGdIVhTn4e2HS7T5ZrqA98 fiKaTh9qc75LcCq7i2JBiYDwU4j+HAD1mpbt11Va0OP6/Jd3lo8hsAuFsHf5mPcN BONXbFDvReV/0Jz7U7CsKKJVj5OqCxKEdRdG86uYkAjTnjrUmhaMDuqQ8CQLqoP4 0LbSjLwKx7FT0ourDSvKrKmuZl5SBAZ6b6qbAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUru6lQnJqGBo31IH4LvVZaH4FwcswHwYDVR0jBBgwFoAUtDIP1437ak0ckjIv eUlmuFJd/dIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTlRDQ0FU Vi90RElQMTQzN2FrMGNrakl2ZVVsbXVGSmRfZEkuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL3RESVAxNDM3YWswY2tqSXZlVWxtdUZKZF9kSS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL05UQ0NBVFYvcnU2bFFuSnFHQm8zMUlI NEx2VlphSDRGd2NzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ASvjGDANBgkqhkiG9w0BAQsFAAOCAQEAhOUyI/uADmt/m2fqPxOpXkOfH6aRYK2k u3X3Jb0LEf0Ly/1U7nb0BnBbDUHwmyC06gPqzjwfLgusPLb3ZaPFJzP/kupuh5kR qbm4yqbXuS7LHFOvGzJ/id4Wy3wYhnrSZ1yeE80Cw8aRG+7FdeTkhFkE2PpcgZgw Y9qbpvXHipKKcEgqAHS64QIZGagy40cMuPfyUruHxdCqFSjdh9F7d8gBp/VdB/oW gGS6+ONNIbKQQeFwtpKszAJyVhC8qc2U126uCwVTMqSUusrVftuvlQc9CjXyQmSy vRo5ETsYlYKuJHCw7j1ek4UYIKy+HiazhlRP5qFiTSMD2mSMuWe5jg== -----END CERTIFICATE-----Generated at Sun Aug 24 09:06:35 2025 by rpki-client