$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/xE4mgJV7Dl0DKrKZQnlm-Lm5TpQ.roa File: xE4mgJV7Dl0DKrKZQnlm-Lm5TpQ.roa (raw, json) Hash identifier: bp0fEUFJXcyG52ugspAPP08M7fvGLZZfr6eVOmgym6M= Subject key identifier: C4:4E:26:80:95:7B:0E:5D:03:2A:B2:99:42:79:66:F8:B9:B9:4E:94 Certificate issuer: /CN=B4320FD78DFB6A4D1C92322F794966B8525DFDD2 Certificate serial: 5A80 Authority key identifier: B4:32:0F:D7:8D:FB:6A:4D:1C:92:32:2F:79:49:66:B8:52:5D:FD:D2 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/xE4mgJV7Dl0DKrKZQnlm-Lm5TpQ.roa Signing time: Fri 22 Aug 2025 08:55:55 +0000 ROA not before: Fri 22 Aug 2025 08:55:55 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38851 IP address blocks: 103.46.188.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/tDIP1437ak0ckjIveUlmuFJd_dI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/tDIP1437ak0ckjIveUlmuFJd_dI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23168 (0x5a80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4320FD78DFB6A4D1C92322F794966B8525DFDD2 Validity Not Before: Aug 22 08:55:55 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C44E2680957B0E5D032AB299427966F8B9B94E94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:4f:25:09:ba:47:4e:3a:4a:b8:8f:2e:1f:ac: 03:4f:6f:19:44:75:1c:98:26:ea:b7:c6:3a:47:00: 5f:b3:f2:4f:e9:73:7e:8e:f9:0d:95:ae:ad:88:66: ad:c4:38:c6:b3:2e:43:84:cd:50:0f:c5:3a:19:6e: be:40:93:c9:b1:8c:74:47:96:84:08:3b:c9:fd:1a: f0:38:4b:d5:af:4c:29:0e:f4:9f:ac:44:a9:78:aa: 2f:33:f2:ae:42:19:75:23:04:7a:a5:9c:37:8b:14: 51:a0:7d:2a:7c:62:25:55:02:f2:05:56:0b:17:87: f2:ad:13:09:88:89:73:6f:f0:68:5e:d7:8c:85:2b: f5:b0:19:18:15:72:75:fb:12:13:e3:38:21:d4:f5: ab:6e:04:c6:93:22:8e:c5:15:93:c3:ad:6b:4c:60: ac:3a:20:b3:b4:2b:54:4f:53:2f:9f:61:b3:f8:d6: b7:71:5c:e2:f9:cb:6e:fe:92:ce:7b:e5:b4:30:d6: 4b:58:3c:a8:a8:93:41:be:1c:ac:2a:34:ad:26:31: d9:ac:b0:a6:4b:b7:c7:fb:c7:ae:e5:0c:2b:6f:96: 89:a6:67:54:99:33:70:8d:fa:c8:36:6c:a2:d6:58: 5f:96:08:5d:e8:ad:19:24:d2:6c:95:41:6c:fc:ac: 28:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:4E:26:80:95:7B:0E:5D:03:2A:B2:99:42:79:66:F8:B9:B9:4E:94 X509v3 Authority Key Identifier: keyid:B4:32:0F:D7:8D:FB:6A:4D:1C:92:32:2F:79:49:66:B8:52:5D:FD:D2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/tDIP1437ak0ckjIveUlmuFJd_dI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/xE4mgJV7Dl0DKrKZQnlm-Lm5TpQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.46.188.0/23 Signature Algorithm: sha256WithRSAEncryption 1e:24:c8:8f:d7:1a:49:75:ec:aa:11:54:7c:31:21:8e:d4:22: 29:05:52:30:3c:23:08:91:53:89:fe:22:c7:a4:12:ef:d7:7a: a3:c7:50:18:ec:66:9f:8e:94:0c:0a:21:ff:ef:b8:a2:6d:78: bd:3f:19:0a:cc:38:df:1d:3f:3a:57:b7:dd:56:9a:b2:3d:7f: 14:5e:57:60:1b:37:70:6a:38:12:52:c0:08:9b:c1:83:5d:fa: 42:01:9b:d1:5e:bc:99:17:46:d0:7a:d9:bd:5f:d7:a7:05:9b: 3e:ec:ca:58:d2:09:01:bf:ce:cc:10:15:08:23:b1:1c:be:e2: 9e:a0:72:fb:63:d5:66:c2:dc:ed:fd:35:51:ca:3b:ee:97:b9: 8e:55:77:99:ed:82:91:d8:79:f9:1c:c7:28:0d:c7:fe:86:a7: 82:59:d2:bd:f7:bc:d0:3f:5a:ba:df:c8:5b:3a:61:a5:75:3a: 52:5a:6d:b8:a1:f6:d3:d0:9d:59:38:73:d9:94:48:d6:00:d8: dc:b9:a6:28:06:e9:81:76:6d:4f:2e:31:1d:87:82:73:c6:9c: 1e:2a:7f:a3:b6:6c:4c:71:3b:8b:94:16:88:5e:fe:15:d0:2f: b5:9a:d2:62:d0:ef:cd:62:d3:38:34:c2:0c:f8:d1:b2:29:48: ae:30:a2:4c -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICWoAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjQz MjBGRDc4REZCNkE0RDFDOTIzMjJGNzk0OTY2Qjg1MjVERkREMjAeFw0yNTA4MjIw ODU1NTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEM0NEUyNjgwOTU3QjBF NUQwMzJBQjI5OTQyNzk2NkY4QjlCOTRFOTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDITyUJukdOOkq4jy4frANPbxlEdRyYJuq3xjpHAF+z8k/pc36O +Q2Vrq2IZq3EOMazLkOEzVAPxToZbr5Ak8mxjHRHloQIO8n9GvA4S9WvTCkO9J+s RKl4qi8z8q5CGXUjBHqlnDeLFFGgfSp8YiVVAvIFVgsXh/KtEwmIiXNv8Ghe14yF K/WwGRgVcnX7EhPjOCHU9atuBMaTIo7FFZPDrWtMYKw6ILO0K1RPUy+fYbP41rdx XOL5y27+ks575bQw1ktYPKiok0G+HKwqNK0mMdmssKZLt8f7x67lDCtvlommZ1SZ M3CN+sg2bKLWWF+WCF3orRkk0myVQWz8rCinAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUxE4mgJV7Dl0DKrKZQnlm+Lm5TpQwHwYDVR0jBBgwFoAUtDIP1437ak0ckjIv eUlmuFJd/dIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTlRDQ0FU Vi90RElQMTQzN2FrMGNrakl2ZVVsbXVGSmRfZEkuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL3RESVAxNDM3YWswY2tqSXZlVWxtdUZKZF9kSS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL05UQ0NBVFYveEU0bWdKVjdEbDBES3JL WlFubG0tTG01VHBRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AWcuvDANBgkqhkiG9w0BAQsFAAOCAQEAHiTIj9caSXXsqhFUfDEhjtQiKQVSMDwj CJFTif4ix6QS79d6o8dQGOxmn46UDAoh/++4om14vT8ZCsw43x0/Ole33Vaasj1/ FF5XYBs3cGo4ElLACJvBg136QgGb0V68mRdG0HrZvV/XpwWbPuzKWNIJAb/OzBAV CCOxHL7inqBy+2PVZsLc7f01Uco77pe5jlV3me2Ckdh5+RzHKA3H/oanglnSvfe8 0D9aut/IWzphpXU6UlptuKH209CdWThz2ZRI1gDY3LmmKAbpgXZtTy4xHYeCc8ac Hip/o7ZsTHE7i5QWiF7+FdAvtZrSYtDvzWLTODTCDPjRsilIrjCiTA== -----END CERTIFICATE-----Generated at Sun Aug 24 07:05:10 2025 by rpki-client