$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Gf5viT2vUl8MDXXD5qFnJck2oZY.roa File: Gf5viT2vUl8MDXXD5qFnJck2oZY.roa (raw, json) Hash identifier: iQBN7IRm9XE8qw6qTqXKMGnDHT821G09G0yZy8ncnYM= Subject key identifier: 19:FE:6F:89:3D:AF:52:5F:0C:0D:75:C3:E6:A1:67:25:C9:36:A1:96 Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Certificate serial: 0DBB Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Gf5viT2vUl8MDXXD5qFnJck2oZY.roa Signing time: Fri 22 Aug 2025 08:49:49 +0000 ROA not before: Fri 22 Aug 2025 08:49:49 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17420 IP address blocks: 211.73.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3515 (0xdbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Validity Not Before: Aug 22 08:49:49 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=19FE6F893DAF525F0C0D75C3E6A16725C936A196 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:24:f5:65:48:ed:7a:ca:6a:15:04:fa:67:93: a1:7e:9b:1e:54:0a:87:00:e3:cc:4f:10:8e:9a:37: 51:09:7c:ff:b8:62:b0:ee:e4:90:cc:50:cc:d9:b5: f8:fe:1f:ce:89:60:b0:89:2e:df:fa:73:f5:6c:f9: 53:74:c1:3e:51:9f:42:d6:17:12:ed:77:59:b6:0f: 04:e0:17:23:f9:f5:e5:ff:6e:ad:2f:43:17:06:9e: 8c:5b:aa:01:82:bb:8d:9f:1c:ba:8d:62:f5:45:4d: 91:ae:ad:90:ea:55:70:63:c7:9c:f3:08:2b:4c:a7: be:02:31:1e:60:da:d2:46:1b:c3:ab:0c:6a:9e:08: c3:da:66:25:ed:fe:dd:b7:51:73:b1:1d:c3:0b:87: 45:84:e5:ed:c3:e6:16:03:6e:49:cf:dc:c0:70:7f: 29:66:fc:f8:e5:df:04:f7:d0:71:12:da:a1:91:0a: a6:f4:76:d9:25:44:15:68:91:0e:10:69:0d:c7:aa: 0d:79:eb:14:9a:79:6a:38:06:c9:ae:5e:33:2f:36: 7c:5a:5b:45:de:f6:32:d1:92:19:21:c7:d7:9a:db: 05:52:5c:8d:38:6a:55:3c:f9:23:21:01:28:8a:d8: b0:f0:0c:67:a7:72:64:d7:8d:f0:13:dc:c2:f0:d0: c1:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:FE:6F:89:3D:AF:52:5F:0C:0D:75:C3:E6:A1:67:25:C9:36:A1:96 X509v3 Authority Key Identifier: keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Gf5viT2vUl8MDXXD5qFnJck2oZY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.73.224.0/19 Signature Algorithm: sha256WithRSAEncryption 36:e9:ce:eb:d4:38:ea:87:af:66:78:63:24:b1:81:59:96:3f: b9:48:4f:68:d8:6a:2f:98:bb:6f:58:9d:de:1e:3b:2a:8a:75: b0:c8:bb:a6:57:1a:8b:4c:3f:3a:49:9a:dc:73:0d:ec:26:c3: 36:63:9a:29:66:f9:88:af:41:18:9c:c0:1f:82:25:d3:9d:be: ca:b4:ee:84:6e:07:b3:03:39:1e:4f:0f:d2:e5:4a:24:19:d3: 15:1b:39:15:06:9e:f0:69:e3:0a:7b:cd:af:c4:31:36:63:1d: ae:a1:1d:12:4d:8e:e7:cf:fa:5a:58:c5:bd:b1:77:0c:c2:65: 24:c3:91:be:9e:70:91:4a:bd:b3:56:46:25:88:bb:e9:3a:dd: 78:50:18:11:3b:65:83:87:89:ac:b1:06:ef:0e:a4:2a:95:2b: 12:be:68:bb:c5:c3:4e:97:12:89:fa:2e:62:4c:76:fc:0a:f8: d6:66:1e:82:8d:c5:8b:69:ad:05:ea:b5:b2:61:43:85:2c:c9: e1:19:82:87:5d:23:58:ea:3c:bd:9d:53:dc:20:74:1e:c6:bb: b5:0b:6b:b3:31:6a:ca:a3:13:88:37:33:9a:fb:0a:a4:65:d4: d3:23:5d:ed:73:c4:0c:0e:07:87:b6:94:e3:4f:69:16:96:db: 50:42:78:a5 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDbswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTI5 QjYwNkRCODYyODNCRDRBMDhBRjdFQjMzRUYzOEEyNTY2MzFCQjAeFw0yNTA4MjIw ODQ5NDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDE5RkU2Rjg5M0RBRjUy NUYwQzBENzVDM0U2QTE2NzI1QzkzNkExOTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPJPVlSO16ymoVBPpnk6F+mx5UCocA48xPEI6aN1EJfP+4YrDu 5JDMUMzZtfj+H86JYLCJLt/6c/Vs+VN0wT5Rn0LWFxLtd1m2DwTgFyP59eX/bq0v QxcGnoxbqgGCu42fHLqNYvVFTZGurZDqVXBjx5zzCCtMp74CMR5g2tJGG8OrDGqe CMPaZiXt/t23UXOxHcMLh0WE5e3D5hYDbknP3MBwfylm/Pjl3wT30HES2qGRCqb0 dtklRBVokQ4QaQ3Hqg156xSaeWo4BsmuXjMvNnxaW0Xe9jLRkhkhx9ea2wVSXI04 alU8+SMhASiK2LDwDGencmTXjfAT3MLw0MEDAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUGf5viT2vUl8MDXXD5qFnJck2oZYwHwYDVR0jBBgwFoAUUptgbbhig71KCK9+ sz7ziiVmMbswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEFHSUMv VXB0Z2JiaGlnNzFLQ0s5LXN6N3ppaVZtTWJzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9VcHRnYmJoaWc3MUtDSzktc3o3emlpVm1NYnMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QQUdJQy9HZjV2aVQydlVsOE1EWFhENXFG bkpjazJvWlkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQF00ng MA0GCSqGSIb3DQEBCwUAA4IBAQA26c7r1Djqh69meGMksYFZlj+5SE9o2GovmLtv WJ3eHjsqinWwyLumVxqLTD86SZrccw3sJsM2Y5opZvmIr0EYnMAfgiXTnb7KtO6E bgezAzkeTw/S5UokGdMVGzkVBp7waeMKe82vxDE2Yx2uoR0STY7nz/paWMW9sXcM wmUkw5G+nnCRSr2zVkYliLvpOt14UBgRO2WDh4mssQbvDqQqlSsSvmi7xcNOlxKJ +i5iTHb8CvjWZh6CjcWLaa0F6rWyYUOFLMnhGYKHXSNY6jy9nVPcIHQexru1C2uz MWrKoxOINzOa+wqkZdTTI13tc8QMDgeHtpTjT2kWlttQQnil -----END CERTIFICATE-----Generated at Sun Aug 24 09:45:06 2025 by rpki-client