$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/GhTllQn97Wh3AXNmR1yB3GgRn0U.roa File: GhTllQn97Wh3AXNmR1yB3GgRn0U.roa (raw, json) Hash identifier: YgHlW3KHYqX/OZd81bf4RVhxonU8f3V6Cg/BUXAlzlw= Subject key identifier: 1A:14:E5:95:09:FD:ED:68:77:01:73:66:47:5C:81:DC:68:11:9F:45 Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Certificate serial: 0DC1 Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/GhTllQn97Wh3AXNmR1yB3GgRn0U.roa Signing time: Fri 22 Aug 2025 08:49:50 +0000 ROA not before: Fri 22 Aug 2025 08:49:50 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4781 IP address blocks: 210.63.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3521 (0xdc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Validity Not Before: Aug 22 08:49:50 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1A14E59509FDED6877017366475C81DC68119F45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:aa:24:7d:f9:20:bb:e2:d1:23:6a:ee:ba:f4: 49:4a:58:fb:81:c9:4a:db:1e:12:c8:6b:ab:66:ed: 06:46:8f:26:85:6b:56:82:42:2f:dc:fb:df:46:c6: 13:89:65:82:36:45:bf:e6:44:9c:57:1f:2d:66:41: c7:24:c7:88:52:90:ec:1d:7e:83:35:5a:88:42:90: 5b:97:54:f8:9f:70:6d:4e:26:da:79:be:0c:8c:87: a3:25:35:3b:d3:06:a5:19:ca:cc:73:cf:9f:84:13: 4d:5e:4a:03:00:3b:b4:25:12:34:53:cd:ed:dc:17: dc:d6:74:e3:82:8b:b9:97:52:62:11:63:54:88:cf: 6a:dc:5a:29:cc:f8:41:1a:67:d1:e0:a2:17:c4:29: b7:6d:de:0d:f9:08:56:70:7a:79:58:06:1f:91:f8: 18:49:cd:e2:b6:67:86:ff:9b:f7:40:a3:8f:4b:38: 7e:c0:7d:f5:57:46:84:5a:16:12:58:ec:e6:f9:e8: f5:96:4e:09:cd:98:83:c9:98:70:4a:48:e7:4f:ac: ca:f8:e9:1c:ab:eb:02:c7:00:0f:ca:e4:f1:38:1b: f9:87:c5:85:a7:99:96:35:13:c4:83:53:20:8c:15: 5d:00:58:a3:5d:e3:3f:43:3e:b8:a5:33:f3:ab:d1: cc:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:14:E5:95:09:FD:ED:68:77:01:73:66:47:5C:81:DC:68:11:9F:45 X509v3 Authority Key Identifier: keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/GhTllQn97Wh3AXNmR1yB3GgRn0U.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.63.101.0/24 Signature Algorithm: sha256WithRSAEncryption 56:b0:5b:a4:9a:3d:2b:1d:c1:b9:db:25:e7:43:f1:f2:ef:d3: e4:ab:73:04:38:a2:93:4f:88:1e:dd:83:94:ac:56:62:cb:0f: 7f:1b:29:3a:0d:bd:54:f5:10:b6:8e:9c:82:0c:c3:d1:5f:77: a4:23:7f:7c:b5:ef:cf:99:73:10:42:a6:b2:b4:c4:dd:f4:d6: 4b:7a:c4:b3:47:70:d0:79:0f:44:ae:aa:a8:fc:be:f1:10:14: d5:c7:c5:f3:93:17:34:e7:86:7b:3f:47:67:0b:48:da:46:f9: 8a:c2:ce:4d:52:31:58:59:c9:9a:31:1b:01:41:c8:99:6c:ce: ff:a6:a7:49:06:3b:b2:13:f2:4a:00:f8:39:29:15:b2:52:44: 7c:0b:95:ee:8f:3c:85:bb:39:48:22:ff:6f:7c:6d:b2:54:ae: 0b:93:07:ad:26:01:7b:2b:c6:49:0a:38:4f:36:58:03:c6:88: ca:81:10:82:0a:12:5f:e6:46:c0:e6:44:89:9c:42:d4:47:12: ce:f0:2a:d1:9a:ec:db:32:85:ec:a1:11:69:ef:35:7d:9f:a4: 96:f0:12:55:c9:f8:b1:43:e4:11:c5:b5:6c:32:29:b5:aa:61: f9:f0:2a:5f:b3:30:38:29:3c:4a:10:9e:13:8b:32:4b:b3:70: 35:3c:fb:f1 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDcEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTI5 QjYwNkRCODYyODNCRDRBMDhBRjdFQjMzRUYzOEEyNTY2MzFCQjAeFw0yNTA4MjIw ODQ5NTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDFBMTRFNTk1MDlGREVE Njg3NzAxNzM2NjQ3NUM4MURDNjgxMTlGNDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCqiR9+SC74tEjau669ElKWPuByUrbHhLIa6tm7QZGjyaFa1aC Qi/c+99GxhOJZYI2Rb/mRJxXHy1mQcckx4hSkOwdfoM1WohCkFuXVPifcG1OJtp5 vgyMh6MlNTvTBqUZysxzz5+EE01eSgMAO7QlEjRTze3cF9zWdOOCi7mXUmIRY1SI z2rcWinM+EEaZ9HgohfEKbdt3g35CFZwenlYBh+R+BhJzeK2Z4b/m/dAo49LOH7A ffVXRoRaFhJY7Ob56PWWTgnNmIPJmHBKSOdPrMr46Ryr6wLHAA/K5PE4G/mHxYWn mZY1E8SDUyCMFV0AWKNd4z9DPrilM/Or0cxHAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUGhTllQn97Wh3AXNmR1yB3GgRn0UwHwYDVR0jBBgwFoAUUptgbbhig71KCK9+ sz7ziiVmMbswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEFHSUMv VXB0Z2JiaGlnNzFLQ0s5LXN6N3ppaVZtTWJzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9VcHRnYmJoaWc3MUtDSzktc3o3emlpVm1NYnMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QQUdJQy9HaFRsbFFuOTdXaDNBWE5tUjF5 QjNHZ1JuMFUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0j9l MA0GCSqGSIb3DQEBCwUAA4IBAQBWsFukmj0rHcG52yXnQ/Hy79Pkq3MEOKKTT4ge 3YOUrFZiyw9/Gyk6Db1U9RC2jpyCDMPRX3ekI398te/PmXMQQqaytMTd9NZLesSz R3DQeQ9Erqqo/L7xEBTVx8Xzkxc054Z7P0dnC0jaRvmKws5NUjFYWcmaMRsBQciZ bM7/pqdJBjuyE/JKAPg5KRWyUkR8C5XujzyFuzlIIv9vfG2yVK4LkwetJgF7K8ZJ CjhPNlgDxojKgRCCChJf5kbA5kSJnELURxLO8CrRmuzbMoXsoRFp7zV9n6SW8BJV yfixQ+QRxbVsMim1qmH58CpfszA4KTxKEJ4TizJLs3A1PPvx -----END CERTIFICATE-----Generated at Sun Aug 24 09:43:35 2025 by rpki-client