$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/RGvKgHVH-LTO8kVN7g187HfIK_Q.roa File: RGvKgHVH-LTO8kVN7g187HfIK_Q.roa (raw, json) Hash identifier: hx5Th35X+D3p3Vf/sYRnSiVXXpIKuboYORPSPR4WiQ8= Subject key identifier: 44:6B:CA:80:75:47:F8:B4:CE:F2:45:4D:EE:0D:7C:EC:77:C8:2B:F4 Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Certificate serial: 0DBF Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/RGvKgHVH-LTO8kVN7g187HfIK_Q.roa Signing time: Fri 22 Aug 2025 08:49:50 +0000 ROA not before: Fri 22 Aug 2025 08:49:50 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17420 IP address blocks: 2403:9f00::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3519 (0xdbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Validity Not Before: Aug 22 08:49:50 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=446BCA807547F8B4CEF2454DEE0D7CEC77C82BF4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:0b:22:49:d5:02:0e:6a:18:e1:ab:62:bf:0c: 35:26:00:4b:30:a1:47:25:2b:07:56:f2:84:b3:e3: 3e:8b:48:07:9b:aa:80:6c:52:f1:39:31:38:af:07: e7:14:77:8d:58:55:8f:79:f7:a4:c9:9a:4e:ad:f2: 88:90:e5:0c:14:19:10:21:56:8a:53:c6:9b:21:7e: da:8a:b5:d6:c5:ba:5f:f5:ab:90:f7:e6:f2:c5:b3: 63:09:59:2d:40:c1:9d:01:95:d8:b8:18:cf:70:4c: bf:2a:cf:02:4f:99:fb:50:6d:46:8c:71:61:55:ef: a6:a3:62:62:f1:1f:98:05:72:03:9d:51:19:9a:bb: f2:e5:74:a6:e9:3a:9a:4d:f7:cb:68:18:93:7a:d2: eb:d2:71:59:f6:dc:6b:2b:2c:e6:61:ba:89:75:81: cc:9c:88:9f:da:27:31:b4:f6:9b:54:03:e2:3b:c7: b4:b4:b1:ff:f0:cb:6a:bc:89:b6:c1:fb:cf:c4:c2: 08:e4:51:82:7d:e4:07:8b:a1:5a:4f:e4:b3:9f:46: 19:19:db:4e:1d:04:dd:1a:4d:a8:7d:ee:fc:0a:c5: aa:22:1b:1e:fe:5f:d1:32:6a:6f:98:9f:c1:7e:c9: bd:37:f1:af:0b:c4:e7:88:04:76:d7:1f:50:64:0e: 0d:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:6B:CA:80:75:47:F8:B4:CE:F2:45:4D:EE:0D:7C:EC:77:C8:2B:F4 X509v3 Authority Key Identifier: keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/RGvKgHVH-LTO8kVN7g187HfIK_Q.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:9f00::/32 Signature Algorithm: sha256WithRSAEncryption 6b:f8:4a:66:2d:81:9b:c7:65:ee:0e:df:0f:26:3d:78:1d:92: cd:02:94:21:ab:6b:2c:90:03:c9:23:a9:95:3a:47:ac:d7:3d: c9:87:22:6d:ab:11:2c:33:ad:49:45:74:ee:92:f8:8c:80:b6: d1:13:4d:db:a3:cc:49:59:ae:89:ef:93:d3:70:b1:b0:f7:ad: d1:ec:6c:0b:a9:02:36:80:01:bd:2e:fa:7e:cc:96:bd:d9:22: 9a:56:27:57:ff:64:75:53:08:4a:d4:e1:04:00:1a:07:23:8a: 05:3b:e5:fc:a0:5a:3f:9a:9e:3f:25:5b:f5:c7:d5:d9:d5:ad: ba:29:94:c2:1a:7d:fc:9c:09:e8:80:89:c8:27:d0:98:05:c0: e1:b9:1a:a6:e3:33:72:bc:e7:46:98:26:39:3c:2a:a8:4b:44: dd:4b:0f:e1:72:2a:d9:c9:96:b0:41:e2:11:44:aa:bc:e9:9d: 21:80:ed:6f:f1:f6:8b:89:07:cd:4c:80:5f:07:d0:d3:dc:c8: e0:5b:b3:1b:cd:f7:3c:bc:ad:af:20:6b:86:b8:c1:d5:20:83: 76:0a:99:fb:21:18:42:d3:20:c7:7a:c0:a1:31:25:9e:73:29: d7:df:a2:15:80:44:09:0c:a1:b8:e1:06:e8:61:32:59:29:a3: 51:e4:d4:4a -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICDb8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTI5 QjYwNkRCODYyODNCRDRBMDhBRjdFQjMzRUYzOEEyNTY2MzFCQjAeFw0yNTA4MjIw ODQ5NTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQ0NkJDQTgwNzU0N0Y4 QjRDRUYyNDU0REVFMEQ3Q0VDNzdDODJCRjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCCyJJ1QIOahjhq2K/DDUmAEswoUclKwdW8oSz4z6LSAebqoBs UvE5MTivB+cUd41YVY9596TJmk6t8oiQ5QwUGRAhVopTxpshftqKtdbFul/1q5D3 5vLFs2MJWS1AwZ0Bldi4GM9wTL8qzwJPmftQbUaMcWFV76ajYmLxH5gFcgOdURma u/LldKbpOppN98toGJN60uvScVn23GsrLOZhuol1gcyciJ/aJzG09ptUA+I7x7S0 sf/wy2q8ibbB+8/EwgjkUYJ95AeLoVpP5LOfRhkZ204dBN0aTah97vwKxaoiGx7+ X9Eyam+Yn8F+yb038a8LxOeIBHbXH1BkDg2TAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQURGvKgHVH+LTO8kVN7g187HfIK/QwHwYDVR0jBBgwFoAUUptgbbhig71KCK9+ sz7ziiVmMbswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEFHSUMv VXB0Z2JiaGlnNzFLQ0s5LXN6N3ppaVZtTWJzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9VcHRnYmJoaWc3MUtDSzktc3o3emlpVm1NYnMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QQUdJQy9SR3ZLZ0hWSC1MVE84a1ZON2cx ODdIZklLX1Eucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAOf ADANBgkqhkiG9w0BAQsFAAOCAQEAa/hKZi2Bm8dl7g7fDyY9eB2SzQKUIatrLJAD ySOplTpHrNc9yYcibasRLDOtSUV07pL4jIC20RNN26PMSVmuie+T03CxsPet0exs C6kCNoABvS76fsyWvdkimlYnV/9kdVMIStThBAAaByOKBTvl/KBaP5qePyVb9cfV 2dWtuimUwhp9/JwJ6ICJyCfQmAXA4bkapuMzcrznRpgmOTwqqEtE3UsP4XIq2cmW sEHiEUSqvOmdIYDtb/H2i4kHzUyAXwfQ09zI4FuzG833PLytryBrhrjB1SCDdgqZ +yEYQtMgx3rAoTElnnMp19+iFYBECQyhuOEG6GEyWSmjUeTUSg== -----END CERTIFICATE-----Generated at Sun Aug 24 09:45:18 2025 by rpki-client