$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/GP_Ws01hbofx3QjCaHbqpAkzX2E.roa File: GP_Ws01hbofx3QjCaHbqpAkzX2E.roa (raw, json) Hash identifier: G42Vgt5R/IaxSMRZMIco0EKgTIbVJPZ7X83uwRy1rUQ= Subject key identifier: 18:FF:D6:B3:4D:61:6E:87:F1:DD:08:C2:68:76:EA:A4:09:33:5F:61 Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Certificate serial: 0E0B Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/GP_Ws01hbofx3QjCaHbqpAkzX2E.roa Signing time: Fri 22 Aug 2025 08:50:59 +0000 ROA not before: Fri 22 Aug 2025 08:50:59 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9922 IP address blocks: 39.1.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3595 (0xe0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Validity Not Before: Aug 22 08:50:59 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=18FFD6B34D616E87F1DD08C26876EAA409335F61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b2:72:0a:93:ab:d3:29:5f:71:72:c7:07:63: 3d:e1:3a:71:2b:32:25:16:dc:50:41:56:d1:df:37: 5c:3b:f5:9b:ed:d9:e9:40:97:f4:f6:12:b7:c8:10: 59:27:e9:b4:2f:1d:b5:99:3f:ee:a3:9f:f7:20:04: af:09:00:6b:4f:8b:c6:7b:68:55:08:87:f7:80:24: 11:3f:0e:7b:d9:6f:a6:e8:80:35:e0:6d:34:fa:81: cd:c1:af:9c:9e:3c:dd:7e:41:f0:99:90:91:71:c6: 42:0b:3e:41:c6:69:6b:cf:f5:c8:13:2d:1c:f2:2f: 51:b1:5c:9a:47:1f:48:72:5d:bc:d1:44:85:b6:4e: fc:dc:2b:43:c3:da:14:f2:fb:cb:4c:2c:e5:18:fa: d3:74:88:47:7b:c7:4a:1c:3a:e8:88:5d:b2:72:8b: 47:5e:2e:ce:15:92:9b:9a:2c:37:4f:74:8f:44:ad: a3:61:34:61:65:ba:31:99:86:48:65:3b:1a:f8:a0: 73:16:4c:ab:cf:b4:06:67:cc:1a:69:d6:51:50:3d: 08:e5:a8:e1:fa:55:df:6d:7e:18:ae:e1:7f:25:d2: 8d:1d:60:5d:33:1c:5f:4e:b7:26:ff:db:83:50:23: d0:fd:f1:91:bf:02:10:7f:5a:14:68:65:a2:56:c1: 78:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:FF:D6:B3:4D:61:6E:87:F1:DD:08:C2:68:76:EA:A4:09:33:5F:61 X509v3 Authority Key Identifier: keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/GP_Ws01hbofx3QjCaHbqpAkzX2E.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 39.1.64.0/20 Signature Algorithm: sha256WithRSAEncryption 84:96:5f:d8:fd:31:66:89:10:89:0f:86:c6:0d:64:a3:cf:a6: 48:33:a1:5d:82:10:d0:08:6f:6a:ec:e2:b9:a0:a2:bc:08:31: 16:0f:2b:5d:24:a4:c0:76:48:c6:a0:50:9d:9b:b6:4d:a3:07: 9c:32:fb:76:74:a9:51:ff:eb:5f:11:ae:f3:4e:36:07:55:99: 22:4a:73:1d:58:30:02:69:02:a2:51:34:d3:f5:df:4d:1d:66: 53:bf:a6:72:7c:2d:09:54:39:9d:ba:28:e8:d9:3e:a3:a4:2a: b7:00:ff:d9:89:85:31:29:e9:44:28:1f:69:ce:3e:d9:9d:0b: 24:49:c2:03:a4:bc:ba:9f:6f:b0:d5:24:4c:9b:13:81:3b:df: 79:92:b4:fc:6c:02:00:fd:dd:2a:67:e5:bf:e0:8e:5f:1e:f3: c3:b2:c8:07:d9:63:b1:d9:26:8c:3f:eb:5e:be:fd:90:d2:db: 17:21:00:63:1c:50:80:22:6c:5f:21:9b:fc:be:db:65:8c:85: ca:f0:c4:21:3d:45:e7:9a:12:8b:c2:47:65:35:7a:7d:f5:0e: b0:bd:68:b7:c7:5f:e6:69:68:e9:7d:a6:c4:54:1f:55:87:22: ac:7d:0b:bc:cd:64:3c:d7:19:d1:b9:ce:ac:56:71:3a:74:9c: cd:52:1e:b3 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDgswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0NC NTQ1NDE1M0FDQ0VDRTg1MjBEMzM5MDdENTRFNTZDNUNBOUE0QjAeFw0yNTA4MjIw ODUwNTlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDE4RkZENkIzNEQ2MTZF ODdGMUREMDhDMjY4NzZFQUE0MDkzMzVGNjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHsnIKk6vTKV9xcscHYz3hOnErMiUW3FBBVtHfN1w79Zvt2elA l/T2ErfIEFkn6bQvHbWZP+6jn/cgBK8JAGtPi8Z7aFUIh/eAJBE/DnvZb6bogDXg bTT6gc3Br5yePN1+QfCZkJFxxkILPkHGaWvP9cgTLRzyL1GxXJpHH0hyXbzRRIW2 TvzcK0PD2hTy+8tMLOUY+tN0iEd7x0ocOuiIXbJyi0deLs4VkpuaLDdPdI9EraNh NGFlujGZhkhlOxr4oHMWTKvPtAZnzBpp1lFQPQjlqOH6Vd9tfhiu4X8l0o0dYF0z HF9Otyb/24NQI9D98ZG/AhB/WhRoZaJWwXjRAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUGP/Ws01hbofx3QjCaHbqpAkzX2EwHwYDVR0jBBgwFoAUzLVFQVOszs6FINM5 B9VOVsXKmkswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU09ORVQv ekxWRlFWT3N6czZGSU5NNUI5Vk9Wc1hLbWtzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS96TFZGUVZPc3pzNkZJTk01QjlWT1ZzWEtta3MuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TT05FVC9HUF9XczAxaGJvZngzUWpDYUhi cXBBa3pYMkUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEJwFA MA0GCSqGSIb3DQEBCwUAA4IBAQCEll/Y/TFmiRCJD4bGDWSjz6ZIM6FdghDQCG9q 7OK5oKK8CDEWDytdJKTAdkjGoFCdm7ZNowecMvt2dKlR/+tfEa7zTjYHVZkiSnMd WDACaQKiUTTT9d9NHWZTv6ZyfC0JVDmduijo2T6jpCq3AP/ZiYUxKelEKB9pzj7Z nQskScIDpLy6n2+w1SRMmxOBO995krT8bAIA/d0qZ+W/4I5fHvPDssgH2WOx2SaM P+tevv2Q0tsXIQBjHFCAImxfIZv8vttljIXK8MQhPUXnmhKLwkdlNXp99Q6wvWi3 x1/maWjpfabEVB9VhyKsfQu8zWQ81xnRuc6sVnE6dJzNUh6z -----END CERTIFICATE-----Generated at Sun Aug 24 13:42:12 2025 by rpki-client