$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SYSNET/GtjfSWXExXgZirgJKDoehoxuPKQ.roa File: GtjfSWXExXgZirgJKDoehoxuPKQ.roa (raw, json) Hash identifier: TScN+egwhhpuIhCufkO/l4Ab7X08wtVu3x0qygLBPB0= Subject key identifier: 1A:D8:DF:49:65:C4:C5:78:19:8A:B8:09:28:3A:1E:86:8C:6E:3C:A4 Certificate issuer: /CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC Certificate serial: 0DD4 Authority key identifier: 96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/GtjfSWXExXgZirgJKDoehoxuPKQ.roa Signing time: Fri 22 Aug 2025 08:55:11 +0000 ROA not before: Fri 22 Aug 2025 08:55:11 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4783 IP address blocks: 210.67.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3540 (0xdd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC Validity Not Before: Aug 22 08:55:11 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1AD8DF4965C4C578198AB809283A1E868C6E3CA4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ad:5a:b6:77:d7:75:d6:da:e7:dd:dc:7b:d1: cc:f5:64:81:cc:17:6c:7c:2f:3a:e3:ae:fb:c5:0d: 47:4c:05:38:bc:b8:8a:7a:89:e6:aa:85:e8:ee:81: 92:88:38:18:5f:75:67:fb:e2:2f:ca:44:aa:c8:e0: 6d:85:ff:c5:aa:61:ad:91:6f:97:0d:39:99:7a:6d: 0c:23:67:cb:81:ab:f8:6b:d5:20:67:0e:16:e4:af: e3:72:44:d5:e5:8d:ce:dc:77:fa:14:99:8e:a3:42: 30:22:8f:d4:ab:b1:fb:9a:b5:12:c4:7a:a4:3e:87: ab:c0:80:99:9f:e8:27:97:54:cd:1f:1b:ea:80:a5: 9b:a7:99:ea:dc:6d:f2:78:fe:a8:33:82:4b:c7:0d: 62:3e:9f:46:c2:62:82:15:ec:d1:cd:94:c4:64:98: 91:8c:5b:e8:12:f9:6c:0b:fa:4a:a3:67:eb:b4:23: 55:f4:93:7d:ac:99:f0:8f:99:41:c9:e6:cc:7f:ab: 2b:15:e3:9a:a2:9a:d9:1f:49:83:56:79:15:63:4a: a9:43:b5:09:f9:33:fc:32:42:61:8b:c5:a0:44:b4: 58:ea:86:7e:13:2d:b8:20:47:28:20:ed:70:10:05: 2f:57:82:b2:55:71:0b:da:47:1f:72:c9:99:9e:c6: fb:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:D8:DF:49:65:C4:C5:78:19:8A:B8:09:28:3A:1E:86:8C:6E:3C:A4 X509v3 Authority Key Identifier: keyid:96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/GtjfSWXExXgZirgJKDoehoxuPKQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.67.16.0/20 Signature Algorithm: sha256WithRSAEncryption 51:2b:96:c5:0c:2a:b6:b1:62:d0:88:9b:fc:e7:77:fd:6f:d5: 70:97:4a:fa:af:40:cf:37:19:05:a6:74:6a:6b:76:a3:80:80: d9:42:39:7d:b4:16:04:a8:d2:0b:71:c8:b2:37:7d:28:0b:19: a3:28:74:0c:b3:75:a4:f1:b5:ea:83:53:48:28:93:28:73:f8: 8a:00:29:35:4a:1d:3c:fa:32:26:34:62:22:c4:c4:fd:55:8a: 73:e5:47:1a:2b:d6:ed:e3:0b:a3:d9:e6:67:44:2c:08:7a:50: 96:a6:1d:47:8a:d0:bf:76:62:8a:39:cc:b2:f2:e1:39:f3:4b: e5:45:45:28:da:8c:94:bc:0b:d8:af:a7:00:ac:38:4b:45:6b: 24:42:3e:57:fd:f1:fb:b1:54:0c:9a:6a:de:bc:95:5a:c1:84: e6:62:f4:43:ba:fe:b3:72:bc:70:d2:87:c9:ec:62:05:1f:a9: 0e:ef:09:39:c8:47:1f:fc:c8:d4:15:5f:44:7a:e9:15:d7:52: be:40:7c:60:2c:10:c3:4d:6d:e2:90:ea:56:8c:59:69:42:e9: 94:9c:4b:1a:93:fb:59:1d:78:ee:41:8f:99:df:d1:79:f8:5c: 89:be:b0:81:ac:cc:fe:a5:23:ca:55:bf:ca:73:26:9d:4b:56: b4:d6:6e:9a -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDdQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTZC Qjk0QjQ1N0Y5RDgyQTI5QjVCMkZEOUYzQTQ0MTg4OTlFNzFFQzAeFw0yNTA4MjIw ODU1MTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDFBRDhERjQ5NjVDNEM1 NzgxOThBQjgwOTI4M0ExRTg2OEM2RTNDQTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDErVq2d9d11trn3dx70cz1ZIHMF2x8LzrjrvvFDUdMBTi8uIp6 ieaqhejugZKIOBhfdWf74i/KRKrI4G2F/8WqYa2Rb5cNOZl6bQwjZ8uBq/hr1SBn Dhbkr+NyRNXljc7cd/oUmY6jQjAij9SrsfuatRLEeqQ+h6vAgJmf6CeXVM0fG+qA pZunmercbfJ4/qgzgkvHDWI+n0bCYoIV7NHNlMRkmJGMW+gS+WwL+kqjZ+u0I1X0 k32smfCPmUHJ5sx/qysV45qimtkfSYNWeRVjSqlDtQn5M/wyQmGLxaBEtFjqhn4T LbggRygg7XAQBS9XgrJVcQvaRx9yyZmexvtVAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUGtjfSWXExXgZirgJKDoehoxuPKQwHwYDVR0jBBgwFoAUlruUtFf52CoptbL9 nzpEGImecewwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1lTTkVU L2xydVV0RmY1MkNvcHRiTDluenBFR0ltZWNldy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbHJ1VXRGZjUyQ29wdGJMOW56cEVHSW1lY2V3LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1lTTkVUL0d0amZTV1hFeFhnWmlyZ0pL RG9laG94dVBLUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATS QxAwDQYJKoZIhvcNAQELBQADggEBAFErlsUMKraxYtCIm/znd/1v1XCXSvqvQM83 GQWmdGprdqOAgNlCOX20FgSo0gtxyLI3fSgLGaModAyzdaTxteqDU0gokyhz+IoA KTVKHTz6MiY0YiLExP1VinPlRxor1u3jC6PZ5mdELAh6UJamHUeK0L92Yoo5zLLy 4TnzS+VFRSjajJS8C9ivpwCsOEtFayRCPlf98fuxVAyaat68lVrBhOZi9EO6/rNy vHDSh8nsYgUfqQ7vCTnIRx/8yNQVX0R66RXXUr5AfGAsEMNNbeKQ6laMWWlC6ZSc SxqT+1kdeO5Bj5nf0Xn4XIm+sIGszP6lI8pVv8pzJp1LVrTWbpo= -----END CERTIFICATE-----Generated at Sun Aug 24 13:38:05 2025 by rpki-client