$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/01aokKDjDCtpTkg7kLwKuu6Km7I.roa File: 01aokKDjDCtpTkg7kLwKuu6Km7I.roa (raw, json) Hash identifier: IJ9BPAV/FnDHJitNmnXHCbtBbHb/EqJSj73l5q5/3Gk= Subject key identifier: D3:56:A8:90:A0:E3:0C:2B:69:4E:48:3B:90:BC:0A:BA:EE:8A:9B:B2 Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Certificate serial: 0E6A Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/01aokKDjDCtpTkg7kLwKuu6Km7I.roa Signing time: Fri 22 Aug 2025 08:58:14 +0000 ROA not before: Fri 22 Aug 2025 08:58:14 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17709 IP address blocks: 61.58.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3690 (0xe6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Validity Not Before: Aug 22 08:58:14 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=D356A890A0E30C2B694E483B90BC0ABAEE8A9BB2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d9:25:f5:54:d5:b7:81:7a:0a:23:72:3e:7c: 36:d2:c5:ea:04:c3:fd:64:6c:e6:0e:08:00:80:be: 81:6b:62:25:7c:db:c9:91:e8:63:98:d3:70:eb:7b: 39:a7:f9:47:ad:bb:4a:fb:0e:ed:16:fd:20:09:20: 19:d7:a1:96:f9:3e:63:f3:d9:81:16:08:b2:5e:b5: 1f:7a:2a:15:05:e4:3c:3e:da:c5:3f:d7:dd:35:ee: 0f:dd:15:a2:b2:cc:16:18:d2:45:06:27:e2:d5:ce: 26:07:d9:b1:d1:f9:49:be:14:a3:c0:50:1b:10:1f: a6:9b:25:d1:a6:21:df:1b:f7:81:98:a1:4b:eb:33: 62:ad:8d:75:fa:bc:27:fe:79:b4:60:cc:55:e5:f4: 22:bc:3b:a8:d0:23:9b:c5:d0:97:af:95:30:ce:f5: fd:bd:49:13:9b:e5:69:38:00:fe:bd:40:8a:d5:2d: bb:90:0c:3d:d4:fb:b3:8b:f9:56:2e:56:ab:d1:c7: f5:a9:d1:4d:c8:31:32:95:f6:7b:71:a9:8b:05:bb: ba:4e:bd:02:4c:db:39:46:56:d0:38:2a:20:65:c0: 78:33:ea:4b:ca:82:84:cd:45:94:3b:12:c5:90:ef: c7:b3:d0:dd:20:4b:46:49:22:5d:d6:10:21:e9:7f: 17:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:56:A8:90:A0:E3:0C:2B:69:4E:48:3B:90:BC:0A:BA:EE:8A:9B:B2 X509v3 Authority Key Identifier: keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/01aokKDjDCtpTkg7kLwKuu6Km7I.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.58.160.0/19 Signature Algorithm: sha256WithRSAEncryption 1d:2d:66:fb:ee:cd:73:6f:4f:0e:c4:8f:32:ce:8f:43:d5:4e: 87:f2:65:53:a7:1c:65:62:ef:11:68:7c:79:2d:3b:ae:5e:21: af:6c:c8:75:73:c4:57:f6:08:d8:3e:21:ab:1f:20:1f:4d:73: 5f:32:5a:7f:fb:fa:b4:f9:e5:aa:9a:94:f6:fe:c1:37:3a:b4: 7e:19:ca:91:b4:26:03:e1:5f:cb:d8:f2:2a:94:7f:9c:27:d4: 11:0d:19:5f:59:c1:0d:36:de:0a:fb:bb:0f:da:5a:60:13:6c: 8d:98:5f:1b:0d:96:23:2d:a1:3c:8a:78:b0:6d:74:48:c3:8a: 76:a2:57:1c:d6:1c:4e:fa:1e:c2:30:dc:7f:23:af:5b:68:51: 51:43:1f:bf:c3:36:ee:e2:d5:7d:8b:7d:be:a9:89:50:90:f9: a0:bb:f3:a5:10:55:bb:ee:2b:94:3c:c1:b5:b0:08:b0:34:f7: 44:11:25:a2:80:1e:60:6c:1f:c5:b6:02:12:92:75:13:3c:36: 14:60:92:ca:e5:0d:71:23:d4:07:1a:a8:c1:61:86:8f:04:d2: 22:d4:1c:09:29:cc:84:79:ed:a1:81:b6:5d:01:8f:4a:2d:d4: 7a:03:37:95:30:ef:c1:27:15:ea:24:3c:5e:17:fe:6a:13:9b: e9:63:23:f7 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDmowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yNTA4MjIw ODU4MTRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEQzNTZBODkwQTBFMzBD MkI2OTRFNDgzQjkwQkMwQUJBRUU4QTlCQjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDA2SX1VNW3gXoKI3I+fDbSxeoEw/1kbOYOCACAvoFrYiV828mR 6GOY03Drezmn+Uetu0r7Du0W/SAJIBnXoZb5PmPz2YEWCLJetR96KhUF5Dw+2sU/ 19017g/dFaKyzBYY0kUGJ+LVziYH2bHR+Um+FKPAUBsQH6abJdGmId8b94GYoUvr M2KtjXX6vCf+ebRgzFXl9CK8O6jQI5vF0JevlTDO9f29SROb5Wk4AP69QIrVLbuQ DD3U+7OL+VYuVqvRx/Wp0U3IMTKV9ntxqYsFu7pOvQJM2zlGVtA4KiBlwHgz6kvK goTNRZQ7EsWQ78ez0N0gS0ZJIl3WECHpfxcDAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU01aokKDjDCtpTkg7kLwKuu6Km7IwHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS8wMWFva0tEakRDdHBUa2c3a0x3 S3V1NkttN0kucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFPTqg MA0GCSqGSIb3DQEBCwUAA4IBAQAdLWb77s1zb08OxI8yzo9D1U6H8mVTpxxlYu8R aHx5LTuuXiGvbMh1c8RX9gjYPiGrHyAfTXNfMlp/+/q0+eWqmpT2/sE3OrR+GcqR tCYD4V/L2PIqlH+cJ9QRDRlfWcENNt4K+7sP2lpgE2yNmF8bDZYjLaE8iniwbXRI w4p2olcc1hxO+h7CMNx/I69baFFRQx+/wzbu4tV9i32+qYlQkPmgu/OlEFW77iuU PMG1sAiwNPdEESWigB5gbB/FtgISknUTPDYUYJLK5Q1xI9QHGqjBYYaPBNIi1BwJ KcyEee2hgbZdAY9KLdR6AzeVMO/BJxXqJDxeF/5qE5vpYyP3 -----END CERTIFICATE-----Generated at Sun Aug 24 09:22:20 2025 by rpki-client