$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/8Le8JR3u0fcXI2-OiQo7RjlQ7g0.roa File: 8Le8JR3u0fcXI2-OiQo7RjlQ7g0.roa (raw, json) Hash identifier: vljD0HIGzqlz0QGd9R+xNLyySi8RXcJGqdTnLYzBVZw= Subject key identifier: F0:B7:BC:25:1D:EE:D1:F7:17:23:6F:8E:89:0A:3B:46:39:50:EE:0D Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Certificate serial: 0E7B Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/8Le8JR3u0fcXI2-OiQo7RjlQ7g0.roa Signing time: Fri 22 Aug 2025 08:58:20 +0000 ROA not before: Fri 22 Aug 2025 08:58:20 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17709 IP address blocks: 61.63.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3707 (0xe7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Validity Not Before: Aug 22 08:58:20 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F0B7BC251DEED1F717236F8E890A3B463950EE0D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:ad:5b:b6:7f:a6:de:fd:94:01:16:41:96:54: e4:fa:3f:2f:fc:8f:e6:a2:34:cd:53:48:1a:99:ae: ff:02:a2:63:96:62:81:0f:d6:ca:e7:af:44:3e:74: 4c:dc:02:4c:d1:fe:55:04:65:7a:e3:1a:c1:bb:68: 1f:5c:11:f7:a5:e5:d1:53:73:f4:53:84:d6:4c:be: be:bc:64:ef:01:ca:f8:e2:09:43:c0:a1:2d:99:c8: c7:f9:20:0e:5a:04:67:76:4e:84:6e:e0:b7:f9:45: 53:37:4a:ba:d4:34:07:a2:2f:04:95:e0:a9:bb:76: ef:29:9f:95:48:f1:20:51:78:00:01:a9:6e:2e:65: b8:48:55:c8:9d:08:d8:cc:8e:95:f8:26:88:8c:8f: 8b:8b:63:fb:8e:86:34:23:67:ef:9c:07:78:a3:02: 71:18:b2:5e:ac:60:3e:c2:fc:05:33:79:08:3c:11: bf:76:90:86:6f:3f:57:5d:52:0e:90:6c:5a:a3:c8: 2a:7a:60:a6:ea:bf:b4:b8:70:91:1d:53:a8:b4:39: 63:1e:26:04:2e:a5:82:8c:ec:b9:59:76:c6:7c:95: 22:34:3e:e4:98:d0:b4:90:1a:58:22:19:14:9c:45: 5f:4d:ae:ac:32:6d:2d:8b:f7:63:3f:a6:0f:e7:3b: 66:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:B7:BC:25:1D:EE:D1:F7:17:23:6F:8E:89:0A:3B:46:39:50:EE:0D X509v3 Authority Key Identifier: keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/8Le8JR3u0fcXI2-OiQo7RjlQ7g0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.63.96.0/19 Signature Algorithm: sha256WithRSAEncryption 69:dd:68:c3:1a:b7:3f:c3:60:20:2c:31:c7:ae:80:11:ec:f1: e7:45:a3:64:2b:d8:2f:62:8d:2d:b1:2f:61:54:d5:5b:3e:c7: 94:ec:ed:d7:55:f7:50:db:4a:d8:aa:93:bf:26:c8:87:d7:e2: 1d:a7:ca:fc:a3:de:c8:d2:56:75:73:8f:98:f4:7c:21:a7:df: 91:a1:31:b8:2b:64:0d:80:68:be:41:fd:1f:ff:ab:02:47:bf: 96:90:29:a1:84:ff:cc:8f:cd:40:a6:78:f2:8c:02:ed:3b:f2: 49:c8:0b:72:0c:3c:48:e4:9e:7b:1a:23:6e:33:ac:5c:33:49: 70:49:99:9c:d4:5b:4d:36:2a:e8:bc:88:5d:ff:fb:72:e6:e5: 73:bc:e5:a6:ff:d3:76:b3:b7:c7:a4:0f:e7:14:d0:54:58:e4: b9:92:05:74:15:76:04:06:c1:7e:7c:f0:a6:f2:dd:13:f9:0e: d6:fb:75:93:28:19:c5:76:84:c4:1a:b2:07:54:e7:b2:a2:58: 59:aa:14:31:58:23:af:21:e1:14:44:59:c0:9f:01:6a:a6:f2: 9f:55:12:16:ab:0e:86:5b:b7:c3:d1:4e:9d:4b:50:7d:7b:a4: 79:f7:60:6f:8f:50:e1:a7:80:e7:b5:80:a6:2f:83:c1:64:6b: 38:3b:6c:22 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDnswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yNTA4MjIw ODU4MjBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEYwQjdCQzI1MURFRUQx RjcxNzIzNkY4RTg5MEEzQjQ2Mzk1MEVFMEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCkrVu2f6be/ZQBFkGWVOT6Py/8j+aiNM1TSBqZrv8ComOWYoEP 1srnr0Q+dEzcAkzR/lUEZXrjGsG7aB9cEfel5dFTc/RThNZMvr68ZO8ByvjiCUPA oS2ZyMf5IA5aBGd2ToRu4Lf5RVM3SrrUNAeiLwSV4Km7du8pn5VI8SBReAABqW4u ZbhIVcidCNjMjpX4JoiMj4uLY/uOhjQjZ++cB3ijAnEYsl6sYD7C/AUzeQg8Eb92 kIZvP1ddUg6QbFqjyCp6YKbqv7S4cJEdU6i0OWMeJgQupYKM7LlZdsZ8lSI0PuSY 0LSQGlgiGRScRV9NrqwybS2L92M/pg/nO2bTAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU8Le8JR3u0fcXI2+OiQo7RjlQ7g0wHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS84TGU4SlIzdTBmY1hJMi1PaVFv N1JqbFE3ZzAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFPT9g MA0GCSqGSIb3DQEBCwUAA4IBAQBp3WjDGrc/w2AgLDHHroAR7PHnRaNkK9gvYo0t sS9hVNVbPseU7O3XVfdQ20rYqpO/JsiH1+Idp8r8o97I0lZ1c4+Y9Hwhp9+RoTG4 K2QNgGi+Qf0f/6sCR7+WkCmhhP/Mj81ApnjyjALtO/JJyAtyDDxI5J57GiNuM6xc M0lwSZmc1FtNNirovIhd//ty5uVzvOWm/9N2s7fHpA/nFNBUWOS5kgV0FXYEBsF+ fPCm8t0T+Q7W+3WTKBnFdoTEGrIHVOeyolhZqhQxWCOvIeEURFnAnwFqpvKfVRIW qw6GW7fD0U6dS1B9e6R592Bvj1Dhp4DntYCmL4PBZGs4O2wi -----END CERTIFICATE-----Generated at Sun Aug 24 09:16:23 2025 by rpki-client