$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/H7-iyK8eeIB0A_OfWp0ikIZ-ny0.roa File: H7-iyK8eeIB0A_OfWp0ikIZ-ny0.roa (raw, json) Hash identifier: 6iBBuTnCJmCarzgf/jC1XrLwOjng+NL96LR7zKgko30= Subject key identifier: 1F:BF:A2:C8:AF:1E:78:80:74:03:F3:9F:5A:9D:22:90:86:7E:9F:2D Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Certificate serial: 0E7C Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/H7-iyK8eeIB0A_OfWp0ikIZ-ny0.roa Signing time: Fri 22 Aug 2025 08:58:20 +0000 ROA not before: Fri 22 Aug 2025 08:58:20 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17709 IP address blocks: 61.58.80.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3708 (0xe7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Validity Not Before: Aug 22 08:58:20 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1FBFA2C8AF1E78807403F39F5A9D2290867E9F2D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:05:c5:4e:13:46:46:c7:e4:da:73:6f:ce:b1: b1:8c:59:da:9d:60:d9:ee:0e:9a:d7:51:4a:31:19: 0b:13:56:00:85:91:b4:b4:87:50:3b:b0:e1:5a:da: f7:14:66:de:04:23:56:48:da:7a:6b:a5:e8:a7:91: bf:51:50:f9:31:2a:c0:91:41:4f:bd:1c:d8:7f:04: 6d:d7:d5:0a:5b:32:4e:d7:2e:5b:24:39:3b:5b:98: 51:12:5a:26:66:7c:58:9a:16:a5:8c:7a:69:2a:6e: 26:d0:1a:83:14:68:39:a0:31:3b:83:3b:9f:64:c1: b8:b5:af:9f:05:ed:9f:ee:b9:61:f4:04:5a:9b:8c: 71:0d:f0:b8:b4:1e:b1:19:7b:5b:ad:0c:2e:6e:f7: db:a3:bf:81:fb:df:4a:18:ed:2f:cf:f7:b5:ba:c3: d6:3b:9f:3a:3d:c9:4e:ec:44:1c:4f:ef:8e:a5:2d: eb:db:be:4a:60:d7:37:cf:b3:f2:30:34:73:97:69: 22:b7:ee:60:8e:57:c7:80:ee:2e:f2:5e:0f:d3:23: dd:d5:33:7c:3f:e2:c2:3d:3b:65:9e:45:47:a0:3a: aa:92:8d:64:fc:f7:e0:22:e8:1e:2d:6e:eb:d6:63: 75:6d:c2:1d:32:95:17:8e:8e:c9:67:ea:32:fa:7c: be:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:BF:A2:C8:AF:1E:78:80:74:03:F3:9F:5A:9D:22:90:86:7E:9F:2D X509v3 Authority Key Identifier: keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/H7-iyK8eeIB0A_OfWp0ikIZ-ny0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.58.80.0/20 Signature Algorithm: sha256WithRSAEncryption 80:8d:13:d3:c6:d9:f1:79:9d:22:85:3c:df:d8:6e:3d:46:55: 27:c0:cf:a8:2a:32:96:4c:d0:65:fb:20:7f:fb:35:c0:a2:ab: 75:6c:af:37:9d:da:c5:91:cb:4b:67:d4:64:b0:dd:fc:34:c9: c7:a0:65:3c:64:3e:fe:48:b6:83:43:03:02:cb:41:12:80:1a: 74:d2:97:cb:87:f0:f3:33:b0:a4:81:e1:bc:d6:ca:c7:1f:34: 6b:73:2d:d4:76:0e:71:2f:4c:14:69:d6:0d:39:b4:b6:60:3c: af:4a:ea:fb:36:d9:70:59:fc:bb:a7:4d:e4:52:90:54:a5:a5: 8b:7d:dc:2c:bc:d0:68:a3:da:14:0e:1c:0e:ae:d5:a8:7d:fb: 7b:fb:9c:9d:2a:d0:31:39:e7:c4:4c:b5:08:e8:21:e8:3b:8e: 4d:c5:e5:d3:9d:54:54:c9:6e:98:3d:39:23:d5:57:82:25:c6: 5a:03:24:7a:ab:36:d9:7f:04:03:7d:2b:1a:9b:68:d8:3b:34: 2d:b2:08:44:3f:5b:44:63:d9:51:5f:a3:de:2d:1c:83:41:2e: 83:bf:53:90:e8:5f:0b:0f:db:c5:3f:3f:da:10:8c:4e:fe:ef: 3d:36:2d:e2:2a:ff:68:cd:26:8a:14:80:a0:24:fe:38:7d:c3: 3e:45:f8:c4 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDnwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yNTA4MjIw ODU4MjBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDFGQkZBMkM4QUYxRTc4 ODA3NDAzRjM5RjVBOUQyMjkwODY3RTlGMkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDeBcVOE0ZGx+Tac2/OsbGMWdqdYNnuDprXUUoxGQsTVgCFkbS0 h1A7sOFa2vcUZt4EI1ZI2nprpeinkb9RUPkxKsCRQU+9HNh/BG3X1QpbMk7XLlsk OTtbmFESWiZmfFiaFqWMemkqbibQGoMUaDmgMTuDO59kwbi1r58F7Z/uuWH0BFqb jHEN8Li0HrEZe1utDC5u99ujv4H730oY7S/P97W6w9Y7nzo9yU7sRBxP746lLevb vkpg1zfPs/IwNHOXaSK37mCOV8eA7i7yXg/TI93VM3w/4sI9O2WeRUegOqqSjWT8 9+Ai6B4tbuvWY3Vtwh0ylReOjsln6jL6fL7DAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUH7+iyK8eeIB0A/OfWp0ikIZ+ny0wHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS9INy1peUs4ZWVJQjBBX09mV3Aw aWtJWi1ueTAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEPTpQ MA0GCSqGSIb3DQEBCwUAA4IBAQCAjRPTxtnxeZ0ihTzf2G49RlUnwM+oKjKWTNBl +yB/+zXAoqt1bK83ndrFkctLZ9RksN38NMnHoGU8ZD7+SLaDQwMCy0ESgBp00pfL h/DzM7CkgeG81srHHzRrcy3Udg5xL0wUadYNObS2YDyvSur7NtlwWfy7p03kUpBU paWLfdwsvNBoo9oUDhwOrtWofft7+5ydKtAxOefETLUI6CHoO45NxeXTnVRUyW6Y PTkj1VeCJcZaAyR6qzbZfwQDfSsam2jYOzQtsghEP1tEY9lRX6PeLRyDQS6Dv1OQ 6F8LD9vFPz/aEIxO/u89Ni3iKv9ozSaKFICgJP44fcM+RfjE -----END CERTIFICATE-----Generated at Sun Aug 24 09:20:31 2025 by rpki-client