$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/JUUVQweTr8bSXOvwl9pFYLcKav0.roa File: JUUVQweTr8bSXOvwl9pFYLcKav0.roa (raw, json) Hash identifier: mhrf/gdeq7nXkbECMcEO6jri8iBrIZx1O+Zjo/ibyeo= Subject key identifier: 25:45:15:43:07:93:AF:C6:D2:5C:EB:F0:97:DA:45:60:B7:0A:6A:FD Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Certificate serial: 0E5D Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/JUUVQweTr8bSXOvwl9pFYLcKav0.roa Signing time: Fri 22 Aug 2025 08:58:12 +0000 ROA not before: Fri 22 Aug 2025 08:58:12 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131596 IP address blocks: 61.58.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3677 (0xe5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Validity Not Before: Aug 22 08:58:12 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=254515430793AFC6D25CEBF097DA4560B70A6AFD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:76:c7:00:45:7f:26:32:70:6b:36:91:aa:14: 17:b7:77:be:a3:84:40:d3:40:b3:e9:69:96:01:c3: f4:44:8c:bd:48:47:b6:14:34:ef:ab:c3:48:5c:ec: 03:72:3e:76:a7:52:b8:ff:7c:71:38:eb:4a:aa:bb: 5c:1a:d0:75:9d:ed:fc:de:c8:21:10:51:66:bd:9f: 25:f9:d7:cd:15:3d:71:cf:b3:b5:74:64:0e:62:53: cc:31:d8:23:ff:92:57:94:44:97:5c:d0:b9:dc:56: f3:8c:de:89:be:ef:57:99:05:9d:71:56:13:22:20: ef:65:0c:d4:37:2d:f9:0c:d5:3b:98:18:c7:21:bb: 9b:a6:d9:b9:bb:3f:25:3f:b7:a3:30:b1:7b:85:ef: 95:b2:29:d3:4c:f7:08:ad:c5:9d:91:af:70:73:cd: ae:43:38:46:8d:39:a3:05:e8:0a:88:f3:5a:42:50: 16:00:bc:8b:6e:4f:62:c9:d5:3a:1d:fa:ec:48:92: eb:47:f5:7b:b5:73:cc:d5:7f:d9:9d:03:c9:93:cd: 74:63:0e:a2:2b:49:ac:69:e4:c5:a3:24:2c:3f:be: 81:f8:4e:75:2c:1f:4d:92:8e:df:6f:bd:d7:0d:95: e3:a2:71:20:9e:46:84:bb:92:18:84:6b:e6:24:19: 07:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:45:15:43:07:93:AF:C6:D2:5C:EB:F0:97:DA:45:60:B7:0A:6A:FD X509v3 Authority Key Identifier: keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/JUUVQweTr8bSXOvwl9pFYLcKav0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.58.160.0/19 Signature Algorithm: sha256WithRSAEncryption 0d:7d:28:d6:d0:2d:c8:2f:84:ef:ab:47:39:a4:8c:0c:3b:45: 09:68:2e:3a:d4:21:48:27:b1:bc:6c:0d:69:ab:d0:98:67:a9: bb:80:80:6c:6d:62:a0:2c:c4:6b:f9:87:7a:ca:7b:14:ed:4c: fa:38:31:bd:26:99:18:37:3a:2e:c5:7d:7e:18:19:98:e1:54: a8:a2:8a:6c:29:39:86:9c:f9:d5:b7:fc:18:af:18:5b:cb:b6: e5:81:49:30:bb:c5:be:39:c9:c3:2c:6b:47:1a:a8:fb:b5:7d: 01:e3:68:3d:32:8c:e7:f0:97:6d:4f:ec:fb:ae:05:b0:e2:98: 2d:f9:23:6c:a3:44:81:1d:64:aa:27:50:de:2d:13:e8:68:4f: 8f:d2:68:64:d0:1d:9a:9b:74:e8:96:20:c7:66:29:7b:18:bf: 23:00:58:45:83:8f:c4:73:62:97:78:f1:2c:ae:ce:ae:54:19: 90:24:2c:b9:66:52:80:b0:a9:c8:84:8c:d2:ad:d6:d9:e3:6d: 45:af:60:e1:e2:22:35:85:74:be:0c:ca:6e:00:05:e2:e6:85: 05:4c:73:d9:ed:f1:e9:0e:80:0b:45:af:ba:43:52:7f:32:08: 08:9b:5a:2a:39:f4:f1:3f:1b:57:db:9d:0e:80:53:99:00:79: c0:8e:b6:7c -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDl0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yNTA4MjIw ODU4MTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDI1NDUxNTQzMDc5M0FG QzZEMjVDRUJGMDk3REE0NTYwQjcwQTZBRkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7dscARX8mMnBrNpGqFBe3d76jhEDTQLPpaZYBw/REjL1IR7YU NO+rw0hc7ANyPnanUrj/fHE460qqu1wa0HWd7fzeyCEQUWa9nyX5180VPXHPs7V0 ZA5iU8wx2CP/kleURJdc0LncVvOM3om+71eZBZ1xVhMiIO9lDNQ3LfkM1TuYGMch u5um2bm7PyU/t6MwsXuF75WyKdNM9witxZ2Rr3Bzza5DOEaNOaMF6AqI81pCUBYA vItuT2LJ1Tod+uxIkutH9Xu1c8zVf9mdA8mTzXRjDqIrSaxp5MWjJCw/voH4TnUs H02Sjt9vvdcNleOicSCeRoS7khiEa+YkGQepAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUJUUVQweTr8bSXOvwl9pFYLcKav0wHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS9KVVVWUXdlVHI4YlNYT3Z3bDlw RllMY0thdjAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFPTqg MA0GCSqGSIb3DQEBCwUAA4IBAQANfSjW0C3IL4Tvq0c5pIwMO0UJaC461CFIJ7G8 bA1pq9CYZ6m7gIBsbWKgLMRr+Yd6ynsU7Uz6ODG9JpkYNzouxX1+GBmY4VSooops KTmGnPnVt/wYrxhby7blgUkwu8W+OcnDLGtHGqj7tX0B42g9Mozn8JdtT+z7rgWw 4pgt+SNso0SBHWSqJ1DeLRPoaE+P0mhk0B2am3ToliDHZil7GL8jAFhFg4/Ec2KX ePEsrs6uVBmQJCy5ZlKAsKnIhIzSrdbZ421Fr2Dh4iI1hXS+DMpuAAXi5oUFTHPZ 7fHpDoALRa+6Q1J/MggIm1oqOfTxPxtX250OgFOZAHnAjrZ8 -----END CERTIFICATE-----Generated at Sun Aug 24 09:16:25 2025 by rpki-client