$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/P51amNkIfo-VQJNudNPOEcNcAF4.roa File: P51amNkIfo-VQJNudNPOEcNcAF4.roa (raw, json) Hash identifier: wHQGCv2xdqPI6QnAgloUN/efu00O5lpirMyZYAAL/II= Subject key identifier: 3F:9D:5A:98:D9:08:7E:8F:95:40:93:6E:74:D3:CE:11:C3:5C:00:5E Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Certificate serial: 0E61 Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/P51amNkIfo-VQJNudNPOEcNcAF4.roa Signing time: Fri 22 Aug 2025 08:58:13 +0000 ROA not before: Fri 22 Aug 2025 08:58:13 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131596 IP address blocks: 61.57.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3681 (0xe61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Validity Not Before: Aug 22 08:58:13 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=3F9D5A98D9087E8F9540936E74D3CE11C35C005E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:6b:f1:d2:e1:ae:91:bd:1e:ea:61:50:08:d7: c6:47:e4:ac:dd:e9:0f:9f:6a:97:60:6a:4f:77:54: 90:29:21:9c:8d:18:db:89:24:b1:41:3e:87:6a:73: 6a:08:16:0e:a9:da:b1:5b:e5:b1:6d:a9:42:d1:e5: 24:f4:76:7e:61:9d:74:61:4e:4b:45:2c:47:3b:1d: 39:e4:c2:df:d8:4c:90:8e:21:04:9b:4a:82:69:b2: 8a:38:3f:7e:35:9f:65:a8:10:89:37:32:93:05:ae: dc:8c:5b:ee:c2:50:aa:6f:0d:63:9b:cd:46:bd:31: 09:53:48:6c:c9:a3:89:01:1f:b1:ab:3e:09:4d:b5: ce:53:39:f7:45:b6:25:aa:99:dd:d4:c7:e3:db:d0: 91:ed:cf:3b:63:a8:44:11:91:9c:31:9f:b1:28:0a: 5e:0b:69:2a:08:f4:27:7f:d6:13:9b:34:74:f3:b4: fe:16:c1:5c:58:e9:5f:80:67:f2:68:5a:43:f1:06: 17:5c:72:85:ff:4f:af:8b:41:d6:f7:37:a9:f0:90: c0:30:ec:f4:6a:85:7a:68:fe:40:5c:cf:2e:8a:90: 9b:96:b3:8d:38:c6:7c:41:04:bc:32:50:16:d6:e2: 94:fa:f7:4f:c7:51:21:35:37:db:a2:cf:b5:c2:ce: 79:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:9D:5A:98:D9:08:7E:8F:95:40:93:6E:74:D3:CE:11:C3:5C:00:5E X509v3 Authority Key Identifier: keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/P51amNkIfo-VQJNudNPOEcNcAF4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.57.64.0/18 Signature Algorithm: sha256WithRSAEncryption a8:d6:59:f3:c7:db:91:bc:5e:48:b7:70:79:e1:84:49:99:59: 88:1f:d2:a1:0f:80:c2:57:ec:02:8c:e9:46:7d:6c:67:24:f1: 36:a4:5d:7e:81:00:31:97:60:23:5d:ac:62:cb:38:94:e4:74: 08:89:3a:1a:dc:94:db:16:1a:3a:e6:97:4c:39:a7:86:64:d7: 39:75:7b:05:fc:e4:0f:6b:6c:98:53:ff:27:ae:1d:51:9e:ce: 95:1b:fe:35:5a:29:dd:e4:09:1f:58:b5:b7:b5:93:e9:0d:81: 4a:17:e7:04:4f:fb:3d:e0:bb:ce:3b:50:fe:09:ef:bf:c5:cd: 55:b5:27:93:23:c4:39:35:24:e3:0d:c8:39:6f:18:35:42:ad: 78:75:52:3e:af:02:34:67:74:2a:8f:b4:a0:98:28:3d:7b:6a: 3a:c5:d4:10:3f:01:49:5c:ff:83:30:de:10:31:b7:fb:26:a0: 17:bc:fa:6a:06:c0:1f:08:57:e8:c5:6f:07:da:4e:63:a9:ed: 21:06:54:cc:23:be:d8:a6:a2:ad:70:a0:aa:33:2e:ce:40:cd: 2c:07:56:e2:ed:68:21:38:98:72:50:79:7e:93:87:b9:27:bd: bf:8d:38:c3:ef:69:50:e8:ab:ee:e6:2e:ea:2e:ec:3d:ff:fa: de:94:7c:a4 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDmEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yNTA4MjIw ODU4MTNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDNGOUQ1QTk4RDkwODdF OEY5NTQwOTM2RTc0RDNDRTExQzM1QzAwNUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDaa/HS4a6RvR7qYVAI18ZH5Kzd6Q+fapdgak93VJApIZyNGNuJ JLFBPodqc2oIFg6p2rFb5bFtqULR5ST0dn5hnXRhTktFLEc7HTnkwt/YTJCOIQSb SoJpsoo4P341n2WoEIk3MpMFrtyMW+7CUKpvDWObzUa9MQlTSGzJo4kBH7GrPglN tc5TOfdFtiWqmd3Ux+Pb0JHtzztjqEQRkZwxn7EoCl4LaSoI9Cd/1hObNHTztP4W wVxY6V+AZ/JoWkPxBhdccoX/T6+LQdb3N6nwkMAw7PRqhXpo/kBczy6KkJuWs404 xnxBBLwyUBbW4pT690/HUSE1N9uiz7XCznnhAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUP51amNkIfo+VQJNudNPOEcNcAF4wHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS9QNTFhbU5rSWZvLVZRSk51ZE5Q T0VjTmNBRjQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGPTlA MA0GCSqGSIb3DQEBCwUAA4IBAQCo1lnzx9uRvF5It3B54YRJmVmIH9KhD4DCV+wC jOlGfWxnJPE2pF1+gQAxl2AjXaxiyziU5HQIiToa3JTbFho65pdMOaeGZNc5dXsF /OQPa2yYU/8nrh1Rns6VG/41Wind5AkfWLW3tZPpDYFKF+cET/s94LvOO1D+Ce+/ xc1VtSeTI8Q5NSTjDcg5bxg1Qq14dVI+rwI0Z3Qqj7SgmCg9e2o6xdQQPwFJXP+D MN4QMbf7JqAXvPpqBsAfCFfoxW8H2k5jqe0hBlTMI77YpqKtcKCqMy7OQM0sB1bi 7WghOJhyUHl+k4e5J72/jTjD72lQ6Kvu5i7qLuw9//relHyk -----END CERTIFICATE-----Generated at Sun Aug 24 09:16:21 2025 by rpki-client