$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/VUjJILf7QLsupL5UYDlg7EZ603o.roa File: VUjJILf7QLsupL5UYDlg7EZ603o.roa (raw, json) Hash identifier: MHFv1KcDU6SE2eU4EohjKB6NQ+B07+iJxOxFdlpM5Ao= Subject key identifier: 55:48:C9:20:B7:FB:40:BB:2E:A4:BE:54:60:39:60:EC:46:7A:D3:7A Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Certificate serial: 0E71 Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/VUjJILf7QLsupL5UYDlg7EZ603o.roa Signing time: Fri 22 Aug 2025 08:58:17 +0000 ROA not before: Fri 22 Aug 2025 08:58:17 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131596 IP address blocks: 210.202.56.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3697 (0xe71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Validity Not Before: Aug 22 08:58:17 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=5548C920B7FB40BB2EA4BE54603960EC467AD37A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:3b:78:40:8f:20:bf:3a:b8:4a:61:f2:d4:6a: 41:18:48:39:04:46:50:0d:a2:c6:02:eb:a1:b0:ef: a5:28:19:16:6a:08:60:2c:9f:2b:a4:d9:dc:0a:9d: fb:54:69:23:38:e1:cd:c4:a1:7f:e3:fd:c3:b6:21: 0d:d6:a8:b2:c2:a5:37:48:10:35:57:e9:f8:ff:cf: ad:fb:7d:e1:43:33:e7:26:80:67:55:95:16:cd:5d: c0:9b:06:86:77:45:34:fc:c3:3b:21:56:22:5d:31: b0:7d:e8:93:fb:e2:2a:57:6a:54:81:96:2c:19:32: d0:d8:47:7a:55:74:01:e1:cc:b5:5c:65:06:41:9a: 55:14:e9:83:96:dc:2b:35:f2:59:d6:88:ad:cb:9b: b6:6d:6b:d9:a8:88:fc:f4:da:28:ec:63:75:06:5b: 08:7b:86:31:ab:ad:ab:4f:8f:33:6f:f6:b3:bc:f9: 27:57:62:63:37:1a:1f:10:35:78:48:b2:c0:4e:78: f4:db:c1:7e:85:11:66:f9:c7:84:57:fa:b7:83:55: 09:10:63:68:cd:c4:3b:35:08:06:db:fb:01:42:48: e4:92:27:7d:f5:6c:b2:74:ef:56:01:f2:23:0e:03: f2:cd:79:98:5b:5d:e7:24:d7:ac:8b:23:c3:00:b3: ff:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:48:C9:20:B7:FB:40:BB:2E:A4:BE:54:60:39:60:EC:46:7A:D3:7A X509v3 Authority Key Identifier: keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/VUjJILf7QLsupL5UYDlg7EZ603o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.202.56.0/21 Signature Algorithm: sha256WithRSAEncryption 01:6a:fd:ec:85:94:f1:a7:8a:53:fc:af:16:2b:3d:54:1f:66: f7:31:e1:b8:c3:9a:45:e4:58:3a:15:3a:68:26:19:09:9c:5c: 74:b7:e5:95:0d:9d:6f:6a:55:7c:9d:a2:cd:18:ea:0b:13:e2: 6c:0f:d1:38:33:80:ba:24:38:f9:35:22:6d:5e:01:73:cb:01: 7a:1d:77:43:8d:d9:ba:20:96:67:ff:e3:e7:24:f3:4f:c9:db: 6d:35:84:c2:0a:3e:de:ac:e2:36:7a:3d:cc:ed:bb:02:df:0d: 8a:e8:f3:3b:25:8e:77:bf:f2:e5:37:08:cb:dc:7c:e9:ae:a9: f6:82:d2:5a:7f:33:c9:3f:3f:d7:ed:f3:bc:b4:48:92:9a:6c: 1b:a1:b8:c7:d6:c6:7d:bd:21:10:09:99:e0:9d:ed:95:f9:a3: bb:ca:bf:28:f9:22:f9:79:c5:90:3f:dd:0e:fc:16:b7:83:7c: b8:00:ce:ce:b7:3b:3c:30:e3:a9:1e:fd:a3:42:3b:60:f8:66: 6e:eb:e2:1d:ea:df:b4:45:c2:f2:b3:36:df:e5:a9:be:29:14: 04:80:77:67:8c:86:5e:e1:0f:57:6a:e6:80:16:a6:c6:5a:3b: 6a:2f:ac:ea:6d:fc:5b:b3:3f:8d:80:89:e0:68:22:ab:6e:65: 5d:89:f7:07 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDnEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yNTA4MjIw ODU4MTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDU1NDhDOTIwQjdGQjQw QkIyRUE0QkU1NDYwMzk2MEVDNDY3QUQzN0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDeO3hAjyC/OrhKYfLUakEYSDkERlANosYC66Gw76UoGRZqCGAs nyuk2dwKnftUaSM44c3EoX/j/cO2IQ3WqLLCpTdIEDVX6fj/z637feFDM+cmgGdV lRbNXcCbBoZ3RTT8wzshViJdMbB96JP74ipXalSBliwZMtDYR3pVdAHhzLVcZQZB mlUU6YOW3Cs18lnWiK3Lm7Zta9moiPz02ijsY3UGWwh7hjGrratPjzNv9rO8+SdX YmM3Gh8QNXhIssBOePTbwX6FEWb5x4RX+reDVQkQY2jNxDs1CAbb+wFCSOSSJ331 bLJ071YB8iMOA/LNeZhbXeck16yLI8MAs/9NAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUVUjJILf7QLsupL5UYDlg7EZ603owHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS9WVWpKSUxmN1FMc3VwTDVVWURs ZzdFWjYwM28ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQD0so4 MA0GCSqGSIb3DQEBCwUAA4IBAQABav3shZTxp4pT/K8WKz1UH2b3MeG4w5pF5Fg6 FTpoJhkJnFx0t+WVDZ1valV8naLNGOoLE+JsD9E4M4C6JDj5NSJtXgFzywF6HXdD jdm6IJZn/+PnJPNPydttNYTCCj7erOI2ej3M7bsC3w2K6PM7JY53v/LlNwjL3Hzp rqn2gtJafzPJPz/X7fO8tEiSmmwbobjH1sZ9vSEQCZngne2V+aO7yr8o+SL5ecWQ P90O/Ba3g3y4AM7Otzs8MOOpHv2jQjtg+GZu6+Id6t+0RcLyszbf5am+KRQEgHdn jIZe4Q9XauaAFqbGWjtqL6zqbfxbsz+NgIngaCKrbmVdifcH -----END CERTIFICATE-----Generated at Sun Aug 24 09:16:30 2025 by rpki-client