$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/a-k9Lo55SAWSg-1TKKBWdJYfrv0.roa File: a-k9Lo55SAWSg-1TKKBWdJYfrv0.roa (raw, json) Hash identifier: VQOWqN5OCXUGd9mc87AZeSHVdTkWl9Jbhy3NuWqd86k= Subject key identifier: 6B:E9:3D:2E:8E:79:48:05:92:83:ED:53:28:A0:56:74:96:1F:AE:FD Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Certificate serial: 0E68 Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/a-k9Lo55SAWSg-1TKKBWdJYfrv0.roa Signing time: Fri 22 Aug 2025 08:58:14 +0000 ROA not before: Fri 22 Aug 2025 08:58:14 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131596 IP address blocks: 59.102.128.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3688 (0xe68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Validity Not Before: Aug 22 08:58:14 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=6BE93D2E8E7948059283ED5328A05674961FAEFD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:50:fb:7a:e8:ca:49:d0:b9:bb:16:7e:f1:06: 86:50:15:4d:e0:59:92:a3:88:21:e0:bc:be:8c:fc: cc:58:bf:b0:2a:f2:46:d2:24:6a:fd:26:9b:8f:30: fd:f7:43:25:a8:8d:c3:46:bd:ed:68:c6:6f:6e:4e: 5c:27:8a:06:36:03:5d:a1:43:00:9a:cd:9f:87:ac: 25:91:4a:85:51:ed:a3:7d:13:f4:74:79:f2:da:90: 2c:45:dc:84:43:21:b3:31:1e:2e:ca:fa:7c:d0:89: f8:67:5a:07:d9:cf:f0:39:e1:ef:cb:21:94:39:08: 8c:fc:0f:ec:63:b6:7a:24:6c:6a:ec:d6:a3:33:2b: d4:e8:18:99:4e:7d:1e:52:8f:60:7b:dd:ff:9c:b5: 83:a6:2a:96:96:a7:65:1f:21:93:6a:09:da:b8:f5: df:f0:9e:db:b1:8e:29:de:dc:bd:cc:4c:bc:d0:ab: 6f:fd:ae:7e:22:f2:de:bc:ed:c3:3c:18:3c:92:d1: 71:4f:44:a3:06:6b:86:80:7e:f2:bf:f5:8c:51:f6: f1:c5:7e:4e:a1:09:f6:ae:8f:2a:24:95:b2:2d:38: 3e:4a:97:e7:fd:a3:9a:8c:b3:04:3d:be:8a:6a:6c: de:95:45:3b:17:88:bb:84:78:20:79:33:6a:3e:41: 7e:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:E9:3D:2E:8E:79:48:05:92:83:ED:53:28:A0:56:74:96:1F:AE:FD X509v3 Authority Key Identifier: keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/a-k9Lo55SAWSg-1TKKBWdJYfrv0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 59.102.128.0/21 Signature Algorithm: sha256WithRSAEncryption 6a:bc:ee:48:d1:a9:c9:50:a5:42:e7:9d:af:42:92:2a:53:04: 39:25:a1:b6:40:23:ef:48:96:e1:e0:89:91:67:7e:cb:65:db: 1f:b1:b9:02:4b:ee:c8:6c:ec:7f:42:7f:33:33:a6:c8:2e:c6: a7:db:ac:a0:51:f0:63:8b:de:2c:1e:e8:50:5f:4e:14:ff:df: fe:0a:fc:95:ee:49:cb:51:62:3c:6c:86:ef:fc:32:eb:b2:04: 74:0b:f0:53:bb:39:01:6f:05:3d:5a:60:bd:5f:d0:17:18:11: cc:7b:c3:30:92:b5:2e:6d:b5:b9:c6:84:ea:ba:8e:92:84:49: 20:de:49:a6:10:64:03:c8:0b:f9:71:f8:e0:c4:ec:54:a7:bc: c2:7a:29:29:00:d2:2e:9c:7d:43:fd:4d:9d:ce:be:8b:8e:e3: 2d:63:99:6f:09:72:bb:c1:be:e3:0c:9e:40:03:47:74:ce:ba: 4c:97:99:1f:95:e8:5c:9b:b1:9f:50:ee:fb:82:fe:a3:8a:01: 2a:06:81:fd:81:b8:d7:02:94:ae:f1:1f:82:6b:cc:ee:c0:ba: 45:b6:f4:e8:3f:ac:08:9d:c6:8e:1d:de:4d:3a:b4:9e:20:df: a9:54:a7:d8:1d:ba:30:8e:f3:81:55:b3:14:6b:6d:34:6f:7e: 29:3e:13:ca -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDmgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yNTA4MjIw ODU4MTRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDZCRTkzRDJFOEU3OTQ4 MDU5MjgzRUQ1MzI4QTA1Njc0OTYxRkFFRkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDeUPt66MpJ0Lm7Fn7xBoZQFU3gWZKjiCHgvL6M/MxYv7Aq8kbS JGr9JpuPMP33QyWojcNGve1oxm9uTlwnigY2A12hQwCazZ+HrCWRSoVR7aN9E/R0 efLakCxF3IRDIbMxHi7K+nzQifhnWgfZz/A54e/LIZQ5CIz8D+xjtnokbGrs1qMz K9ToGJlOfR5Sj2B73f+ctYOmKpaWp2UfIZNqCdq49d/wntuxjine3L3MTLzQq2/9 rn4i8t687cM8GDyS0XFPRKMGa4aAfvK/9YxR9vHFfk6hCfaujyoklbItOD5Kl+f9 o5qMswQ9vopqbN6VRTsXiLuEeCB5M2o+QX7dAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUa+k9Lo55SAWSg+1TKKBWdJYfrv0wHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS9hLWs5TG81NVNBV1NnLTFUS0tC V2RKWWZydjAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDO2aA MA0GCSqGSIb3DQEBCwUAA4IBAQBqvO5I0anJUKVC552vQpIqUwQ5JaG2QCPvSJbh 4ImRZ37LZdsfsbkCS+7IbOx/Qn8zM6bILsan26ygUfBji94sHuhQX04U/9/+CvyV 7knLUWI8bIbv/DLrsgR0C/BTuzkBbwU9WmC9X9AXGBHMe8MwkrUubbW5xoTquo6S hEkg3kmmEGQDyAv5cfjgxOxUp7zCeikpANIunH1D/U2dzr6LjuMtY5lvCXK7wb7j DJ5AA0d0zrpMl5kflehcm7GfUO77gv6jigEqBoH9gbjXApSu8R+Ca8zuwLpFtvTo P6wIncaOHd5NOrSeIN+pVKfYHbowjvOBVbMUa200b34pPhPK -----END CERTIFICATE-----Generated at Sun Aug 24 09:16:29 2025 by rpki-client