$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gI6AwCNAPmcDHbDU6hAqCGwyo58.roa File: gI6AwCNAPmcDHbDU6hAqCGwyo58.roa (raw, json) Hash identifier: vh073mGTNGvDo7S5FTVFvb65KoyWm+GUF67Wzd4KvHY= Subject key identifier: 80:8E:80:C0:23:40:3E:67:03:1D:B0:D4:EA:10:2A:08:6C:32:A3:9F Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Certificate serial: 0E63 Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gI6AwCNAPmcDHbDU6hAqCGwyo58.roa Signing time: Fri 22 Aug 2025 08:58:13 +0000 ROA not before: Fri 22 Aug 2025 08:58:13 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17709 IP address blocks: 61.58.64.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3683 (0xe63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Validity Not Before: Aug 22 08:58:13 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=808E80C023403E67031DB0D4EA102A086C32A39F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:65:46:d8:38:cd:50:d8:45:c4:3a:55:f2:2d: a0:f7:8c:e3:f2:3c:2e:db:f2:73:01:ed:9a:29:9e: 72:19:ad:8f:bb:2a:a9:43:00:15:31:41:6d:10:cf: 7d:e7:0d:02:66:b9:ea:41:4c:26:c9:9b:8f:de:63: aa:1e:37:47:55:9b:74:ed:66:4e:58:c8:8c:b0:91: c3:10:75:89:8b:dd:d2:10:0a:12:38:23:1c:fb:ae: b8:e9:ce:72:a5:3f:c3:8d:6b:5a:a2:a9:fd:4a:b9: 24:a8:c5:83:55:69:b4:49:99:3b:6e:a9:b6:13:c7: 62:ed:51:85:4a:63:f1:7e:32:cc:e7:89:ea:ab:65: 4d:18:72:f8:3e:5e:2c:a1:c0:a4:36:94:5b:71:99: 3a:7b:a4:c6:b6:01:7b:b5:6a:9e:a9:c7:7b:0c:d5: e8:4f:e7:30:42:65:25:ec:d2:57:99:22:af:1c:73: 4c:f1:d2:d1:9c:46:49:00:ad:02:9a:6f:94:b7:1f: b7:44:04:bd:a2:78:85:70:2f:cd:a8:90:31:e1:3f: 77:18:64:fa:f7:7f:31:0b:9e:e2:2a:d8:aa:2b:81: b1:0b:9b:41:97:e9:b6:19:21:12:56:02:83:8d:9b: ea:30:6c:e7:8a:a8:90:25:ff:73:87:6e:98:da:c3: 15:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:8E:80:C0:23:40:3E:67:03:1D:B0:D4:EA:10:2A:08:6C:32:A3:9F X509v3 Authority Key Identifier: keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gI6AwCNAPmcDHbDU6hAqCGwyo58.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.58.64.0/21 Signature Algorithm: sha256WithRSAEncryption 12:d2:99:11:a9:a3:82:73:b2:07:4c:fc:90:f5:50:81:b7:45: a1:2e:3c:29:80:48:13:65:85:e8:26:e6:86:2e:67:20:46:36: f5:e4:cf:69:e7:e8:70:14:18:81:2b:62:c0:bd:59:5e:f0:21: 77:64:72:6f:2a:05:a5:84:97:8b:0d:b4:02:bd:ca:7d:3a:31: 09:9a:5f:bd:10:aa:d1:00:d9:7c:e6:30:33:98:32:8c:9e:6a: bc:d0:ee:75:7c:52:7b:17:40:79:65:5f:fb:f5:a0:1a:7b:7a: ab:03:77:54:ba:b6:b6:23:5d:0a:26:0e:fe:ec:ce:a6:48:12: 26:82:36:48:fa:44:1b:fe:d1:7b:e0:3a:2f:55:45:55:e3:36: 62:58:e6:ad:ba:67:d6:72:8b:20:af:b1:2d:dd:7e:20:a2:d7: b3:07:d4:99:b1:5d:a0:b3:e9:a4:fb:d4:e0:66:98:16:ce:ab: e2:e9:c9:b4:fa:0e:4f:97:e2:0c:b5:f6:2a:02:a4:34:a3:6b: 35:f3:4b:5a:08:14:ff:50:74:1d:c0:91:49:ca:2a:1c:7c:78: 4d:d9:10:05:9e:83:e5:0e:b2:17:f0:a7:5e:45:6e:eb:da:d9: 2e:36:d7:38:43:33:11:c9:a8:88:26:dc:c0:7e:08:54:5a:85: ae:c2:c6:ca -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDmMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yNTA4MjIw ODU4MTNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDgwOEU4MEMwMjM0MDNF NjcwMzFEQjBENEVBMTAyQTA4NkMzMkEzOUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDZUbYOM1Q2EXEOlXyLaD3jOPyPC7b8nMB7ZopnnIZrY+7KqlD ABUxQW0Qz33nDQJmuepBTCbJm4/eY6oeN0dVm3TtZk5YyIywkcMQdYmL3dIQChI4 Ixz7rrjpznKlP8ONa1qiqf1KuSSoxYNVabRJmTtuqbYTx2LtUYVKY/F+Msznieqr ZU0Ycvg+XiyhwKQ2lFtxmTp7pMa2AXu1ap6px3sM1ehP5zBCZSXs0leZIq8cc0zx 0tGcRkkArQKab5S3H7dEBL2ieIVwL82okDHhP3cYZPr3fzELnuIq2KorgbELm0GX 6bYZIRJWAoONm+owbOeKqJAl/3OHbpjawxXVAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUgI6AwCNAPmcDHbDU6hAqCGwyo58wHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS9nSTZBd0NOQVBtY0RIYkRVNmhB cUNHd3lvNTgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDPTpA MA0GCSqGSIb3DQEBCwUAA4IBAQAS0pkRqaOCc7IHTPyQ9VCBt0WhLjwpgEgTZYXo JuaGLmcgRjb15M9p5+hwFBiBK2LAvVle8CF3ZHJvKgWlhJeLDbQCvcp9OjEJml+9 EKrRANl85jAzmDKMnmq80O51fFJ7F0B5ZV/79aAae3qrA3dUura2I10KJg7+7M6m SBImgjZI+kQb/tF74DovVUVV4zZiWOatumfWcosgr7Et3X4gotezB9SZsV2gs+mk +9TgZpgWzqvi6cm0+g5Pl+IMtfYqAqQ0o2s180taCBT/UHQdwJFJyiocfHhN2RAF noPlDrIX8KdeRW7r2tkuNtc4QzMRyaiIJtzAfghUWoWuwsbK -----END CERTIFICATE-----Generated at Sun Aug 24 09:16:12 2025 by rpki-client