$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/qtyQL5WGDDE-TDdMKqa3eDX8bck.roa File: qtyQL5WGDDE-TDdMKqa3eDX8bck.roa (raw, json) Hash identifier: 6+6uJ1z3V838Kvx7WkZabAjnDtv6t0WNkzAKt3w8vCU= Subject key identifier: AA:DC:90:2F:95:86:0C:31:3E:4C:37:4C:2A:A6:B7:78:35:FC:6D:C9 Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Certificate serial: 0E70 Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/qtyQL5WGDDE-TDdMKqa3eDX8bck.roa Signing time: Fri 22 Aug 2025 08:58:17 +0000 ROA not before: Fri 22 Aug 2025 08:58:17 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17709 IP address blocks: 116.241.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3696 (0xe70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Validity Not Before: Aug 22 08:58:17 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=AADC902F95860C313E4C374C2AA6B77835FC6DC9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:3d:7d:27:79:93:f9:1a:d2:5d:e9:5d:c7:e4: cf:06:ff:ee:47:59:a3:90:2c:ac:b7:2f:30:ab:7b: 3e:8c:cb:3f:8e:7f:6f:27:f6:41:e0:4d:94:4b:ad: c9:65:c5:b5:ae:8e:d9:70:df:a2:71:1e:67:fe:be: d8:17:6b:dd:54:c6:e1:db:c9:0f:50:95:0d:b8:86: 49:21:fa:ce:86:6a:36:c4:77:c3:bf:ed:12:f9:a4: 6f:43:53:78:4e:5a:3b:8d:11:86:33:a3:b7:08:c5: 4b:6c:29:11:22:ea:10:4d:41:35:45:a9:60:88:02: 93:ce:a2:4b:84:67:5b:05:b0:8e:6e:4c:60:7e:36: ad:bb:08:a8:ec:22:02:87:91:fc:70:bd:ba:7b:3e: 9b:a0:3c:e4:6f:6b:de:2b:ed:30:53:00:a5:25:c4: 02:2e:4b:3f:f7:9a:e3:2d:7b:72:f2:ff:26:72:e6: d2:f7:41:bc:16:a2:75:79:6d:af:4f:5e:9b:46:97: 7f:bf:f7:80:91:12:c7:b1:0c:e1:a0:d8:3c:86:72: 76:c3:7f:05:77:dc:89:7c:4d:23:ce:be:42:e1:74: 67:6d:06:c1:35:4c:b9:af:77:75:ce:6a:d1:e9:53: 3c:fb:34:1d:7b:22:cf:7e:89:e1:4a:fe:24:a0:e0: d6:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:DC:90:2F:95:86:0C:31:3E:4C:37:4C:2A:A6:B7:78:35:FC:6D:C9 X509v3 Authority Key Identifier: keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/qtyQL5WGDDE-TDdMKqa3eDX8bck.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 116.241.0.0/16 Signature Algorithm: sha256WithRSAEncryption 6d:ed:a3:94:95:79:f4:7a:0b:e4:96:f4:5c:94:6b:0c:89:23: c1:ff:60:43:10:2e:4f:b6:b4:ea:5d:d6:55:53:9e:f9:4e:02: c5:07:2c:8f:b5:88:15:2f:e4:26:b5:2f:b5:47:fd:fe:6c:59: 02:e9:e0:6b:92:12:21:c7:66:35:34:ad:53:ff:e7:fb:6b:f6: b4:9b:43:a5:6a:0c:07:1e:76:67:b8:d5:4f:5a:7d:b0:4f:eb: 94:81:96:35:62:08:82:1e:d3:5a:e1:39:5c:aa:9b:d9:49:e3: 34:c1:6a:e4:df:b5:16:db:ad:48:5c:6e:ca:bc:83:ac:4c:5e: c6:ad:12:c4:67:f4:f7:64:8c:b7:08:1d:14:c9:6b:bd:20:19: ae:30:df:a2:13:99:d0:df:2c:30:7d:1b:e8:68:93:bf:df:04: 5a:5f:81:74:17:b5:84:42:6d:c2:f7:57:c5:34:5a:26:62:f5: b0:9c:d5:6e:73:93:55:23:82:a4:9a:5d:71:53:43:8c:24:76: c5:e4:98:3c:09:a6:33:c9:5c:3c:f6:c7:15:e6:ba:42:bb:2f: 32:c4:e4:3d:04:17:9e:be:f0:8f:5a:d6:05:04:ea:c4:0e:af: 97:ec:96:d5:4b:d7:d1:b1:5a:61:70:f4:7e:eb:0c:1b:d8:6b: 5d:78:6c:cc -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDnAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yNTA4MjIw ODU4MTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEFBREM5MDJGOTU4NjBD MzEzRTRDMzc0QzJBQTZCNzc4MzVGQzZEQzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxPX0neZP5GtJd6V3H5M8G/+5HWaOQLKy3LzCrez6Myz+Of28n 9kHgTZRLrcllxbWujtlw36JxHmf+vtgXa91UxuHbyQ9QlQ24hkkh+s6GajbEd8O/ 7RL5pG9DU3hOWjuNEYYzo7cIxUtsKREi6hBNQTVFqWCIApPOokuEZ1sFsI5uTGB+ Nq27CKjsIgKHkfxwvbp7PpugPORva94r7TBTAKUlxAIuSz/3muMte3Ly/yZy5tL3 QbwWonV5ba9PXptGl3+/94CREsexDOGg2DyGcnbDfwV33Il8TSPOvkLhdGdtBsE1 TLmvd3XOatHpUzz7NB17Is9+ieFK/iSg4NapAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUqtyQL5WGDDE+TDdMKqa3eDX8bckwHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS9xdHlRTDVXR0RERS1URGRNS3Fh M2VEWDhiY2sucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAdPEw DQYJKoZIhvcNAQELBQADggEBAG3to5SVefR6C+SW9FyUawyJI8H/YEMQLk+2tOpd 1lVTnvlOAsUHLI+1iBUv5Ca1L7VH/f5sWQLp4GuSEiHHZjU0rVP/5/tr9rSbQ6Vq DAcedme41U9afbBP65SBljViCIIe01rhOVyqm9lJ4zTBauTftRbbrUhcbsq8g6xM XsatEsRn9PdkjLcIHRTJa70gGa4w36ITmdDfLDB9G+hok7/fBFpfgXQXtYRCbcL3 V8U0WiZi9bCc1W5zk1UjgqSaXXFTQ4wkdsXkmDwJpjPJXDz2xxXmukK7LzLE5D0E F56+8I9a1gUE6sQOr5fsltVL19GxWmFw9H7rDBvYa114bMw= -----END CERTIFICATE-----Generated at Sun Aug 24 09:15:10 2025 by rpki-client