$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/vIBcPxWLcoJ-cUnKfvZ_eWgZKUU.roa File: vIBcPxWLcoJ-cUnKfvZ_eWgZKUU.roa (raw, json) Hash identifier: iwyQNILy4d7/veq42IaHkjzCyTuN3UeG2WBs+G+AHDA= Subject key identifier: BC:80:5C:3F:15:8B:72:82:7E:71:49:CA:7E:F6:7F:79:68:19:29:45 Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Certificate serial: 0E62 Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/vIBcPxWLcoJ-cUnKfvZ_eWgZKUU.roa Signing time: Fri 22 Aug 2025 08:58:13 +0000 ROA not before: Fri 22 Aug 2025 08:58:13 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131596 IP address blocks: 123.240.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3682 (0xe62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Validity Not Before: Aug 22 08:58:13 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=BC805C3F158B72827E7149CA7EF67F7968192945 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:1d:37:33:f5:ae:56:67:87:60:e7:a4:85:5e: a8:6a:de:4d:ed:78:29:d6:84:a1:55:18:7c:2a:25: ae:44:4b:b7:ac:ac:83:0f:b2:35:2a:75:60:95:58: 9e:a8:a9:ab:c6:09:20:15:1a:a1:9d:9b:dc:76:8d: 8b:24:3f:27:d3:cc:55:42:57:5c:00:d2:6c:34:d0: 76:21:88:79:28:0f:8c:a3:db:87:33:99:0b:07:15: 48:5d:65:74:ad:62:8c:ef:38:61:a1:bb:d8:1b:89: ee:51:23:e4:91:a1:9f:f4:ad:5a:b7:c0:40:47:94: a2:81:c2:cc:fc:59:b2:eb:c6:b9:f4:8e:23:10:11: c2:85:9d:5e:3c:4a:40:9d:78:c3:39:96:e7:fa:30: f5:e3:f9:90:fc:92:98:e2:ff:6e:f2:73:2f:e0:83: 19:36:35:fd:3d:08:c0:d6:3f:8a:6b:50:ab:57:fc: 54:21:1b:be:1e:5c:89:a8:6f:b0:12:2c:51:1a:93: 0e:4b:c6:11:da:11:cb:49:eb:4b:39:2e:bf:b4:4d: 99:a9:aa:8d:72:1e:4c:95:bc:82:59:3d:61:e3:75: 23:ca:11:e6:88:1e:ae:32:1e:55:9b:84:bb:b6:d6: 65:e8:64:2b:02:3f:9a:95:3a:88:27:da:83:09:79: 32:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:80:5C:3F:15:8B:72:82:7E:71:49:CA:7E:F6:7F:79:68:19:29:45 X509v3 Authority Key Identifier: keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/vIBcPxWLcoJ-cUnKfvZ_eWgZKUU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.240.0.0/15 Signature Algorithm: sha256WithRSAEncryption 69:d2:10:5f:b2:73:12:34:3a:0c:3e:95:00:d6:90:c1:b0:72: ba:87:73:41:18:83:6d:91:1d:93:69:69:4d:de:67:7d:20:66: d0:b8:e3:fb:4e:5f:0c:c7:15:85:62:9b:15:a1:e6:a6:c1:7d: e7:35:24:7b:7e:b9:e5:c1:e8:dc:6c:be:ab:4a:74:a6:14:9d: 19:c1:a5:b6:8f:40:44:75:f4:65:72:28:2c:3c:cb:d9:4b:50: 6a:33:98:08:6a:03:f8:29:36:c4:40:f9:22:c3:f6:f3:ff:42: 9e:2d:1a:1b:59:b9:a7:d5:b1:d3:84:e3:16:11:c2:4b:27:0b: a2:8a:2a:e6:89:39:bd:98:73:2f:b7:97:87:37:70:1b:fa:80: 8c:b1:b2:74:69:e8:62:b8:25:09:eb:30:5c:50:34:b9:e4:4c: 95:13:f9:eb:ca:79:31:71:f0:a0:c8:62:c2:c9:18:49:f4:54: 00:e4:2d:0e:35:b7:0b:09:78:4c:dc:b2:a0:a2:ec:be:84:0a: 07:b5:fd:0e:88:78:4a:cc:d2:c6:a9:da:fe:87:f3:58:d4:30: 01:55:33:32:bd:f0:f3:fc:e3:cd:cd:29:06:8f:18:4a:fb:e9: 92:57:6a:8e:11:df:3f:35:70:de:cf:4a:33:e9:fd:9e:f0:f9: 4a:1d:56:79 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDmIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yNTA4MjIw ODU4MTNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEJDODA1QzNGMTU4Qjcy ODI3RTcxNDlDQTdFRjY3Rjc5NjgxOTI5NDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDcHTcz9a5WZ4dg56SFXqhq3k3teCnWhKFVGHwqJa5ES7esrIMP sjUqdWCVWJ6oqavGCSAVGqGdm9x2jYskPyfTzFVCV1wA0mw00HYhiHkoD4yj24cz mQsHFUhdZXStYozvOGGhu9gbie5RI+SRoZ/0rVq3wEBHlKKBwsz8WbLrxrn0jiMQ EcKFnV48SkCdeMM5luf6MPXj+ZD8kpji/27ycy/ggxk2Nf09CMDWP4prUKtX/FQh G74eXImob7ASLFEakw5LxhHaEctJ60s5Lr+0TZmpqo1yHkyVvIJZPWHjdSPKEeaI Hq4yHlWbhLu21mXoZCsCP5qVOogn2oMJeTJrAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUvIBcPxWLcoJ+cUnKfvZ/eWgZKUUwHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS92SUJjUHhXTGNvSi1jVW5LZnZa X2VXZ1pLVVUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMBe/Aw DQYJKoZIhvcNAQELBQADggEBAGnSEF+ycxI0Ogw+lQDWkMGwcrqHc0EYg22RHZNp aU3eZ30gZtC44/tOXwzHFYVimxWh5qbBfec1JHt+ueXB6NxsvqtKdKYUnRnBpbaP QER19GVyKCw8y9lLUGozmAhqA/gpNsRA+SLD9vP/Qp4tGhtZuafVsdOE4xYRwksn C6KKKuaJOb2Ycy+3l4c3cBv6gIyxsnRp6GK4JQnrMFxQNLnkTJUT+evKeTFx8KDI YsLJGEn0VADkLQ41twsJeEzcsqCi7L6ECge1/Q6IeErM0sap2v6H81jUMAFVMzK9 8PP8483NKQaPGEr76ZJXao4R3z81cN7PSjPp/Z7w+UodVnk= -----END CERTIFICATE-----Generated at Sun Aug 24 09:15:02 2025 by rpki-client