$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/yUR96OJO6FR1MdbDzyD3TQ-egKs.roa File: yUR96OJO6FR1MdbDzyD3TQ-egKs.roa (raw, json) Hash identifier: D0YLJp4m1F8Q/FafcxWZC+RJfYdqFBFumD+baIP5U60= Subject key identifier: C9:44:7D:E8:E2:4E:E8:54:75:31:D6:C3:CF:20:F7:4D:0F:9E:80:AB Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Certificate serial: 0E6E Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/yUR96OJO6FR1MdbDzyD3TQ-egKs.roa Signing time: Fri 22 Aug 2025 08:58:16 +0000 ROA not before: Fri 22 Aug 2025 08:58:16 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131596 IP address blocks: 123.110.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3694 (0xe6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Validity Not Before: Aug 22 08:58:16 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C9447DE8E24EE8547531D6C3CF20F74D0F9E80AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e2:2d:11:40:3b:c2:28:29:de:60:bd:66:ad: a4:d2:50:90:16:b0:01:b8:c3:c4:45:07:ca:41:a8: 5c:8f:95:27:16:70:76:f6:59:e1:13:d0:be:7d:5d: 54:59:b6:a5:b9:34:f3:ef:ff:3c:cb:a8:bc:05:42: d6:4a:e8:7d:94:57:de:db:75:d9:5a:1a:f0:13:a1: 90:76:b8:60:e0:66:72:b4:fa:8d:c0:de:60:38:7c: 19:83:cb:39:f1:6d:cc:ec:1b:d6:df:eb:4e:96:88: 40:4a:c9:ab:7d:ca:e6:55:5d:90:12:f8:65:8e:aa: bb:2c:f0:d6:54:e9:17:4a:ad:e8:a4:07:e4:20:d4: 5f:45:0a:62:32:cd:5c:61:5f:ba:d2:6a:36:91:b3: 67:01:b2:99:08:13:69:63:88:d6:17:c1:74:1e:29: 71:43:ee:27:e0:d1:c2:ad:8f:08:9d:41:f8:59:4c: 96:e8:8a:d2:87:52:27:5c:1d:ea:83:ec:5f:e9:2f: 8a:8e:15:c2:27:a9:cc:69:49:16:83:4c:28:66:d3: fa:49:db:db:8d:57:9e:af:8e:ff:5b:ed:7f:dd:03: f1:a6:25:77:86:d0:5e:0e:b6:c9:60:82:4c:1b:8e: b1:6e:53:b2:6d:92:b5:21:b6:81:ab:e2:5c:21:34: 58:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:44:7D:E8:E2:4E:E8:54:75:31:D6:C3:CF:20:F7:4D:0F:9E:80:AB X509v3 Authority Key Identifier: keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/yUR96OJO6FR1MdbDzyD3TQ-egKs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.110.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7d:12:54:06:0d:5f:95:27:76:ef:4f:05:d1:f1:9e:49:94:1e: 4b:97:43:80:a9:22:49:f8:83:27:41:9b:ce:76:c4:2c:79:11: 68:f7:26:73:39:37:6a:ef:e7:4e:35:cb:dd:32:12:b3:2c:3d: 9b:13:4f:ee:1f:7e:f7:3b:04:5a:dc:d0:da:13:2b:c3:20:7f: 91:5d:94:68:e4:c4:fe:7b:49:8f:1f:94:1f:fd:3e:ff:7e:cf: c8:9d:60:05:c6:fa:67:d8:11:81:bf:fd:8b:27:7b:a7:9d:1a: f0:97:db:df:5b:ff:23:a5:92:59:6e:82:3f:55:51:48:35:dd: 87:6d:04:af:ba:e2:e5:65:d4:1b:1f:8e:3d:22:58:93:32:f8: 5b:ef:3f:6b:b9:32:a4:a8:43:21:5f:73:b3:b2:c5:4c:85:c6: 5b:79:8f:7c:c0:61:9f:5e:c8:55:b4:29:6e:42:a6:af:d1:61: c1:09:db:d0:ba:f4:f9:6f:e4:09:88:a9:1f:89:9f:52:00:4f: cc:1d:c9:e7:65:3e:84:aa:b1:dc:85:c2:4a:04:4c:b1:b1:40: 06:7b:61:23:8a:a0:81:2c:fa:c0:10:f4:1d:d4:32:0c:2b:86: 91:d5:49:55:74:b9:fd:62:83:d7:bf:da:54:5e:93:3a:8c:b3: 26:4b:3b:14 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDm4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yNTA4MjIw ODU4MTZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEM5NDQ3REU4RTI0RUU4 NTQ3NTMxRDZDM0NGMjBGNzREMEY5RTgwQUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC94i0RQDvCKCneYL1mraTSUJAWsAG4w8RFB8pBqFyPlScWcHb2 WeET0L59XVRZtqW5NPPv/zzLqLwFQtZK6H2UV97bddlaGvAToZB2uGDgZnK0+o3A 3mA4fBmDyznxbczsG9bf606WiEBKyat9yuZVXZAS+GWOqrss8NZU6RdKreikB+Qg 1F9FCmIyzVxhX7rSajaRs2cBspkIE2ljiNYXwXQeKXFD7ifg0cKtjwidQfhZTJbo itKHUidcHeqD7F/pL4qOFcInqcxpSRaDTChm0/pJ29uNV56vjv9b7X/dA/GmJXeG 0F4OtslggkwbjrFuU7JtkrUhtoGr4lwhNFirAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUyUR96OJO6FR1MdbDzyD3TQ+egKswHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS95VVI5Nk9KTzZGUjFNZGJEenlE M1RRLWVnS3Mucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAe24w DQYJKoZIhvcNAQELBQADggEBAH0SVAYNX5Undu9PBdHxnkmUHkuXQ4CpIkn4gydB m852xCx5EWj3JnM5N2rv5041y90yErMsPZsTT+4ffvc7BFrc0NoTK8Mgf5FdlGjk xP57SY8flB/9Pv9+z8idYAXG+mfYEYG//Ysne6edGvCX299b/yOlkllugj9VUUg1 3YdtBK+64uVl1Bsfjj0iWJMy+FvvP2u5MqSoQyFfc7OyxUyFxlt5j3zAYZ9eyFW0 KW5Cpq/RYcEJ29C69Plv5AmIqR+Jn1IAT8wdyedlPoSqsdyFwkoETLGxQAZ7YSOK oIEs+sAQ9B3UMgwrhpHVSVV0uf1ig9e/2lRekzqMsyZLOxQ= -----END CERTIFICATE-----Generated at Sun Aug 24 09:19:54 2025 by rpki-client