$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/1dtSeAszkm1vqNQqWzJLi1YHDi8.roa File: 1dtSeAszkm1vqNQqWzJLi1YHDi8.roa (raw, json) Hash identifier: 1Bk87MtaHknx2SJ7tAGm1Q+50lBwQNwArumStF8U50E= Subject key identifier: D5:DB:52:78:0B:33:92:6D:6F:A8:D4:2A:5B:32:4B:8B:56:07:0E:2F Certificate issuer: /CN=CAD527022C8CD07568EC9FC82A1CE0DDE5B2C4AC Certificate serial: 09D7 Authority key identifier: CA:D5:27:02:2C:8C:D0:75:68:EC:9F:C8:2A:1C:E0:DD:E5:B2:C4:AC Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ytUnAiyM0HVo7J_IKhzg3eWyxKw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/1dtSeAszkm1vqNQqWzJLi1YHDi8.roa Signing time: Fri 22 Aug 2025 08:50:44 +0000 ROA not before: Fri 22 Aug 2025 08:50:44 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9678 IP address blocks: 211.76.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/ytUnAiyM0HVo7J_IKhzg3eWyxKw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/ytUnAiyM0HVo7J_IKhzg3eWyxKw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ytUnAiyM0HVo7J_IKhzg3eWyxKw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2519 (0x9d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CAD527022C8CD07568EC9FC82A1CE0DDE5B2C4AC Validity Not Before: Aug 22 08:50:44 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=D5DB52780B33926D6FA8D42A5B324B8B56070E2F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:2f:a6:af:84:47:d7:58:06:04:a5:e2:d2:31: 8e:df:92:5d:0a:01:01:9d:6e:c4:e0:f9:85:53:cb: 1f:21:95:ce:d9:63:49:d0:21:d4:ee:d2:88:d8:d0: 42:66:09:18:0d:6f:f2:38:57:b6:4d:49:b4:d0:52: 9c:61:a7:17:02:fe:12:82:34:61:bd:bd:97:9b:88: 16:e2:60:43:47:d4:af:3e:d7:fd:e0:3b:90:28:1d: 02:1d:b5:d6:79:c9:63:23:e5:1c:60:e9:70:de:54: 0f:ac:49:6b:f5:45:88:44:94:f3:e3:0b:45:e2:95: ec:ae:01:8a:e7:4f:39:17:15:8a:48:f9:65:4a:43: 04:42:7e:49:cd:27:d4:50:16:77:59:85:71:b5:3e: 23:37:62:07:01:ef:e0:bf:a0:d8:0b:2c:03:a1:b8: 5f:59:da:fa:87:29:a2:d7:bb:4b:bf:36:2b:6b:10: fb:a6:7e:e8:c7:51:ce:29:fc:34:a3:bd:d0:f8:99: 79:af:69:cd:f8:71:d1:35:82:7b:64:ec:d0:d2:aa: ad:de:c2:57:ca:7d:95:60:a8:ab:98:de:68:84:7a: 82:87:13:75:04:2c:61:d5:3b:68:82:81:29:53:ea: 3c:ac:30:0d:e3:ab:1c:33:aa:ad:00:c4:30:57:87: f1:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:DB:52:78:0B:33:92:6D:6F:A8:D4:2A:5B:32:4B:8B:56:07:0E:2F X509v3 Authority Key Identifier: keyid:CA:D5:27:02:2C:8C:D0:75:68:EC:9F:C8:2A:1C:E0:DD:E5:B2:C4:AC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/ytUnAiyM0HVo7J_IKhzg3eWyxKw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ytUnAiyM0HVo7J_IKhzg3eWyxKw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/1dtSeAszkm1vqNQqWzJLi1YHDi8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.183.0/24 Signature Algorithm: sha256WithRSAEncryption be:83:63:e2:54:8e:5e:47:44:ff:ea:ad:72:e7:58:39:c3:8c: ce:69:83:04:f4:07:8b:fb:43:84:d2:5d:a0:9f:a2:c6:5d:5c: f5:25:e1:dd:d4:93:af:d6:1a:6c:65:b8:f7:8f:48:38:c7:35: 8d:0f:13:eb:8e:ce:0a:1d:fa:b8:40:4b:59:17:fa:74:58:60: 26:f0:eb:55:04:9e:02:ed:09:63:31:e4:a8:e8:fa:15:75:66: ba:8e:7a:e1:b7:54:93:8e:ca:24:23:08:24:40:f3:15:71:99: 3a:29:c5:6e:bd:86:f5:1d:51:88:ae:18:74:78:c6:eb:1d:46: 0c:06:7c:19:f1:cd:85:3f:b4:19:00:cf:00:88:a4:2a:67:c5: f6:16:62:fc:5e:ab:0b:95:18:24:fd:e7:aa:96:8d:3d:ab:61: c4:66:f1:f9:1c:3b:ef:1e:f1:56:f6:4b:c6:5c:78:b3:98:c1: 97:68:ae:82:d0:8e:c4:59:24:e4:42:be:78:f3:70:84:2f:25: dd:30:35:22:0b:20:00:a2:0e:54:9e:d8:6a:08:8d:c6:15:2b: 4c:9d:a3:06:3f:04:0c:7a:46:aa:64:28:ed:24:b0:a0:15:36: 64:79:06:f7:db:62:6e:f0:fc:4f:a7:ca:46:fa:46:53:e5:95: 6c:2c:02:9f -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICCdcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0FE NTI3MDIyQzhDRDA3NTY4RUM5RkM4MkExQ0UwRERFNUIyQzRBQzAeFw0yNTA4MjIw ODUwNDRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEQ1REI1Mjc4MEIzMzky NkQ2RkE4RDQyQTVCMzI0QjhCNTYwNzBFMkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKL6avhEfXWAYEpeLSMY7fkl0KAQGdbsTg+YVTyx8hlc7ZY0nQ IdTu0ojY0EJmCRgNb/I4V7ZNSbTQUpxhpxcC/hKCNGG9vZebiBbiYENH1K8+1/3g O5AoHQIdtdZ5yWMj5Rxg6XDeVA+sSWv1RYhElPPjC0XileyuAYrnTzkXFYpI+WVK QwRCfknNJ9RQFndZhXG1PiM3YgcB7+C/oNgLLAOhuF9Z2vqHKaLXu0u/NitrEPum fujHUc4p/DSjvdD4mXmvac34cdE1gntk7NDSqq3ewlfKfZVgqKuY3miEeoKHE3UE LGHVO2iCgSlT6jysMA3jqxwzqq0AxDBXh/GRAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQU1dtSeAszkm1vqNQqWzJLi1YHDi8wHwYDVR0jBBgwFoAUytUnAiyM0HVo7J/I Khzg3eWyxKwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdCRVNU V0FSRS95dFVuQWl5TTBIVm83Sl9JS2h6ZzNlV3l4S3cuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL3l0VW5BaXlNMEhWbzdKX0lLaHpnM2VXeXhLdy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1RXQkVTVFdBUkUvMWR0U2VBc3pr bTF2cU5RcVd6SkxpMVlIRGk4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEANNMtzANBgkqhkiG9w0BAQsFAAOCAQEAvoNj4lSOXkdE/+qtcudYOcOM zmmDBPQHi/tDhNJdoJ+ixl1c9SXh3dSTr9YabGW4949IOMc1jQ8T647OCh36uEBL WRf6dFhgJvDrVQSeAu0JYzHkqOj6FXVmuo564bdUk47KJCMIJEDzFXGZOinFbr2G 9R1RiK4YdHjG6x1GDAZ8GfHNhT+0GQDPAIikKmfF9hZi/F6rC5UYJP3nqpaNPath xGbx+Rw77x7xVvZLxlx4s5jBl2iugtCOxFkk5EK+ePNwhC8l3TA1IgsgAKIOVJ7Y agiNxhUrTJ2jBj8EDHpGqmQo7SSwoBU2ZHkG99tibvD8T6fKRvpGU+WVbCwCnw== -----END CERTIFICATE-----Generated at Sun Aug 24 09:40:06 2025 by rpki-client