$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWDS/5GG28GCrBy4CsvaLOcOMqVg795I.roa File: 5GG28GCrBy4CsvaLOcOMqVg795I.roa (raw, json) Hash identifier: SqvYvw3WvzrqGSHFaQftqFjgiExhKzWwFae1mhYygns= Subject key identifier: E4:61:B6:F0:60:AB:07:2E:02:B2:F6:8B:39:C3:8C:A9:58:3B:F7:92 Certificate issuer: /CN=291BAF6A0C176CE0A32423666BCE78F9D91824CB Certificate serial: 0B3B Authority key identifier: 29:1B:AF:6A:0C:17:6C:E0:A3:24:23:66:6B:CE:78:F9:D9:18:24:CB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KRuvagwXbOCjJCNma854-dkYJMs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/5GG28GCrBy4CsvaLOcOMqVg795I.roa Signing time: Fri 22 Aug 2025 08:56:37 +0000 ROA not before: Fri 22 Aug 2025 08:56:37 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 141173 IP address blocks: 2405:a640:1173::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/KRuvagwXbOCjJCNma854-dkYJMs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/KRuvagwXbOCjJCNma854-dkYJMs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KRuvagwXbOCjJCNma854-dkYJMs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2875 (0xb3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=291BAF6A0C176CE0A32423666BCE78F9D91824CB Validity Not Before: Aug 22 08:56:37 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E461B6F060AB072E02B2F68B39C38CA9583BF792 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a8:6e:9b:ea:c1:ca:8e:30:9a:be:64:3b:aa: 26:32:01:c1:ea:f0:48:71:39:51:90:4b:b1:de:93: 64:d7:f6:b3:da:08:7d:e0:a7:b4:d6:2e:75:d7:ed: a2:dc:4f:ef:7c:0e:0a:c3:33:47:45:a7:63:c3:49: 87:92:75:3e:ed:02:bf:14:4b:87:7b:d1:e1:1f:3b: af:da:14:19:74:71:27:05:f9:36:51:69:4d:81:45: b4:77:f5:19:5f:92:1d:15:49:b1:ac:5c:63:66:4d: 24:a9:b1:74:49:ac:64:9e:60:4e:4c:40:20:e2:d1: ad:35:90:31:65:b5:bb:f2:c8:f8:2d:84:00:73:c4: e1:4d:3e:f0:0a:d7:69:40:fe:09:5a:eb:62:e2:af: df:8a:4b:34:55:c2:11:1e:0f:e1:1b:10:92:54:d0: 3b:81:92:ae:f2:c1:a4:ae:7c:0b:c9:f2:58:8e:77: 6d:82:fa:d7:90:d8:8e:37:70:05:68:0a:aa:a1:37: c7:64:59:2b:6c:62:a0:89:23:b6:ed:b1:e5:0a:15: a6:60:da:8a:f1:93:b8:1a:a8:a5:cf:37:07:f2:72: 9d:d4:96:89:6f:81:85:2c:d0:b7:4e:f3:11:23:de: c1:d1:b3:79:97:5b:30:68:b4:6d:58:57:79:1a:38: bc:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:61:B6:F0:60:AB:07:2E:02:B2:F6:8B:39:C3:8C:A9:58:3B:F7:92 X509v3 Authority Key Identifier: keyid:29:1B:AF:6A:0C:17:6C:E0:A3:24:23:66:6B:CE:78:F9:D9:18:24:CB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/KRuvagwXbOCjJCNma854-dkYJMs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KRuvagwXbOCjJCNma854-dkYJMs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/5GG28GCrBy4CsvaLOcOMqVg795I.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2405:a640:1173::/48 Signature Algorithm: sha256WithRSAEncryption 06:01:8b:f1:19:70:6d:44:8c:39:4f:d1:79:f3:0f:76:0c:17: 02:cd:db:6c:12:0d:6b:48:23:f1:26:dc:93:76:fa:d9:50:04: 71:29:4b:b2:01:a2:f5:8a:29:2a:d2:2d:67:eb:73:73:2a:ee: df:bb:ca:3f:18:bf:71:d0:fe:90:fa:e0:e5:63:c9:0a:23:4f: 6b:33:c4:22:aa:b6:1a:70:0e:3a:27:46:9b:ac:f6:71:c0:2c: 71:02:f5:71:b8:49:50:e6:72:f2:7d:c9:9d:b9:1b:2f:3a:16: 3d:ae:72:4c:a0:6b:6c:d9:ce:81:29:50:ed:36:5f:a1:f6:43: 49:e9:84:1d:7d:b2:b4:ff:18:93:f1:2e:63:10:76:37:07:0f: a1:a0:32:9b:c6:48:b3:63:d0:7a:8b:ce:fe:73:e4:fa:ca:2a: a1:2f:50:a1:f5:07:a9:cd:e7:2a:58:7c:cc:2b:bd:ff:97:de: 2d:25:24:62:f3:bb:8e:66:8c:aa:64:e4:63:a5:81:5a:f8:27: 6a:36:22:70:c8:ea:b8:0a:38:a7:af:12:78:02:bb:18:c8:9e: 9e:cc:8d:15:d7:86:fc:78:a6:66:98:f8:f6:34:5f:b5:9d:45: 29:8b:d2:65:67:61:34:b6:fe:48:fc:d2:bd:80:0f:fd:1f:4b: 6d:7f:45:54 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICCzswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjkx QkFGNkEwQzE3NkNFMEEzMjQyMzY2NkJDRTc4RjlEOTE4MjRDQjAeFw0yNTA4MjIw ODU2MzdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEU0NjFCNkYwNjBBQjA3 MkUwMkIyRjY4QjM5QzM4Q0E5NTgzQkY3OTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwqG6b6sHKjjCavmQ7qiYyAcHq8EhxOVGQS7Hek2TX9rPaCH3g p7TWLnXX7aLcT+98DgrDM0dFp2PDSYeSdT7tAr8US4d70eEfO6/aFBl0cScF+TZR aU2BRbR39Rlfkh0VSbGsXGNmTSSpsXRJrGSeYE5MQCDi0a01kDFltbvyyPgthABz xOFNPvAK12lA/gla62Lir9+KSzRVwhEeD+EbEJJU0DuBkq7ywaSufAvJ8liOd22C +teQ2I43cAVoCqqhN8dkWStsYqCJI7btseUKFaZg2orxk7gaqKXPNwfycp3Ulolv gYUs0LdO8xEj3sHRs3mXWzBotG1YV3kaOLw3AgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQU5GG28GCrBy4CsvaLOcOMqVg795IwHwYDVR0jBBgwFoAUKRuvagwXbOCjJCNm a854+dkYJMswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdEUy9L UnV2YWd3WGJPQ2pKQ05tYTg1NC1ka1lKTXMuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0tSdXZhZ3dYYk9DakpDTm1hODU0LWRrWUpNcy5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1RXRFMvNUdHMjhHQ3JCeTRDc3ZhTE9jT01x Vmc3OTVJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQFpkAR czANBgkqhkiG9w0BAQsFAAOCAQEABgGL8RlwbUSMOU/RefMPdgwXAs3bbBINa0gj 8Sbck3b62VAEcSlLsgGi9YopKtItZ+tzcyru37vKPxi/cdD+kPrg5WPJCiNPazPE Iqq2GnAOOidGm6z2ccAscQL1cbhJUOZy8n3JnbkbLzoWPa5yTKBrbNnOgSlQ7TZf ofZDSemEHX2ytP8Yk/EuYxB2NwcPoaAym8ZIs2PQeovO/nPk+soqoS9QofUHqc3n Klh8zCu9/5feLSUkYvO7jmaMqmTkY6WBWvgnajYicMjquAo4p68SeAK7GMiensyN FdeG/HimZpj49jRftZ1FKYvSZWdhNLb+SPzSvYAP/R9LbX9FVA== -----END CERTIFICATE-----Generated at Sun Aug 24 11:04:42 2025 by rpki-client