$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/bi_TDVubJ9njomx5EkHYpLdeCa8.roa File: bi_TDVubJ9njomx5EkHYpLdeCa8.roa (raw, json) Hash identifier: DS7gFBCUdGBOKW8JeVI0o+OQfH3D+ozjXhDup8iSXDI= Subject key identifier: 6E:2F:D3:0D:5B:9B:27:D9:E3:A2:6C:79:12:41:D8:A4:B7:5E:09:AF Certificate issuer: /CN=1D92BE0ACF9887B1A8192875CFE732238DE322A9 Certificate serial: 0D5F Authority key identifier: 1D:92:BE:0A:CF:98:87:B1:A8:19:28:75:CF:E7:32:23:8D:E3:22:A9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HZK-Cs-Yh7GoGSh1z-cyI43jIqk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/bi_TDVubJ9njomx5EkHYpLdeCa8.roa Signing time: Fri 22 Aug 2025 08:51:07 +0000 ROA not before: Fri 22 Aug 2025 08:51:07 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9916 IP address blocks: 2001:f18::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/HZK-Cs-Yh7GoGSh1z-cyI43jIqk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/HZK-Cs-Yh7GoGSh1z-cyI43jIqk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/HZK-Cs-Yh7GoGSh1z-cyI43jIqk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3423 (0xd5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D92BE0ACF9887B1A8192875CFE732238DE322A9 Validity Not Before: Aug 22 08:51:07 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=6E2FD30D5B9B27D9E3A26C791241D8A4B75E09AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:61:28:f3:9f:f5:05:83:e1:da:f1:42:c8:0a: ac:22:bf:5d:f5:47:ab:57:88:a3:91:be:9f:a6:bd: ed:cb:87:cc:67:d3:bf:99:5e:d2:b3:38:fa:b7:4e: 8d:e6:9b:33:cd:f6:b4:68:c8:1d:62:16:64:d2:5c: 42:58:a2:ea:f2:bb:3f:aa:2c:51:f4:a6:fa:3e:8b: 34:bb:ba:b1:da:d4:f0:5d:a8:19:de:85:9d:89:f9: 30:ee:e1:c2:34:8b:12:e7:ab:01:ea:d5:a5:53:d5: 8d:71:ca:48:55:53:9e:d7:1f:b3:02:ad:fb:f8:d3: 97:11:cb:67:fd:bc:de:65:77:b1:53:0a:fc:45:96: 46:43:c4:2a:7e:5f:df:61:3c:41:59:ad:ba:61:68: 47:d9:fd:ae:bf:2b:45:61:31:78:42:cb:f4:b5:8d: 6f:25:60:3c:d9:32:20:ef:9e:60:9a:a5:f5:e9:0d: c1:a5:b2:88:99:f9:75:74:33:c1:4f:42:4e:3d:66: bd:52:0f:ab:a7:14:51:70:9e:2d:a9:48:66:4a:6b: ec:17:5f:b1:01:a0:23:ad:68:74:d7:f7:bb:09:94: d2:13:51:74:19:d7:64:ce:59:9b:01:8d:a3:ae:3c: c1:5f:9b:90:90:aa:74:2a:f6:76:33:ea:93:26:6b: a9:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:2F:D3:0D:5B:9B:27:D9:E3:A2:6C:79:12:41:D8:A4:B7:5E:09:AF X509v3 Authority Key Identifier: keyid:1D:92:BE:0A:CF:98:87:B1:A8:19:28:75:CF:E7:32:23:8D:E3:22:A9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/HZK-Cs-Yh7GoGSh1z-cyI43jIqk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HZK-Cs-Yh7GoGSh1z-cyI43jIqk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/bi_TDVubJ9njomx5EkHYpLdeCa8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:f18::/32 Signature Algorithm: sha256WithRSAEncryption 9e:aa:14:d3:62:5c:ec:4e:25:40:8c:ce:52:24:d6:f1:4b:4b: 69:83:19:97:75:75:4b:69:89:c7:a6:d9:51:58:7e:f4:8b:fd: 3a:4e:2b:d3:8a:5f:47:08:17:db:a5:49:cd:3e:78:ac:7f:a7: 20:41:67:18:c5:8c:0f:c1:45:f7:f7:8b:49:52:ee:05:02:76: a3:0f:ff:5a:94:81:43:bc:9b:88:e9:d7:de:18:3f:4b:cb:a4: a6:82:60:06:24:15:a9:9b:c8:c5:f3:67:b8:fb:b5:3c:e2:76: ac:9c:e8:f0:89:aa:57:7c:d6:7c:5d:3e:0c:5f:4c:c2:2a:5e: 9e:e3:28:de:c2:0a:71:83:ab:a9:c2:da:a3:f6:c5:8a:54:ed: 35:4f:7e:89:f7:91:e4:0f:5c:5e:c0:ee:97:cc:80:ea:3d:01: 3f:55:13:fd:36:fa:ff:df:5c:73:cd:b9:d0:9d:e2:42:2f:c6: 63:71:47:86:b9:7e:ba:9d:33:b2:59:ca:17:a0:66:11:cc:27: f2:c3:c6:88:1f:b0:4d:6f:93:27:45:54:84:36:dd:c9:44:41: 44:a7:85:2f:ea:32:1b:a9:3a:c4:47:15:1f:4a:78:eb:00:65: 04:2f:c2:e8:2b:15:62:44:ef:91:fa:cb:ba:eb:56:58:5c:b3: 18:22:d6:5f -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICDV8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUQ5 MkJFMEFDRjk4ODdCMUE4MTkyODc1Q0ZFNzMyMjM4REUzMjJBOTAeFw0yNTA4MjIw ODUxMDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDZFMkZEMzBENUI5QjI3 RDlFM0EyNkM3OTEyNDFEOEE0Qjc1RTA5QUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWYSjzn/UFg+Ha8ULICqwiv131R6tXiKORvp+mve3Lh8xn07+Z XtKzOPq3To3mmzPN9rRoyB1iFmTSXEJYouryuz+qLFH0pvo+izS7urHa1PBdqBne hZ2J+TDu4cI0ixLnqwHq1aVT1Y1xykhVU57XH7MCrfv405cRy2f9vN5ld7FTCvxF lkZDxCp+X99hPEFZrbphaEfZ/a6/K0VhMXhCy/S1jW8lYDzZMiDvnmCapfXpDcGl soiZ+XV0M8FPQk49Zr1SD6unFFFwni2pSGZKa+wXX7EBoCOtaHTX97sJlNITUXQZ 12TOWZsBjaOuPMFfm5CQqnQq9nYz6pMma6nLAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUbi/TDVubJ9njomx5EkHYpLdeCa8wHwYDVR0jBBgwFoAUHZK+Cs+Yh7GoGSh1 z+cyI43jIqkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOQ1RV L0haSy1Dcy1ZaDdHb0dTaDF6LWN5STQzaklxay5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSFpLLUNzLVloN0dvR1NoMXotY3lJNDNqSXFrLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOQ1RVL2JpX1REVnViSjluam9teDVF a0hZcExkZUNhOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAg AQ8YMA0GCSqGSIb3DQEBCwUAA4IBAQCeqhTTYlzsTiVAjM5SJNbxS0tpgxmXdXVL aYnHptlRWH70i/06TivTil9HCBfbpUnNPnisf6cgQWcYxYwPwUX394tJUu4FAnaj D/9alIFDvJuI6dfeGD9Ly6SmgmAGJBWpm8jF82e4+7U84nasnOjwiapXfNZ8XT4M X0zCKl6e4yjewgpxg6upwtqj9sWKVO01T36J95HkD1xewO6XzIDqPQE/VRP9Nvr/ 31xzzbnQneJCL8ZjcUeGuX66nTOyWcoXoGYRzCfyw8aIH7BNb5MnRVSENt3JREFE p4Uv6jIbqTrERxUfSnjrAGUEL8LoKxViRO+R+su661ZYXLMYItZf -----END CERTIFICATE-----Generated at Sun Aug 24 13:40:23 2025 by rpki-client