$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/Gtqn1KuKIeNj9uvoBYZcPLXiGpg.roa File: Gtqn1KuKIeNj9uvoBYZcPLXiGpg.roa (raw, json) Hash identifier: 5tgJtvPZnn5R2ETtoUyEEB7Mw+nfcTBY+96Xd28Uxh0= Subject key identifier: 1A:DA:A7:D4:AB:8A:21:E3:63:F6:EB:E8:05:86:5C:3C:B5:E2:1A:98 Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214 Certificate serial: 0DED Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/Gtqn1KuKIeNj9uvoBYZcPLXiGpg.roa Signing time: Fri 22 Aug 2025 08:52:11 +0000 ROA not before: Fri 22 Aug 2025 08:52:11 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18018 IP address blocks: 122.255.94.64/26 maxlen: 26 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 22:26:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3565 (0xded) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214 Validity Not Before: Aug 22 08:52:11 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1ADAA7D4AB8A21E363F6EBE805865C3CB5E21A98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:91:48:8e:a1:bb:49:f8:71:d1:15:0f:58:bd: fb:64:5a:2a:d3:2d:84:60:cf:7d:20:6f:2b:f3:60: 02:39:c2:d4:57:68:14:3e:04:e1:07:cb:04:ff:c9: e1:f8:70:63:44:d1:0a:27:b1:38:e7:ae:94:8b:4c: be:97:fa:3b:52:ec:c7:f1:15:7c:e1:39:c8:2b:44: e5:ca:04:1b:a5:c5:ff:1c:67:69:b9:a7:64:77:f1: 50:b6:64:d1:2a:8f:af:80:23:6c:a5:3a:59:f0:16: c8:d9:f3:6e:47:ed:55:d6:d1:84:4f:67:3b:a3:0a: bc:f8:90:2d:d2:43:ca:a1:20:09:47:8f:00:56:ee: a0:36:73:2e:d3:b0:24:b3:f0:f5:bb:3e:85:a5:77: 85:40:04:d5:a9:a5:d0:0a:62:9a:0c:84:85:95:2f: 25:c0:f1:1c:19:8f:6b:cd:2e:36:fc:eb:35:c9:9d: b0:fc:fd:1c:f3:70:30:0b:b1:e3:6a:d8:07:0c:0b: 87:ba:ca:64:b1:09:5c:5f:61:b5:8b:04:32:95:51: 93:66:c3:b2:6b:8e:72:f1:53:77:0b:f1:92:c8:63: ad:5f:54:d6:b1:14:cd:ee:f7:bb:a3:88:4c:05:1c: d2:a7:e1:ba:15:9e:cb:fd:99:a9:d0:75:94:00:ce: 4f:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:DA:A7:D4:AB:8A:21:E3:63:F6:EB:E8:05:86:5C:3C:B5:E2:1A:98 X509v3 Authority Key Identifier: keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/Gtqn1KuKIeNj9uvoBYZcPLXiGpg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.255.94.64/26 Signature Algorithm: sha256WithRSAEncryption a6:79:28:16:3c:2f:be:2e:0a:44:4f:29:4a:1e:68:25:16:bb: 42:27:9e:df:4a:48:6f:ad:91:f4:b3:1c:81:d8:b1:dd:81:6f: b6:74:da:e3:78:6d:65:3e:3b:96:95:06:19:a4:06:42:5e:7e: 31:77:f1:87:75:8c:72:04:f9:f1:8a:6c:b2:6c:d2:3b:ea:1c: 64:5d:47:31:f9:dc:94:f8:9c:fe:b9:4d:0f:23:93:da:6a:f0: 84:0c:ae:c4:73:d8:b6:1a:a3:a5:56:99:8e:a0:99:ca:18:96: 7f:5f:9a:ab:a4:06:a6:84:df:ac:43:02:25:36:87:b9:a5:4b: b2:c1:2b:74:ab:28:ee:f5:cb:d8:06:04:95:7f:20:9b:82:23: a0:93:41:97:b7:96:dc:c9:bb:e7:4b:e9:29:0b:82:f0:c2:38: de:a1:69:54:4f:24:83:a9:84:f8:9f:6a:3c:43:b6:22:28:73: 16:e2:d5:85:ab:41:9a:7a:46:82:43:af:bf:b0:18:09:42:2e: da:bb:12:54:4a:b8:ff:58:ee:70:2f:3b:f1:0b:3c:37:aa:f9: 4e:c7:16:89:1f:39:66:1b:63:7e:3d:da:00:67:0a:25:d7:27: 92:f3:d0:7f:01:8c:c7:b3:92:68:c5:61:6f:3c:5f:9d:4d:b5: 5a:66:75:00 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICDe0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUUy Njk3RkE3MDI1MkY4M0Y0MUQxMjFFQzBCNUNCNDU4QjZGRjIxNDAeFw0yNTA4MjIw ODUyMTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDFBREFBN0Q0QUI4QTIx RTM2M0Y2RUJFODA1ODY1QzNDQjVFMjFBOTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvkUiOobtJ+HHRFQ9YvftkWirTLYRgz30gbyvzYAI5wtRXaBQ+ BOEHywT/yeH4cGNE0QonsTjnrpSLTL6X+jtS7MfxFXzhOcgrROXKBBulxf8cZ2m5 p2R38VC2ZNEqj6+AI2ylOlnwFsjZ825H7VXW0YRPZzujCrz4kC3SQ8qhIAlHjwBW 7qA2cy7TsCSz8PW7PoWld4VABNWppdAKYpoMhIWVLyXA8RwZj2vNLjb86zXJnbD8 /RzzcDALseNq2AcMC4e6ymSxCVxfYbWLBDKVUZNmw7JrjnLxU3cL8ZLIY61fVNax FM3u97ujiEwFHNKn4boVnsv9manQdZQAzk8zAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUGtqn1KuKIeNj9uvoBYZcPLXiGpgwHwYDVR0jBBgwFoAUniaX+nAlL4P0HRIe wLXLRYtv8hQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOVFQv bmlhWC1uQWxMNFAwSFJJZXdMWExSWXR2OGhRLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9uaWFYLW5BbEw0UDBIUklld0xYTFJZdHY4aFEuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05UVC9HdHFuMUt1S0llTmo5dXZvQlla Y1BMWGlHcGcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUGev9e QDANBgkqhkiG9w0BAQsFAAOCAQEApnkoFjwvvi4KRE8pSh5oJRa7Qiee30pIb62R 9LMcgdix3YFvtnTa43htZT47lpUGGaQGQl5+MXfxh3WMcgT58YpssmzSO+ocZF1H MfnclPic/rlNDyOT2mrwhAyuxHPYthqjpVaZjqCZyhiWf1+aq6QGpoTfrEMCJTaH uaVLssErdKso7vXL2AYElX8gm4IjoJNBl7eW3Mm750vpKQuC8MI43qFpVE8kg6mE +J9qPEO2IihzFuLVhatBmnpGgkOvv7AYCUIu2rsSVEq4/1jucC878Qs8N6r5TscW iR85Zhtjfj3aAGcKJdcnkvPQfwGMx7OSaMVhbzxfnU21WmZ1AA== -----END CERTIFICATE-----Generated at Mon Oct 20 21:00:45 2025 by rpki-client