$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TYCATV/knwivzGweWUJYWEY31AlCKvv9zo.roa File: knwivzGweWUJYWEY31AlCKvv9zo.roa (raw, json) Hash identifier: v/uUvUxzz91iShaH89C69QYRefb7VBQZ1saM94bz/cQ= Subject key identifier: 92:7C:22:BF:31:B0:79:65:09:61:61:18:DF:50:25:08:AB:EF:F7:3A Certificate issuer: /CN=DF210700AE8EA25668E6BEA3FA6A6D3B378C3121 Certificate serial: 0D30 Authority key identifier: DF:21:07:00:AE:8E:A2:56:68:E6:BE:A3:FA:6A:6D:3B:37:8C:31:21 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/3yEHAK6OolZo5r6j-mptOzeMMSE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TYCATV/knwivzGweWUJYWEY31AlCKvv9zo.roa Signing time: Fri 22 Aug 2025 08:44:29 +0000 ROA not before: Fri 22 Aug 2025 08:44:29 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9676 IP address blocks: 203.111.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TYCATV/3yEHAK6OolZo5r6j-mptOzeMMSE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TYCATV/3yEHAK6OolZo5r6j-mptOzeMMSE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/3yEHAK6OolZo5r6j-mptOzeMMSE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3376 (0xd30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF210700AE8EA25668E6BEA3FA6A6D3B378C3121 Validity Not Before: Aug 22 08:44:29 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=927C22BF31B0796509616118DF502508ABEFF73A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:98:7c:ac:8b:7e:33:6e:11:b6:b5:d6:e6:2e: de:71:88:f9:c5:db:5f:df:8a:1a:5d:00:e1:c2:6a: 0f:15:f6:67:8c:25:7c:72:63:35:35:55:e1:27:6e: b6:1e:6d:ab:2a:e6:3b:ed:0c:50:55:0f:22:97:96: 3f:a2:2a:0c:fb:18:64:49:3c:d4:f7:18:9b:e0:cf: cd:47:18:6d:87:aa:32:fc:ed:1d:f7:f4:39:71:8e: 34:76:86:98:69:a3:4e:28:2d:db:d4:83:00:94:4e: f9:a5:4d:7d:16:82:62:62:18:df:4f:83:1f:1b:f7: 20:f1:6a:3f:c3:84:fa:9f:4f:87:f2:99:bc:95:c6: ee:8b:9f:2c:17:e9:67:7d:8f:00:91:37:fd:82:87: ba:70:ea:3a:7e:e9:a8:90:cf:b6:32:26:d5:46:fd: f4:cf:dc:d8:5f:18:61:91:c2:49:73:3f:ea:cd:e6: da:8c:be:33:62:67:6c:27:2f:7b:91:1b:fb:62:e3: f4:7c:05:da:87:11:b8:f4:20:36:ce:70:36:61:21: a2:0f:4b:29:24:e8:01:a2:18:2b:4b:e5:d6:f1:cc: 72:b7:fa:4f:02:cc:06:a1:31:9c:87:02:90:52:97: d7:02:f3:e7:3a:c1:9a:50:cf:44:22:d2:46:f1:70: f3:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:7C:22:BF:31:B0:79:65:09:61:61:18:DF:50:25:08:AB:EF:F7:3A X509v3 Authority Key Identifier: keyid:DF:21:07:00:AE:8E:A2:56:68:E6:BE:A3:FA:6A:6D:3B:37:8C:31:21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TYCATV/3yEHAK6OolZo5r6j-mptOzeMMSE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/3yEHAK6OolZo5r6j-mptOzeMMSE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TYCATV/knwivzGweWUJYWEY31AlCKvv9zo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.111.208.0/20 Signature Algorithm: sha256WithRSAEncryption 15:a6:b3:9f:34:2f:68:ba:cd:44:ea:a5:4d:b4:df:85:76:88: 15:4e:58:bd:1d:a7:58:75:de:60:99:b0:bd:70:b6:20:8e:35: 66:a1:3c:bf:1a:a0:3e:cd:1b:0e:8f:87:9a:8e:d9:57:62:26: 8f:97:9d:f1:f3:ea:89:10:47:58:df:c7:2d:89:f6:1d:c3:f4: d2:be:a6:cf:60:32:5c:c9:48:e8:a3:fa:a9:56:63:b3:34:9a: d3:c5:d4:0a:bf:44:41:fd:a4:4b:7d:9c:15:2e:c1:ff:10:44: 33:f4:a8:a8:f5:50:ca:20:70:ff:75:ce:b1:69:a9:83:e9:97: d7:70:77:c5:75:95:a6:eb:a4:01:d7:71:31:3f:d0:0f:4e:32: ae:62:53:f7:05:28:55:fc:1e:3a:0f:30:d9:8f:9f:15:36:1b: 90:bd:3e:ef:0b:d4:c2:05:5b:02:92:cc:86:4c:2d:f6:d7:d8: ea:3c:2f:30:f4:ac:c7:f6:c3:07:e5:28:1f:ef:fb:69:2f:83: e4:ae:eb:b3:2e:bf:f4:7c:70:9a:5b:a9:6c:2c:c1:bf:2e:29: 18:9a:7e:5a:25:a5:dc:eb:9b:fe:75:83:0b:ba:d0:d2:58:f2: 91:94:8b:a0:f2:2c:f6:fe:03:90:e4:95:2b:81:a4:d6:bf:e7: a6:f0:66:33 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDTAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREYy MTA3MDBBRThFQTI1NjY4RTZCRUEzRkE2QTZEM0IzNzhDMzEyMTAeFw0yNTA4MjIw ODQ0MjlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDkyN0MyMkJGMzFCMDc5 NjUwOTYxNjExOERGNTAyNTA4QUJFRkY3M0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5mHysi34zbhG2tdbmLt5xiPnF21/fihpdAOHCag8V9meMJXxy YzU1VeEnbrYebasq5jvtDFBVDyKXlj+iKgz7GGRJPNT3GJvgz81HGG2HqjL87R33 9DlxjjR2hphpo04oLdvUgwCUTvmlTX0WgmJiGN9Pgx8b9yDxaj/DhPqfT4fymbyV xu6LnywX6Wd9jwCRN/2Ch7pw6jp+6aiQz7YyJtVG/fTP3NhfGGGRwklzP+rN5tqM vjNiZ2wnL3uRG/ti4/R8BdqHEbj0IDbOcDZhIaIPSykk6AGiGCtL5dbxzHK3+k8C zAahMZyHApBSl9cC8+c6wZpQz0Qi0kbxcPNnAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUknwivzGweWUJYWEY31AlCKvv9zowHwYDVR0jBBgwFoAU3yEHAK6OolZo5r6j +mptOzeMMSEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFlDQVRW LzN5RUhBSzZPb2xabzVyNmotbXB0T3plTU1TRS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvM3lFSEFLNk9vbFpvNXI2ai1tcHRPemVNTVNFLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFlDQVRWL2tud2l2ekd3ZVdVSllXRVkz MUFsQ0t2djl6by5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATL b9AwDQYJKoZIhvcNAQELBQADggEBABWms580L2i6zUTqpU2034V2iBVOWL0dp1h1 3mCZsL1wtiCONWahPL8aoD7NGw6Ph5qO2VdiJo+XnfHz6okQR1jfxy2J9h3D9NK+ ps9gMlzJSOij+qlWY7M0mtPF1Aq/REH9pEt9nBUuwf8QRDP0qKj1UMogcP91zrFp qYPpl9dwd8V1labrpAHXcTE/0A9OMq5iU/cFKFX8HjoPMNmPnxU2G5C9Pu8L1MIF WwKSzIZMLfbX2Oo8LzD0rMf2wwflKB/v+2kvg+Su67Muv/R8cJpbqWwswb8uKRia flolpdzrm/51gwu60NJY8pGUi6DyLPb+A5DklSuBpNa/56bwZjM= -----END CERTIFICATE-----Generated at Sun Aug 24 09:45:01 2025 by rpki-client