$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ZAT/kmvOldv2jrQgAw3x4Hkv2jYC0Bs.roa File: kmvOldv2jrQgAw3x4Hkv2jYC0Bs.roa (raw, json) Hash identifier: ZWARN29X1VQiKArbXypeSv20+Tpjn1E5Rcqt+v60evA= Subject key identifier: 92:6B:CE:95:DB:F6:8E:B4:20:03:0D:F1:E0:79:2F:DA:36:02:D0:1B Certificate issuer: /CN=41D608336CCF0EDFEA4A24614F1D7234884E8991 Certificate serial: 0228 Authority key identifier: 41:D6:08:33:6C:CF:0E:DF:EA:4A:24:61:4F:1D:72:34:88:4E:89:91 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/QdYIM2zPDt_qSiRhTx1yNIhOiZE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZAT/kmvOldv2jrQgAw3x4Hkv2jYC0Bs.roa Signing time: Fri 22 Aug 2025 08:44:06 +0000 ROA not before: Fri 22 Aug 2025 08:44:06 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18041 IP address blocks: 210.79.150.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZAT/QdYIM2zPDt_qSiRhTx1yNIhOiZE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ZAT/QdYIM2zPDt_qSiRhTx1yNIhOiZE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/QdYIM2zPDt_qSiRhTx1yNIhOiZE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 552 (0x228) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41D608336CCF0EDFEA4A24614F1D7234884E8991 Validity Not Before: Aug 22 08:44:06 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=926BCE95DBF68EB420030DF1E0792FDA3602D01B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:76:61:92:b8:70:e5:ed:48:2c:4f:2b:d9:ca: 30:c0:ae:52:1f:ae:a1:76:67:3b:8a:32:dc:d3:f0: f2:ba:c1:34:a4:20:66:ea:d4:0b:57:fb:b3:6d:db: e8:ea:ad:ca:a0:2a:1a:cf:e8:4d:31:42:4c:49:c8: 64:79:63:2c:84:94:e3:f4:98:dc:3d:f4:42:d6:ab: 6e:f9:e5:1d:fe:f8:32:24:d0:a0:91:09:41:0b:88: 47:d7:91:bf:18:4f:56:a3:f8:73:bd:3d:36:4a:81: 37:08:15:f3:7a:9f:fa:a6:af:3e:13:c7:40:68:bf: 46:9d:2a:24:ae:ca:91:f9:86:97:71:61:69:1c:0e: 57:b7:f8:d7:4d:f8:05:95:4e:85:1c:07:c0:43:3e: 8c:d6:6e:fd:0b:50:9d:9a:0d:41:e1:b2:3c:d7:b9: 77:8b:f1:16:ec:f8:06:88:d5:6e:9f:6e:32:16:93: 76:95:43:16:bf:bc:69:b7:cc:b8:22:b6:c0:d1:c9: ee:7b:0b:78:f6:f1:04:12:42:58:c8:55:24:c3:01: 13:7e:61:5f:4b:ae:fb:72:18:3c:86:51:e1:1f:23: 83:ff:f7:0c:70:ce:10:fc:7c:22:ac:d6:f2:50:7e: 11:ca:4d:f8:2d:10:6e:10:94:94:eb:7b:eb:0e:ba: 75:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:6B:CE:95:DB:F6:8E:B4:20:03:0D:F1:E0:79:2F:DA:36:02:D0:1B X509v3 Authority Key Identifier: keyid:41:D6:08:33:6C:CF:0E:DF:EA:4A:24:61:4F:1D:72:34:88:4E:89:91 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZAT/QdYIM2zPDt_qSiRhTx1yNIhOiZE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/QdYIM2zPDt_qSiRhTx1yNIhOiZE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZAT/kmvOldv2jrQgAw3x4Hkv2jYC0Bs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.79.150.0/23 Signature Algorithm: sha256WithRSAEncryption 85:78:34:60:8f:26:eb:ef:f9:b9:e5:89:5f:75:12:6d:d5:76: 2a:c7:55:8b:cb:c3:ad:5b:3e:19:ce:69:60:88:8b:6a:63:a2: 20:83:65:b6:00:61:89:9b:28:7a:46:0b:5b:c6:a3:ee:c9:65: 75:12:ee:35:82:9c:fb:df:75:ce:79:02:b4:62:3f:19:35:29: e8:81:68:b5:33:5f:bf:1e:f0:c2:e6:ce:63:51:12:17:73:44: 62:0f:39:73:95:d1:b0:aa:f2:12:19:84:68:d0:a8:b3:14:40: 68:9d:97:56:86:e6:8a:14:0c:77:e8:1c:c6:3c:40:b1:98:39: 1f:39:5e:52:58:75:ba:a2:a1:41:8e:0e:e1:d9:95:1c:2c:6d: 5f:2f:7e:ee:5b:18:24:ca:96:63:e2:a1:c3:04:6e:34:be:03: 9a:75:ef:61:a1:10:e9:ba:b1:a6:43:28:5b:50:18:fd:e5:96: 81:d6:a0:32:d2:c0:d4:58:1d:f1:68:54:d9:f6:7a:70:83:0e: 80:4e:f3:7d:02:68:0f:ee:ca:f8:63:b3:58:e3:3c:0b:08:c3: 7b:3f:84:40:ff:ec:3b:e5:8b:28:cd:88:43:b2:5e:7a:ce:a8: e0:bf:f3:1a:2e:1b:15:e1:81:a0:e1:9e:bc:db:d3:0d:b7:c9: 8b:5d:b2:8c -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICAigwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDFE NjA4MzM2Q0NGMEVERkVBNEEyNDYxNEYxRDcyMzQ4ODRFODk5MTAeFw0yNTA4MjIw ODQ0MDZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDkyNkJDRTk1REJGNjhF QjQyMDAzMERGMUUwNzkyRkRBMzYwMkQwMUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmdmGSuHDl7UgsTyvZyjDArlIfrqF2ZzuKMtzT8PK6wTSkIGbq 1AtX+7Nt2+jqrcqgKhrP6E0xQkxJyGR5YyyElOP0mNw99ELWq2755R3++DIk0KCR CUELiEfXkb8YT1aj+HO9PTZKgTcIFfN6n/qmrz4Tx0Bov0adKiSuypH5hpdxYWkc Dle3+NdN+AWVToUcB8BDPozWbv0LUJ2aDUHhsjzXuXeL8Rbs+AaI1W6fbjIWk3aV Qxa/vGm3zLgitsDRye57C3j28QQSQljIVSTDARN+YV9LrvtyGDyGUeEfI4P/9wxw zhD8fCKs1vJQfhHKTfgtEG4QlJTre+sOunWjAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUkmvOldv2jrQgAw3x4Hkv2jYC0BswHwYDVR0jBBgwFoAUQdYIM2zPDt/qSiRh Tx1yNIhOiZEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWkFUL1Fk WUlNMnpQRHRfcVNpUmhUeDF5TkloT2laRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UWRZSU0yelBEdF9xU2lSaFR4MXlOSWhPaVpFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvWkFUL2ttdk9sZHYyanJRZ0F3M3g0SGt2MmpZ QzBCcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHST5YwDQYJ KoZIhvcNAQELBQADggEBAIV4NGCPJuvv+bnliV91Em3VdirHVYvLw61bPhnOaWCI i2pjoiCDZbYAYYmbKHpGC1vGo+7JZXUS7jWCnPvfdc55ArRiPxk1KeiBaLUzX78e 8MLmzmNREhdzRGIPOXOV0bCq8hIZhGjQqLMUQGidl1aG5ooUDHfoHMY8QLGYOR85 XlJYdbqioUGODuHZlRwsbV8vfu5bGCTKlmPiocMEbjS+A5p172GhEOm6saZDKFtQ GP3lloHWoDLSwNRYHfFoVNn2enCDDoBO830CaA/uyvhjs1jjPAsIw3s/hED/7Dvl iyjNiEOyXnrOqOC/8xouGxXhgaDhnrzb0w23yYtdsow= -----END CERTIFICATE-----Generated at Sun Aug 24 06:47:03 2025 by rpki-client