$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GAMBESON/td3jCjzHIYCL0-HvpN4nhdz2tvg.roa File: td3jCjzHIYCL0-HvpN4nhdz2tvg.roa (raw, json) Hash identifier: rBvJqif2TLaa20JqvQMoW3jO03c53tQSeUOcr0H7L0I= Subject key identifier: B5:DD:E3:0A:3C:C7:21:80:8B:D3:E1:EF:A4:DE:27:85:DC:F6:B6:F8 Certificate issuer: /CN=7ED8309671027B7E6FC9AE27B9C68C9C4E29C575 Certificate serial: 06 Authority key identifier: 7E:D8:30:96:71:02:7B:7E:6F:C9:AE:27:B9:C6:8C:9C:4E:29:C5:75 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ftgwlnECe35vya4nucaMnE4pxXU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMBESON/td3jCjzHIYCL0-HvpN4nhdz2tvg.roa Signing time: Thu 10 Jul 2025 01:27:50 +0000 ROA not before: Thu 10 Jul 2025 01:27:50 +0000 ROA not after: Wed 08 Jul 2026 15:30:21 +0000 asID: 134823 IP address blocks: 165.101.152.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMBESON/ftgwlnECe35vya4nucaMnE4pxXU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMBESON/ftgwlnECe35vya4nucaMnE4pxXU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ftgwlnECe35vya4nucaMnE4pxXU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Jul 2025 20:36:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7ED8309671027B7E6FC9AE27B9C68C9C4E29C575 Validity Not Before: Jul 10 01:27:50 2025 GMT Not After : Jul 8 15:30:21 2026 GMT Subject: CN=B5DDE30A3CC721808BD3E1EFA4DE2785DCF6B6F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:21:b7:30:79:97:be:42:47:96:71:00:8b:6c: 0d:58:7d:db:f5:fa:33:b8:95:85:9a:6d:0b:e3:42: cd:f8:62:66:7d:66:d2:a8:9a:a8:a8:04:ff:d6:fe: 2e:a6:c4:46:6b:21:88:ad:79:7c:4d:41:7b:25:1e: 61:96:fd:e0:c1:29:37:b8:0f:61:37:ff:4f:60:61: 7d:55:69:b6:8d:68:b4:34:d5:7f:4f:93:49:de:4b: f7:da:12:cf:9d:9b:18:c9:df:a8:7b:01:61:c0:37: d7:fe:27:35:6e:3e:60:80:3d:cb:e9:47:e8:40:d1: 6d:48:5b:5e:bd:86:90:33:38:a3:d7:43:75:f2:c9: cb:12:85:69:5e:88:47:3f:d1:18:64:cb:3b:69:46: fa:8b:80:a7:e9:fe:9e:f1:8e:8d:90:a4:0d:74:b2: 15:6c:af:05:98:0e:d6:cc:e3:d1:44:85:dc:38:b2: 2a:0f:cd:c9:19:e3:b2:ec:22:3f:fa:aa:47:4a:22: 6a:12:39:a7:96:eb:3d:73:1a:0e:fb:dd:89:1e:9d: a7:0c:45:98:c9:c0:17:d7:b3:dd:25:e3:d5:01:8d: b6:19:0e:ba:ff:b0:f2:66:a2:27:6e:4f:34:6e:07: 89:db:8c:50:d9:4b:13:22:be:0f:ab:0c:ee:3a:70: b8:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:DD:E3:0A:3C:C7:21:80:8B:D3:E1:EF:A4:DE:27:85:DC:F6:B6:F8 X509v3 Authority Key Identifier: keyid:7E:D8:30:96:71:02:7B:7E:6F:C9:AE:27:B9:C6:8C:9C:4E:29:C5:75 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMBESON/ftgwlnECe35vya4nucaMnE4pxXU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ftgwlnECe35vya4nucaMnE4pxXU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMBESON/td3jCjzHIYCL0-HvpN4nhdz2tvg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 165.101.152.0/23 Signature Algorithm: sha256WithRSAEncryption a1:1d:d6:ff:06:95:b7:dd:22:5f:f3:0b:30:ea:1a:6a:1b:a8: 36:54:77:37:e6:79:88:fb:9d:3f:1a:11:c7:c7:1a:95:74:f5: 65:e9:c4:34:27:e7:33:2b:7b:35:be:03:2f:78:07:8e:7b:bc: b9:e7:7d:60:9f:7b:37:17:d2:f2:dc:fd:30:5e:e9:5e:1c:37: 9a:f2:85:92:99:5b:c4:d9:75:cc:07:da:07:93:65:c5:97:19: 31:90:19:98:a1:8f:a3:8a:6c:b1:77:b6:32:d4:00:3d:37:9e: 91:85:e8:8d:73:32:2b:99:04:44:c8:c6:86:e3:08:0c:7a:0f: a8:42:2b:e0:c8:b3:ce:90:c3:d3:e3:22:c2:ed:f3:39:a9:20: 56:64:73:be:15:1e:48:72:bc:8e:39:54:31:7c:fb:6f:28:8e: a5:bb:ac:fc:1f:f0:0d:0f:9b:e2:a5:19:13:ef:61:ea:46:a6: 8d:bd:97:8f:a7:99:a5:dc:f1:ec:05:44:09:cf:de:d9:61:e3: aa:bb:c2:d6:85:52:77:da:20:1a:e0:5c:f9:96:05:96:9f:4d: 40:9b:27:6f:93:46:7d:1e:e9:6e:d9:b8:96:f4:95:4d:1e:e3: 78:54:83:26:1c:03:d0:c8:c1:c4:f2:24:b1:23:3e:28:79:8d: 20:eb:41:45 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgIBBjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3RUQ4 MzA5NjcxMDI3QjdFNkZDOUFFMjdCOUM2OEM5QzRFMjlDNTc1MB4XDTI1MDcxMDAx Mjc1MFoXDTI2MDcwODE1MzAyMVowMzExMC8GA1UEAxMoQjVEREUzMEEzQ0M3MjE4 MDhCRDNFMUVGQTRERTI3ODVEQ0Y2QjZGODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKwhtzB5l75CR5ZxAItsDVh92/X6M7iVhZptC+NCzfhiZn1m0qia qKgE/9b+LqbERmshiK15fE1BeyUeYZb94MEpN7gPYTf/T2BhfVVpto1otDTVf0+T Sd5L99oSz52bGMnfqHsBYcA31/4nNW4+YIA9y+lH6EDRbUhbXr2GkDM4o9dDdfLJ yxKFaV6IRz/RGGTLO2lG+ouAp+n+nvGOjZCkDXSyFWyvBZgO1szj0USF3DiyKg/N yRnjsuwiP/qqR0oiahI5p5brPXMaDvvdiR6dpwxFmMnAF9ez3SXj1QGNthkOuv+w 8maiJ25PNG4HiduMUNlLEyK+D6sM7jpwuGUCAwEAAaOCAfIwggHuMB0GA1UdDgQW BBS13eMKPMchgIvT4e+k3ieF3Pa2+DAfBgNVHSMEGDAWgBR+2DCWcQJ7fm/Jrie5 xoycTinFdTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF4GA1UdHwRXMFUwU6BR oE+GTXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9HQU1CRVNP Ti9mdGd3bG5FQ2UzNXZ5YTRudWNhTW5FNHB4WFUuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL2Z0Z3dsbkVDZTM1dnlhNG51Y2FNbkU0cHhYVS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGeBggrBgEFBQcBCwSBkTCBjjBZBggrBgEFBQcwC4ZNcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0dBTUJFU09OL3RkM2pDanpISVlDTDAt SHZwTjRuaGR6MnR2Zy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25p Yy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGlZZgwDQYJKoZIhvcNAQELBQADggEBAKEd1v8GlbfdIl/zCzDqGmobqDZUdzfm eYj7nT8aEcfHGpV09WXpxDQn5zMrezW+Ay94B457vLnnfWCfezcX0vLc/TBe6V4c N5ryhZKZW8TZdcwH2geTZcWXGTGQGZihj6OKbLF3tjLUAD03npGF6I1zMiuZBETI xobjCAx6D6hCK+DIs86Qw9PjIsLt8zmpIFZkc74VHkhyvI45VDF8+28ojqW7rPwf 8A0Pm+KlGRPvYepGpo29l4+nmaXc8ewFRAnP3tlh46q7wtaFUnfaIBrgXPmWBZaf TUCbJ2+TRn0e6W7ZuJb0lU0e43hUgyYcA9DIwcTyJLEjPih5jSDrQUU= -----END CERTIFICATE-----Generated at Sun Jul 20 19:25:03 2025 by rpki-client