$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CATHDD/1ggHK1IkhoOxtBSrUg3Xnr8uAk8.roa File: 1ggHK1IkhoOxtBSrUg3Xnr8uAk8.roa (raw, json) Hash identifier: 3Civudfo9eoGwO7EGAk38gWI2lQFtW1A9lWlLw/BfWU= Subject key identifier: D6:08:07:2B:52:24:86:83:B1:B4:14:AB:52:0D:D7:9E:BF:2E:02:4F Certificate issuer: /CN=20ACCA8718500373AFF77B414B23DC6A5F1474EE Certificate serial: 03F2 Authority key identifier: 20:AC:CA:87:18:50:03:73:AF:F7:7B:41:4B:23:DC:6A:5F:14:74:EE Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IKzKhxhQA3Ov93tBSyPcal8UdO4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/1ggHK1IkhoOxtBSrUg3Xnr8uAk8.roa Signing time: Thu 05 Mar 2026 06:22:59 +0000 ROA not before: Thu 05 Mar 2026 06:22:59 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 150766 IP address blocks: 160.191.8.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/IKzKhxhQA3Ov93tBSyPcal8UdO4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/IKzKhxhQA3Ov93tBSyPcal8UdO4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/IKzKhxhQA3Ov93tBSyPcal8UdO4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 02:55:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1010 (0x3f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20ACCA8718500373AFF77B414B23DC6A5F1474EE Validity Not Before: Mar 5 06:22:59 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=D608072B52248683B1B414AB520DD79EBF2E024F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d0:eb:47:54:43:47:f2:fb:5b:ae:81:18:a8: 31:f1:db:ca:92:c3:ea:5e:b4:18:75:50:b2:e9:5f: 89:67:0b:bc:02:9d:96:60:eb:5a:a6:db:06:51:d3: 0f:08:5c:9f:65:10:0a:fd:aa:c3:f4:23:b2:67:43: e2:6d:df:50:33:d5:97:d6:ba:bb:75:4f:de:5f:31: dc:cc:0f:53:d1:ba:0c:a1:be:1c:46:f4:be:69:83: ac:17:01:01:3c:af:b6:22:6a:b7:9a:0a:c3:46:ff: 86:69:e4:ad:95:34:c9:bb:b9:98:2e:25:fa:05:94: 67:63:3b:6a:48:4d:b5:e1:ae:92:93:10:df:51:39: a7:bf:7e:75:8a:c8:c4:53:95:5d:1a:d3:e9:3e:e6: 43:b9:db:bd:5e:b1:26:2f:48:22:ea:dc:e5:eb:20: 27:61:14:22:3e:9c:ea:cf:69:af:1a:bd:a4:35:c8: 7d:60:57:55:58:27:7c:16:1c:9c:ca:8f:23:85:76: e8:e4:96:35:a6:2d:81:cc:73:79:b4:5c:6f:3c:67: 13:19:c2:e7:07:02:7b:a4:f2:8b:4b:43:f5:0e:c9: 67:ed:9f:3e:75:ef:2a:fa:61:47:34:a0:b6:75:9b: 7d:50:09:03:75:d5:6a:72:a4:30:7a:00:6c:7b:43: 57:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:08:07:2B:52:24:86:83:B1:B4:14:AB:52:0D:D7:9E:BF:2E:02:4F X509v3 Authority Key Identifier: keyid:20:AC:CA:87:18:50:03:73:AF:F7:7B:41:4B:23:DC:6A:5F:14:74:EE X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/IKzKhxhQA3Ov93tBSyPcal8UdO4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IKzKhxhQA3Ov93tBSyPcal8UdO4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/1ggHK1IkhoOxtBSrUg3Xnr8uAk8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.191.8.0/23 Signature Algorithm: sha256WithRSAEncryption 26:2a:40:40:a7:d6:e3:7b:39:be:c8:e5:8d:9f:79:9c:55:0b: c5:0f:3e:f2:e0:3a:93:97:ba:02:bd:96:01:2b:5f:76:91:f8: 76:84:f3:cc:11:25:e0:ea:72:e6:55:15:b1:75:56:d6:95:9d: bd:ed:81:45:84:02:ae:e1:52:e9:98:23:10:9c:0b:53:de:a7: f9:e1:60:6c:10:88:38:8e:9f:b2:ef:f3:22:93:f1:62:87:20: 3e:2a:4c:68:f8:b1:14:f1:bf:6e:3c:bd:e1:bc:a0:d2:ac:68: 88:51:d4:fe:9c:9a:21:3e:ee:65:af:34:0e:13:a8:2b:25:47: 83:b5:d4:e3:f4:da:88:77:57:5c:f9:ad:e9:75:ff:16:9e:de: e3:ed:5f:cb:f5:92:ca:d7:4a:7f:cf:e8:14:19:af:15:05:11: 01:64:eb:c9:f4:19:53:83:7d:78:91:eb:9f:de:1c:f0:97:07: 40:79:8f:f6:bd:96:dc:42:cb:10:50:3a:48:4d:58:ef:e0:c9: ad:b7:c8:f4:5b:09:28:c4:0c:15:f2:06:82:7b:0e:1e:8c:1b: 0a:39:83:66:77:ae:87:fd:6b:68:22:9c:20:05:b7:9f:8a:1e: 36:66:35:34:30:a5:df:fb:f6:53:e4:af:17:5b:a7:08:b7:8a: 70:6c:c2:14 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICA/IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjBB Q0NBODcxODUwMDM3M0FGRjc3QjQxNEIyM0RDNkE1RjE0NzRFRTAeFw0yNjAzMDUw NjIyNTlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEQ2MDgwNzJCNTIyNDg2 ODNCMUI0MTRBQjUyMERENzlFQkYyRTAyNEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+0OtHVENH8vtbroEYqDHx28qSw+petBh1ULLpX4lnC7wCnZZg 61qm2wZR0w8IXJ9lEAr9qsP0I7JnQ+Jt31Az1ZfWurt1T95fMdzMD1PRugyhvhxG 9L5pg6wXAQE8r7YiareaCsNG/4Zp5K2VNMm7uZguJfoFlGdjO2pITbXhrpKTEN9R Oae/fnWKyMRTlV0a0+k+5kO5271esSYvSCLq3OXrICdhFCI+nOrPaa8avaQ1yH1g V1VYJ3wWHJzKjyOFdujkljWmLYHMc3m0XG88ZxMZwucHAnuk8otLQ/UOyWftnz51 7yr6YUc0oLZ1m31QCQN11WpypDB6AGx7Q1exAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU1ggHK1IkhoOxtBSrUg3Xnr8uAk8wHwYDVR0jBBgwFoAUIKzKhxhQA3Ov93tB SyPcal8UdO4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0FUSERE L0lLektoeGhRQTNPdjkzdEJTeVBjYWw4VWRPNC5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSUt6S2h4aFFBM092OTN0QlN5UGNhbDhVZE80LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0FUSERELzFnZ0hLMUlraG9PeHRCU3JV ZzNYbnI4dUFrOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGg vwgwDQYJKoZIhvcNAQELBQADggEBACYqQECn1uN7Ob7I5Y2feZxVC8UPPvLgOpOX ugK9lgErX3aR+HaE88wRJeDqcuZVFbF1VtaVnb3tgUWEAq7hUumYIxCcC1Pep/nh YGwQiDiOn7Lv8yKT8WKHID4qTGj4sRTxv248veG8oNKsaIhR1P6cmiE+7mWvNA4T qCslR4O11OP02oh3V1z5rel1/xae3uPtX8v1ksrXSn/P6BQZrxUFEQFk68n0GVOD fXiR65/eHPCXB0B5j/a9ltxCyxBQOkhNWO/gya23yPRbCSjEDBXyBoJ7Dh6MGwo5 g2Z3rof9a2ginCAFt5+KHjZmNTQwpd/79lPkrxdbpwi3inBswhQ= -----END CERTIFICATE-----Generated at Sat Mar 7 23:58:54 2026 by rpki-client