$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/GXThOm3WsYWPw4XJT1uwQydg9VE.roa File: GXThOm3WsYWPw4XJT1uwQydg9VE.roa (raw, json) Hash identifier: B+dy3K2VPuQ9bWcxhUhgeRbJcSbZlFtxURogvW0vsBw= Subject key identifier: 19:74:E1:3A:6D:D6:B1:85:8F:C3:85:C9:4F:5B:B0:43:27:60:F5:51 Certificate issuer: /CN=49FD819BDAC01662B73EAC9005088CD6A3B88762 Certificate serial: 1A Authority key identifier: 49:FD:81:9B:DA:C0:16:62:B7:3E:AC:90:05:08:8C:D6:A3:B8:87:62 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Sf2Bm9rAFmK3PqyQBQiM1qO4h2I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/GXThOm3WsYWPw4XJT1uwQydg9VE.roa Signing time: Mon 23 Jun 2025 10:07:08 +0000 ROA not before: Mon 23 Jun 2025 10:07:08 +0000 ROA not after: Thu 18 Jun 2026 15:30:18 +0000 asID: 134823 IP address blocks: 165.101.28.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/Sf2Bm9rAFmK3PqyQBQiM1qO4h2I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/Sf2Bm9rAFmK3PqyQBQiM1qO4h2I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Sf2Bm9rAFmK3PqyQBQiM1qO4h2I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 12:02:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26 (0x1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49FD819BDAC01662B73EAC9005088CD6A3B88762 Validity Not Before: Jun 23 10:07:08 2025 GMT Not After : Jun 18 15:30:18 2026 GMT Subject: CN=1974E13A6DD6B1858FC385C94F5BB0432760F551 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:de:10:73:07:c2:29:15:09:12:0d:73:25:36: db:0d:1d:30:a2:84:82:5a:f1:27:5e:c5:5b:69:f4: 09:31:67:6b:54:f3:9b:60:6e:5a:f0:06:b0:48:c3: ee:e9:14:46:c5:75:d6:da:c7:b6:e6:41:c2:38:b7: ea:82:58:d5:aa:e2:c3:25:07:0f:e9:33:40:4b:96: 13:a8:41:5c:fd:a2:44:0f:40:0b:06:a2:a8:09:31: 68:33:24:51:4d:f1:b2:d2:76:de:97:99:45:fb:ee: 13:4d:24:9b:1e:0c:31:c1:e7:8b:2f:a2:8d:75:ee: 38:22:f4:00:ce:4d:cb:ae:cf:6b:08:4f:e8:8e:5f: 53:ec:92:0f:71:03:08:51:7f:1a:39:18:16:b8:37: 1d:3c:ce:c6:2c:21:bc:dd:03:96:2e:21:e1:34:ba: 9e:50:5c:e9:1b:63:a4:99:bd:c7:a3:67:75:6e:59: 75:3c:31:6f:22:23:68:ca:34:e6:16:28:bd:b4:38: 8f:4e:12:e4:78:9c:48:73:b7:dd:7f:23:ac:10:dc: f5:21:cb:ff:24:9e:3c:14:8d:b0:c8:26:ec:90:7a: 87:97:8e:ef:b3:93:66:95:05:87:0b:48:d3:ed:a0: 16:7c:6a:54:78:84:9a:ab:ec:65:5d:8c:7a:e9:a3: e3:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:74:E1:3A:6D:D6:B1:85:8F:C3:85:C9:4F:5B:B0:43:27:60:F5:51 X509v3 Authority Key Identifier: keyid:49:FD:81:9B:DA:C0:16:62:B7:3E:AC:90:05:08:8C:D6:A3:B8:87:62 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/Sf2Bm9rAFmK3PqyQBQiM1qO4h2I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Sf2Bm9rAFmK3PqyQBQiM1qO4h2I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/GXThOm3WsYWPw4XJT1uwQydg9VE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 165.101.28.0/23 Signature Algorithm: sha256WithRSAEncryption 45:bb:f9:4b:9d:2d:c5:a0:c8:88:64:de:52:46:08:7f:0d:74: 86:79:0b:6c:3e:de:0f:f4:8c:a1:8d:84:47:d8:81:ba:89:5b: 22:58:0c:0b:b8:ff:de:f1:0e:61:e8:1f:21:45:83:de:33:02: 64:ba:c6:08:d9:f4:67:d0:c9:c8:9f:1e:b0:e9:3d:74:d1:41: fa:cd:ca:46:34:48:41:ff:0c:d3:4a:17:47:77:31:69:7d:5a: ed:2e:5f:58:7c:2d:55:22:2a:86:94:4d:7f:04:85:e7:06:a2: b5:41:74:fe:ad:f8:e0:f9:9e:3a:bb:06:dc:03:5d:87:a4:62: 55:81:b3:0a:49:07:5c:bc:31:56:b6:b9:cf:3e:ed:79:11:68: cd:80:22:bd:32:c8:b1:07:26:ab:7f:d9:c2:8a:7b:70:74:e9: 90:14:c1:6c:cb:17:c7:6d:74:94:fb:60:e5:1f:28:32:14:5b: a0:58:a5:30:15:3c:31:6b:ba:7a:f7:ba:5c:9f:85:d0:d0:19: d6:df:46:a5:8d:77:70:22:5b:47:98:1c:a3:6c:46:d9:27:5d: b2:6d:98:4d:2d:8c:df:ae:37:e1:8b:7f:e8:d3:d4:17:01:6f: ad:fa:f0:57:c7:c9:35:ae:f7:a3:97:b6:e1:bc:cc:70:09:b5: 31:b8:50:a9 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgIBGjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0OUZE ODE5QkRBQzAxNjYyQjczRUFDOTAwNTA4OENENkEzQjg4NzYyMB4XDTI1MDYyMzEw MDcwOFoXDTI2MDYxODE1MzAxOFowMzExMC8GA1UEAxMoMTk3NEUxM0E2REQ2QjE4 NThGQzM4NUM5NEY1QkIwNDMyNzYwRjU1MTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAK7eEHMHwikVCRINcyU22w0dMKKEglrxJ17FW2n0CTFna1Tzm2Bu WvAGsEjD7ukURsV11trHtuZBwji36oJY1ariwyUHD+kzQEuWE6hBXP2iRA9ACwai qAkxaDMkUU3xstJ23peZRfvuE00kmx4MMcHniy+ijXXuOCL0AM5Ny67PawhP6I5f U+ySD3EDCFF/GjkYFrg3HTzOxiwhvN0Dli4h4TS6nlBc6RtjpJm9x6NndW5ZdTwx byIjaMo05hYovbQ4j04S5HicSHO33X8jrBDc9SHL/ySePBSNsMgm7JB6h5eO77OT ZpUFhwtI0+2gFnxqVHiEmqvsZV2Meumj408CAwEAAaOCAfQwggHwMB0GA1UdDgQW BBQZdOE6bdaxhY/DhclPW7BDJ2D1UTAfBgNVHSMEGDAWgBRJ/YGb2sAWYrc+rJAF CIzWo7iHYjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF8GA1UdHwRYMFYwVKBS oFCGTnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DTE9VREJB U0UvU2YyQm05ckFGbUszUHF5UUJRaU0xcU80aDJJLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9TZjJCbTlyQUZtSzNQcXlRQlFpTTFxTzRoMkkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBnwYIKwYBBQUHAQsEgZIwgY8wWgYIKwYBBQUHMAuGTnJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DTE9VREJBU0UvR1hUaE9tM1dzWVdQ dzRYSlQxdXdReWRnOVZFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3 bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAaVlHDANBgkqhkiG9w0BAQsFAAOCAQEARbv5S50txaDIiGTeUkYIfw10hnkL bD7eD/SMoY2ER9iBuolbIlgMC7j/3vEOYegfIUWD3jMCZLrGCNn0Z9DJyJ8esOk9 dNFB+s3KRjRIQf8M00oXR3cxaX1a7S5fWHwtVSIqhpRNfwSF5waitUF0/q344Pme OrsG3ANdh6RiVYGzCkkHXLwxVra5zz7teRFozYAivTLIsQcmq3/Zwop7cHTpkBTB bMsXx210lPtg5R8oMhRboFilMBU8MWu6eve6XJ+F0NAZ1t9GpY13cCJbR5gco2xG 2Sddsm2YTS2M36434Yt/6NPUFwFvrfrwV8fJNa73o5e24bzMcAm1MbhQqQ== -----END CERTIFICATE-----Generated at Sat Jul 5 10:15:01 2025 by rpki-client