$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/Dgghn2G2zhUOfi5w1X3_5WWFzyc.roa File: Dgghn2G2zhUOfi5w1X3_5WWFzyc.roa (raw, json) Hash identifier: mCM0KzeA8EYRKy8fMZ6K/rC0St+6bNX+cu9SjDE34Iw= Subject key identifier: 0E:08:21:9F:61:B6:CE:15:0E:7E:2E:70:D5:7D:FF:E5:65:85:CF:27 Certificate issuer: /CN=ABD4DDB4BF932C5006B704B9828410174AC412AD Certificate serial: 02B3 Authority key identifier: AB:D4:DD:B4:BF:93:2C:50:06:B7:04:B9:82:84:10:17:4A:C4:12:AD Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/Dgghn2G2zhUOfi5w1X3_5WWFzyc.roa Signing time: Thu 05 Mar 2026 06:26:23 +0000 ROA not before: Thu 05 Mar 2026 06:26:23 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 150766 IP address blocks: 2401:5da0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/q9TdtL-TLFAGtwS5goQQF0rEEq0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/q9TdtL-TLFAGtwS5goQQF0rEEq0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 03:25:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 691 (0x2b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABD4DDB4BF932C5006B704B9828410174AC412AD Validity Not Before: Mar 5 06:26:23 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=0E08219F61B6CE150E7E2E70D57DFFE56585CF27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:53:ff:ab:56:01:30:28:a0:0f:a2:36:c2:bd: 85:ff:4a:5d:b7:97:c8:c2:03:0c:ef:cb:10:ca:26: 52:25:9c:ae:a6:27:65:ed:7e:0f:f7:51:55:b2:1b: e3:a0:3d:b6:f1:f2:c0:00:2b:0f:4c:c0:1e:c1:ef: 8f:ed:f1:c2:2c:30:10:91:a5:82:83:f7:17:90:4e: 17:6c:47:ce:f2:79:08:b5:0d:22:98:67:de:85:1e: c7:cf:6b:fb:c0:74:32:09:be:c9:b2:39:09:9c:6f: 6b:58:24:52:8b:86:79:92:b0:81:13:ec:0c:5e:b1: 4c:94:1c:97:57:e8:ce:50:30:58:22:c4:07:83:64: 17:eb:9f:7c:69:fc:6b:56:25:90:70:2d:70:ff:b7: 6e:8a:81:8e:9e:be:04:7c:07:82:80:20:98:c2:08: 4c:79:87:1e:57:17:c7:e9:f1:ad:c9:84:3c:02:32: ea:e0:d1:9c:d6:97:c7:be:8c:47:c4:ba:43:d2:67: d8:84:59:10:e1:0a:3a:19:ea:5d:04:60:a1:eb:bf: 47:9d:4b:cd:2d:4e:95:da:fa:40:fd:17:78:75:9d: 66:f9:82:f2:68:e3:56:8c:ec:6d:34:0f:e6:1c:7e: 76:bb:47:88:4e:20:df:ff:0d:e3:dc:ef:e3:f5:a4: ac:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:08:21:9F:61:B6:CE:15:0E:7E:2E:70:D5:7D:FF:E5:65:85:CF:27 X509v3 Authority Key Identifier: keyid:AB:D4:DD:B4:BF:93:2C:50:06:B7:04:B9:82:84:10:17:4A:C4:12:AD X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/q9TdtL-TLFAGtwS5goQQF0rEEq0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/Dgghn2G2zhUOfi5w1X3_5WWFzyc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:5da0::/32 Signature Algorithm: sha256WithRSAEncryption 5d:31:ff:9c:90:90:38:1c:16:d0:61:f0:35:4e:30:8b:8e:74: 83:67:19:33:5c:0e:d6:45:a8:15:ea:4d:ad:c2:4c:0b:42:40: d1:7d:7d:c3:f7:1f:a4:c5:10:92:43:73:ca:91:47:fd:4a:5d: ad:be:7a:db:51:d9:11:67:51:c7:b0:aa:7e:37:79:7d:5e:15: b1:a4:35:2c:fd:20:62:2d:22:24:72:7a:4b:c2:76:e4:d3:0c: e0:e1:21:ac:e6:e8:28:dd:52:80:cb:f5:23:1d:f0:ef:e5:93: d6:de:17:91:e2:40:9e:c3:a7:6c:e1:85:62:2b:5b:b3:7d:23: f9:94:28:1f:85:89:b6:b4:3d:69:3c:11:cd:56:c3:42:a0:81: d4:10:d7:0f:38:fb:ab:7b:48:69:0a:db:0e:0d:69:70:fb:70: 0b:8a:c5:04:4f:2b:06:71:6b:d1:e5:af:ba:a5:78:37:d0:79: 99:77:17:9a:9d:ca:a9:5c:f8:20:cd:1f:73:ca:b1:bc:f3:be: 6f:13:23:36:30:bf:ad:3d:de:4b:cc:2b:32:b6:60:ff:66:92: 05:13:51:4a:2c:86:69:22:48:9d:d6:35:79:f1:5e:81:f4:f7: 06:5e:ff:ac:19:28:ec:a8:95:71:53:6b:25:0e:04:c2:c6:2a: b9:42:6a:00 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgICArMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJE NEREQjRCRjkzMkM1MDA2QjcwNEI5ODI4NDEwMTc0QUM0MTJBRDAeFw0yNjAzMDUw NjI2MjNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDBFMDgyMTlGNjFCNkNF MTUwRTdFMkU3MEQ1N0RGRkU1NjU4NUNGMjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNU/+rVgEwKKAPojbCvYX/Sl23l8jCAwzvyxDKJlIlnK6mJ2Xt fg/3UVWyG+OgPbbx8sAAKw9MwB7B74/t8cIsMBCRpYKD9xeQThdsR87yeQi1DSKY Z96FHsfPa/vAdDIJvsmyOQmcb2tYJFKLhnmSsIET7AxesUyUHJdX6M5QMFgixAeD ZBfrn3xp/GtWJZBwLXD/t26KgY6evgR8B4KAIJjCCEx5hx5XF8fp8a3JhDwCMurg 0ZzWl8e+jEfEukPSZ9iEWRDhCjoZ6l0EYKHrv0edS80tTpXa+kD9F3h1nWb5gvJo 41aM7G00D+Ycfna7R4hOIN//DePc7+P1pKzHAgMBAAGjggH1MIIB8TAdBgNVHQ4E FgQUDgghn2G2zhUOfi5w1X3/5WWFzycwHwYDVR0jBBgwFoAUq9TdtL+TLFAGtwS5 goQQF0rEEq0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ09DT0RJ R0lUL3E5VGR0TC1UTEZBR3R3UzVnb1FRRjByRUVxMC5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvcTlUZHRMLVRMRkFHdHdTNWdvUVFGMHJFRXEwLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ09DT0RJR0lUL0RnZ2huMkcyemhV T2ZpNXcxWDNfNVdXRnp5Yy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAkAV2gMA0GCSqGSIb3DQEBCwUAA4IBAQBdMf+ckJA4HBbQYfA1TjCLjnSD ZxkzXA7WRagV6k2twkwLQkDRfX3D9x+kxRCSQ3PKkUf9Sl2tvnrbUdkRZ1HHsKp+ N3l9XhWxpDUs/SBiLSIkcnpLwnbk0wzg4SGs5ugo3VKAy/UjHfDv5ZPW3heR4kCe w6ds4YViK1uzfSP5lCgfhYm2tD1pPBHNVsNCoIHUENcPOPure0hpCtsODWlw+3AL isUETysGcWvR5a+6pXg30HmZdxeancqpXPggzR9zyrG8875vEyM2ML+tPd5LzCsy tmD/ZpIFE1FKLIZpIkid1jV58V6B9PcGXv+sGSjsqJVxU2slDgTCxiq5QmoA -----END CERTIFICATE-----Generated at Sun Mar 8 03:09:55 2026 by rpki-client