$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/Kpr0VUzozuuvAgvbBbh2awFpFaY.roa File: Kpr0VUzozuuvAgvbBbh2awFpFaY.roa (raw, json) Hash identifier: TR19Fr3bFCA3LX8wmbVG4zN+RwMZBpFX+EsOoPgd4wU= Subject key identifier: 2A:9A:F4:55:4C:E8:CE:EB:AF:02:0B:DB:05:B8:76:6B:01:69:15:A6 Certificate issuer: /CN=ABD4DDB4BF932C5006B704B9828410174AC412AD Certificate serial: 02B1 Authority key identifier: AB:D4:DD:B4:BF:93:2C:50:06:B7:04:B9:82:84:10:17:4A:C4:12:AD Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/Kpr0VUzozuuvAgvbBbh2awFpFaY.roa Signing time: Thu 05 Mar 2026 06:25:04 +0000 ROA not before: Thu 05 Mar 2026 06:25:04 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 150766 IP address blocks: 36.50.228.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/q9TdtL-TLFAGtwS5goQQF0rEEq0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/q9TdtL-TLFAGtwS5goQQF0rEEq0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 03:25:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 689 (0x2b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABD4DDB4BF932C5006B704B9828410174AC412AD Validity Not Before: Mar 5 06:25:04 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2A9AF4554CE8CEEBAF020BDB05B8766B016915A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:72:bb:1b:93:54:a8:6f:02:20:16:99:02:3d: 11:02:e9:7f:64:fd:58:65:28:3a:e5:27:f3:53:4c: 30:06:bf:79:36:cc:47:ab:f2:6e:18:b0:a3:42:fb: 49:98:18:3d:d0:16:e0:fe:7e:72:5a:94:9f:78:00: c4:43:64:7a:12:cc:4d:02:3d:b9:e0:5e:48:91:34: 0d:36:9a:d5:c5:57:40:64:84:bd:ef:9e:cc:91:e5: d1:83:d0:a9:dd:c7:8e:b9:91:e4:65:fc:ea:9b:3a: 9f:10:3d:43:de:db:17:4e:fd:25:0c:a2:b3:16:a8: 1d:f0:b2:53:74:f5:8d:6f:26:d5:42:85:df:30:57: d4:8d:5c:00:9d:74:2f:ff:31:96:ef:ad:7b:8d:df: 3e:e6:34:75:eb:27:08:35:91:59:b4:17:b3:98:11: b3:bf:6b:88:ee:8e:90:3d:d5:ea:77:b6:35:3d:6d: c4:95:4c:20:dc:25:2d:fa:c8:7f:8d:0b:0f:1e:67: b6:88:03:28:58:40:0c:78:62:97:ea:4b:c1:3a:bd: a5:90:a3:64:3e:be:86:65:fe:59:38:78:50:7f:81: fc:2d:48:14:62:67:a9:fa:20:c2:0b:40:92:04:11: 82:97:45:73:4b:e6:92:29:e8:87:ee:c9:b8:e4:c5: 00:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:9A:F4:55:4C:E8:CE:EB:AF:02:0B:DB:05:B8:76:6B:01:69:15:A6 X509v3 Authority Key Identifier: keyid:AB:D4:DD:B4:BF:93:2C:50:06:B7:04:B9:82:84:10:17:4A:C4:12:AD X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/q9TdtL-TLFAGtwS5goQQF0rEEq0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/Kpr0VUzozuuvAgvbBbh2awFpFaY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 36.50.228.0/23 Signature Algorithm: sha256WithRSAEncryption 07:66:92:d4:fa:0b:3a:e7:a0:19:76:7e:d6:b3:a5:fc:d1:97: 37:bc:1a:64:44:cb:f9:49:61:9a:9a:c8:2b:51:c0:04:b1:aa: c5:2d:07:c8:bc:3f:ad:e4:3a:70:85:78:9f:fc:00:76:32:e8: c4:54:b7:93:64:51:28:1b:d1:c6:8d:6a:c9:2e:09:5f:a0:c4: ab:ff:4f:fe:5f:c4:04:b2:9d:e6:7b:a9:33:53:10:96:44:91: 79:3b:8f:70:dd:0a:1e:9c:dc:cd:ae:e6:55:a1:94:eb:ff:09: 7e:1f:a5:79:7e:e1:52:85:93:d7:12:fb:bc:61:fe:24:49:3e: 99:0f:c9:8c:d7:3f:e3:65:64:68:92:39:00:ab:7d:e1:50:ff: 51:83:66:1c:06:f1:c3:cf:a0:89:5d:0a:48:e4:2a:10:44:ce: c6:ca:6c:d4:d9:2d:88:70:39:9a:94:ba:40:b9:f5:e8:db:76: 92:12:51:7e:f9:d3:43:21:d8:4d:87:ef:df:1b:a6:e1:d3:f3: 93:39:ff:7c:64:07:a7:5e:a8:25:29:4b:62:2f:09:63:6c:4f: 79:8b:89:3e:22:82:e2:6a:dc:4f:29:98:84:e6:c0:30:c2:9a: 99:70:74:e4:7e:49:7d:0a:e7:10:a1:0b:f0:6b:9f:73:4c:49: 2b:be:32:5e -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICArEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJE NEREQjRCRjkzMkM1MDA2QjcwNEI5ODI4NDEwMTc0QUM0MTJBRDAeFw0yNjAzMDUw NjI1MDRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDJBOUFGNDU1NENFOENF RUJBRjAyMEJEQjA1Qjg3NjZCMDE2OTE1QTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLcrsbk1SobwIgFpkCPREC6X9k/VhlKDrlJ/NTTDAGv3k2zEer 8m4YsKNC+0mYGD3QFuD+fnJalJ94AMRDZHoSzE0CPbngXkiRNA02mtXFV0BkhL3v nsyR5dGD0Kndx465keRl/OqbOp8QPUPe2xdO/SUMorMWqB3wslN09Y1vJtVChd8w V9SNXACddC//MZbvrXuN3z7mNHXrJwg1kVm0F7OYEbO/a4jujpA91ep3tjU9bcSV TCDcJS36yH+NCw8eZ7aIAyhYQAx4YpfqS8E6vaWQo2Q+voZl/lk4eFB/gfwtSBRi Z6n6IMILQJIEEYKXRXNL5pIp6IfuybjkxQAxAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUKpr0VUzozuuvAgvbBbh2awFpFaYwHwYDVR0jBBgwFoAUq9TdtL+TLFAGtwS5 goQQF0rEEq0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ09DT0RJ R0lUL3E5VGR0TC1UTEZBR3R3UzVnb1FRRjByRUVxMC5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvcTlUZHRMLVRMRkFHdHdTNWdvUVFGMHJFRXEwLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ09DT0RJR0lUL0twcjBWVXpvenV1 dkFndmJCYmgyYXdGcEZhWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEkMuQwDQYJKoZIhvcNAQELBQADggEBAAdmktT6CzrnoBl2ftazpfzRlze8 GmREy/lJYZqayCtRwASxqsUtB8i8P63kOnCFeJ/8AHYy6MRUt5NkUSgb0caNasku CV+gxKv/T/5fxASyneZ7qTNTEJZEkXk7j3DdCh6c3M2u5lWhlOv/CX4fpXl+4VKF k9cS+7xh/iRJPpkPyYzXP+NlZGiSOQCrfeFQ/1GDZhwG8cPPoIldCkjkKhBEzsbK bNTZLYhwOZqUukC59ejbdpISUX7500Mh2E2H798bpuHT85M5/3xkB6deqCUpS2Iv CWNsT3mLiT4iguJq3E8pmITmwDDCmplwdOR+SX0K5xChC/Brn3NMSSu+Ml4= -----END CERTIFICATE-----Generated at Sun Mar 8 03:09:56 2026 by rpki-client