$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GAMBESON/mKdR6--Ct0FenOYAQquVe1RtECw.roa File: mKdR6--Ct0FenOYAQquVe1RtECw.roa (raw, json) Hash identifier: xDLu6qxNzNW8m67vaBbUTurxrLTvcboUKmV8uB7NENk= Subject key identifier: 98:A7:51:EB:EF:82:B7:41:5E:9C:E6:00:42:AB:95:7B:54:6D:10:2C Certificate issuer: /CN=7ED8309671027B7E6FC9AE27B9C68C9C4E29C575 Certificate serial: 0135 Authority key identifier: 7E:D8:30:96:71:02:7B:7E:6F:C9:AE:27:B9:C6:8C:9C:4E:29:C5:75 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ftgwlnECe35vya4nucaMnE4pxXU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMBESON/mKdR6--Ct0FenOYAQquVe1RtECw.roa Signing time: Fri 05 Sep 2025 04:06:53 +0000 ROA not before: Fri 05 Sep 2025 04:06:53 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 134823 IP address blocks: 165.101.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMBESON/ftgwlnECe35vya4nucaMnE4pxXU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMBESON/ftgwlnECe35vya4nucaMnE4pxXU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ftgwlnECe35vya4nucaMnE4pxXU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 14:46:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 309 (0x135) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7ED8309671027B7E6FC9AE27B9C68C9C4E29C575 Validity Not Before: Sep 5 04:06:53 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=98A751EBEF82B7415E9CE60042AB957B546D102C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:60:bd:20:aa:6f:0f:7f:e6:9e:58:fe:96:67: d2:d4:62:66:98:91:7e:a2:e9:5a:9f:26:59:6f:9e: 33:4b:27:40:5c:34:5e:11:c3:eb:8d:4a:9a:29:ce: 93:b7:6f:9e:58:78:57:75:9e:41:cb:b9:ec:e2:7e: a1:ff:87:56:21:9c:3d:7f:4b:90:b8:e4:51:a9:5b: 71:21:e9:13:85:0e:95:14:3a:e8:80:39:94:4f:9a: 5a:31:32:72:2e:97:ce:ef:28:16:13:0d:a4:5c:48: 24:a2:1f:4d:73:39:45:d5:77:24:fb:d1:65:64:e5: 0d:32:7f:74:69:b0:56:a7:2e:5d:3f:0c:37:17:9b: 37:6d:b9:fc:24:b2:0d:bc:49:db:a8:14:a5:09:b8: b6:10:9d:86:5a:31:bc:c1:2c:db:db:35:12:45:30: ba:bc:e6:b8:50:2c:36:c4:0b:c2:c8:06:53:bc:05: f3:c3:94:7f:45:a6:41:26:0e:22:ed:83:61:34:c0: 81:66:7a:88:4b:dc:ca:4d:4a:dc:63:4b:31:8e:cc: 58:55:81:8e:f6:6e:44:9c:de:f5:21:ab:85:7e:f9: 6e:28:a7:f2:7a:f9:54:55:95:68:9b:a1:91:aa:89: d5:62:a7:6a:34:56:c5:9a:c8:ea:53:53:8a:00:6a: 1e:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:A7:51:EB:EF:82:B7:41:5E:9C:E6:00:42:AB:95:7B:54:6D:10:2C X509v3 Authority Key Identifier: keyid:7E:D8:30:96:71:02:7B:7E:6F:C9:AE:27:B9:C6:8C:9C:4E:29:C5:75 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMBESON/ftgwlnECe35vya4nucaMnE4pxXU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ftgwlnECe35vya4nucaMnE4pxXU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMBESON/mKdR6--Ct0FenOYAQquVe1RtECw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 165.101.152.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:e2:6e:4c:a3:15:12:2d:19:c2:28:2d:88:8a:f0:24:e6:55: b9:91:09:f8:d3:aa:ea:dc:9a:24:1a:22:10:6a:8a:f6:a0:d4: fc:15:84:e1:51:42:ee:cd:db:24:cb:11:86:7f:41:4f:84:2c: 82:92:54:6c:62:26:d8:05:e0:42:67:29:0f:62:27:34:f7:ec: a5:a8:95:fc:35:6a:5b:34:c6:b6:d0:1c:e7:9b:0a:dd:7f:b9: 7a:95:93:02:a2:2f:32:b5:9c:ac:87:86:f7:11:08:c8:c7:bb: 92:b5:07:4a:1c:48:e1:fe:ff:a0:99:39:60:fc:15:30:35:45: 8c:be:44:ca:92:ee:92:86:7c:80:50:a6:f6:3d:37:20:be:40: 4c:3a:c5:a0:ca:f0:2c:6b:b2:2e:58:7c:f4:4d:b2:0d:10:bc: ef:55:46:08:8b:f9:f4:ac:17:80:cd:97:09:b2:62:92:23:e6: ed:c5:5b:c7:ee:5d:c8:93:9f:ed:1a:69:8c:67:ff:d2:93:9f: 6f:93:72:06:3a:34:71:3c:86:8f:6c:ee:9f:39:f9:a4:b3:fa: c1:01:5e:3e:68:2e:f6:9c:60:0d:6a:74:5d:ec:df:9d:c8:3e: 6e:30:53:67:a2:44:7c:3a:41:31:72:18:44:12:80:4d:c9:3d: ab:a0:9b:2e -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICATUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0VE ODMwOTY3MTAyN0I3RTZGQzlBRTI3QjlDNjhDOUM0RTI5QzU3NTAeFw0yNTA5MDUw NDA2NTNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDk4QTc1MUVCRUY4MkI3 NDE1RTlDRTYwMDQyQUI5NTdCNTQ2RDEwMkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtYL0gqm8Pf+aeWP6WZ9LUYmaYkX6i6VqfJllvnjNLJ0BcNF4R w+uNSpopzpO3b55YeFd1nkHLuezifqH/h1YhnD1/S5C45FGpW3Eh6ROFDpUUOuiA OZRPmloxMnIul87vKBYTDaRcSCSiH01zOUXVdyT70WVk5Q0yf3RpsFanLl0/DDcX mzdtufwksg28SduoFKUJuLYQnYZaMbzBLNvbNRJFMLq85rhQLDbEC8LIBlO8BfPD lH9FpkEmDiLtg2E0wIFmeohL3MpNStxjSzGOzFhVgY72bkSc3vUhq4V++W4op/J6 +VRVlWiboZGqidVip2o0VsWayOpTU4oAah55AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUmKdR6++Ct0FenOYAQquVe1RtECwwHwYDVR0jBBgwFoAUftgwlnECe35vya4n ucaMnE4pxXUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR0FNQkVT T04vZnRnd2xuRUNlMzV2eWE0bnVjYU1uRTRweFhVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9mdGd3bG5FQ2UzNXZ5YTRudWNhTW5FNHB4WFUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9HQU1CRVNPTi9tS2RSNi0tQ3QwRmVu T1lBUXF1VmUxUnRFQ3cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQApWWYMA0GCSqGSIb3DQEBCwUAA4IBAQAO4m5MoxUSLRnCKC2IivAk5lW5kQn4 06rq3JokGiIQaor2oNT8FYThUULuzdskyxGGf0FPhCyCklRsYibYBeBCZykPYic0 9+ylqJX8NWpbNMa20Bznmwrdf7l6lZMCoi8ytZysh4b3EQjIx7uStQdKHEjh/v+g mTlg/BUwNUWMvkTKku6ShnyAUKb2PTcgvkBMOsWgyvAsa7IuWHz0TbINELzvVUYI i/n0rBeAzZcJsmKSI+btxVvH7l3Ik5/tGmmMZ//Sk59vk3IGOjRxPIaPbO6fOfmk s/rBAV4+aC72nGANanRd7N+dyD5uMFNnokR8OkExchhEEoBNyT2roJsu -----END CERTIFICATE-----Generated at Sun Sep 7 12:45:07 2025 by rpki-client