$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/t-6GfITkRkCZ0DXF1cPUbmXyp-o.roa File: t-6GfITkRkCZ0DXF1cPUbmXyp-o.roa (raw, json) Hash identifier: 0dRYHzwpqJViiMUMNEZdGm56VlcO6Z1ptTcdyNhGmmc= Subject key identifier: B7:EE:86:7C:84:E4:46:40:99:D0:35:C5:D5:C3:D4:6E:65:F2:A7:EA Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Certificate serial: 1471 Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/t-6GfITkRkCZ0DXF1cPUbmXyp-o.roa Signing time: Fri 22 Aug 2025 08:51:31 +0000 ROA not before: Fri 22 Aug 2025 08:51:31 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 14618 IP address blocks: 103.235.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 10:16:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5233 (0x1471) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Validity Not Before: Aug 22 08:51:31 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B7EE867C84E4464099D035C5D5C3D46E65F2A7EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:76:7d:2d:13:d1:04:3f:b0:53:a0:cd:55:ac: f4:65:74:32:41:7c:df:0b:c4:90:87:81:ce:d9:d1: ef:b8:8f:dd:d1:22:31:29:24:13:b3:c5:7f:37:89: 53:14:d1:f5:d2:5e:04:b5:4c:50:c6:ce:85:7b:73: e8:4c:f3:33:ac:8d:b6:92:6f:41:1f:a2:ae:ed:89: aa:75:62:91:96:4d:c8:11:06:c9:3d:19:33:60:f0: db:91:09:3f:04:85:6e:bd:07:fa:2e:72:b0:54:86: 00:73:fb:89:ff:62:2a:ff:a6:e6:a1:67:59:74:1c: 31:17:f6:a4:b1:c9:c1:55:3a:3d:b1:6a:5e:94:b8: 5c:22:dd:0a:f6:3b:6a:8a:f0:a1:19:fd:a0:fb:69: 3f:a9:6d:6f:91:15:0e:45:db:e8:1f:cb:3b:74:86: b8:6e:ac:50:9a:18:85:a6:5d:7c:71:d2:0d:a1:be: 9b:d1:e5:08:d5:dd:06:e6:a8:9e:e2:11:f6:18:bf: 2c:cf:9c:76:e8:48:2c:ae:c1:16:ae:33:55:5e:19: 87:2b:4f:8f:86:74:46:40:c3:df:d3:4b:91:e9:c1: 1c:c9:97:50:5a:81:9e:81:9f:61:09:d6:d0:3f:d1: 00:35:7e:bc:46:18:cd:4c:d0:b8:4e:be:a2:0b:13: e1:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:EE:86:7C:84:E4:46:40:99:D0:35:C5:D5:C3:D4:6E:65:F2:A7:EA X509v3 Authority Key Identifier: keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/t-6GfITkRkCZ0DXF1cPUbmXyp-o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.235.88.0/24 Signature Algorithm: sha256WithRSAEncryption 53:6c:d7:c0:2e:9b:90:a1:76:97:70:9b:b2:1b:b9:dc:53:9d: c5:12:4e:a5:46:85:08:76:af:cd:57:d8:9b:54:c5:c5:92:1a: 15:46:bd:c6:1a:04:a9:79:76:4b:75:57:91:16:e9:37:ee:44: 91:d8:25:f9:86:9c:34:63:95:5d:c8:22:92:73:67:d6:e0:81: fc:b8:41:1b:a3:6b:92:0e:a5:60:7d:6b:18:87:7d:dd:0a:2c: f0:be:ba:92:2f:b4:39:27:e9:e2:b0:9b:1b:a4:41:25:a6:0d: a4:2c:bd:72:78:8a:69:49:e8:8e:74:62:da:0d:8e:59:c4:bd: f8:b3:db:87:27:47:5e:ef:23:e7:de:e1:8e:ed:09:39:b7:94: 31:f0:7d:92:b9:64:d2:64:0e:1a:43:d8:06:e1:1a:2e:d1:6c: 64:84:b6:04:c9:dc:13:d7:2b:d2:0b:26:48:d0:4c:0a:3a:d7: b1:c0:77:61:d4:d1:a7:0f:4f:46:44:6c:84:31:96:b7:f1:ba: e2:63:da:e4:16:a1:ee:a4:fa:5b:d7:0e:ec:a8:dc:2f:b5:54: e8:f1:f8:2b:4f:a6:e1:3e:a3:39:38:49:3f:1b:6d:ae:d4:ac: 48:92:34:38:7c:6e:46:7d:5a:d0:89:16:fb:41:f7:17:78:55: 98:fe:19:85 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICFHEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yNTA4MjIw ODUxMzFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEI3RUU4NjdDODRFNDQ2 NDA5OUQwMzVDNUQ1QzNENDZFNjVGMkE3RUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCsdn0tE9EEP7BToM1VrPRldDJBfN8LxJCHgc7Z0e+4j93RIjEp JBOzxX83iVMU0fXSXgS1TFDGzoV7c+hM8zOsjbaSb0Efoq7tiap1YpGWTcgRBsk9 GTNg8NuRCT8EhW69B/oucrBUhgBz+4n/Yir/puahZ1l0HDEX9qSxycFVOj2xal6U uFwi3Qr2O2qK8KEZ/aD7aT+pbW+RFQ5F2+gfyzt0hrhurFCaGIWmXXxx0g2hvpvR 5QjV3QbmqJ7iEfYYvyzPnHboSCyuwRauM1VeGYcrT4+GdEZAw9/TS5HpwRzJl1Ba gZ6Bn2EJ1tA/0QA1frxGGM1M0LhOvqILE+FFAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUt+6GfITkRkCZ0DXF1cPUbmXyp+owHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0 p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy90LTZHZklUa1JrQ1owRFhGMWNQ VWJtWHlwLW8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+tY MA0GCSqGSIb3DQEBCwUAA4IBAQBTbNfALpuQoXaXcJuyG7ncU53FEk6lRoUIdq/N V9ibVMXFkhoVRr3GGgSpeXZLdVeRFuk37kSR2CX5hpw0Y5VdyCKSc2fW4IH8uEEb o2uSDqVgfWsYh33dCizwvrqSL7Q5J+nisJsbpEElpg2kLL1yeIppSeiOdGLaDY5Z xL34s9uHJ0de7yPn3uGO7Qk5t5Qx8H2SuWTSZA4aQ9gG4Rou0WxkhLYEydwT1yvS CyZI0EwKOtexwHdh1NGnD09GRGyEMZa38briY9rkFqHupPpb1w7sqNwvtVTo8fgr T6bhPqM5OEk/G22u1KxIkjQ4fG5GfVrQiRb7QfcXeFWY/hmF -----END CERTIFICATE-----Generated at Sat Sep 6 07:05:22 2025 by rpki-client