$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/P-HZDj3bnGslmFiZhPEHCQh4zfE.roa File: P-HZDj3bnGslmFiZhPEHCQh4zfE.roa (raw, json) Hash identifier: ECAaomnDtpCGaZGld9uaWxXExWHC/QMlm7lwRrWG2xk= Subject key identifier: 3F:E1:D9:0E:3D:DB:9C:6B:25:98:58:99:84:F1:07:09:08:78:CD:F1 Certificate issuer: /CN=B4320FD78DFB6A4D1C92322F794966B8525DFDD2 Certificate serial: 5A6E Authority key identifier: B4:32:0F:D7:8D:FB:6A:4D:1C:92:32:2F:79:49:66:B8:52:5D:FD:D2 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/P-HZDj3bnGslmFiZhPEHCQh4zfE.roa Signing time: Mon 11 Aug 2025 03:08:33 +0000 ROA not before: Mon 11 Aug 2025 03:08:33 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38851 IP address blocks: 43.227.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/tDIP1437ak0ckjIveUlmuFJd_dI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/tDIP1437ak0ckjIveUlmuFJd_dI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 14:41:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23150 (0x5a6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4320FD78DFB6A4D1C92322F794966B8525DFDD2 Validity Not Before: Aug 11 03:08:33 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3FE1D90E3DDB9C6B2598589984F107090878CDF1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:75:f5:ab:49:b8:28:36:09:1c:f4:5f:45:83: 20:02:de:b8:f4:41:76:45:2b:90:af:eb:4e:97:e1: 73:15:fd:85:4d:17:f0:b7:22:38:f0:67:0a:41:ca: d7:0d:42:e6:ff:18:e6:c9:ec:35:d0:b4:2d:06:c3: ea:f1:b4:f0:a9:6d:92:6c:86:fd:a0:c9:3f:73:e9: 16:6a:c5:b3:97:e1:7d:60:76:48:5d:70:10:03:cc: 43:7c:7c:d1:23:a1:e6:23:56:d4:3a:b1:fe:6e:0f: 4d:37:cf:f8:fc:43:13:a3:b5:38:62:56:e7:82:0f: 10:87:ea:34:a4:1e:5a:68:d8:76:82:fe:4e:30:7d: 8b:a9:09:a4:4f:56:b3:2a:33:13:82:82:2d:03:b3: a2:1c:c1:e5:5b:ce:98:cd:ee:34:1a:18:33:28:5c: 81:f0:38:a3:bd:65:2b:8b:b5:b2:b6:5e:1c:08:66: 24:44:85:fb:e0:66:e2:87:81:42:39:7a:a5:fc:cd: 64:24:12:20:28:b2:13:0b:d2:84:ad:97:76:e5:ff: e5:25:b7:fe:82:c4:7f:10:b2:ad:c5:2a:7d:5b:b5: 67:9f:e5:47:fd:be:35:ff:c4:6b:4a:ca:e6:c8:33: d6:6b:96:ff:f5:3b:20:a1:67:19:3b:ca:b7:a6:c4: bd:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:E1:D9:0E:3D:DB:9C:6B:25:98:58:99:84:F1:07:09:08:78:CD:F1 X509v3 Authority Key Identifier: keyid:B4:32:0F:D7:8D:FB:6A:4D:1C:92:32:2F:79:49:66:B8:52:5D:FD:D2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/tDIP1437ak0ckjIveUlmuFJd_dI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/P-HZDj3bnGslmFiZhPEHCQh4zfE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.227.25.0/24 Signature Algorithm: sha256WithRSAEncryption 99:71:49:8d:46:53:b9:77:a6:bd:b0:5d:5c:43:f3:2b:34:06: 1b:9b:85:1f:b2:d9:4f:a9:27:91:c7:9c:b4:6f:70:9e:e1:98: c9:b4:fa:00:cf:b2:54:66:37:81:f3:00:69:81:22:de:b0:43: d3:de:36:ae:77:6a:ad:60:ca:40:7f:8e:d3:3b:00:40:1a:8e: b2:8a:ea:17:eb:6f:87:76:7f:f1:93:f9:7d:1f:55:32:4f:c7: eb:ec:97:be:28:e8:f4:81:9b:c7:88:be:6d:45:58:b0:0a:94: 9a:7f:30:43:d6:a4:2b:62:c3:7d:92:e3:eb:8f:c2:34:19:7b: 75:95:48:e0:42:4b:e9:99:37:f4:f8:0f:b0:73:2f:84:84:b7: cc:0a:da:e2:ca:b9:86:56:62:39:bc:c1:62:d2:32:89:4d:26: a8:3c:4c:e1:1d:d2:2b:3d:5e:50:4c:25:aa:92:11:08:8d:b8: 17:cb:99:86:55:b9:de:89:25:aa:b7:3d:96:d8:88:38:db:49: ea:3d:05:b4:a3:98:f1:25:c6:99:53:2f:aa:80:35:73:47:76: 66:63:2a:6b:e2:67:c0:5b:27:60:74:a1:75:bc:10:3f:41:11: 39:d1:96:95:c1:51:b3:65:af:1b:f6:06:92:80:0f:cd:36:21: 52:7e:72:9f -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICWm4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjQz MjBGRDc4REZCNkE0RDFDOTIzMjJGNzk0OTY2Qjg1MjVERkREMjAeFw0yNTA4MTEw MzA4MzNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNGRTFEOTBFM0REQjlD NkIyNTk4NTg5OTg0RjEwNzA5MDg3OENERjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGdfWrSbgoNgkc9F9FgyAC3rj0QXZFK5Cv606X4XMV/YVNF/C3 IjjwZwpBytcNQub/GObJ7DXQtC0Gw+rxtPCpbZJshv2gyT9z6RZqxbOX4X1gdkhd cBADzEN8fNEjoeYjVtQ6sf5uD003z/j8QxOjtThiVueCDxCH6jSkHlpo2HaC/k4w fYupCaRPVrMqMxOCgi0Ds6IcweVbzpjN7jQaGDMoXIHwOKO9ZSuLtbK2XhwIZiRE hfvgZuKHgUI5eqX8zWQkEiAoshML0oStl3bl/+Ult/6CxH8Qsq3FKn1btWef5Uf9 vjX/xGtKyubIM9Zrlv/1OyChZxk7yremxL0/AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUP+HZDj3bnGslmFiZhPEHCQh4zfEwHwYDVR0jBBgwFoAUtDIP1437ak0ckjIv eUlmuFJd/dIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTlRDQ0FU Vi90RElQMTQzN2FrMGNrakl2ZVVsbXVGSmRfZEkuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL3RESVAxNDM3YWswY2tqSXZlVWxtdUZKZF9kSS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL05UQ0NBVFYvUC1IWkRqM2JuR3NsbUZp WmhQRUhDUWg0emZFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ACvjGTANBgkqhkiG9w0BAQsFAAOCAQEAmXFJjUZTuXemvbBdXEPzKzQGG5uFH7LZ T6knkcectG9wnuGYybT6AM+yVGY3gfMAaYEi3rBD0942rndqrWDKQH+O0zsAQBqO sorqF+tvh3Z/8ZP5fR9VMk/H6+yXvijo9IGbx4i+bUVYsAqUmn8wQ9akK2LDfZLj 64/CNBl7dZVI4EJL6Zk39PgPsHMvhIS3zAra4sq5hlZiObzBYtIyiU0mqDxM4R3S Kz1eUEwlqpIRCI24F8uZhlW53oklqrc9ltiIONtJ6j0FtKOY8SXGmVMvqoA1c0d2 ZmMqa+JnwFsnYHShdbwQP0EROdGWlcFRs2WvG/YGkoAPzTYhUn5ynw== -----END CERTIFICATE-----Generated at Mon Aug 11 10:45:49 2025 by rpki-client