$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/nYR5U3LElkezKDvwFIBAwSEu5VA.roa File: nYR5U3LElkezKDvwFIBAwSEu5VA.roa (raw, json) Hash identifier: eqiSn27ADmCtaSTFXSRd9loUuImfoGeqTXZQBNwUO3Y= Subject key identifier: 9D:84:79:53:72:C4:96:47:B3:28:3B:F0:14:80:40:C1:21:2E:E5:50 Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA Certificate serial: 06D1 Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/nYR5U3LElkezKDvwFIBAwSEu5VA.roa Signing time: Fri 22 Aug 2025 08:48:57 +0000 ROA not before: Fri 22 Aug 2025 08:48:57 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 41255 IP address blocks: 103.156.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1745 (0x6d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA Validity Not Before: Aug 22 08:48:57 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=9D84795372C49647B3283BF0148040C1212EE550 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:05:33:6f:3e:f8:f5:90:d9:35:1f:be:82:5f: ab:bb:e3:44:8d:b4:45:0c:d7:93:ef:1c:c1:5d:ca: 2d:c6:c2:97:99:ba:28:a5:a7:82:76:83:b8:71:ad: 34:2f:6c:fb:d0:91:60:a4:41:53:86:d8:4d:9b:3c: 93:7b:17:2a:87:a6:f9:67:9d:a1:7e:53:fb:e5:a9: 28:b0:38:44:7b:db:d7:da:32:aa:5e:bd:53:0d:37: 5b:3e:03:e8:43:79:09:2f:c7:fd:f6:f3:1f:30:dd: fc:bd:b3:c7:24:4b:31:7c:6e:84:09:d8:c4:aa:30: 8b:f4:77:d7:02:5e:9d:66:57:29:d4:32:49:70:23: be:fd:43:35:83:d3:e7:cb:aa:4a:4b:c0:c4:8f:4a: e5:85:6f:5e:cb:8d:ce:81:4b:42:36:8a:88:b6:4b: d0:fb:76:68:63:d2:7a:af:bc:4e:f3:65:29:32:1d: 22:10:7e:1c:32:5e:55:6f:86:4a:17:5e:e8:a9:ae: a3:4e:f9:3f:36:97:3e:b9:cb:cf:fa:ab:72:f2:6c: d2:ac:c7:aa:ad:68:1e:fd:5d:0b:78:06:de:a3:65: 83:34:43:46:93:fe:4d:b7:d0:3b:79:e4:20:ca:5a: 72:47:67:2c:30:d3:e3:92:de:fc:dc:91:46:c8:2c: e1:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:84:79:53:72:C4:96:47:B3:28:3B:F0:14:80:40:C1:21:2E:E5:50 X509v3 Authority Key Identifier: keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/nYR5U3LElkezKDvwFIBAwSEu5VA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.156.184.0/24 Signature Algorithm: sha256WithRSAEncryption db:24:de:80:ef:ad:74:b2:2a:d9:b9:80:d5:5d:8c:18:8c:0f: 2f:9f:1c:a3:ba:ae:3b:11:8b:1e:c3:92:67:00:2c:82:a5:91: 2f:34:95:a0:44:fe:05:a3:1d:d7:57:56:2a:dd:35:f1:ac:5a: d5:7f:18:db:b1:fd:bd:f4:29:95:9a:ce:36:25:5c:68:0e:8b: 5e:0a:af:0b:a6:2b:27:f0:08:ad:28:91:83:0f:9a:17:3f:65: 93:2d:4a:ab:10:f4:2a:6e:f5:eb:6a:b7:92:03:0d:f9:47:4d: d5:72:ec:2e:35:c7:3b:56:78:f9:d1:79:17:51:36:66:df:a8: 34:6e:af:4f:aa:e1:aa:92:4a:32:25:ef:d0:3f:55:52:15:97: 5d:19:f8:41:cd:97:42:f1:02:6d:f9:63:15:3d:50:d5:c2:53: ca:4a:e3:77:22:e0:07:b9:fb:03:37:0f:60:95:e9:9b:d9:b2: 22:9b:15:da:8c:a9:0c:c3:d8:fb:a0:41:c3:75:50:50:b4:36: 23:d3:63:03:80:9a:7e:bc:a4:aa:a8:d4:7c:aa:25:19:d2:04: d3:28:63:f0:75:fb:ea:89:98:97:28:83:f4:53:50:08:b8:dd: f1:e7:d6:2f:df:0e:e6:1b:38:18:54:8d:43:d2:8a:5a:6b:6a: c4:5e:fa:42 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICBtEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTdB OTk0QkQ2MDU1NTE0NUNCNjQ1MkRDNkE5ODBGQzg1MTEzNkJEQTAeFw0yNTA4MjIw ODQ4NTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDlEODQ3OTUzNzJDNDk2 NDdCMzI4M0JGMDE0ODA0MEMxMjEyRUU1NTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtBTNvPvj1kNk1H76CX6u740SNtEUM15PvHMFdyi3GwpeZuiil p4J2g7hxrTQvbPvQkWCkQVOG2E2bPJN7FyqHpvlnnaF+U/vlqSiwOER729faMqpe vVMNN1s+A+hDeQkvx/328x8w3fy9s8ckSzF8boQJ2MSqMIv0d9cCXp1mVynUMklw I779QzWD0+fLqkpLwMSPSuWFb17Ljc6BS0I2ioi2S9D7dmhj0nqvvE7zZSkyHSIQ fhwyXlVvhkoXXuiprqNO+T82lz65y8/6q3LybNKsx6qtaB79XQt4Bt6jZYM0Q0aT /k230Dt55CDKWnJHZyww0+OS3vzckUbILOGxAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUnYR5U3LElkezKDvwFIBAwSEu5VAwHwYDVR0jBBgwFoAUV6mUvWBVUUXLZFLc apgPyFETa9owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQUxMUEFT Uy9WNm1VdldCVlVVWExaRkxjYXBnUHlGRVRhOW8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1Y2bVV2V0JWVVVYTFpGTGNhcGdQeUZFVGE5by5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0FMTFBBU1MvbllSNVUzTEVsa2V6S0R2 d0ZJQkF3U0V1NVZBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AGecuDANBgkqhkiG9w0BAQsFAAOCAQEA2yTegO+tdLIq2bmA1V2MGIwPL58co7qu OxGLHsOSZwAsgqWRLzSVoET+BaMd11dWKt018axa1X8Y27H9vfQplZrONiVcaA6L XgqvC6YrJ/AIrSiRgw+aFz9lky1KqxD0Km7162q3kgMN+UdN1XLsLjXHO1Z4+dF5 F1E2Zt+oNG6vT6rhqpJKMiXv0D9VUhWXXRn4Qc2XQvECbfljFT1Q1cJTykrjdyLg B7n7AzcPYJXpm9myIpsV2oypDMPY+6BBw3VQULQ2I9NjA4CafrykqqjUfKolGdIE 0yhj8HX76omYlyiD9FNQCLjd8efWL98O5hs4GFSNQ9KKWmtqxF76Qg== -----END CERTIFICATE-----Generated at Sun Aug 24 11:42:01 2025 by rpki-client