$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APPIER/TsN0H5pD6Qm0_O0vCqm-6LmqAwg.roa File: TsN0H5pD6Qm0_O0vCqm-6LmqAwg.roa (raw, json) Hash identifier: QK6bO3POqwYLqN6of1UT1LdwgPFXVK0OJbizi519XWY= Subject key identifier: 4E:C3:74:1F:9A:43:E9:09:B4:FC:ED:2F:0A:A9:BE:E8:B9:AA:03:08 Certificate issuer: /CN=4640D988EC8146BA430596012122D1A1CFC1C36B Certificate serial: 0D84 Authority key identifier: 46:40:D9:88:EC:81:46:BA:43:05:96:01:21:22:D1:A1:CF:C1:C3:6B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RkDZiOyBRrpDBZYBISLRoc_Bw2s.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/TsN0H5pD6Qm0_O0vCqm-6LmqAwg.roa Signing time: Fri 22 Aug 2025 08:56:35 +0000 ROA not before: Fri 22 Aug 2025 08:56:35 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 396982 IP address blocks: 103.122.16.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/RkDZiOyBRrpDBZYBISLRoc_Bw2s.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/RkDZiOyBRrpDBZYBISLRoc_Bw2s.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RkDZiOyBRrpDBZYBISLRoc_Bw2s.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3460 (0xd84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4640D988EC8146BA430596012122D1A1CFC1C36B Validity Not Before: Aug 22 08:56:35 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=4EC3741F9A43E909B4FCED2F0AA9BEE8B9AA0308 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f4:ad:fb:f7:d4:ba:26:3e:d1:30:72:f3:65: 0b:de:71:95:b4:41:3f:75:1f:e2:4f:2a:fc:42:64: e0:4e:d9:b1:d6:65:e4:ea:02:d2:26:fb:c8:a5:12: 3f:1f:14:5e:5e:4a:95:f9:a2:53:97:cc:2d:e7:5d: 03:58:06:dd:6c:bb:86:b1:f4:98:54:c5:f6:5f:4d: 1a:70:6c:25:49:91:42:a3:60:e9:df:ac:97:47:5e: 40:b9:e7:75:6b:93:28:02:b8:37:80:3d:05:5c:e3: bd:c5:10:a6:ac:7c:4f:04:17:67:51:e8:1e:6d:9f: 82:58:35:e0:98:08:42:7c:87:9e:4d:3e:56:67:ef: 10:44:de:05:e8:b3:e9:d1:64:92:db:fd:fb:77:59: 4f:1e:47:16:24:b5:1d:90:96:37:ba:50:02:f5:41: 51:f8:2d:29:03:ea:56:0d:bc:b9:b3:df:ec:c6:c1: 60:31:0c:f6:c3:cd:6a:7c:78:18:3e:ed:d5:7b:9d: cc:ff:bb:2e:d1:db:9b:ab:ce:5f:eb:42:0f:3d:7f: 3a:db:37:6f:bc:ef:b3:c7:d7:e4:ae:62:48:c6:ea: 86:08:16:46:5d:4f:2d:1e:b4:b0:4e:c5:0d:f8:9c: 3a:04:88:f4:11:63:76:23:d5:df:84:53:bb:9e:c2: 0e:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:C3:74:1F:9A:43:E9:09:B4:FC:ED:2F:0A:A9:BE:E8:B9:AA:03:08 X509v3 Authority Key Identifier: keyid:46:40:D9:88:EC:81:46:BA:43:05:96:01:21:22:D1:A1:CF:C1:C3:6B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/RkDZiOyBRrpDBZYBISLRoc_Bw2s.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RkDZiOyBRrpDBZYBISLRoc_Bw2s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/TsN0H5pD6Qm0_O0vCqm-6LmqAwg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.16.0/22 Signature Algorithm: sha256WithRSAEncryption 79:e7:b7:78:55:e0:d0:ba:67:cd:bb:a8:1b:5b:7c:ba:8a:38: 66:62:34:0f:67:06:80:3d:92:57:f5:29:37:45:28:55:99:5f: 4b:f8:ab:55:42:bc:01:a3:c7:4b:f5:9b:52:e6:92:60:0b:af: 43:3a:e8:7d:b5:02:f4:69:39:cc:62:b9:f1:bf:46:df:33:b8: 9a:51:cc:10:8a:29:8e:29:d4:23:99:d8:28:0f:de:27:4f:a4: 2b:a7:b8:ce:f0:02:ed:ff:ab:57:37:5f:d0:a9:39:d0:dd:f4: 21:80:ae:c4:52:ee:61:1d:9f:1a:c3:fd:85:41:e1:9b:1f:d9: b8:03:ce:c9:62:a6:10:18:38:fa:10:1b:01:06:60:fb:4f:8f: de:9f:82:3c:67:50:92:de:af:7d:06:40:0e:29:43:b7:f4:2d: 42:f0:1f:9c:c8:ee:47:92:1e:7d:c5:b3:ab:1c:d2:0b:f8:2b: 9e:c5:4b:f0:d5:ec:60:43:24:44:20:a6:3a:3d:96:0f:34:4d: 07:83:3a:36:d4:51:63:12:f6:08:b0:ee:30:9b:38:97:86:73: 11:c5:76:8f:6f:6d:89:1a:1d:ef:4c:8a:d1:ea:85:63:66:74: 3d:48:59:a4:15:6e:9a:5f:55:15:fb:53:38:3e:88:59:93:2b: 41:45:b5:b6 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDYQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDY0 MEQ5ODhFQzgxNDZCQTQzMDU5NjAxMjEyMkQxQTFDRkMxQzM2QjAeFw0yNTA4MjIw ODU2MzVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDRFQzM3NDFGOUE0M0U5 MDlCNEZDRUQyRjBBQTlCRUU4QjlBQTAzMDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDF9K3799S6Jj7RMHLzZQvecZW0QT91H+JPKvxCZOBO2bHWZeTq AtIm+8ilEj8fFF5eSpX5olOXzC3nXQNYBt1su4ax9JhUxfZfTRpwbCVJkUKjYOnf rJdHXkC553VrkygCuDeAPQVc473FEKasfE8EF2dR6B5tn4JYNeCYCEJ8h55NPlZn 7xBE3gXos+nRZJLb/ft3WU8eRxYktR2Qlje6UAL1QVH4LSkD6lYNvLmz3+zGwWAx DPbDzWp8eBg+7dV7ncz/uy7R25urzl/rQg89fzrbN2+877PH1+SuYkjG6oYIFkZd Ty0etLBOxQ34nDoEiPQRY3Yj1d+EU7uewg4HAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUTsN0H5pD6Qm0/O0vCqm+6LmqAwgwHwYDVR0jBBgwFoAURkDZiOyBRrpDBZYB ISLRoc/Bw2swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBQSUVS L1JrRFppT3lCUnJwREJaWUJJU0xSb2NfQncycy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvUmtEWmlPeUJScnBEQlpZQklTTFJvY19CdzJzLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBQSUVSL1RzTjBINXBENlFtMF9PMHZD cW0tNkxtcUF3Zy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn ehAwDQYJKoZIhvcNAQELBQADggEBAHnnt3hV4NC6Z827qBtbfLqKOGZiNA9nBoA9 klf1KTdFKFWZX0v4q1VCvAGjx0v1m1LmkmALr0M66H21AvRpOcxiufG/Rt8zuJpR zBCKKY4p1COZ2CgP3idPpCunuM7wAu3/q1c3X9CpOdDd9CGArsRS7mEdnxrD/YVB 4Zsf2bgDzsliphAYOPoQGwEGYPtPj96fgjxnUJLer30GQA4pQ7f0LULwH5zI7keS Hn3Fs6sc0gv4K57FS/DV7GBDJEQgpjo9lg80TQeDOjbUUWMS9giw7jCbOJeGcxHF do9vbYkaHe9MitHqhWNmdD1IWaQVbppfVRX7Uzg+iFmTK0FFtbY= -----END CERTIFICATE-----Generated at Sun Aug 24 09:05:42 2025 by rpki-client