$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/hqscI46OSgTuuaqCNqHGJuixrP8.roa File: hqscI46OSgTuuaqCNqHGJuixrP8.roa (raw, json) Hash identifier: 5xv/2L0xbAZelAaoatfUaOvwQ+zt/fctGZFpR1M7r9w= Subject key identifier: 86:AB:1C:23:8E:8E:4A:04:EE:B9:AA:82:36:A1:C6:26:E8:B1:AC:FF Certificate issuer: /CN=44F8DCF66B25B719056D1ED65C16EA9257E5553D Certificate serial: 04DD Authority key identifier: 44:F8:DC:F6:6B:25:B7:19:05:6D:1E:D6:5C:16:EA:92:57:E5:55:3D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RPjc9msltxkFbR7WXBbqklflVT0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/hqscI46OSgTuuaqCNqHGJuixrP8.roa Signing time: Fri 22 Aug 2025 08:50:41 +0000 ROA not before: Fri 22 Aug 2025 08:50:41 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 10133 IP address blocks: 160.30.78.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/RPjc9msltxkFbR7WXBbqklflVT0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/RPjc9msltxkFbR7WXBbqklflVT0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RPjc9msltxkFbR7WXBbqklflVT0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1245 (0x4dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44F8DCF66B25B719056D1ED65C16EA9257E5553D Validity Not Before: Aug 22 08:50:41 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=86AB1C238E8E4A04EEB9AA8236A1C626E8B1ACFF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:df:0b:3c:68:9d:d1:ef:0e:99:c5:ac:92:71: c4:8b:1e:19:5f:8b:9e:5a:20:d9:60:59:c3:9e:25: 3f:eb:8d:af:7d:24:32:d8:46:0f:ab:d0:a1:36:73: f5:b1:9c:77:15:d0:0b:57:f7:17:ba:52:5e:32:9f: fd:de:45:3d:9b:1c:ab:53:a2:46:f1:fc:62:b3:d7: c1:26:07:21:db:3a:45:77:21:95:97:f7:41:d2:74: 6e:da:6a:74:b2:a3:ca:a6:17:0b:b4:8d:d5:7d:0f: f1:1c:92:3c:83:1d:47:78:59:57:6e:c4:b7:e6:65: f2:75:80:75:b5:d7:f9:a6:c0:30:67:83:bb:68:e8: c6:6a:d0:d7:66:e4:73:46:42:f9:54:f4:a4:9f:e9: 43:74:e5:18:8f:48:03:33:76:60:19:a8:34:f1:eb: 73:2f:b9:c0:39:4a:e2:17:40:61:81:97:32:08:8a: 88:85:d0:cb:d7:37:90:d7:7a:87:de:44:97:1e:e4: 27:6b:da:49:e5:49:f6:1f:13:05:64:87:7c:db:5b: 54:23:de:1e:f6:93:03:ee:d9:92:25:0e:bc:0f:24: 96:04:7d:f9:72:90:48:6e:10:01:01:cd:23:41:72: e7:7d:d3:53:6e:33:d7:18:d7:00:96:2c:c3:c8:ac: 3b:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:AB:1C:23:8E:8E:4A:04:EE:B9:AA:82:36:A1:C6:26:E8:B1:AC:FF X509v3 Authority Key Identifier: keyid:44:F8:DC:F6:6B:25:B7:19:05:6D:1E:D6:5C:16:EA:92:57:E5:55:3D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/RPjc9msltxkFbR7WXBbqklflVT0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RPjc9msltxkFbR7WXBbqklflVT0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/hqscI46OSgTuuaqCNqHGJuixrP8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.30.78.0/23 Signature Algorithm: sha256WithRSAEncryption 41:b7:77:de:27:58:1d:cc:ed:8a:f5:71:0b:87:de:39:26:b8: d6:73:c4:31:c3:7d:8b:09:ad:34:7b:94:9e:ab:bf:55:12:69: 05:b4:2d:e4:54:e7:18:ae:19:67:df:38:b8:a4:cb:91:66:ba: 1c:e9:4d:5b:08:cb:a4:37:51:25:a9:d1:61:c3:ee:e5:d8:76: f4:0d:1c:a1:6a:0c:66:32:58:2e:be:4b:8c:57:6f:4b:6c:62: fa:a3:ad:31:09:b2:98:04:3b:48:98:26:ca:b4:eb:b9:c3:0b: 58:47:7c:77:ca:4f:67:60:9a:09:ba:f8:a4:f8:de:ec:c0:a6: 2b:2f:47:7d:bc:f4:fd:20:af:12:34:67:77:61:fc:f0:38:40: af:13:5c:9c:6d:98:75:6f:71:43:8d:96:d4:cc:04:49:de:c6: d4:2d:dc:41:79:08:36:47:f3:f5:0b:9e:24:5e:bc:f6:f0:a6: 26:99:a2:bb:71:1f:07:92:01:e0:05:c0:e8:ef:ea:08:1c:18: ab:ae:4a:3b:e3:24:1f:45:3a:b3:82:2d:1e:55:8c:af:0e:20: c3:97:d5:b7:50:b7:3f:2a:d9:c9:76:90:08:f7:a8:56:35:6c: ce:4d:3d:de:0f:7e:c4:82:1a:3d:9a:c9:61:1a:7a:4d:46:3f: aa:9d:87:f6 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICBN0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDRG OERDRjY2QjI1QjcxOTA1NkQxRUQ2NUMxNkVBOTI1N0U1NTUzRDAeFw0yNTA4MjIw ODUwNDFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDg2QUIxQzIzOEU4RTRB MDRFRUI5QUE4MjM2QTFDNjI2RThCMUFDRkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDX3ws8aJ3R7w6ZxaySccSLHhlfi55aINlgWcOeJT/rja99JDLY Rg+r0KE2c/WxnHcV0AtX9xe6Ul4yn/3eRT2bHKtTokbx/GKz18EmByHbOkV3IZWX 90HSdG7aanSyo8qmFwu0jdV9D/EckjyDHUd4WVduxLfmZfJ1gHW11/mmwDBng7to 6MZq0Ndm5HNGQvlU9KSf6UN05RiPSAMzdmAZqDTx63MvucA5SuIXQGGBlzIIioiF 0MvXN5DXeofeRJce5Cdr2knlSfYfEwVkh3zbW1Qj3h72kwPu2ZIlDrwPJJYEffly kEhuEAEBzSNBcud901NuM9cY1wCWLMPIrDuNAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUhqscI46OSgTuuaqCNqHGJuixrP8wHwYDVR0jBBgwFoAURPjc9msltxkFbR7W XBbqklflVT0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQkVJRE9V L1JQamM5bXNsdHhrRmJSN1dYQmJxa2xmbFZUMC5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvUlBqYzltc2x0eGtGYlI3V1hCYnFrbGZsVlQwLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvQkVJRE9VL2hxc2NJNDZPU2dUdXVhcUNO cUhHSnVpeHJQOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGg Hk4wDQYJKoZIhvcNAQELBQADggEBAEG3d94nWB3M7Yr1cQuH3jkmuNZzxDHDfYsJ rTR7lJ6rv1USaQW0LeRU5xiuGWffOLiky5FmuhzpTVsIy6Q3USWp0WHD7uXYdvQN HKFqDGYyWC6+S4xXb0tsYvqjrTEJspgEO0iYJsq067nDC1hHfHfKT2dgmgm6+KT4 3uzApisvR3289P0grxI0Z3dh/PA4QK8TXJxtmHVvcUONltTMBEnextQt3EF5CDZH 8/ULniRevPbwpiaZortxHweSAeAFwOjv6ggcGKuuSjvjJB9FOrOCLR5VjK8OIMOX 1bdQtz8q2cl2kAj3qFY1bM5NPd4PfsSCGj2ayWEaek1GP6qdh/Y= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:56 2025 by rpki-client