$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/jqtTJhcdV-81ChC3Gbo1Af4A6fs.roa File: jqtTJhcdV-81ChC3Gbo1Af4A6fs.roa (raw, json) Hash identifier: zC3ANtNrrUq/EYkMZgwbMolrgVeo1/t8ESla62SW+so= Subject key identifier: 8E:AB:53:26:17:1D:57:EF:35:0A:10:B7:19:BA:35:01:FE:00:E9:FB Certificate issuer: /CN=A5A6AC38EE68C364CF79188F06427E9C766D4C1A Certificate serial: 0318 Authority key identifier: A5:A6:AC:38:EE:68:C3:64:CF:79:18:8F:06:42:7E:9C:76:6D:4C:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/paasOO5ow2TPeRiPBkJ-nHZtTBo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/jqtTJhcdV-81ChC3Gbo1Af4A6fs.roa Signing time: Fri 22 Aug 2025 09:00:47 +0000 ROA not before: Fri 22 Aug 2025 09:00:47 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131657 IP address blocks: 103.51.90.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/paasOO5ow2TPeRiPBkJ-nHZtTBo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/paasOO5ow2TPeRiPBkJ-nHZtTBo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/paasOO5ow2TPeRiPBkJ-nHZtTBo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 792 (0x318) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A5A6AC38EE68C364CF79188F06427E9C766D4C1A Validity Not Before: Aug 22 09:00:47 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8EAB5326171D57EF350A10B719BA3501FE00E9FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:b2:41:d5:8a:16:cd:a2:5b:18:60:61:f5:f3: a9:0e:30:4e:a8:96:c8:8b:63:14:73:f3:df:0a:fa: 47:9f:d0:a3:d5:4a:66:ba:b2:fb:c5:45:93:ac:6d: f4:bc:0c:28:b5:3c:98:4b:df:c2:1a:4e:86:ac:21: b6:5c:a9:24:46:e4:f3:95:a6:f7:9d:82:6b:63:18: 3a:80:8d:fd:cd:3b:91:e8:7b:64:a3:5d:b3:a2:af: f5:21:4f:0b:1b:e6:ab:ff:d2:db:30:f6:cc:6b:27: de:ce:72:80:73:37:c2:4b:e0:e5:f5:ae:f5:61:de: b5:a7:10:3a:ac:15:b5:40:9f:fa:be:f6:d1:01:c7: 25:14:a4:da:f6:55:19:50:53:65:b5:e2:3e:54:c9: d5:32:a2:02:61:e1:1f:8f:9b:d2:04:5f:a7:03:5b: e4:ec:70:8f:94:9e:38:35:d9:cd:06:c7:8f:97:4c: 12:26:97:01:ab:43:be:de:09:af:81:c1:b9:cf:d3: 57:41:23:55:f0:0f:82:6d:02:9e:90:b2:d7:f2:00: 45:ed:86:38:db:18:cf:1c:67:a7:9d:5a:e2:9d:05: 0d:59:f5:7e:22:fb:0a:00:f6:2e:63:72:08:5a:d0: f7:80:21:ed:92:fb:e0:79:1d:60:1c:50:d0:9f:ed: 6b:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:AB:53:26:17:1D:57:EF:35:0A:10:B7:19:BA:35:01:FE:00:E9:FB X509v3 Authority Key Identifier: keyid:A5:A6:AC:38:EE:68:C3:64:CF:79:18:8F:06:42:7E:9C:76:6D:4C:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/paasOO5ow2TPeRiPBkJ-nHZtTBo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/paasOO5ow2TPeRiPBkJ-nHZtTBo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/jqtTJhcdV-81ChC3Gbo1Af4A6fs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.51.90.0/23 Signature Algorithm: sha256WithRSAEncryption 61:05:5b:d5:83:5f:4e:7e:b7:0b:dc:00:6a:c7:63:85:ad:45: 34:f8:b8:4e:d9:8d:61:4f:5c:fe:88:82:db:92:7b:59:6b:bf: cf:3f:86:60:bd:89:84:07:14:dc:b5:7c:58:c1:34:63:3d:6a: 3b:7f:c2:dd:33:0b:04:55:96:1b:b0:26:0c:80:46:8d:af:67: 9b:de:dc:3a:9b:03:6b:7c:09:80:41:a6:e9:b9:fd:66:60:62: e3:a0:55:c5:4f:e4:17:71:e2:c1:ca:d1:7a:3a:ba:9f:48:89: 64:2a:0c:d0:c8:3e:ec:9b:f1:e1:1c:bd:ba:2c:ad:80:73:bd: e8:b6:03:c2:02:94:14:18:f1:fc:54:f9:12:14:7d:70:9f:1b: 4d:50:65:02:7a:75:46:05:50:42:7e:fb:d3:9f:29:0d:46:3f: d9:61:0f:1c:8e:90:29:ec:df:89:ce:b4:6e:ab:5d:a7:8a:d5: aa:1f:1d:8c:de:d6:d6:49:97:97:ab:0e:8e:ce:1b:c1:40:c5: 0f:6c:24:63:f8:75:aa:17:73:58:e1:88:9c:5c:04:9b:9a:2d: d4:3c:04:78:f8:7b:5c:5b:56:98:a7:85:2b:7f:94:1d:cb:4d: 7e:e2:f7:b2:e1:f8:f9:ff:53:be:12:d4:31:14:b9:e0:ee:88: 3a:aa:a4:57 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICAxgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTVB NkFDMzhFRTY4QzM2NENGNzkxODhGMDY0MjdFOUM3NjZENEMxQTAeFw0yNTA4MjIw OTAwNDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDhFQUI1MzI2MTcxRDU3 RUYzNTBBMTBCNzE5QkEzNTAxRkUwMEU5RkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpskHVihbNolsYYGH186kOME6olsiLYxRz898K+kef0KPVSma6 svvFRZOsbfS8DCi1PJhL38IaToasIbZcqSRG5POVpvedgmtjGDqAjf3NO5Hoe2Sj XbOir/UhTwsb5qv/0tsw9sxrJ97OcoBzN8JL4OX1rvVh3rWnEDqsFbVAn/q+9tEB xyUUpNr2VRlQU2W14j5UydUyogJh4R+Pm9IEX6cDW+TscI+Unjg12c0Gx4+XTBIm lwGrQ77eCa+BwbnP01dBI1XwD4JtAp6QstfyAEXthjjbGM8cZ6edWuKdBQ1Z9X4i +woA9i5jcgha0PeAIe2S++B5HWAcUNCf7WtBAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUjqtTJhcdV+81ChC3Gbo1Af4A6fswHwYDVR0jBBgwFoAUpaasOO5ow2TPeRiP BkJ+nHZtTBowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQlJJQ0tT SU5DL3BhYXNPTzVvdzJUUGVSaVBCa0otbkhadFRCby5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvcGFhc09PNW93MlRQZVJpUEJrSi1uSFp0VEJvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQlJJQ0tTSU5DL2pxdFRKaGNkVi04 MUNoQzNHYm8xQWY0QTZmcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFnM1owDQYJKoZIhvcNAQELBQADggEBAGEFW9WDX05+twvcAGrHY4WtRTT4 uE7ZjWFPXP6IgtuSe1lrv88/hmC9iYQHFNy1fFjBNGM9ajt/wt0zCwRVlhuwJgyA Ro2vZ5ve3DqbA2t8CYBBpum5/WZgYuOgVcVP5Bdx4sHK0Xo6up9IiWQqDNDIPuyb 8eEcvbosrYBzvei2A8IClBQY8fxU+RIUfXCfG01QZQJ6dUYFUEJ++9OfKQ1GP9lh DxyOkCns34nOtG6rXaeK1aofHYze1tZJl5erDo7OG8FAxQ9sJGP4daoXc1jhiJxc BJuaLdQ8BHj4e1xbVpinhSt/lB3LTX7i97Lh+Pn/U74S1DEUueDuiDqqpFc= -----END CERTIFICATE-----Generated at Sun Aug 24 07:17:32 2025 by rpki-client