$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/xxdB5TOoAzsa1oSkjoxT3mZ7aWs.roa File: xxdB5TOoAzsa1oSkjoxT3mZ7aWs.roa (raw, json) Hash identifier: UPiW5YYI1M/2XeF4T9kswVLihQKqmykSfxSuMCGaeFc= Subject key identifier: C7:17:41:E5:33:A8:03:3B:1A:D6:84:A4:8E:8C:53:DE:66:7B:69:6B Certificate issuer: /CN=A5A6AC38EE68C364CF79188F06427E9C766D4C1A Certificate serial: 0319 Authority key identifier: A5:A6:AC:38:EE:68:C3:64:CF:79:18:8F:06:42:7E:9C:76:6D:4C:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/paasOO5ow2TPeRiPBkJ-nHZtTBo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/xxdB5TOoAzsa1oSkjoxT3mZ7aWs.roa Signing time: Fri 22 Aug 2025 09:00:47 +0000 ROA not before: Fri 22 Aug 2025 09:00:47 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 134823 IP address blocks: 103.51.90.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/paasOO5ow2TPeRiPBkJ-nHZtTBo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/paasOO5ow2TPeRiPBkJ-nHZtTBo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/paasOO5ow2TPeRiPBkJ-nHZtTBo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 793 (0x319) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A5A6AC38EE68C364CF79188F06427E9C766D4C1A Validity Not Before: Aug 22 09:00:47 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C71741E533A8033B1AD684A48E8C53DE667B696B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:51:66:9e:77:f7:7b:d5:42:93:74:8a:0c:a8: 78:50:c3:68:5d:ac:41:39:cd:33:aa:58:02:8e:e9: c4:3c:52:80:5d:11:f2:e1:c0:97:e6:ca:86:81:fe: 66:9a:9f:fc:c5:3c:47:47:d0:42:45:9d:fd:c9:19: 79:a3:0a:a3:06:70:7e:d1:a1:06:4d:fb:ff:19:d2: 0d:8e:6a:5b:33:40:56:7f:42:5b:f9:81:32:cc:83: 04:a9:f0:4a:43:de:71:3e:da:92:3f:03:f3:24:c4: 59:be:c7:79:82:1f:84:43:19:81:4d:ad:6a:25:64: 87:0f:99:6d:73:59:c6:15:9a:00:a1:d0:61:22:10: f3:7c:10:27:71:c1:67:d2:5a:fa:17:5f:2d:3d:52: 46:40:30:98:c3:9b:c2:36:a5:0c:5e:9c:06:0c:8f: a0:0d:ae:fb:ac:ea:89:2b:58:29:76:fb:25:7b:ed: 8f:c8:0c:dc:fa:c0:0e:3e:ae:37:0c:e2:9f:33:77: 77:d8:e0:bb:18:02:a5:f9:b7:f7:db:b5:cd:71:1a: e8:17:19:db:f6:18:22:e6:e1:05:da:8d:ff:a3:c0: b1:40:cf:7b:61:ad:5f:73:5e:2f:95:4a:e8:77:7f: 43:d7:b8:de:c0:bb:1d:89:47:1d:4e:f5:16:b9:1d: f5:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:17:41:E5:33:A8:03:3B:1A:D6:84:A4:8E:8C:53:DE:66:7B:69:6B X509v3 Authority Key Identifier: keyid:A5:A6:AC:38:EE:68:C3:64:CF:79:18:8F:06:42:7E:9C:76:6D:4C:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/paasOO5ow2TPeRiPBkJ-nHZtTBo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/paasOO5ow2TPeRiPBkJ-nHZtTBo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/xxdB5TOoAzsa1oSkjoxT3mZ7aWs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.51.90.0/23 Signature Algorithm: sha256WithRSAEncryption 0e:27:61:f5:31:8d:38:97:8a:e2:6a:50:1d:75:9b:5a:21:74: be:5e:0a:60:9a:b9:71:42:53:e6:1a:24:84:4b:de:b3:fd:79: 5e:c9:ce:93:e9:1c:20:d3:a1:ce:32:63:11:4f:bd:58:fe:a0: c5:9f:f8:ee:0c:6b:58:93:de:df:cb:70:0a:84:28:84:d8:e0: e6:be:5a:ae:7c:97:91:ea:ae:de:7e:93:71:6c:32:b1:90:0c: 30:3f:4d:43:f5:ac:e9:37:79:d7:d5:36:84:75:bc:0a:85:78: 4f:a7:b0:fb:d2:0e:ec:e3:33:a1:f3:54:d6:18:16:c6:fb:fe: 6f:51:1f:a9:5e:82:47:38:ff:f9:68:63:01:5b:52:37:3c:0d: b3:ea:3e:0d:08:52:aa:14:7c:c3:0b:a0:20:b0:51:5e:a4:c9: 50:d0:8b:ed:d9:19:90:70:7c:21:02:ec:65:2d:9a:cc:d4:52: 82:85:99:6f:32:0e:50:db:6e:31:fd:17:20:33:27:ee:7f:db: 3c:91:9d:a3:4f:4e:98:22:cf:01:67:31:1c:d7:52:e6:a3:56: 5a:1c:79:d0:48:a1:53:39:44:f4:0a:70:b2:c2:25:31:0d:44: 69:8a:9f:4e:a4:98:a1:7e:1d:25:cc:43:a3:03:bf:85:e8:cc: 9d:e5:72:5b -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICAxkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTVB NkFDMzhFRTY4QzM2NENGNzkxODhGMDY0MjdFOUM3NjZENEMxQTAeFw0yNTA4MjIw OTAwNDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEM3MTc0MUU1MzNBODAz M0IxQUQ2ODRBNDhFOEM1M0RFNjY3QjY5NkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDmUWaed/d71UKTdIoMqHhQw2hdrEE5zTOqWAKO6cQ8UoBdEfLh wJfmyoaB/maan/zFPEdH0EJFnf3JGXmjCqMGcH7RoQZN+/8Z0g2OalszQFZ/Qlv5 gTLMgwSp8EpD3nE+2pI/A/MkxFm+x3mCH4RDGYFNrWolZIcPmW1zWcYVmgCh0GEi EPN8ECdxwWfSWvoXXy09UkZAMJjDm8I2pQxenAYMj6ANrvus6okrWCl2+yV77Y/I DNz6wA4+rjcM4p8zd3fY4LsYAqX5t/fbtc1xGugXGdv2GCLm4QXajf+jwLFAz3th rV9zXi+VSuh3f0PXuN7Aux2JRx1O9Ra5HfVfAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUxxdB5TOoAzsa1oSkjoxT3mZ7aWswHwYDVR0jBBgwFoAUpaasOO5ow2TPeRiP BkJ+nHZtTBowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQlJJQ0tT SU5DL3BhYXNPTzVvdzJUUGVSaVBCa0otbkhadFRCby5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvcGFhc09PNW93MlRQZVJpUEJrSi1uSFp0VEJvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQlJJQ0tTSU5DL3h4ZEI1VE9vQXpz YTFvU2tqb3hUM21aN2FXcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFnM1owDQYJKoZIhvcNAQELBQADggEBAA4nYfUxjTiXiuJqUB11m1ohdL5e CmCauXFCU+YaJIRL3rP9eV7JzpPpHCDToc4yYxFPvVj+oMWf+O4Ma1iT3t/LcAqE KITY4Oa+Wq58l5Hqrt5+k3FsMrGQDDA/TUP1rOk3edfVNoR1vAqFeE+nsPvSDuzj M6HzVNYYFsb7/m9RH6legkc4//loYwFbUjc8DbPqPg0IUqoUfMMLoCCwUV6kyVDQ i+3ZGZBwfCEC7GUtmszUUoKFmW8yDlDbbjH9FyAzJ+5/2zyRnaNPTpgizwFnMRzX UuajVlocedBIoVM5RPQKcLLCJTENRGmKn06kmKF+HSXMQ6MDv4XozJ3lcls= -----END CERTIFICATE-----Generated at Sun Aug 24 09:17:39 2025 by rpki-client