$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CENTROID/3XoSVMDz01TE478SjBToOT9sJMg.roa File: 3XoSVMDz01TE478SjBToOT9sJMg.roa (raw, json) Hash identifier: umLjv0vAedXYwXPNSjPjAVEqXX0lrRpqX779+0pXGsM= Subject key identifier: DD:7A:12:54:C0:F3:D3:54:C4:E3:BF:12:8C:14:E8:39:3F:6C:24:C8 Certificate issuer: /CN=795A91ED40AAA15B9ABCA21C205B36EC74949FC8 Certificate serial: 0D4D Authority key identifier: 79:5A:91:ED:40:AA:A1:5B:9A:BC:A2:1C:20:5B:36:EC:74:94:9F:C8 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/eVqR7UCqoVuavKIcIFs27HSUn8g.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/3XoSVMDz01TE478SjBToOT9sJMg.roa Signing time: Fri 22 Aug 2025 09:04:01 +0000 ROA not before: Fri 22 Aug 2025 09:04:01 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 135293 IP address blocks: 103.104.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/eVqR7UCqoVuavKIcIFs27HSUn8g.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/eVqR7UCqoVuavKIcIFs27HSUn8g.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/eVqR7UCqoVuavKIcIFs27HSUn8g.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3405 (0xd4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=795A91ED40AAA15B9ABCA21C205B36EC74949FC8 Validity Not Before: Aug 22 09:04:01 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=DD7A1254C0F3D354C4E3BF128C14E8393F6C24C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:5a:d6:f9:2c:30:22:2b:0c:78:2a:99:bd:e8: 30:a2:20:65:98:75:25:81:7d:0b:99:d5:7d:d6:b5: 63:2e:fb:ae:50:7c:35:b6:3a:db:67:89:13:29:3f: 12:88:7e:c4:a0:f6:06:c8:e0:5d:28:5c:f5:a7:ce: cf:d0:b7:0b:22:9b:60:38:27:04:9a:16:28:15:b0: 12:90:c8:88:93:be:8f:de:3a:b8:f2:8c:55:db:b4: 57:5b:ec:9f:37:35:89:75:28:cb:c5:2f:51:54:98: a3:c0:7e:7d:76:37:f9:ba:a0:7a:11:67:bc:4e:72: b0:8b:9f:56:2d:6b:cd:94:87:e9:bc:9c:4e:ff:6e: bf:3e:0f:f5:e6:90:09:42:56:45:77:84:9b:c0:30: de:84:0c:7c:77:34:7c:86:61:01:e9:e4:23:32:27: 34:db:fe:40:3b:2f:9b:05:37:8f:a2:c8:63:84:65: 9c:13:a9:f8:ce:d5:ce:79:a4:26:85:30:ab:1c:79: 26:b2:e1:28:9f:e2:4f:d8:56:df:eb:c6:2a:f2:d0: bf:a9:f5:17:0a:50:5f:65:e0:b4:3b:dd:58:6a:11: 51:45:88:19:14:79:cb:d0:fd:a2:21:bd:85:ce:81: 4d:cc:06:2d:b1:73:a3:83:eb:cb:06:35:1b:83:9a: 39:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:7A:12:54:C0:F3:D3:54:C4:E3:BF:12:8C:14:E8:39:3F:6C:24:C8 X509v3 Authority Key Identifier: keyid:79:5A:91:ED:40:AA:A1:5B:9A:BC:A2:1C:20:5B:36:EC:74:94:9F:C8 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/eVqR7UCqoVuavKIcIFs27HSUn8g.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/eVqR7UCqoVuavKIcIFs27HSUn8g.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/3XoSVMDz01TE478SjBToOT9sJMg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.104.149.0/24 Signature Algorithm: sha256WithRSAEncryption 52:3f:d0:dc:ae:a8:a9:18:98:11:f4:a1:8e:9b:09:77:e1:38: e3:85:68:e9:11:90:97:d5:0a:e4:26:b7:30:30:b8:5c:c7:dc: 74:8b:cc:ce:4b:e4:78:cd:52:2a:c9:12:4c:69:6f:5c:bf:0f: 15:bd:4d:87:bd:2a:4d:64:18:a6:22:ea:cd:6f:d3:09:35:b0: ac:fb:85:1d:35:63:a3:15:9f:5a:be:58:ca:4f:f7:63:6c:3a: 7a:df:54:76:06:4f:50:35:bf:e0:6e:ba:d6:78:2e:af:79:43: 85:de:0e:71:f7:4a:57:86:c4:4f:c0:a9:90:6d:0c:87:fe:d3: 41:97:ba:8b:74:56:18:b2:48:90:c2:34:7e:4a:56:08:e3:1b: 69:fb:91:b9:ad:10:62:00:8e:6c:3f:2b:64:40:4b:f0:3f:17: e5:c7:17:1e:31:ad:fc:c1:42:3c:33:72:b4:b8:78:ed:cd:aa: 94:a8:e5:c6:3f:e8:a0:1a:cf:6e:48:38:d2:03:32:06:f5:97: f6:0e:22:45:14:8b:26:6e:f5:76:84:32:7e:32:4a:5b:7a:5c: 24:68:8f:07:cf:1d:76:fd:56:e7:29:21:a7:8f:5c:5a:65:ce: 1c:0d:bc:28:11:04:2d:98:76:e5:1a:2e:1e:d7:e3:80:f3:cc: b7:03:df:c8 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDU0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzk1 QTkxRUQ0MEFBQTE1QjlBQkNBMjFDMjA1QjM2RUM3NDk0OUZDODAeFw0yNTA4MjIw OTA0MDFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEREN0ExMjU0QzBGM0Qz NTRDNEUzQkYxMjhDMTRFODM5M0Y2QzI0QzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+Wtb5LDAiKwx4Kpm96DCiIGWYdSWBfQuZ1X3WtWMu+65QfDW2 OttniRMpPxKIfsSg9gbI4F0oXPWnzs/Qtwsim2A4JwSaFigVsBKQyIiTvo/eOrjy jFXbtFdb7J83NYl1KMvFL1FUmKPAfn12N/m6oHoRZ7xOcrCLn1Yta82Uh+m8nE7/ br8+D/XmkAlCVkV3hJvAMN6EDHx3NHyGYQHp5CMyJzTb/kA7L5sFN4+iyGOEZZwT qfjO1c55pCaFMKsceSay4Sif4k/YVt/rxiry0L+p9RcKUF9l4LQ73VhqEVFFiBkU ecvQ/aIhvYXOgU3MBi2xc6OD68sGNRuDmjnXAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU3XoSVMDz01TE478SjBToOT9sJMgwHwYDVR0jBBgwFoAUeVqR7UCqoVuavKIc IFs27HSUn8gwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0VOVFJP SUQvZVZxUjdVQ3FvVnVhdktJY0lGczI3SFNVbjhnLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9lVnFSN1VDcW9WdWF2S0ljSUZzMjdIU1VuOGcuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DRU5UUk9JRC8zWG9TVk1EejAxVEU0 NzhTakJUb09UOXNKTWcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZ2iVMA0GCSqGSIb3DQEBCwUAA4IBAQBSP9DcrqipGJgR9KGOmwl34TjjhWjp EZCX1QrkJrcwMLhcx9x0i8zOS+R4zVIqyRJMaW9cvw8VvU2HvSpNZBimIurNb9MJ NbCs+4UdNWOjFZ9avljKT/djbDp631R2Bk9QNb/gbrrWeC6veUOF3g5x90pXhsRP wKmQbQyH/tNBl7qLdFYYskiQwjR+SlYI4xtp+5G5rRBiAI5sPytkQEvwPxflxxce Ma38wUI8M3K0uHjtzaqUqOXGP+igGs9uSDjSAzIG9Zf2DiJFFIsmbvV2hDJ+Mkpb elwkaI8Hzx12/VbnKSGnj1xaZc4cDbwoEQQtmHblGi4e1+OA88y3A9/I -----END CERTIFICATE-----Generated at Sun Aug 24 06:50:28 2025 by rpki-client