$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CENTROID/DbTR_42PxRdDjcfvOR5JRwqUvhY.roa File: DbTR_42PxRdDjcfvOR5JRwqUvhY.roa (raw, json) Hash identifier: jza32B/YvCCfpjBcKH45DbMdz+IvlEGkrRwOsSZcIkQ= Subject key identifier: 0D:B4:D1:FF:8D:8F:C5:17:43:8D:C7:EF:39:1E:49:47:0A:94:BE:16 Certificate issuer: /CN=795A91ED40AAA15B9ABCA21C205B36EC74949FC8 Certificate serial: 0D4E Authority key identifier: 79:5A:91:ED:40:AA:A1:5B:9A:BC:A2:1C:20:5B:36:EC:74:94:9F:C8 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/eVqR7UCqoVuavKIcIFs27HSUn8g.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/DbTR_42PxRdDjcfvOR5JRwqUvhY.roa Signing time: Fri 22 Aug 2025 09:04:01 +0000 ROA not before: Fri 22 Aug 2025 09:04:01 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 135293 IP address blocks: 103.104.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/eVqR7UCqoVuavKIcIFs27HSUn8g.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/eVqR7UCqoVuavKIcIFs27HSUn8g.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/eVqR7UCqoVuavKIcIFs27HSUn8g.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3406 (0xd4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=795A91ED40AAA15B9ABCA21C205B36EC74949FC8 Validity Not Before: Aug 22 09:04:01 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=0DB4D1FF8D8FC517438DC7EF391E49470A94BE16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c7:1c:38:2e:0b:26:27:57:54:09:6f:fb:f2: 40:b2:46:f2:a5:70:49:4f:14:f3:9e:58:df:ce:17: 5d:c4:36:c1:69:bd:9c:11:07:ee:af:06:89:db:28: 92:a3:88:1c:5c:67:62:ec:3b:3b:83:9b:88:2e:d8: f7:e3:db:0e:7e:c8:1e:ef:e2:e5:9d:90:a7:d5:e6: 4c:56:16:fd:05:ea:73:49:9f:6d:98:34:56:73:80: 56:19:2b:35:f0:b8:90:b6:75:08:e9:78:b7:fe:ae: 48:fe:e6:b2:19:d5:04:e0:d6:84:7f:fa:73:f6:90: 6b:b8:13:35:af:a4:07:23:14:4d:b2:80:7c:92:f0: 2e:92:c7:c7:6e:08:ca:f0:53:95:68:9d:1d:0c:e5: e3:f7:2e:fc:01:b2:73:7c:0a:61:80:17:84:19:f9: 32:58:e5:9b:b0:e7:df:dc:58:5c:0b:09:a4:4d:5f: be:0a:1a:92:cc:70:4f:6f:ac:39:ed:5f:ef:a9:8f: 98:79:48:16:0f:a7:32:0c:6e:20:13:80:2b:38:45: 2c:24:07:e2:bf:9c:c1:c8:c7:86:b3:e3:79:1d:86: 69:5b:c9:d2:10:4d:d6:83:a7:d3:0b:bb:27:31:1d: da:9e:42:26:e2:b3:37:38:fb:0d:27:7f:c3:73:8d: b6:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:B4:D1:FF:8D:8F:C5:17:43:8D:C7:EF:39:1E:49:47:0A:94:BE:16 X509v3 Authority Key Identifier: keyid:79:5A:91:ED:40:AA:A1:5B:9A:BC:A2:1C:20:5B:36:EC:74:94:9F:C8 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/eVqR7UCqoVuavKIcIFs27HSUn8g.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/eVqR7UCqoVuavKIcIFs27HSUn8g.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/DbTR_42PxRdDjcfvOR5JRwqUvhY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.104.150.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:2e:68:e5:55:b7:4b:81:03:56:e1:17:62:90:2c:6e:29:e7: ea:b7:2b:fe:82:01:60:52:15:99:4c:40:69:e5:a9:a1:3d:c5: 85:7a:f9:0e:58:08:bd:01:ab:51:ea:4f:15:a4:c3:a1:8c:bc: b6:73:29:23:0c:a5:12:21:d8:2d:5a:4a:d6:03:5e:b8:42:1f: c2:8f:e8:13:d2:ca:5f:7f:61:c9:17:3d:60:ad:c8:02:b7:7c: 2d:1e:90:8d:63:96:b9:ec:b5:cf:8b:22:c5:8f:dc:a8:91:4f: ac:4a:f4:f3:ac:80:2e:83:fc:c4:1e:49:94:9b:20:bd:8c:58: 76:f1:12:74:0a:05:bd:e5:a9:ca:9b:02:db:ee:c3:c7:07:44: c8:be:fc:0f:e6:02:5a:90:3a:4f:08:68:a8:d1:70:e3:02:aa: 97:ae:f0:0c:b4:91:4d:ce:83:f2:7d:8c:3d:fa:75:26:04:56: 78:af:d6:f5:a8:86:da:b7:e7:93:da:44:45:e5:e3:1a:ea:47: e3:b3:5a:02:85:93:cf:84:3a:79:44:7e:7c:d2:59:3c:df:c8: cf:8f:37:22:fd:2b:b8:3d:c3:ba:71:f0:bc:63:ae:19:76:5e: b6:2e:2e:d6:f1:ca:9d:43:6c:31:06:07:47:35:f3:1f:34:ba: 12:53:49:46 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDU4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzk1 QTkxRUQ0MEFBQTE1QjlBQkNBMjFDMjA1QjM2RUM3NDk0OUZDODAeFw0yNTA4MjIw OTA0MDFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDBEQjREMUZGOEQ4RkM1 MTc0MzhEQzdFRjM5MUU0OTQ3MEE5NEJFMTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyxxw4LgsmJ1dUCW/78kCyRvKlcElPFPOeWN/OF13ENsFpvZwR B+6vBonbKJKjiBxcZ2LsOzuDm4gu2Pfj2w5+yB7v4uWdkKfV5kxWFv0F6nNJn22Y NFZzgFYZKzXwuJC2dQjpeLf+rkj+5rIZ1QTg1oR/+nP2kGu4EzWvpAcjFE2ygHyS 8C6Sx8duCMrwU5VonR0M5eP3LvwBsnN8CmGAF4QZ+TJY5Zuw59/cWFwLCaRNX74K GpLMcE9vrDntX++pj5h5SBYPpzIMbiATgCs4RSwkB+K/nMHIx4az43kdhmlbydIQ TdaDp9MLuycxHdqeQibiszc4+w0nf8NzjbZDAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUDbTR/42PxRdDjcfvOR5JRwqUvhYwHwYDVR0jBBgwFoAUeVqR7UCqoVuavKIc IFs27HSUn8gwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0VOVFJP SUQvZVZxUjdVQ3FvVnVhdktJY0lGczI3SFNVbjhnLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9lVnFSN1VDcW9WdWF2S0ljSUZzMjdIU1VuOGcuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DRU5UUk9JRC9EYlRSXzQyUHhSZERq Y2Z2T1I1SlJ3cVV2aFkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZ2iWMA0GCSqGSIb3DQEBCwUAA4IBAQAbLmjlVbdLgQNW4RdikCxuKefqtyv+ ggFgUhWZTEBp5amhPcWFevkOWAi9AatR6k8VpMOhjLy2cykjDKUSIdgtWkrWA164 Qh/Cj+gT0spff2HJFz1grcgCt3wtHpCNY5a57LXPiyLFj9yokU+sSvTzrIAug/zE HkmUmyC9jFh28RJ0CgW95anKmwLb7sPHB0TIvvwP5gJakDpPCGio0XDjAqqXrvAM tJFNzoPyfYw9+nUmBFZ4r9b1qIbat+eT2kRF5eMa6kfjs1oChZPPhDp5RH580lk8 38jPjzci/Su4PcO6cfC8Y64Zdl62Li7W8cqdQ2wxBgdHNfMfNLoSU0lG -----END CERTIFICATE-----Generated at Sun Aug 24 06:49:25 2025 by rpki-client