$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHANGSHEN/2LN1Ar_mZRodONndRLyzl4EIBsk.roa File: 2LN1Ar_mZRodONndRLyzl4EIBsk.roa (raw, json) Hash identifier: pJcHZUVe0hzY5U3yqEymylT8isy7i++H5W0CLCN6pKg= Subject key identifier: D8:B3:75:02:BF:E6:65:1A:1D:38:D9:DD:44:BC:B3:97:81:08:06:C9 Certificate issuer: /CN=6016EF41F321C9AA6C1E13D115B5B60A3029C8E5 Certificate serial: 026A Authority key identifier: 60:16:EF:41:F3:21:C9:AA:6C:1E:13:D1:15:B5:B6:0A:30:29:C8:E5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YBbvQfMhyapsHhPRFbW2CjApyOU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHANGSHEN/2LN1Ar_mZRodONndRLyzl4EIBsk.roa Signing time: Fri 22 Aug 2025 08:44:00 +0000 ROA not before: Fri 22 Aug 2025 08:44:00 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 200213 IP address blocks: 103.69.80.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHANGSHEN/YBbvQfMhyapsHhPRFbW2CjApyOU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHANGSHEN/YBbvQfMhyapsHhPRFbW2CjApyOU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/YBbvQfMhyapsHhPRFbW2CjApyOU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 618 (0x26a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6016EF41F321C9AA6C1E13D115B5B60A3029C8E5 Validity Not Before: Aug 22 08:44:00 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=D8B37502BFE6651A1D38D9DD44BCB397810806C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:19:37:d9:89:39:8d:0f:f0:0c:ac:c6:f4:42: 49:cd:e7:e2:91:c9:3e:2c:ba:b6:40:37:3c:ce:64: 45:d6:14:ee:8a:00:37:51:4f:71:25:4a:4d:c7:45: 79:c5:70:2a:ba:ae:27:9e:7b:8c:c0:84:d2:da:32: 71:aa:d4:62:6b:6e:99:3b:c5:86:3c:cc:a8:f4:b9: 04:05:f2:65:a9:02:59:10:70:d6:59:04:7e:ff:58: 1d:44:8f:57:34:7e:66:7c:cc:96:ab:3c:dd:40:89: 0e:33:0d:b7:1d:fd:3a:c4:a9:bd:aa:32:62:67:36: b6:68:53:fd:bb:b5:86:c6:dd:e4:6b:59:f0:2c:bc: 43:53:93:50:2d:d6:42:ea:6f:ca:58:09:fe:e1:73: ef:d9:72:af:54:c1:ed:b8:f7:32:3b:9b:a6:07:a6: 6a:8c:ad:a2:35:62:13:8d:d1:9d:8f:b5:a3:a9:d1: 73:49:e7:a1:60:65:19:4a:27:00:fc:da:f0:60:35: e1:32:b4:a9:85:ca:ed:bb:21:e0:aa:e7:48:43:84: 4a:bc:75:64:75:49:f5:c2:cc:4d:20:ac:41:d7:c5: 73:9a:1d:52:dc:e6:be:4c:0d:33:90:83:80:63:9b: 60:fb:ee:30:41:ce:f3:d5:4e:d5:da:c1:34:62:97: 46:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:B3:75:02:BF:E6:65:1A:1D:38:D9:DD:44:BC:B3:97:81:08:06:C9 X509v3 Authority Key Identifier: keyid:60:16:EF:41:F3:21:C9:AA:6C:1E:13:D1:15:B5:B6:0A:30:29:C8:E5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHANGSHEN/YBbvQfMhyapsHhPRFbW2CjApyOU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YBbvQfMhyapsHhPRFbW2CjApyOU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHANGSHEN/2LN1Ar_mZRodONndRLyzl4EIBsk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.69.80.0/23 Signature Algorithm: sha256WithRSAEncryption 75:b8:51:c2:26:02:11:ab:42:d8:2e:3e:58:8a:02:5e:78:da: d4:6e:82:11:80:40:17:0b:96:5b:44:5a:40:71:5a:14:0a:83: f6:9c:8d:2d:ee:cd:b0:54:14:61:e3:15:96:fe:19:31:de:8e: f0:01:35:35:9f:b3:ec:07:ae:af:50:4c:de:e0:65:e4:1e:30: 76:d0:04:bc:c6:e0:aa:7c:17:1a:1a:af:be:0a:fa:75:e4:5c: 31:16:a7:7e:09:51:5f:bd:a5:21:53:88:e8:60:da:82:6c:e2: 19:3e:90:34:f4:32:28:cc:f3:0a:20:ee:ef:56:a3:7c:ea:b1: 8d:3c:d1:1a:31:1f:85:0f:45:a4:99:85:70:33:1f:ed:5b:81: 0d:37:33:74:36:51:e6:26:ed:07:91:a8:da:d5:00:78:c9:59: 70:31:87:c0:44:5d:f8:11:33:5c:21:8f:99:24:0a:45:a0:b1: 2b:05:e9:82:88:a0:06:ba:d8:d8:01:e5:3c:ce:e1:dd:31:81: 19:76:75:3a:e0:d4:88:b4:61:7f:90:11:b3:6d:c2:f0:12:6a: 55:c2:a0:44:6a:ca:04:3c:d4:dc:28:94:ac:4c:1a:37:ef:de: 26:32:38:4d:02:2e:f9:a3:c7:c0:2b:d5:0d:a0:77:b3:7d:5b: cf:e3:cd:74 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICAmowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjAx NkVGNDFGMzIxQzlBQTZDMUUxM0QxMTVCNUI2MEEzMDI5QzhFNTAeFw0yNTA4MjIw ODQ0MDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEQ4QjM3NTAyQkZFNjY1 MUExRDM4RDlERDQ0QkNCMzk3ODEwODA2QzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0GTfZiTmND/AMrMb0QknN5+KRyT4surZANzzOZEXWFO6KADdR T3ElSk3HRXnFcCq6rieee4zAhNLaMnGq1GJrbpk7xYY8zKj0uQQF8mWpAlkQcNZZ BH7/WB1Ej1c0fmZ8zJarPN1AiQ4zDbcd/TrEqb2qMmJnNrZoU/27tYbG3eRrWfAs vENTk1At1kLqb8pYCf7hc+/Zcq9Uwe249zI7m6YHpmqMraI1YhON0Z2PtaOp0XNJ 56FgZRlKJwD82vBgNeEytKmFyu27IeCq50hDhEq8dWR1SfXCzE0grEHXxXOaHVLc 5r5MDTOQg4Bjm2D77jBBzvPVTtXawTRil0ZRAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQU2LN1Ar/mZRodONndRLyzl4EIBskwHwYDVR0jBBgwFoAUYBbvQfMhyapsHhPR FbW2CjApyOUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hBTkdT SEVOL1lCYnZRZk1oeWFwc0hoUFJGYlcyQ2pBcHlPVS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvWUJidlFmTWh5YXBzSGhQUkZiVzJDakFweU9VLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hBTkdTSEVOLzJMTjFBcl9tWlJv ZE9ObmRSTHl6bDRFSUJzay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFnRVAwDQYJKoZIhvcNAQELBQADggEBAHW4UcImAhGrQtguPliKAl542tRu ghGAQBcLlltEWkBxWhQKg/acjS3uzbBUFGHjFZb+GTHejvABNTWfs+wHrq9QTN7g ZeQeMHbQBLzG4Kp8Fxoar74K+nXkXDEWp34JUV+9pSFTiOhg2oJs4hk+kDT0MijM 8wog7u9Wo3zqsY080RoxH4UPRaSZhXAzH+1bgQ03M3Q2UeYm7QeRqNrVAHjJWXAx h8BEXfgRM1whj5kkCkWgsSsF6YKIoAa62NgB5TzO4d0xgRl2dTrg1Ii0YX+QEbNt wvASalXCoERqygQ81NwolKxMGjfv3iYyOE0CLvmjx8Ar1Q2gd7N9W8/jzXQ= -----END CERTIFICATE-----Generated at Sun Aug 24 07:17:34 2025 by rpki-client