$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/9_3VRfl8G6FOG9z_NgMHhu-ADxs.roa File: 9_3VRfl8G6FOG9z_NgMHhu-ADxs.roa (raw, json) Hash identifier: o33TddKFaIrPzIfMzv9bcIhdLcEjrti7GopLvyjQ1AA= Subject key identifier: F7:FD:D5:45:F9:7C:1B:A1:4E:1B:DC:FF:36:03:07:86:EF:80:0F:1B Certificate issuer: /CN=179C63DB1D6F3AB2FB0EE78E1A897B85BBD2A602 Certificate serial: 03B5 Authority key identifier: 17:9C:63:DB:1D:6F:3A:B2:FB:0E:E7:8E:1A:89:7B:85:BB:D2:A6:02 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/F5xj2x1vOrL7DueOGol7hbvSpgI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/9_3VRfl8G6FOG9z_NgMHhu-ADxs.roa Signing time: Fri 22 Aug 2025 08:51:39 +0000 ROA not before: Fri 22 Aug 2025 08:51:39 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 63895 IP address blocks: 103.185.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/F5xj2x1vOrL7DueOGol7hbvSpgI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/F5xj2x1vOrL7DueOGol7hbvSpgI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/F5xj2x1vOrL7DueOGol7hbvSpgI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 949 (0x3b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=179C63DB1D6F3AB2FB0EE78E1A897B85BBD2A602 Validity Not Before: Aug 22 08:51:39 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F7FDD545F97C1BA14E1BDCFF36030786EF800F1B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:3d:67:79:6e:f3:ef:6f:5c:69:23:c4:3d:59: a5:6e:86:55:1e:df:5d:72:17:8f:a4:cf:be:e3:ef: b6:4c:98:52:bd:f4:4a:93:af:c7:ce:a5:f7:c5:69: b5:85:17:30:80:0f:da:7e:d0:72:ce:cc:61:02:66: 29:4d:61:1e:b4:6c:fc:ab:4b:9e:fa:80:68:91:26: 80:d5:aa:5c:86:76:93:a1:22:99:6c:99:99:32:97: 8c:ff:6e:c2:64:63:e3:6b:7a:61:f6:0d:db:77:a9: 97:6f:ed:fa:9a:59:6f:c5:5a:e8:14:1f:ea:3c:a4: 68:74:af:ef:71:ff:1e:41:bf:57:49:4e:1a:fa:b7: 97:57:09:c2:be:c6:16:27:b9:86:cc:d4:87:4d:67: 00:32:4d:6b:c3:1a:48:a5:ac:ce:69:80:04:7a:3f: 91:18:64:e4:c6:96:49:79:e0:3a:c5:e8:f5:a0:df: 5b:43:df:02:4b:37:93:a3:df:ec:1f:f5:c3:91:d6: a6:cd:31:27:f6:12:c7:b3:f3:ba:b6:a6:80:dc:01: 66:7e:2d:73:24:c8:0d:9e:49:b2:8e:e3:ef:ac:57: 7c:9c:cf:97:b9:db:a4:a9:1d:e6:1f:76:1b:02:c9: f2:01:c4:30:4a:f5:b5:1f:f0:31:c9:ad:15:82:20: d2:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:FD:D5:45:F9:7C:1B:A1:4E:1B:DC:FF:36:03:07:86:EF:80:0F:1B X509v3 Authority Key Identifier: keyid:17:9C:63:DB:1D:6F:3A:B2:FB:0E:E7:8E:1A:89:7B:85:BB:D2:A6:02 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/F5xj2x1vOrL7DueOGol7hbvSpgI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/F5xj2x1vOrL7DueOGol7hbvSpgI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/9_3VRfl8G6FOG9z_NgMHhu-ADxs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.185.29.0/24 Signature Algorithm: sha256WithRSAEncryption c5:00:aa:32:b6:64:a9:f8:cc:e4:b3:d7:8d:96:ad:16:bf:3c: 0d:40:a3:16:4d:b7:18:67:aa:3d:4e:92:c5:51:02:f6:94:93: ec:9e:72:bb:09:d3:8d:f1:cb:04:7c:54:0f:0d:12:ad:0e:c1: 4c:1e:54:8a:90:e3:30:2f:16:7a:a9:73:8e:4a:3a:32:c4:c5: f6:2d:39:2a:14:be:f9:5b:70:61:bf:ff:f3:de:71:c1:1a:df: 7f:33:ff:77:89:1f:bd:2c:8a:b9:83:38:e1:b8:23:c5:25:d2: a6:11:39:20:31:71:04:c8:e6:04:55:ff:a3:74:da:0f:2c:bc: 26:27:a5:c5:2c:3a:dc:df:5a:22:68:95:b4:41:77:d0:5a:66: e0:90:d1:b2:b3:3b:de:20:f3:bc:1b:23:a2:1b:dc:42:7a:b2: 82:6c:76:31:33:ff:74:34:e4:0d:40:67:38:ce:ba:3a:c3:92: 15:f0:d0:6a:99:c5:7a:a0:f0:1c:c6:e0:69:0f:1f:54:49:8d: 79:e3:53:87:90:53:b6:ab:7d:82:97:d0:6d:3d:3d:35:fc:77: 24:b5:4c:cc:55:a5:a4:b6:d6:4e:f4:eb:54:99:75:86:0b:22: ca:8c:1a:f4:e9:fb:4c:95:ac:a5:e8:eb:de:51:1c:c8:2f:8c: b5:4f:98:a3 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICA7UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTc5 QzYzREIxRDZGM0FCMkZCMEVFNzhFMUE4OTdCODVCQkQyQTYwMjAeFw0yNTA4MjIw ODUxMzlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEY3RkRENTQ1Rjk3QzFC QTE0RTFCRENGRjM2MDMwNzg2RUY4MDBGMUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6PWd5bvPvb1xpI8Q9WaVuhlUe311yF4+kz77j77ZMmFK99EqT r8fOpffFabWFFzCAD9p+0HLOzGECZilNYR60bPyrS576gGiRJoDVqlyGdpOhIpls mZkyl4z/bsJkY+NremH2Ddt3qZdv7fqaWW/FWugUH+o8pGh0r+9x/x5Bv1dJThr6 t5dXCcK+xhYnuYbM1IdNZwAyTWvDGkilrM5pgAR6P5EYZOTGlkl54DrF6PWg31tD 3wJLN5Oj3+wf9cOR1qbNMSf2Esez87q2poDcAWZ+LXMkyA2eSbKO4++sV3ycz5e5 26SpHeYfdhsCyfIBxDBK9bUf8DHJrRWCINLdAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU9/3VRfl8G6FOG9z/NgMHhu+ADxswHwYDVR0jBBgwFoAUF5xj2x1vOrL7DueO Gol7hbvSpgIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hBUk1X QVkvRjV4ajJ4MXZPckw3RHVlT0dvbDdoYnZTcGdJLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9GNXhqMngxdk9yTDdEdWVPR29sN2hidlNwZ0kuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSEFSTVdBWS85XzNWUmZsOEc2Rk9H OXpfTmdNSGh1LUFEeHMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZ7kdMA0GCSqGSIb3DQEBCwUAA4IBAQDFAKoytmSp+Mzks9eNlq0WvzwNQKMW TbcYZ6o9TpLFUQL2lJPsnnK7CdON8csEfFQPDRKtDsFMHlSKkOMwLxZ6qXOOSjoy xMX2LTkqFL75W3Bhv//z3nHBGt9/M/93iR+9LIq5gzjhuCPFJdKmETkgMXEEyOYE Vf+jdNoPLLwmJ6XFLDrc31oiaJW0QXfQWmbgkNGyszveIPO8GyOiG9xCerKCbHYx M/90NOQNQGc4zro6w5IV8NBqmcV6oPAcxuBpDx9USY1541OHkFO2q32Cl9BtPT01 /HcktUzMVaWkttZO9OtUmXWGCyLKjBr06ftMlayl6OveURzIL4y1T5ij -----END CERTIFICATE-----Generated at Sun Aug 24 11:43:56 2025 by rpki-client