$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/huXrceRGrBSPVjOj9wEnvGpVn4s.roa File: huXrceRGrBSPVjOj9wEnvGpVn4s.roa (raw, json) Hash identifier: R7vgxj4brMhELdrPu4col+zCvU5GQFTtVvDoEqEgZZs= Subject key identifier: 86:E5:EB:71:E4:46:AC:14:8F:56:33:A3:F7:01:27:BC:6A:55:9F:8B Certificate issuer: /CN=179C63DB1D6F3AB2FB0EE78E1A897B85BBD2A602 Certificate serial: 03B6 Authority key identifier: 17:9C:63:DB:1D:6F:3A:B2:FB:0E:E7:8E:1A:89:7B:85:BB:D2:A6:02 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/F5xj2x1vOrL7DueOGol7hbvSpgI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/huXrceRGrBSPVjOj9wEnvGpVn4s.roa Signing time: Fri 22 Aug 2025 08:51:40 +0000 ROA not before: Fri 22 Aug 2025 08:51:40 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 63895 IP address blocks: 103.185.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/F5xj2x1vOrL7DueOGol7hbvSpgI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/F5xj2x1vOrL7DueOGol7hbvSpgI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/F5xj2x1vOrL7DueOGol7hbvSpgI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 950 (0x3b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=179C63DB1D6F3AB2FB0EE78E1A897B85BBD2A602 Validity Not Before: Aug 22 08:51:40 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=86E5EB71E446AC148F5633A3F70127BC6A559F8B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:28:92:bc:14:f3:67:dd:64:96:a0:5d:b5:7e: 96:80:c7:41:f5:1f:fa:77:07:26:65:07:04:42:9d: b0:95:47:41:29:58:e7:0d:2e:74:7d:bf:61:d6:86: 37:34:82:5b:b9:e4:24:70:06:c3:68:79:d0:90:8e: 23:86:2b:c0:fc:8b:e5:23:80:4c:59:a9:f0:e4:db: 68:f7:44:3e:c6:5b:a5:e6:cd:b3:72:41:cf:6f:89: df:49:73:4a:f2:ce:3e:c4:24:1d:70:8b:47:65:90: e1:84:36:fd:09:60:3e:dc:58:29:b3:29:f5:9f:24: 95:03:0d:91:8f:40:c2:c3:58:a0:dc:02:2c:6d:57: 98:5a:36:68:32:d3:37:30:58:e4:d8:ed:1a:16:e2: 63:c4:b3:0e:3b:b2:7d:87:f2:8e:5a:b9:d4:61:5a: 70:48:38:34:8a:75:22:56:6a:3f:ae:0e:07:26:51: 27:c9:20:a8:eb:3c:16:6a:37:b5:53:0f:0a:76:ef: 32:07:a6:64:04:0c:54:de:14:3a:3d:f5:d1:3e:27: 93:6e:9d:84:92:46:6c:73:8f:59:69:23:20:81:dd: de:ae:1a:bc:75:70:f6:d3:79:d3:12:7a:1b:83:96: 9f:d6:ec:c2:08:1c:0d:99:8d:6e:a1:a1:16:c7:57: 08:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:E5:EB:71:E4:46:AC:14:8F:56:33:A3:F7:01:27:BC:6A:55:9F:8B X509v3 Authority Key Identifier: keyid:17:9C:63:DB:1D:6F:3A:B2:FB:0E:E7:8E:1A:89:7B:85:BB:D2:A6:02 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/F5xj2x1vOrL7DueOGol7hbvSpgI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/F5xj2x1vOrL7DueOGol7hbvSpgI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/huXrceRGrBSPVjOj9wEnvGpVn4s.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.185.28.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:3a:21:14:b4:19:be:9b:89:57:4b:ea:6b:ae:7f:4d:1f:fe: 90:c9:c2:fe:4d:85:18:62:b9:27:d8:5a:e6:38:c5:97:c7:ff: 6a:9e:55:ba:13:88:e1:62:6e:32:5c:bf:89:28:c4:89:64:c8: 4b:00:a1:b1:8d:cf:b7:2b:83:46:ee:ac:cd:94:35:b3:8d:e6: 9f:f7:5d:9b:52:f5:e5:c4:11:fd:41:c0:1d:40:24:01:f8:97: 84:22:51:d6:2a:fc:8c:9b:2e:fe:1f:ab:a3:05:10:68:a5:1d: 6f:ac:a3:25:7c:4a:77:20:28:be:36:09:17:0e:97:41:4a:c0: dc:79:46:9a:8b:f4:d6:f2:da:33:7c:86:27:06:46:3e:f3:ca: c9:46:88:64:db:f2:60:11:35:2e:7e:0b:26:d5:b6:03:e2:f3: f9:e7:88:c8:45:49:e8:65:b9:ba:31:df:e1:e7:59:0b:95:40: 79:7e:de:f6:6d:8e:c4:e8:9a:54:79:15:95:52:eb:74:dd:e7: 3f:54:2f:d4:2c:83:0f:cf:d2:3a:d2:09:38:3a:57:50:71:84: ed:56:07:1e:86:c1:71:61:5b:85:fc:74:76:0b:36:a6:dc:e7: 08:8a:dd:94:1b:4e:8f:6f:38:7b:9a:96:e1:65:da:59:01:92: f1:59:9b:70 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICA7YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTc5 QzYzREIxRDZGM0FCMkZCMEVFNzhFMUE4OTdCODVCQkQyQTYwMjAeFw0yNTA4MjIw ODUxNDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDg2RTVFQjcxRTQ0NkFD MTQ4RjU2MzNBM0Y3MDEyN0JDNkE1NTlGOEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCZKJK8FPNn3WSWoF21fpaAx0H1H/p3ByZlBwRCnbCVR0EpWOcN LnR9v2HWhjc0glu55CRwBsNoedCQjiOGK8D8i+UjgExZqfDk22j3RD7GW6XmzbNy Qc9vid9Jc0ryzj7EJB1wi0dlkOGENv0JYD7cWCmzKfWfJJUDDZGPQMLDWKDcAixt V5haNmgy0zcwWOTY7RoW4mPEsw47sn2H8o5audRhWnBIODSKdSJWaj+uDgcmUSfJ IKjrPBZqN7VTDwp27zIHpmQEDFTeFDo99dE+J5NunYSSRmxzj1lpIyCB3d6uGrx1 cPbTedMSehuDlp/W7MIIHA2ZjW6hoRbHVwj3AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUhuXrceRGrBSPVjOj9wEnvGpVn4swHwYDVR0jBBgwFoAUF5xj2x1vOrL7DueO Gol7hbvSpgIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hBUk1X QVkvRjV4ajJ4MXZPckw3RHVlT0dvbDdoYnZTcGdJLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9GNXhqMngxdk9yTDdEdWVPR29sN2hidlNwZ0kuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSEFSTVdBWS9odVhyY2VSR3JCU1BW ak9qOXdFbnZHcFZuNHMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZ7kcMA0GCSqGSIb3DQEBCwUAA4IBAQB7OiEUtBm+m4lXS+prrn9NH/6QycL+ TYUYYrkn2FrmOMWXx/9qnlW6E4jhYm4yXL+JKMSJZMhLAKGxjc+3K4NG7qzNlDWz jeaf912bUvXlxBH9QcAdQCQB+JeEIlHWKvyMmy7+H6ujBRBopR1vrKMlfEp3ICi+ NgkXDpdBSsDceUaai/TW8tozfIYnBkY+88rJRohk2/JgETUufgsm1bYD4vP554jI RUnoZbm6Md/h51kLlUB5ft72bY7E6JpUeRWVUut03ec/VC/ULIMPz9I60gk4OldQ cYTtVgcehsFxYVuF/HR2Czam3OcIit2UG06Pbzh7mpbhZdpZAZLxWZtw -----END CERTIFICATE-----Generated at Sun Aug 24 09:39:29 2025 by rpki-client