$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIAOCHIAO/5HDQAMklDeueQTcmy3OyS-y3Ap0.roa File: 5HDQAMklDeueQTcmy3OyS-y3Ap0.roa (raw, json) Hash identifier: oi9x9zW2CMBMfkn3Epm3L4Mkd7ng9Dj4vtIZoiSP230= Subject key identifier: E4:70:D0:00:C9:25:0D:EB:9E:41:37:26:CB:73:B2:4B:EC:B7:02:9D Certificate issuer: /CN=8A3FD89CE70A14F13ED0A86459224D007DD0A148 Certificate serial: 098D Authority key identifier: 8A:3F:D8:9C:E7:0A:14:F1:3E:D0:A8:64:59:22:4D:00:7D:D0:A1:48 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ij_YnOcKFPE-0KhkWSJNAH3QoUg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIAOCHIAO/5HDQAMklDeueQTcmy3OyS-y3Ap0.roa Signing time: Fri 22 Aug 2025 08:56:14 +0000 ROA not before: Fri 22 Aug 2025 08:56:14 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 7483 IP address blocks: 103.148.146.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIAOCHIAO/ij_YnOcKFPE-0KhkWSJNAH3QoUg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIAOCHIAO/ij_YnOcKFPE-0KhkWSJNAH3QoUg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ij_YnOcKFPE-0KhkWSJNAH3QoUg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2445 (0x98d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8A3FD89CE70A14F13ED0A86459224D007DD0A148 Validity Not Before: Aug 22 08:56:14 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E470D000C9250DEB9E413726CB73B24BECB7029D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:23:f5:a9:7d:00:85:59:33:6a:91:28:78:8b: b8:11:a5:e4:de:57:5b:c4:4e:53:4a:20:b8:12:3d: b2:a9:7a:7c:3c:72:8d:0b:e4:e0:61:16:47:dc:a9: 86:1c:4b:d0:95:bb:12:d4:23:cd:26:8d:d4:8a:a3: 28:61:07:e8:8c:c0:1a:3f:fa:39:31:11:73:fa:8f: d8:b2:6b:ad:58:3f:15:c4:09:95:68:5f:6a:e0:e4: c7:c7:e2:ce:64:b9:56:6b:4b:5b:cc:3a:5d:35:4f: 4e:85:7f:6c:75:be:8a:bd:5a:dc:27:48:8a:db:95: 05:da:c1:34:a6:0d:81:d7:ae:2a:60:59:c9:b8:42: a6:96:42:71:cc:26:b6:9e:5d:cb:e6:16:74:c8:fe: 3c:1f:90:fb:7c:18:f2:bc:39:77:cc:57:1c:db:fd: dc:ca:f4:62:6b:f8:cd:19:f7:d8:da:09:aa:bb:a8: 67:75:a4:be:bd:af:42:a9:5b:34:1c:b6:b2:99:8a: 97:7a:15:08:23:1e:7a:55:48:a7:3d:0e:c1:13:c7: ee:6a:ee:01:67:e6:ec:2f:3b:8e:44:75:35:9c:30: 65:b3:75:96:62:98:be:e1:ba:cf:3e:3e:9c:ee:2e: da:14:0b:a5:c1:2b:a8:98:35:f0:23:39:30:e9:3a: 79:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:70:D0:00:C9:25:0D:EB:9E:41:37:26:CB:73:B2:4B:EC:B7:02:9D X509v3 Authority Key Identifier: keyid:8A:3F:D8:9C:E7:0A:14:F1:3E:D0:A8:64:59:22:4D:00:7D:D0:A1:48 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIAOCHIAO/ij_YnOcKFPE-0KhkWSJNAH3QoUg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ij_YnOcKFPE-0KhkWSJNAH3QoUg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIAOCHIAO/5HDQAMklDeueQTcmy3OyS-y3Ap0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.148.146.0/23 Signature Algorithm: sha256WithRSAEncryption 96:03:c2:1c:92:5e:c6:f2:6f:b7:45:5f:46:2b:45:90:58:b5: 65:b8:1e:b2:29:5a:85:42:c8:d3:81:54:c6:0b:ce:f5:99:c8: 4e:1a:4b:21:6d:8e:38:ca:a5:57:42:0b:96:62:92:73:b2:79: 9b:3f:d1:5b:62:97:a0:dc:29:5b:bc:69:2d:3f:dd:4d:41:68: 1b:94:2b:eb:11:c8:1f:57:4c:8f:e7:09:9a:04:35:0e:9b:80: 14:0b:c0:69:9d:90:69:5c:0b:96:f6:77:9f:09:ed:24:90:a2: 5b:07:1a:a3:77:77:8e:6d:c5:4c:ab:ef:e0:cc:f5:9a:2f:41: 27:71:17:a0:b1:64:dd:56:06:84:14:70:50:9f:d5:6f:3e:87: 89:e1:ea:99:ba:f1:25:a9:91:e5:dd:e3:a9:fc:c9:bb:d1:46: c0:76:66:ab:30:13:e2:8f:51:da:09:04:da:4f:c6:f6:7b:5c: 71:d9:d6:f8:fb:a9:0e:4c:25:97:83:bd:41:02:59:65:1e:a8: 30:1c:c1:aa:5a:e1:33:ac:9d:cf:08:73:e4:39:d0:de:da:a9: 07:ea:76:85:23:6f:2c:ff:58:65:5c:73:a4:dd:4c:0d:56:44: e8:4f:46:c2:44:e8:90:68:7a:e1:40:71:0c:ed:70:38:7c:8d: 34:ed:86:44 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICCY0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEEz RkQ4OUNFNzBBMTRGMTNFRDBBODY0NTkyMjREMDA3REQwQTE0ODAeFw0yNTA4MjIw ODU2MTRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEU0NzBEMDAwQzkyNTBE RUI5RTQxMzcyNkNCNzNCMjRCRUNCNzAyOUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8I/WpfQCFWTNqkSh4i7gRpeTeV1vETlNKILgSPbKpenw8co0L 5OBhFkfcqYYcS9CVuxLUI80mjdSKoyhhB+iMwBo/+jkxEXP6j9iya61YPxXECZVo X2rg5MfH4s5kuVZrS1vMOl01T06Ff2x1voq9WtwnSIrblQXawTSmDYHXripgWcm4 QqaWQnHMJraeXcvmFnTI/jwfkPt8GPK8OXfMVxzb/dzK9GJr+M0Z99jaCaq7qGd1 pL69r0KpWzQctrKZipd6FQgjHnpVSKc9DsETx+5q7gFn5uwvO45EdTWcMGWzdZZi mL7hus8+PpzuLtoUC6XBK6iYNfAjOTDpOnnhAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQU5HDQAMklDeueQTcmy3OyS+y3Ap0wHwYDVR0jBBgwFoAUij/YnOcKFPE+0Khk WSJNAH3QoUgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJQU9D SElBTy9pal9Zbk9jS0ZQRS0wS2hrV1NKTkFIM1FvVWcuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL2lqX1luT2NLRlBFLTBLaGtXU0pOQUgzUW9VZy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NISUFPQ0hJQU8vNUhEUUFNa2xE ZXVlUVRjbXkzT3lTLXkzQXAwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAWeUkjANBgkqhkiG9w0BAQsFAAOCAQEAlgPCHJJexvJvt0VfRitFkFi1 ZbgesilahULI04FUxgvO9ZnIThpLIW2OOMqlV0ILlmKSc7J5mz/RW2KXoNwpW7xp LT/dTUFoG5Qr6xHIH1dMj+cJmgQ1DpuAFAvAaZ2QaVwLlvZ3nwntJJCiWwcao3d3 jm3FTKvv4Mz1mi9BJ3EXoLFk3VYGhBRwUJ/Vbz6HieHqmbrxJamR5d3jqfzJu9FG wHZmqzAT4o9R2gkE2k/G9ntccdnW+PupDkwll4O9QQJZZR6oMBzBqlrhM6ydzwhz 5DnQ3tqpB+p2hSNvLP9YZVxzpN1MDVZE6E9GwkTokGh64UBxDO1wOHyNNO2GRA== -----END CERTIFICATE-----Generated at Sun Aug 24 06:49:41 2025 by rpki-client