$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/SGLF6BdYcKQblGX3rLa2mwtdpMw.roa File: SGLF6BdYcKQblGX3rLa2mwtdpMw.roa (raw, json) Hash identifier: UmN+XS99A9NwcsXV4t/Ywa+ehJf/2L7mPjGeFjYvg4g= Subject key identifier: 48:62:C5:E8:17:58:70:A4:1B:94:65:F7:AC:B6:B6:9B:0B:5D:A4:CC Certificate issuer: /CN=896AD0B5160979FEAC50C6384CBFC162D403E78D Certificate serial: 0D89 Authority key identifier: 89:6A:D0:B5:16:09:79:FE:AC:50:C6:38:4C:BF:C1:62:D4:03:E7:8D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/iWrQtRYJef6sUMY4TL_BYtQD540.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/SGLF6BdYcKQblGX3rLa2mwtdpMw.roa Signing time: Fri 22 Aug 2025 08:58:11 +0000 ROA not before: Fri 22 Aug 2025 08:58:11 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18042 IP address blocks: 103.123.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/iWrQtRYJef6sUMY4TL_BYtQD540.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/iWrQtRYJef6sUMY4TL_BYtQD540.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/iWrQtRYJef6sUMY4TL_BYtQD540.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3465 (0xd89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=896AD0B5160979FEAC50C6384CBFC162D403E78D Validity Not Before: Aug 22 08:58:11 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=4862C5E8175870A41B9465F7ACB6B69B0B5DA4CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:77:a8:0b:66:7b:54:66:c4:a7:b1:2f:ec:a1: c3:61:8f:6f:e0:86:75:d5:14:78:5d:70:ba:61:88: d2:a2:5a:de:3e:2d:d9:11:52:c5:da:32:4c:e3:88: 49:2f:f9:4e:95:6e:f0:a6:81:08:23:78:76:e3:aa: 7a:62:15:bf:63:03:93:64:45:98:88:04:e9:40:fd: b0:68:80:94:6f:ba:25:0f:9b:fb:8c:7d:56:d2:a4: 91:b0:02:51:27:e3:b7:47:43:ca:2a:d7:49:4a:a0: 5d:d5:5c:7a:a4:66:8c:fd:e4:8f:45:83:6f:2e:2d: c1:0f:b4:e6:aa:f7:86:1d:be:6a:4a:c6:4e:7b:08: 24:0c:38:1f:38:b2:5b:b9:8e:4c:ef:23:29:8f:03: 1e:75:e0:08:9f:f4:e9:31:61:b1:9e:19:66:7e:8c: 97:c7:eb:2d:57:f9:22:f1:aa:97:01:31:e8:7d:a8: 11:a4:43:52:4d:7f:5c:2b:98:5e:be:e7:6b:f5:34: 20:5b:f1:fb:99:d0:16:6b:b5:9f:a7:6d:eb:37:b3: c0:b5:69:6e:cc:f9:ff:1c:8d:ef:87:0c:a7:ca:f8: 21:7a:63:99:e4:c4:c6:86:0d:e8:f2:a0:df:0f:4b: cb:7e:28:ea:e7:a1:15:30:71:1f:c2:12:99:98:c9: 37:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:62:C5:E8:17:58:70:A4:1B:94:65:F7:AC:B6:B6:9B:0B:5D:A4:CC X509v3 Authority Key Identifier: keyid:89:6A:D0:B5:16:09:79:FE:AC:50:C6:38:4C:BF:C1:62:D4:03:E7:8D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/iWrQtRYJef6sUMY4TL_BYtQD540.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/iWrQtRYJef6sUMY4TL_BYtQD540.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/SGLF6BdYcKQblGX3rLa2mwtdpMw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.123.188.0/24 Signature Algorithm: sha256WithRSAEncryption 70:c1:21:cd:25:bb:75:ef:44:9b:7a:e5:f4:e2:67:c4:3a:6f: 4f:41:fb:42:d8:8d:60:93:04:bb:65:51:0e:43:2e:9e:0c:ec: 73:5b:cc:d7:e2:bb:21:0a:d4:0c:84:36:48:e2:ca:0a:93:5e: 31:37:5c:dc:39:f1:89:61:92:17:08:b8:73:93:99:c4:07:51: f2:4f:26:21:aa:12:f7:83:ec:39:60:43:4a:31:6a:2a:7d:32: b2:85:ab:f4:db:31:4b:5c:2c:f4:b3:32:dd:4b:a9:77:81:4e: d7:b3:71:3f:da:5d:ff:2c:26:bf:62:06:01:83:4e:a5:af:aa: 61:f8:c3:f4:30:71:53:ee:81:8d:f7:38:f5:c0:16:a6:a6:2e: 3a:4b:15:ca:9b:18:b3:ba:a4:90:4c:2f:57:b8:aa:59:40:30: 93:a1:7f:d4:3a:fb:bb:62:42:ae:af:0d:d0:8e:de:e6:9d:da: 5f:54:68:63:8c:b1:51:0d:21:5b:0b:77:ae:27:1d:c4:0f:25: 60:f4:c4:24:c7:6b:5e:de:13:de:4e:b8:67:da:27:02:41:d9: 4f:20:64:eb:d7:a7:bb:72:41:b0:3c:36:d5:88:dc:d5:14:cd: a9:62:23:da:ba:cb:68:18:b8:ce:6d:40:47:53:15:6f:37:75: bc:20:1c:49 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICDYkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODk2 QUQwQjUxNjA5NzlGRUFDNTBDNjM4NENCRkMxNjJENDAzRTc4RDAeFw0yNTA4MjIw ODU4MTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQ4NjJDNUU4MTc1ODcw QTQxQjk0NjVGN0FDQjZCNjlCMEI1REE0Q0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxd6gLZntUZsSnsS/socNhj2/ghnXVFHhdcLphiNKiWt4+LdkR UsXaMkzjiEkv+U6VbvCmgQgjeHbjqnpiFb9jA5NkRZiIBOlA/bBogJRvuiUPm/uM fVbSpJGwAlEn47dHQ8oq10lKoF3VXHqkZoz95I9Fg28uLcEPtOaq94YdvmpKxk57 CCQMOB84slu5jkzvIymPAx514Aif9OkxYbGeGWZ+jJfH6y1X+SLxqpcBMeh9qBGk Q1JNf1wrmF6+52v1NCBb8fuZ0BZrtZ+nbes3s8C1aW7M+f8cje+HDKfK+CF6Y5nk xMaGDejyoN8PS8t+KOrnoRUwcR/CEpmYyTf7AgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUSGLF6BdYcKQblGX3rLa2mwtdpMwwHwYDVR0jBBgwFoAUiWrQtRYJef6sUMY4 TL/BYtQD540wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJTkFM SUZFL2lXclF0UllKZWY2c1VNWTRUTF9CWXRRRDU0MC5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvaVdyUXRSWUplZjZzVU1ZNFRMX0JZdFFENTQwLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJTkFMSUZFL1NHTEY2QmRZY0tR YmxHWDNyTGEybXd0ZHBNdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABne7wwDQYJKoZIhvcNAQELBQADggEBAHDBIc0lu3XvRJt65fTiZ8Q6b09B +0LYjWCTBLtlUQ5DLp4M7HNbzNfiuyEK1AyENkjiygqTXjE3XNw58YlhkhcIuHOT mcQHUfJPJiGqEveD7DlgQ0oxaip9MrKFq/TbMUtcLPSzMt1LqXeBTtezcT/aXf8s Jr9iBgGDTqWvqmH4w/QwcVPugY33OPXAFqamLjpLFcqbGLO6pJBML1e4qllAMJOh f9Q6+7tiQq6vDdCO3uad2l9UaGOMsVENIVsLd64nHcQPJWD0xCTHa17eE95OuGfa JwJB2U8gZOvXp7tyQbA8NtWI3NUUzaliI9q6y2gYuM5tQEdTFW83dbwgHEk= -----END CERTIFICATE-----Generated at Sun Aug 24 05:43:22 2025 by rpki-client