$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/Sj6AoKzl9Y3jbSyE5ABA60hofao.roa File: Sj6AoKzl9Y3jbSyE5ABA60hofao.roa (raw, json) Hash identifier: U2fpS4BjWjaZqPjJSFBav5rQXGiClUJGrxNr/v1FNrs= Subject key identifier: 4A:3E:80:A0:AC:E5:F5:8D:E3:6D:2C:84:E4:00:40:EB:48:68:7D:AA Certificate issuer: /CN=ABC8439FE19D99B038270208C94B66CA231FFED5 Certificate serial: 03EF Authority key identifier: AB:C8:43:9F:E1:9D:99:B0:38:27:02:08:C9:4B:66:CA:23:1F:FE:D5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/Sj6AoKzl9Y3jbSyE5ABA60hofao.roa Signing time: Fri 22 Aug 2025 08:49:42 +0000 ROA not before: Fri 22 Aug 2025 08:49:42 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38047 IP address blocks: 103.183.78.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1007 (0x3ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABC8439FE19D99B038270208C94B66CA231FFED5 Validity Not Before: Aug 22 08:49:42 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=4A3E80A0ACE5F58DE36D2C84E40040EB48687DAA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:bf:22:54:8c:06:5c:12:06:37:72:e2:bc:88: e5:12:28:61:b6:1c:49:05:fe:12:6d:bc:8a:f0:61: 70:e0:cd:83:08:5a:9b:b1:a1:a6:a4:4a:4e:c5:88: 04:52:96:1d:7b:71:b9:a0:c6:d1:cb:5c:b3:2f:4d: bf:70:12:4e:ed:cc:bd:25:72:50:eb:14:ec:60:4c: 2f:96:8d:d0:5d:94:18:09:eb:39:38:54:34:89:ca: d7:9b:4c:ef:4f:74:de:bf:f9:45:10:d4:50:90:18: 13:5e:ab:12:39:1b:be:1c:52:2f:06:96:27:2b:40: ca:05:11:70:75:81:c4:1f:68:49:66:70:1b:20:fd: 64:3c:86:c6:9f:b6:63:52:ca:f7:8c:1a:4c:3c:4b: e7:ac:18:b2:c4:0e:87:f4:25:42:da:04:94:31:19: 73:b7:df:90:1f:59:cd:6b:70:40:5b:ae:0b:f0:5f: 6f:8d:ff:cd:fd:4f:20:d8:2e:17:88:0b:ea:c3:12: 83:0a:b7:35:d1:fa:5d:c4:dd:c0:a7:b1:61:3d:d5: f4:18:67:be:e7:93:4f:72:cc:67:dd:9b:f0:19:1c: 63:51:5d:dc:f0:ea:3b:00:de:2a:52:a9:23:47:ce: 5c:ac:e9:57:2d:65:a7:46:b8:fc:13:e8:80:01:82: d3:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:3E:80:A0:AC:E5:F5:8D:E3:6D:2C:84:E4:00:40:EB:48:68:7D:AA X509v3 Authority Key Identifier: keyid:AB:C8:43:9F:E1:9D:99:B0:38:27:02:08:C9:4B:66:CA:23:1F:FE:D5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/Sj6AoKzl9Y3jbSyE5ABA60hofao.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.183.78.0/23 Signature Algorithm: sha256WithRSAEncryption 51:4e:ba:aa:da:e9:23:ea:43:24:98:f4:7d:69:fe:87:cd:66: 6f:1c:33:86:d1:74:95:43:a3:1c:96:86:db:e8:b8:42:06:61: e6:28:7d:09:b2:11:c2:dc:c5:ea:73:ba:c8:b6:5f:6b:f3:56: 87:52:97:21:9c:8b:55:91:27:e9:90:0f:7c:1b:71:56:46:49: 4b:e0:b9:6b:1f:80:5f:7d:ee:47:00:d6:c9:bc:b0:60:f4:ca: e5:e9:6b:84:f0:c9:33:b6:43:6f:9e:db:ed:21:11:70:f2:7f: 06:c9:20:17:5d:ed:1a:d2:44:73:aa:c3:22:ad:36:f3:b2:56: 70:79:f2:a5:25:15:5a:22:8a:9b:78:f9:7d:40:e5:97:94:2c: db:be:f5:74:ac:e6:47:33:e6:ba:1a:76:ae:2a:52:e7:58:0b: 33:70:76:19:7c:95:96:29:15:48:f3:8c:47:82:8f:c5:1b:5b: 49:c2:1c:cf:0d:f4:99:57:b9:ab:b6:9e:ab:cc:1a:cb:be:07: 4f:95:06:cf:eb:fc:96:38:a8:0d:0a:96:b5:48:52:bc:cd:ad: 6f:6e:36:1c:1b:5d:0a:59:1f:1b:ee:f0:25:9e:2a:7a:51:0b: 4f:41:11:1a:7c:a4:60:a1:9d:a2:61:a6:52:d6:14:95:14:0b: eb:a8:1e:13 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICA+8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJD ODQzOUZFMTlEOTlCMDM4MjcwMjA4Qzk0QjY2Q0EyMzFGRkVENTAeFw0yNTA4MjIw ODQ5NDJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDRBM0U4MEEwQUNFNUY1 OERFMzZEMkM4NEU0MDA0MEVCNDg2ODdEQUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCsvyJUjAZcEgY3cuK8iOUSKGG2HEkF/hJtvIrwYXDgzYMIWpux oaakSk7FiARSlh17cbmgxtHLXLMvTb9wEk7tzL0lclDrFOxgTC+WjdBdlBgJ6zk4 VDSJytebTO9PdN6/+UUQ1FCQGBNeqxI5G74cUi8GlicrQMoFEXB1gcQfaElmcBsg /WQ8hsaftmNSyveMGkw8S+esGLLEDof0JULaBJQxGXO335AfWc1rcEBbrgvwX2+N /839TyDYLheIC+rDEoMKtzXR+l3E3cCnsWE91fQYZ77nk09yzGfdm/AZHGNRXdzw 6jsA3ipSqSNHzlys6VctZadGuPwT6IABgtNnAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUSj6AoKzl9Y3jbSyE5ABA60hofaowHwYDVR0jBBgwFoAUq8hDn+GdmbA4JwII yUtmyiMf/tUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJTkFU RUwvcThoRG4tR2RtYkE0SndJSXlVdG15aU1mX3RVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9xOGhEbi1HZG1iQTRKd0lJeVV0bXlpTWZfdFUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElOQVRFTC9TajZBb0t6bDlZM2pi U3lFNUFCQTYwaG9mYW8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ7dOMA0GCSqGSIb3DQEBCwUAA4IBAQBRTrqq2ukj6kMkmPR9af6HzWZvHDOG 0XSVQ6Mclobb6LhCBmHmKH0JshHC3MXqc7rItl9r81aHUpchnItVkSfpkA98G3FW RklL4LlrH4Bffe5HANbJvLBg9Mrl6WuE8MkztkNvntvtIRFw8n8GySAXXe0a0kRz qsMirTbzslZwefKlJRVaIoqbePl9QOWXlCzbvvV0rOZHM+a6GnauKlLnWAszcHYZ fJWWKRVI84xHgo/FG1tJwhzPDfSZV7mrtp6rzBrLvgdPlQbP6/yWOKgNCpa1SFK8 za1vbjYcG10KWR8b7vAlnip6UQtPQREafKRgoZ2iYaZS1hSVFAvrqB4T -----END CERTIFICATE-----Generated at Sun Aug 24 11:53:16 2025 by rpki-client