$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/YKKR9NX8Qmn2dS7aBLRqu1vCrCw.roa File: YKKR9NX8Qmn2dS7aBLRqu1vCrCw.roa (raw, json) Hash identifier: 8gyHydf4A39nnrVOpytidSjB4vXBB35cyQFZC3jZsDE= Subject key identifier: 60:A2:91:F4:D5:FC:42:69:F6:75:2E:DA:04:B4:6A:BB:5B:C2:AC:2C Certificate issuer: /CN=ABC8439FE19D99B038270208C94B66CA231FFED5 Certificate serial: 03F3 Authority key identifier: AB:C8:43:9F:E1:9D:99:B0:38:27:02:08:C9:4B:66:CA:23:1F:FE:D5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/YKKR9NX8Qmn2dS7aBLRqu1vCrCw.roa Signing time: Fri 22 Aug 2025 08:49:43 +0000 ROA not before: Fri 22 Aug 2025 08:49:43 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38047 IP address blocks: 103.183.78.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1011 (0x3f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABC8439FE19D99B038270208C94B66CA231FFED5 Validity Not Before: Aug 22 08:49:43 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=60A291F4D5FC4269F6752EDA04B46ABB5BC2AC2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:3f:f3:23:9b:7f:21:f4:27:4a:d0:f8:95:c6: 7c:f0:ac:45:04:e9:b8:0c:b0:76:5d:c3:1f:61:d1: d2:b3:f0:fa:85:e1:11:d1:c9:89:73:2f:2f:4b:ab: ba:78:76:3c:5a:c1:db:90:6d:80:5c:31:f0:bc:bf: a2:95:6a:a6:5e:c9:5d:23:dd:b3:af:55:43:30:f4: f2:f6:c8:e8:ab:59:c8:ae:02:a7:3b:5c:46:9b:1b: c5:5e:1e:a5:92:c3:6c:73:be:2c:2d:44:b1:aa:27: 8c:f3:f3:ba:8d:52:6d:1f:65:20:46:0c:79:98:7f: ec:2e:93:35:fe:7f:08:f5:83:89:85:f3:05:a6:01: d7:d3:7d:29:5c:62:94:23:1b:2a:cd:b4:be:2d:66: fd:b3:0f:d2:b1:56:58:6e:51:d2:63:c1:17:bb:ec: d0:73:c2:74:42:c6:36:47:7f:74:7e:21:f2:5b:07: c6:b1:83:df:45:1a:9b:5b:65:22:53:44:99:19:f5: 86:ca:4e:07:2d:b4:58:da:f0:6b:c5:96:aa:bf:6c: 7f:77:b9:e0:fd:04:16:eb:65:93:40:34:9b:93:84: a0:49:49:0e:bb:c7:0b:89:93:24:be:cb:33:42:e4: aa:1d:cc:4f:51:4c:8a:31:72:a4:3a:b1:a8:56:d3: d8:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:A2:91:F4:D5:FC:42:69:F6:75:2E:DA:04:B4:6A:BB:5B:C2:AC:2C X509v3 Authority Key Identifier: keyid:AB:C8:43:9F:E1:9D:99:B0:38:27:02:08:C9:4B:66:CA:23:1F:FE:D5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/YKKR9NX8Qmn2dS7aBLRqu1vCrCw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.183.78.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:6c:65:0b:f2:0c:2f:0b:e9:b6:24:97:d7:7d:10:59:43:f4: 53:a1:86:78:a4:8f:ce:03:4c:43:aa:82:57:c3:18:59:e0:e1: 0f:b1:72:67:65:ba:d2:80:87:55:4b:5b:0b:d4:23:e4:f3:04: a8:24:4a:a0:52:5a:af:35:c8:58:74:f1:86:20:79:69:0b:34: 65:81:11:89:ec:be:4d:c2:2d:8c:7a:7e:a2:9f:d6:61:47:a4: 48:be:61:09:da:2f:39:c7:af:18:a7:8b:f8:a0:b1:e3:ed:33: 93:3f:7a:b5:5c:4a:71:14:45:4d:38:12:fd:45:07:36:cd:be: 89:35:ad:33:b3:91:e5:b1:50:ca:53:a1:55:61:2b:08:ad:ea: 65:f5:5e:af:94:de:1a:bf:b0:0a:82:d1:a7:6a:97:04:94:f0: 95:07:4b:c1:fa:4c:31:dc:77:ca:ef:31:9a:1b:9c:97:bd:15: 87:fa:a8:82:e9:8a:7c:78:47:02:5e:fe:0a:32:5c:c8:a7:c2: 3f:d6:78:16:fd:43:d0:3e:be:94:24:4f:0c:42:b8:e7:d8:59: b4:a4:e3:47:c9:8c:d3:1a:0d:94:35:b0:67:80:a6:d0:c9:f5: ec:fa:f5:d8:4d:e9:b5:59:fb:3f:19:0d:72:25:c5:e5:5f:26: cb:ec:dd:72 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICA/MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJD ODQzOUZFMTlEOTlCMDM4MjcwMjA4Qzk0QjY2Q0EyMzFGRkVENTAeFw0yNTA4MjIw ODQ5NDNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDYwQTI5MUY0RDVGQzQy NjlGNjc1MkVEQTA0QjQ2QUJCNUJDMkFDMkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDwP/Mjm38h9CdK0PiVxnzwrEUE6bgMsHZdwx9h0dKz8PqF4RHR yYlzLy9Lq7p4djxawduQbYBcMfC8v6KVaqZeyV0j3bOvVUMw9PL2yOirWciuAqc7 XEabG8VeHqWSw2xzviwtRLGqJ4zz87qNUm0fZSBGDHmYf+wukzX+fwj1g4mF8wWm AdfTfSlcYpQjGyrNtL4tZv2zD9KxVlhuUdJjwRe77NBzwnRCxjZHf3R+IfJbB8ax g99FGptbZSJTRJkZ9YbKTgcttFja8GvFlqq/bH93ueD9BBbrZZNANJuThKBJSQ67 xwuJkyS+yzNC5KodzE9RTIoxcqQ6sahW09idAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUYKKR9NX8Qmn2dS7aBLRqu1vCrCwwHwYDVR0jBBgwFoAUq8hDn+GdmbA4JwII yUtmyiMf/tUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJTkFU RUwvcThoRG4tR2RtYkE0SndJSXlVdG15aU1mX3RVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9xOGhEbi1HZG1iQTRKd0lJeVV0bXlpTWZfdFUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElOQVRFTC9ZS0tSOU5YOFFtbjJk UzdhQkxScXUxdkNyQ3cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZ7dOMA0GCSqGSIb3DQEBCwUAA4IBAQAubGUL8gwvC+m2JJfXfRBZQ/RToYZ4 pI/OA0xDqoJXwxhZ4OEPsXJnZbrSgIdVS1sL1CPk8wSoJEqgUlqvNchYdPGGIHlp CzRlgRGJ7L5Nwi2Men6in9ZhR6RIvmEJ2i85x68Yp4v4oLHj7TOTP3q1XEpxFEVN OBL9RQc2zb6JNa0zs5HlsVDKU6FVYSsIrepl9V6vlN4av7AKgtGnapcElPCVB0vB +kwx3HfK7zGaG5yXvRWH+qiC6Yp8eEcCXv4KMlzIp8I/1ngW/UPQPr6UJE8MQrjn 2Fm0pONHyYzTGg2UNbBngKbQyfXs+vXYTem1Wfs/GQ1yJcXlXybL7N1y -----END CERTIFICATE-----Generated at Sun Aug 24 11:53:18 2025 by rpki-client