$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/QFXZcXRnxzq6U4E0Gq7eyq4iDVI.roa File: QFXZcXRnxzq6U4E0Gq7eyq4iDVI.roa (raw, json) Hash identifier: 1MYUAPdca++2frHZvcGddTz7o0/PIrx+GZ2GL9hFvDY= Subject key identifier: 40:55:D9:71:74:67:C7:3A:BA:53:81:34:1A:AE:DE:CA:AE:22:0D:52 Certificate issuer: /CN=2855973672B1EED71760C0942C27FD5F7569019C Certificate serial: 0DEF Authority key identifier: 28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/QFXZcXRnxzq6U4E0Gq7eyq4iDVI.roa Signing time: Fri 22 Aug 2025 08:57:08 +0000 ROA not before: Fri 22 Aug 2025 08:57:08 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18046 IP address blocks: 101.0.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3567 (0xdef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2855973672B1EED71760C0942C27FD5F7569019C Validity Not Before: Aug 22 08:57:08 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=4055D9717467C73ABA5381341AAEDECAAE220D52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:67:5b:ae:67:7b:34:26:db:90:d9:b4:75:23: d2:5c:f8:4c:b2:23:73:74:78:81:55:9c:b3:10:ad: ff:11:68:d9:8b:ce:1e:53:71:f0:22:03:25:82:23: 3f:77:b8:96:df:e7:ea:f1:a5:ec:6a:66:f0:e5:19: 46:44:56:93:c9:2a:f9:9a:74:99:bc:4a:f7:f0:b2: fa:c6:07:36:3a:ed:2c:6d:f2:b4:45:b7:41:f7:d7: 2f:1b:89:68:d4:78:1f:2c:86:2e:b4:2b:19:67:9a: c0:d3:1a:bd:eb:90:df:d5:70:54:bc:17:a8:af:05: 15:f7:09:eb:de:b2:6e:fb:1d:64:1e:4f:6b:69:43: a8:17:09:d9:3a:3e:2a:0a:b3:5a:e9:e5:60:51:a5: d5:69:68:c5:48:5b:ac:8d:c3:25:5e:fc:69:d6:e0: b7:23:7e:05:49:b8:36:25:48:98:99:23:8c:23:49: 11:91:b0:eb:53:50:96:ee:a7:f8:c2:53:89:db:6d: af:3b:12:9b:ce:3b:44:70:aa:6f:6f:80:f7:07:35: a2:d9:59:5d:a4:c9:aa:a0:57:48:e3:dc:18:94:40: 36:0b:f9:80:66:cb:6d:03:e5:2d:28:a2:d4:38:4b: 33:b3:b0:dd:0b:a4:34:cf:4b:fd:59:6c:de:d2:8d: 9c:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:55:D9:71:74:67:C7:3A:BA:53:81:34:1A:AE:DE:CA:AE:22:0D:52 X509v3 Authority Key Identifier: keyid:28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/QFXZcXRnxzq6U4E0Gq7eyq4iDVI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.0.224.0/19 Signature Algorithm: sha256WithRSAEncryption 7a:78:3e:ad:09:3f:ff:09:ad:20:87:dc:ed:45:f2:56:16:59: 31:52:97:aa:97:df:53:b4:9a:14:00:67:5f:eb:22:76:f5:30: 82:65:5f:d7:c0:ac:be:fe:82:81:5e:1f:a3:b6:8a:b0:df:cf: 1c:0b:fe:b0:5b:26:7e:ca:bc:66:5d:9d:88:88:d5:25:16:ab: c6:aa:70:62:22:25:e8:40:ca:75:2e:5f:9b:3e:17:11:38:ba: 34:fb:95:43:4f:ee:97:3e:41:5a:56:2d:9d:f2:76:2e:4b:8f: d5:3b:02:7b:6e:4b:75:cb:fa:f1:79:d9:c0:0b:e2:0c:09:e2: 31:2c:32:13:ae:22:cf:15:df:86:ac:de:df:a6:e8:f1:26:0b: d9:8f:e4:ad:89:49:0c:9e:c9:ad:7d:7c:59:88:d0:1c:3a:d3: f8:e9:15:41:2b:e3:9c:d8:19:cb:5a:de:1a:c6:1a:6a:36:5a: a1:24:af:64:1e:24:1a:c4:69:4f:fc:f3:d6:86:36:c0:9c:79: 20:47:43:2a:b1:1e:c9:0e:67:ce:d0:bc:2f:cd:66:a6:73:26: 3a:89:57:26:01:18:3f:24:28:a4:60:42:82:61:8b:45:cc:60: b2:2f:17:c8:1a:3b:e2:1e:df:b7:0d:28:8e:10:c2:2f:64:35: aa:12:29:18 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICDe8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjg1 NTk3MzY3MkIxRUVENzE3NjBDMDk0MkMyN0ZENUY3NTY5MDE5QzAeFw0yNTA4MjIw ODU3MDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQwNTVEOTcxNzQ2N0M3 M0FCQTUzODEzNDFBQUVERUNBQUUyMjBENTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1Z1uuZ3s0JtuQ2bR1I9Jc+EyyI3N0eIFVnLMQrf8RaNmLzh5T cfAiAyWCIz93uJbf5+rxpexqZvDlGUZEVpPJKvmadJm8SvfwsvrGBzY67Sxt8rRF t0H31y8biWjUeB8shi60KxlnmsDTGr3rkN/VcFS8F6ivBRX3Cevesm77HWQeT2tp Q6gXCdk6PioKs1rp5WBRpdVpaMVIW6yNwyVe/GnW4LcjfgVJuDYlSJiZI4wjSRGR sOtTUJbup/jCU4nbba87EpvOO0Rwqm9vgPcHNaLZWV2kyaqgV0jj3BiUQDYL+YBm y20D5S0ootQ4SzOzsN0LpDTPS/1ZbN7SjZxRAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUQFXZcXRnxzq6U4E0Gq7eyq4iDVIwHwYDVR0jBBgwFoAUKFWXNnKx7tcXYMCU LCf9X3VpAZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hVQU4t Q0hBTi9LRldYTm5LeDd0Y1hZTUNVTENmOVgzVnBBWncuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL0tGV1hObkt4N3RjWFlNQ1VMQ2Y5WDNWcEFady5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NIVUFOLUNIQU4vUUZYWmNYUm54 enE2VTRFMEdxN2V5cTRpRFZJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEBWUA4DANBgkqhkiG9w0BAQsFAAOCAQEAeng+rQk//wmtIIfc7UXyVhZZ MVKXqpffU7SaFABnX+sidvUwgmVf18Csvv6CgV4fo7aKsN/PHAv+sFsmfsq8Zl2d iIjVJRarxqpwYiIl6EDKdS5fmz4XETi6NPuVQ0/ulz5BWlYtnfJ2LkuP1TsCe25L dcv68XnZwAviDAniMSwyE64izxXfhqze36bo8SYL2Y/krYlJDJ7JrX18WYjQHDrT +OkVQSvjnNgZy1reGsYaajZaoSSvZB4kGsRpT/zz1oY2wJx5IEdDKrEeyQ5nztC8 L81mpnMmOolXJgEYPyQopGBCgmGLRcxgsi8XyBo74h7ftw0ojhDCL2Q1qhIpGA== -----END CERTIFICATE-----Generated at Sun Aug 24 05:10:32 2025 by rpki-client