$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/qLmj-_Ez7OB-5u7P0j1sKOB4Yj4.roa File: qLmj-_Ez7OB-5u7P0j1sKOB4Yj4.roa (raw, json) Hash identifier: DAKWyfCryEo3fm+lh+wetC3iui1aJIy1U+1183Jgv4s= Subject key identifier: A8:B9:A3:FB:F1:33:EC:E0:7E:E6:EE:CF:D2:3D:6C:28:E0:78:62:3E Certificate issuer: /CN=2855973672B1EED71760C0942C27FD5F7569019C Certificate serial: 0DEE Authority key identifier: 28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/qLmj-_Ez7OB-5u7P0j1sKOB4Yj4.roa Signing time: Fri 22 Aug 2025 08:57:08 +0000 ROA not before: Fri 22 Aug 2025 08:57:08 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18046 IP address blocks: 122.200.152.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3566 (0xdee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2855973672B1EED71760C0942C27FD5F7569019C Validity Not Before: Aug 22 08:57:08 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=A8B9A3FBF133ECE07EE6EECFD23D6C28E078623E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:2b:27:49:2b:c7:36:c5:31:7d:d3:e2:2f:e1: a0:21:37:77:9d:85:4f:19:d2:22:90:44:1a:8c:f8: cd:c6:3c:8c:50:d5:ec:30:fa:36:97:3d:57:ca:c2: f5:3c:47:9c:c8:3c:b1:7d:29:3a:57:f7:25:45:6a: 08:39:86:f7:68:ae:fd:93:8c:35:8a:82:75:e4:7b: 0b:69:99:a0:cd:2d:d0:b6:70:c0:1a:23:97:6d:66: b8:fe:a8:21:82:f6:41:89:07:33:24:09:1a:29:6d: d9:8d:29:b2:7d:cb:ad:5a:d6:1a:81:d4:55:b9:c9: ca:26:86:0c:b3:bc:86:bf:ca:ed:61:b9:9a:6e:a5: a6:e1:56:59:cc:df:53:be:47:d3:07:57:cb:00:e3: 2d:b9:0d:e6:96:bb:5c:b6:68:4d:3c:6d:fd:b4:79: bb:7c:b2:35:d0:7e:52:14:b5:72:80:2f:a1:85:61: 87:2d:5f:fa:6e:a3:09:70:43:9e:7e:0d:20:52:8d: 3a:a7:05:db:9f:f8:4e:40:cc:de:45:c9:a8:e0:97: be:33:87:fb:4b:d8:68:c5:97:31:b3:4a:85:2b:5a: 5d:c5:49:8c:66:68:c4:cd:03:7b:45:4f:b0:02:ce: 79:0b:d5:33:e2:56:1e:c0:63:85:87:b9:b1:fa:f1: 9e:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:B9:A3:FB:F1:33:EC:E0:7E:E6:EE:CF:D2:3D:6C:28:E0:78:62:3E X509v3 Authority Key Identifier: keyid:28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/qLmj-_Ez7OB-5u7P0j1sKOB4Yj4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.200.152.0/21 Signature Algorithm: sha256WithRSAEncryption 2e:f4:69:af:7b:81:73:12:33:79:8e:d0:cd:e5:31:9d:f6:ab: a8:d9:ff:4e:09:a2:cf:6c:f8:7b:20:85:0b:40:b4:97:75:f1: 16:2f:f8:28:aa:dc:57:4b:24:e8:67:41:ae:d4:01:63:03:c5: 96:9b:b5:5c:cf:8b:91:d1:b4:76:94:eb:09:26:45:7a:66:7f: 32:77:38:3b:5d:85:90:79:96:eb:f2:3d:d5:0b:ce:f1:ad:81: 63:3d:1a:b8:28:e4:53:c2:22:3d:29:f4:31:e6:69:43:19:b4: 99:52:73:af:f1:b0:e8:46:c8:3b:0b:a6:c2:1c:d9:62:f9:f1: b6:31:86:97:77:93:5e:5e:0b:1f:cb:4e:80:d4:c1:63:3c:7d: 98:8f:36:af:e8:2e:7e:6a:d6:42:61:d9:ac:f2:f7:4a:28:7a: e6:5e:65:fb:63:00:f9:cc:f3:5c:92:f7:c8:f1:44:d5:5a:30: a7:db:8d:e2:41:63:f9:f3:61:2a:8d:ae:24:51:f9:98:ba:a5: f6:1c:15:2f:6a:f2:ce:12:8a:cd:e4:a3:03:c9:74:1a:ec:f2: 55:53:21:58:cc:c6:51:ae:aa:52:70:51:46:c5:ef:62:b0:4c: 26:3e:16:9d:a3:30:42:81:8b:99:c9:da:d8:ba:7d:2d:f5:a9: d2:44:1a:57 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICDe4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjg1 NTk3MzY3MkIxRUVENzE3NjBDMDk0MkMyN0ZENUY3NTY5MDE5QzAeFw0yNTA4MjIw ODU3MDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEE4QjlBM0ZCRjEzM0VD RTA3RUU2RUVDRkQyM0Q2QzI4RTA3ODYyM0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAKydJK8c2xTF90+Iv4aAhN3edhU8Z0iKQRBqM+M3GPIxQ1eww +jaXPVfKwvU8R5zIPLF9KTpX9yVFagg5hvdorv2TjDWKgnXkewtpmaDNLdC2cMAa I5dtZrj+qCGC9kGJBzMkCRopbdmNKbJ9y61a1hqB1FW5ycomhgyzvIa/yu1huZpu pabhVlnM31O+R9MHV8sA4y25DeaWu1y2aE08bf20ebt8sjXQflIUtXKAL6GFYYct X/puowlwQ55+DSBSjTqnBduf+E5AzN5Fyajgl74zh/tL2GjFlzGzSoUrWl3FSYxm aMTNA3tFT7ACznkL1TPiVh7AY4WHubH68Z4LAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUqLmj+/Ez7OB+5u7P0j1sKOB4Yj4wHwYDVR0jBBgwFoAUKFWXNnKx7tcXYMCU LCf9X3VpAZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hVQU4t Q0hBTi9LRldYTm5LeDd0Y1hZTUNVTENmOVgzVnBBWncuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL0tGV1hObkt4N3RjWFlNQ1VMQ2Y5WDNWcEFady5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NIVUFOLUNIQU4vcUxtai1fRXo3 T0ItNXU3UDBqMXNLT0I0WWo0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEA3rImDANBgkqhkiG9w0BAQsFAAOCAQEALvRpr3uBcxIzeY7QzeUxnfar qNn/Tgmiz2z4eyCFC0C0l3XxFi/4KKrcV0sk6GdBrtQBYwPFlpu1XM+LkdG0dpTr CSZFemZ/Mnc4O12FkHmW6/I91QvO8a2BYz0auCjkU8IiPSn0MeZpQxm0mVJzr/Gw 6EbIOwumwhzZYvnxtjGGl3eTXl4LH8tOgNTBYzx9mI82r+gufmrWQmHZrPL3Sih6 5l5l+2MA+czzXJL3yPFE1Vowp9uN4kFj+fNhKo2uJFH5mLql9hwVL2ryzhKKzeSj A8l0GuzyVVMhWMzGUa6qUnBRRsXvYrBMJj4WnaMwQoGLmcna2Lp9LfWp0kQaVw== -----END CERTIFICATE-----Generated at Sun Aug 24 05:08:09 2025 by rpki-client