$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CSPTEK/rlYJX6tPw13gGZMoS9L19jKBXHY.roa File: rlYJX6tPw13gGZMoS9L19jKBXHY.roa (raw, json) Hash identifier: ZeNr/OOUX948LyruaJubT56c2AWs3LeIFVFjCNLovJ4= Subject key identifier: AE:56:09:5F:AB:4F:C3:5D:E0:19:93:28:4B:D2:F5:F6:32:81:5C:76 Certificate issuer: /CN=A082F5D992E6BC25E08997538616180702E857C3 Certificate serial: 0508 Authority key identifier: A0:82:F5:D9:92:E6:BC:25:E0:89:97:53:86:16:18:07:02:E8:57:C3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/oIL12ZLmvCXgiZdThhYYBwLoV8M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CSPTEK/rlYJX6tPw13gGZMoS9L19jKBXHY.roa Signing time: Fri 22 Aug 2025 09:04:04 +0000 ROA not before: Fri 22 Aug 2025 09:04:04 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38839 IP address blocks: 103.159.176.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CSPTEK/oIL12ZLmvCXgiZdThhYYBwLoV8M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CSPTEK/oIL12ZLmvCXgiZdThhYYBwLoV8M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/oIL12ZLmvCXgiZdThhYYBwLoV8M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1288 (0x508) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A082F5D992E6BC25E08997538616180702E857C3 Validity Not Before: Aug 22 09:04:04 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=AE56095FAB4FC35DE01993284BD2F5F632815C76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c9:70:bf:a6:65:ac:bc:46:81:40:03:47:bb: db:df:52:d7:4b:e7:44:e4:dc:4e:08:c4:ed:17:e8: 25:5b:98:a8:ae:d5:83:ff:a6:33:c3:1c:1d:50:bd: 55:9a:9f:85:38:68:db:e5:ed:33:01:ff:df:cb:20: a6:56:a5:ae:5e:52:51:56:41:bd:6e:84:1e:c4:c3: 4a:e4:03:59:d0:43:13:1c:28:fe:19:c2:07:fa:f8: 9d:61:b4:18:41:33:ad:ea:71:29:bd:19:8e:b4:72: f3:af:6b:05:e5:bc:49:8a:eb:b4:65:15:19:98:8d: 7b:5e:0c:ed:5d:ab:11:76:33:28:ea:9a:60:c7:a9: 8a:e0:8d:2d:d7:0a:2f:37:e1:3f:2a:2b:b7:97:b7: 1e:ab:09:66:be:21:22:c4:c3:1d:c8:e6:ff:84:33: 01:07:54:79:c2:b4:d7:5f:9d:36:0f:a0:7b:ad:3b: f0:09:b7:90:80:86:b2:b1:fa:60:c6:3a:f7:75:7d: e1:99:b1:af:5b:de:d7:27:62:81:bd:3d:2b:cb:65: 05:16:49:93:d0:0d:c1:84:53:1f:2a:6f:6f:fa:64: cf:91:3b:aa:45:73:aa:83:23:40:f9:3f:d9:28:7b: 71:71:32:dc:b4:6b:5e:f5:2e:13:f2:8f:54:02:4f: 36:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:56:09:5F:AB:4F:C3:5D:E0:19:93:28:4B:D2:F5:F6:32:81:5C:76 X509v3 Authority Key Identifier: keyid:A0:82:F5:D9:92:E6:BC:25:E0:89:97:53:86:16:18:07:02:E8:57:C3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CSPTEK/oIL12ZLmvCXgiZdThhYYBwLoV8M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/oIL12ZLmvCXgiZdThhYYBwLoV8M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CSPTEK/rlYJX6tPw13gGZMoS9L19jKBXHY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.159.176.0/23 Signature Algorithm: sha256WithRSAEncryption 31:f5:df:e3:70:49:96:36:89:1f:88:26:78:a9:fd:cc:7a:00: b2:92:bd:8f:08:a3:af:1b:80:de:86:1a:71:8e:a2:13:17:36: 6b:0a:d4:36:c8:ea:51:16:a1:29:82:4b:8a:b0:c9:8d:67:b9: 41:bc:9d:c2:f6:bd:3d:ed:81:8d:30:5c:23:8a:49:13:2d:2c: c4:5f:5e:73:81:b1:a6:9a:57:83:36:4d:17:a6:3b:a4:29:15: bc:46:d6:26:1c:20:7c:a9:44:74:07:16:e3:ed:ed:a2:41:cc: fa:5c:18:b2:66:22:c4:c2:c5:50:c8:ef:29:38:14:6f:1b:a6: 34:09:7f:7f:b7:b7:3b:66:c2:92:61:58:48:be:db:b0:16:59: 95:1c:03:6d:eb:75:08:c7:ae:28:88:23:a3:0e:49:66:a7:cb: d3:d6:ba:f6:b2:62:15:a0:f7:fc:d0:e9:5d:80:ae:d0:7a:b6: dd:5e:f8:f8:44:0e:ea:13:8f:5d:0b:fb:d5:d8:aa:80:28:f2: 10:c4:c9:81:d8:cb:b1:10:13:49:63:2f:38:54:79:5f:bb:7c: 68:5d:01:94:41:67:3c:d4:c2:e0:f1:49:ec:1e:8c:77:0c:d6: 71:4c:4f:cd:04:f9:f0:3f:9c:9f:87:1b:81:55:e1:2f:5b:69: 56:3a:ee:56 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICBQgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTA4 MkY1RDk5MkU2QkMyNUUwODk5NzUzODYxNjE4MDcwMkU4NTdDMzAeFw0yNTA4MjIw OTA0MDRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEFFNTYwOTVGQUI0RkMz NURFMDE5OTMyODRCRDJGNUY2MzI4MTVDNzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7yXC/pmWsvEaBQANHu9vfUtdL50Tk3E4IxO0X6CVbmKiu1YP/ pjPDHB1QvVWan4U4aNvl7TMB/9/LIKZWpa5eUlFWQb1uhB7Ew0rkA1nQQxMcKP4Z wgf6+J1htBhBM63qcSm9GY60cvOvawXlvEmK67RlFRmYjXteDO1dqxF2MyjqmmDH qYrgjS3XCi834T8qK7eXtx6rCWa+ISLEwx3I5v+EMwEHVHnCtNdfnTYPoHutO/AJ t5CAhrKx+mDGOvd1feGZsa9b3tcnYoG9PSvLZQUWSZPQDcGEUx8qb2/6ZM+RO6pF c6qDI0D5P9koe3FxMty0a171LhPyj1QCTzZXAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUrlYJX6tPw13gGZMoS9L19jKBXHYwHwYDVR0jBBgwFoAUoIL12ZLmvCXgiZdT hhYYBwLoV8MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1NQVEVL L29JTDEyWkxtdkNYZ2laZFRoaFlZQndMb1Y4TS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0Evb0lMMTJaTG12Q1hnaVpkVGhoWVlCd0xvVjhNLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1NQVEVLL3JsWUpYNnRQdzEzZ0daTW9T OUwxOWpLQlhIWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn n7AwDQYJKoZIhvcNAQELBQADggEBADH13+NwSZY2iR+IJnip/cx6ALKSvY8Io68b gN6GGnGOohMXNmsK1DbI6lEWoSmCS4qwyY1nuUG8ncL2vT3tgY0wXCOKSRMtLMRf XnOBsaaaV4M2TRemO6QpFbxG1iYcIHypRHQHFuPt7aJBzPpcGLJmIsTCxVDI7yk4 FG8bpjQJf3+3tztmwpJhWEi+27AWWZUcA23rdQjHriiII6MOSWany9PWuvayYhWg 9/zQ6V2ArtB6tt1e+PhEDuoTj10L+9XYqoAo8hDEyYHYy7EQE0ljLzhUeV+7fGhd AZRBZzzUwuDxSewejHcM1nFMT80E+fA/nJ+HG4FV4S9baVY67lY= -----END CERTIFICATE-----Generated at Sun Aug 24 07:41:12 2025 by rpki-client