$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/7IsY9l6jfrSZ_r6H_c2LfDCUY2k.roa File: 7IsY9l6jfrSZ_r6H_c2LfDCUY2k.roa (raw, json) Hash identifier: k2ICk0dr4DtGHBs9UPTKRPyfaqlgiE8GzPkOMiQIukg= Subject key identifier: EC:8B:18:F6:5E:A3:7E:B4:99:FE:BE:87:FD:CD:8B:7C:30:94:63:69 Certificate issuer: /CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477 Certificate serial: 0DC5 Authority key identifier: A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/7IsY9l6jfrSZ_r6H_c2LfDCUY2k.roa Signing time: Fri 22 Aug 2025 09:03:14 +0000 ROA not before: Fri 22 Aug 2025 09:03:14 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 16509 IP address blocks: 103.123.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3525 (0xdc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477 Validity Not Before: Aug 22 09:03:14 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=EC8B18F65EA37EB499FEBE87FDCD8B7C30946369 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:37:53:69:91:ad:ab:0e:71:25:c3:34:8a:0b: 51:a9:79:3c:57:05:38:6a:a9:0c:a9:48:c8:e8:ff: a8:03:be:90:76:c3:a1:3c:73:eb:6c:e4:2f:56:7f: f4:7b:c4:66:00:8a:3d:79:6e:cd:17:bf:51:bc:45: 02:f5:43:2f:6e:80:21:5f:c2:b4:07:ab:65:13:c0: 7d:29:f9:2d:8a:fb:8f:a9:f6:2f:d7:13:dd:98:70: 92:f7:ae:42:35:21:1d:41:e2:46:a0:24:29:5c:f5: f8:12:34:9b:8d:29:af:e4:ec:4f:6e:37:d3:1a:1e: ca:c0:16:ce:fc:40:36:92:a2:27:b0:67:8c:a9:8f: 32:5f:ad:2e:d3:71:01:db:d8:cd:37:78:f9:33:89: bb:e4:ba:9d:f3:e1:e6:01:0e:b2:da:79:c7:db:fc: 14:ed:22:aa:20:01:e4:55:66:14:6e:d9:d2:db:f2: d4:41:2a:01:1c:b2:93:8d:7c:29:19:1d:cb:8d:16: cb:a7:43:7e:4b:d2:16:d6:e2:3f:12:be:d7:86:fc: 11:88:9f:8f:9b:5b:c4:8c:1b:83:a7:ce:d7:ef:74: 31:cf:ca:b9:25:9c:ae:57:e2:37:8c:26:9e:eb:7d: f6:7d:64:80:85:aa:5a:b9:ef:1d:ef:72:42:fc:8e: 07:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:8B:18:F6:5E:A3:7E:B4:99:FE:BE:87:FD:CD:8B:7C:30:94:63:69 X509v3 Authority Key Identifier: keyid:A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/7IsY9l6jfrSZ_r6H_c2LfDCUY2k.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.123.130.0/24 Signature Algorithm: sha256WithRSAEncryption 58:09:8d:f9:0e:db:05:1b:e9:eb:35:f2:8b:5e:8b:c8:d0:ec: 3b:bf:5d:9c:4e:d5:9f:b1:ae:97:ce:51:46:a4:10:3a:84:69: a9:f2:a4:6c:01:f6:4e:01:d2:17:36:1a:18:0d:22:0a:f4:b6: 33:86:8a:21:e0:8a:1f:64:f4:18:5e:35:b4:73:35:54:98:79: be:c7:5f:9c:20:4a:9d:23:29:79:40:51:3b:0b:08:3a:a3:f1: b6:09:57:96:f4:76:01:f1:2c:65:2f:49:1e:af:f7:8b:42:6a: 07:02:56:dc:fe:14:d7:84:34:a7:b9:26:a0:40:be:8a:95:5b: f1:f5:a6:1f:a3:2e:88:cf:75:25:53:a6:cf:9c:fc:e4:0b:6a: e5:fd:9e:da:32:a3:e2:ec:eb:60:2c:84:bf:4e:96:2e:76:57: 8e:c4:ca:22:9d:a8:6f:5e:df:ea:fc:ab:2f:10:2f:02:c8:47: 6d:ad:c0:07:cb:77:3c:b7:49:82:07:3f:bc:b9:5e:06:ab:dc: 07:aa:8b:34:df:e8:0a:81:52:3f:39:3f:27:51:e1:e1:0f:5f: 39:cf:05:ea:0f:4d:c1:b6:b3:db:f3:22:a7:70:1b:03:88:fa: 05:f2:aa:8a:2b:51:8d:a0:81:24:39:a4:aa:53:1c:c9:a7:f4: ef:c7:50:89 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDcUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTZF RDE0REIxMjEwMUExMjVEMzExMkRDNENDNTYwMkQzMEQ4QjQ3NzAeFw0yNTA4MjIw OTAzMTRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEVDOEIxOEY2NUVBMzdF QjQ5OUZFQkU4N0ZEQ0Q4QjdDMzA5NDYzNjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDmN1Npka2rDnElwzSKC1GpeTxXBThqqQypSMjo/6gDvpB2w6E8 c+ts5C9Wf/R7xGYAij15bs0Xv1G8RQL1Qy9ugCFfwrQHq2UTwH0p+S2K+4+p9i/X E92YcJL3rkI1IR1B4kagJClc9fgSNJuNKa/k7E9uN9MaHsrAFs78QDaSoiewZ4yp jzJfrS7TcQHb2M03ePkzibvkup3z4eYBDrLaecfb/BTtIqogAeRVZhRu2dLb8tRB KgEcspONfCkZHcuNFsunQ35L0hbW4j8SvteG/BGIn4+bW8SMG4OnztfvdDHPyrkl nK5X4jeMJp7rffZ9ZICFqlq57x3vckL8jgfLAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU7IsY9l6jfrSZ/r6H/c2LfDCUY2kwHwYDVR0jBBgwFoAUpu0U2xIQGhJdMRLc TMVgLTDYtHcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvREVOUEFJ Ty9wdTBVMnhJUUdoSmRNUkxjVE1WZ0xURFl0SGMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL3B1MFUyeElRR2hKZE1STGNUTVZnTFREWXRIYy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0RFTlBBSU8vN0lzWTlsNmpmclNaX3I2 SF9jMkxmRENVWTJrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AGd7gjANBgkqhkiG9w0BAQsFAAOCAQEAWAmN+Q7bBRvp6zXyi16LyNDsO79dnE7V n7Gul85RRqQQOoRpqfKkbAH2TgHSFzYaGA0iCvS2M4aKIeCKH2T0GF41tHM1VJh5 vsdfnCBKnSMpeUBROwsIOqPxtglXlvR2AfEsZS9JHq/3i0JqBwJW3P4U14Q0p7km oEC+ipVb8fWmH6MuiM91JVOmz5z85Atq5f2e2jKj4uzrYCyEv06WLnZXjsTKIp2o b17f6vyrLxAvAshHba3AB8t3PLdJggc/vLleBqvcB6qLNN/oCoFSPzk/J1Hh4Q9f Oc8F6g9Nwbaz2/Mip3AbA4j6BfKqiitRjaCBJDmkqlMcyaf078dQiQ== -----END CERTIFICATE-----Generated at Sun Aug 24 09:55:42 2025 by rpki-client