$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/DGPQYqi3PNnmPNHkBx3Ow71QuvI.roa File: DGPQYqi3PNnmPNHkBx3Ow71QuvI.roa (raw, json) Hash identifier: YQb3BCM8N3mgHnQbG0Vkv6ldKn2IkBntSpUzTXPO8o0= Subject key identifier: 0C:63:D0:62:A8:B7:3C:D9:E6:3C:D1:E4:07:1D:CE:C3:BD:50:BA:F2 Certificate issuer: /CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477 Certificate serial: 0DCE Authority key identifier: A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/DGPQYqi3PNnmPNHkBx3Ow71QuvI.roa Signing time: Fri 22 Aug 2025 09:03:16 +0000 ROA not before: Fri 22 Aug 2025 09:03:16 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131662 IP address blocks: 103.123.128.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3534 (0xdce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477 Validity Not Before: Aug 22 09:03:16 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=0C63D062A8B73CD9E63CD1E4071DCEC3BD50BAF2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:41:5b:ff:32:c9:f6:29:9b:4b:a2:6c:9b:73: 11:3e:ea:2a:86:9c:bc:1d:44:4f:4b:16:6e:47:29: 8f:a3:3a:61:ee:cb:cf:4b:86:70:c2:94:3b:4f:87: d7:9a:c5:78:10:ef:7a:b4:3c:a2:13:9f:0c:05:9f: 49:b9:85:f7:94:57:52:ab:fd:b4:8e:bd:b0:99:71: 10:1c:94:ec:d9:07:9e:9d:55:57:ca:53:08:47:f0: 91:15:a2:a2:46:99:10:7e:e9:9d:33:2b:f1:50:ca: 9a:78:d7:4e:60:1f:87:5d:cf:21:f0:a4:eb:52:6d: e7:18:2e:64:90:1a:8d:54:90:40:86:9b:90:f1:44: 66:04:1b:1d:f1:c7:c4:8d:b4:35:8c:1e:14:f2:d1: 38:af:f2:bc:91:b3:f9:73:05:4e:1e:a6:b8:17:ae: 5d:ed:51:6b:b5:d1:51:af:67:e5:e8:6f:e9:5d:7b: 4e:50:d8:4a:05:30:1f:8f:78:e4:87:20:d7:22:3d: 39:0a:89:40:c8:27:32:52:12:e5:f0:ab:07:76:4b: 8d:eb:ac:53:bb:5a:8d:5e:7c:9d:21:83:6a:39:a0: 74:ec:e8:c4:1c:eb:cc:53:f2:43:cc:5e:20:25:ae: cb:23:f4:aa:77:7b:13:11:db:81:ce:24:bc:40:9f: aa:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:63:D0:62:A8:B7:3C:D9:E6:3C:D1:E4:07:1D:CE:C3:BD:50:BA:F2 X509v3 Authority Key Identifier: keyid:A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/DGPQYqi3PNnmPNHkBx3Ow71QuvI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.123.128.0/22 Signature Algorithm: sha256WithRSAEncryption 07:3c:bd:94:da:2f:1e:40:44:f3:ee:40:a2:60:9e:7f:1a:7f: 9b:9a:c1:6f:96:3d:15:8d:d6:9f:f6:07:89:be:bd:33:c6:a4: d4:c1:56:0e:10:2e:da:d6:6d:5f:ee:0d:4d:8a:95:04:60:db: d4:e1:a2:63:87:1a:f4:d5:b0:61:78:2f:0b:bd:42:5e:20:cd: 06:7f:d0:3e:ec:8b:08:de:51:a1:cf:c4:8a:f6:8a:d5:cb:50: bb:8d:8e:a8:d5:85:d7:48:2f:36:12:a9:fe:e6:1c:33:75:a9: 9d:f9:2e:0a:e0:ca:2b:c4:d5:0b:b6:e7:1a:ec:8e:01:30:a1: 7e:04:cf:dc:fd:1d:5f:22:61:7e:de:12:a9:02:db:d2:57:55: 89:4c:25:df:91:3a:8f:b4:30:63:51:d9:4c:68:21:ec:db:99: 73:eb:bb:46:54:67:fa:b6:30:a7:19:b5:b2:20:c1:df:9c:46: cc:6a:5d:79:41:9c:f0:27:15:17:df:87:f5:ac:d8:29:82:2e: 38:47:13:5f:c1:62:91:8c:09:4d:c3:67:27:aa:bd:17:82:28: d7:1e:10:e1:41:c5:07:8c:f1:26:68:b7:62:38:b3:dc:3b:e6: 4e:e7:9f:e0:95:f8:91:8a:37:d5:f5:c9:52:24:e5:4c:a7:26: df:6d:12:85 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDc4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTZF RDE0REIxMjEwMUExMjVEMzExMkRDNENDNTYwMkQzMEQ4QjQ3NzAeFw0yNTA4MjIw OTAzMTZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDBDNjNEMDYyQThCNzND RDlFNjNDRDFFNDA3MURDRUMzQkQ1MEJBRjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOQVv/Msn2KZtLomybcxE+6iqGnLwdRE9LFm5HKY+jOmHuy89L hnDClDtPh9eaxXgQ73q0PKITnwwFn0m5hfeUV1Kr/bSOvbCZcRAclOzZB56dVVfK UwhH8JEVoqJGmRB+6Z0zK/FQypp4105gH4ddzyHwpOtSbecYLmSQGo1UkECGm5Dx RGYEGx3xx8SNtDWMHhTy0Tiv8ryRs/lzBU4eprgXrl3tUWu10VGvZ+Xob+lde05Q 2EoFMB+PeOSHINciPTkKiUDIJzJSEuXwqwd2S43rrFO7Wo1efJ0hg2o5oHTs6MQc 68xT8kPMXiAlrssj9Kp3exMR24HOJLxAn6pbAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUDGPQYqi3PNnmPNHkBx3Ow71QuvIwHwYDVR0jBBgwFoAUpu0U2xIQGhJdMRLc TMVgLTDYtHcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvREVOUEFJ Ty9wdTBVMnhJUUdoSmRNUkxjVE1WZ0xURFl0SGMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL3B1MFUyeElRR2hKZE1STGNUTVZnTFREWXRIYy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0RFTlBBSU8vREdQUVlxaTNQTm5tUE5I a0J4M093NzFRdXZJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME Amd7gDANBgkqhkiG9w0BAQsFAAOCAQEABzy9lNovHkBE8+5AomCefxp/m5rBb5Y9 FY3Wn/YHib69M8ak1MFWDhAu2tZtX+4NTYqVBGDb1OGiY4ca9NWwYXgvC71CXiDN Bn/QPuyLCN5Roc/EivaK1ctQu42OqNWF10gvNhKp/uYcM3WpnfkuCuDKK8TVC7bn GuyOATChfgTP3P0dXyJhft4SqQLb0ldViUwl35E6j7QwY1HZTGgh7NuZc+u7RlRn +rYwpxm1siDB35xGzGpdeUGc8CcVF9+H9azYKYIuOEcTX8FikYwJTcNnJ6q9F4Io 1x4Q4UHFB4zxJmi3Yjiz3DvmTuef4JX4kYo31fXJUiTlTKcm320ShQ== -----END CERTIFICATE-----Generated at Sun Aug 24 09:59:34 2025 by rpki-client