$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/F5Jw6QhYkHZz6aPBlPqDvFNDAd8.roa File: F5Jw6QhYkHZz6aPBlPqDvFNDAd8.roa (raw, json) Hash identifier: BLCjBJjh2fhv6BOlgVDmiQPaXrh504LEczp6zVjs08s= Subject key identifier: 17:92:70:E9:08:58:90:76:73:E9:A3:C1:94:FA:83:BC:53:43:01:DF Certificate issuer: /CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477 Certificate serial: 0DC9 Authority key identifier: A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/F5Jw6QhYkHZz6aPBlPqDvFNDAd8.roa Signing time: Fri 22 Aug 2025 09:03:14 +0000 ROA not before: Fri 22 Aug 2025 09:03:14 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 138145 IP address blocks: 103.135.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3529 (0xdc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477 Validity Not Before: Aug 22 09:03:14 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=179270E90858907673E9A3C194FA83BC534301DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:14:38:91:04:f4:e2:38:67:73:d0:13:2b:ba: 48:da:9f:e0:d2:d4:93:7b:93:9d:55:b2:dc:c3:af: 5a:cd:2f:39:23:ca:d0:13:69:9a:f7:f4:c3:98:44: 72:32:86:12:f7:f9:44:d1:7a:3b:74:fd:48:5d:6d: dd:25:0c:4e:ea:16:d0:0b:14:b5:e3:2a:08:cd:ef: ad:8d:0c:83:b6:aa:92:43:db:f5:4a:dd:b2:26:8b: 5d:10:49:af:d7:87:29:db:2a:c6:e8:28:6b:4d:a9: 7d:80:ab:a0:d7:26:e6:79:34:29:68:84:4a:8d:f9: eb:26:ca:92:fc:39:1d:55:77:e1:12:93:26:1c:c4: 9c:df:01:46:28:a6:e5:46:d6:00:96:95:ac:e6:62: 56:50:79:ed:d1:5d:c7:97:5c:2f:3c:de:ae:b0:3b: f2:79:ad:37:be:b2:02:72:81:ab:a4:01:1b:22:d8: 5a:b4:df:5f:5d:1d:70:99:2b:0f:e7:70:dd:46:28: 18:72:fc:c4:25:0e:8e:a8:c6:e9:2c:29:41:3a:46: ed:c3:bf:6d:8d:0e:17:28:85:a6:0b:77:f9:3a:57: d8:52:60:ae:59:93:ee:6c:0f:9b:8d:68:c9:f2:4d: 09:f6:f2:51:22:3f:b1:4b:ef:f8:18:2a:29:73:d0: a5:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:92:70:E9:08:58:90:76:73:E9:A3:C1:94:FA:83:BC:53:43:01:DF X509v3 Authority Key Identifier: keyid:A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/F5Jw6QhYkHZz6aPBlPqDvFNDAd8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.135.19.0/24 Signature Algorithm: sha256WithRSAEncryption 37:13:1c:ef:89:b1:2b:e9:33:76:83:49:01:da:b4:cd:ad:b2: 78:5b:7d:89:61:37:1a:77:d4:e0:02:ab:87:ad:4b:90:90:d7: a6:38:8e:4b:e1:be:a0:32:bd:54:34:88:d1:c8:5d:5c:72:aa: ff:15:50:7d:41:b0:94:e8:c0:5e:06:05:8a:4a:bd:c1:3b:c0: cb:2d:65:8f:a3:0d:00:c5:53:6c:c8:bb:b9:10:27:dc:4f:87: 76:1f:64:e5:cf:b0:4c:6d:b0:db:26:77:9f:6b:84:7c:f4:8b: 51:97:1c:a5:cb:c8:16:0c:bf:15:c6:d8:26:58:19:d1:64:0e: ba:28:01:52:46:3d:70:a6:5c:06:c9:1f:b1:2f:eb:84:87:9e: 1b:e2:10:ad:6b:99:97:5a:40:bc:3b:6d:60:b8:40:50:c4:92: ec:5d:38:f5:d5:b7:16:57:43:ce:3e:60:10:4c:92:f8:40:3c: 04:19:a0:c0:ad:21:b0:30:98:95:ed:a5:29:21:45:91:b1:3a: 50:e4:42:17:dc:b1:9b:a2:5c:9b:0c:74:48:eb:63:5e:6e:b1: a1:8f:18:02:25:a3:b9:1b:a8:67:32:39:bb:f8:74:f7:ac:5d: 2f:8e:6a:42:46:51:9b:63:cd:ff:ea:d5:77:a6:85:f3:05:f3: ee:66:73:f5 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDckwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTZF RDE0REIxMjEwMUExMjVEMzExMkRDNENDNTYwMkQzMEQ4QjQ3NzAeFw0yNTA4MjIw OTAzMTRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDE3OTI3MEU5MDg1ODkw NzY3M0U5QTNDMTk0RkE4M0JDNTM0MzAxREYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0FDiRBPTiOGdz0BMrukjan+DS1JN7k51VstzDr1rNLzkjytAT aZr39MOYRHIyhhL3+UTRejt0/Uhdbd0lDE7qFtALFLXjKgjN762NDIO2qpJD2/VK 3bImi10QSa/XhynbKsboKGtNqX2Aq6DXJuZ5NClohEqN+esmypL8OR1Vd+ESkyYc xJzfAUYopuVG1gCWlazmYlZQee3RXceXXC883q6wO/J5rTe+sgJygaukARsi2Fq0 319dHXCZKw/ncN1GKBhy/MQlDo6oxuksKUE6Ru3Dv22NDhcohaYLd/k6V9hSYK5Z k+5sD5uNaMnyTQn28lEiP7FL7/gYKilz0KUNAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUF5Jw6QhYkHZz6aPBlPqDvFNDAd8wHwYDVR0jBBgwFoAUpu0U2xIQGhJdMRLc TMVgLTDYtHcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvREVOUEFJ Ty9wdTBVMnhJUUdoSmRNUkxjVE1WZ0xURFl0SGMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL3B1MFUyeElRR2hKZE1STGNUTVZnTFREWXRIYy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0RFTlBBSU8vRjVKdzZRaFlrSFp6NmFQ QmxQcUR2Rk5EQWQ4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AGeHEzANBgkqhkiG9w0BAQsFAAOCAQEANxMc74mxK+kzdoNJAdq0za2yeFt9iWE3 GnfU4AKrh61LkJDXpjiOS+G+oDK9VDSI0chdXHKq/xVQfUGwlOjAXgYFikq9wTvA yy1lj6MNAMVTbMi7uRAn3E+Hdh9k5c+wTG2w2yZ3n2uEfPSLUZccpcvIFgy/FcbY JlgZ0WQOuigBUkY9cKZcBskfsS/rhIeeG+IQrWuZl1pAvDttYLhAUMSS7F049dW3 FldDzj5gEEyS+EA8BBmgwK0hsDCYle2lKSFFkbE6UORCF9yxm6Jcmwx0SOtjXm6x oY8YAiWjuRuoZzI5u/h096xdL45qQkZRm2PN/+rVd6aF8wXz7mZz9Q== -----END CERTIFICATE-----Generated at Sun Aug 24 09:57:36 2025 by rpki-client