$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/fG9nLU7GCA1BWUDARVI6yO3nudU.roa File: fG9nLU7GCA1BWUDARVI6yO3nudU.roa (raw, json) Hash identifier: v0/WZnbAjAsObeixqMsTq0vxTCL8L5PExggJW3nZCuI= Subject key identifier: 7C:6F:67:2D:4E:C6:08:0D:41:59:40:C0:45:52:3A:C8:ED:E7:B9:D5 Certificate issuer: /CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477 Certificate serial: 0DC7 Authority key identifier: A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/fG9nLU7GCA1BWUDARVI6yO3nudU.roa Signing time: Fri 22 Aug 2025 09:03:14 +0000 ROA not before: Fri 22 Aug 2025 09:03:14 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131662 IP address blocks: 103.135.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3527 (0xdc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477 Validity Not Before: Aug 22 09:03:14 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7C6F672D4EC6080D415940C045523AC8EDE7B9D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:fe:53:f5:7d:1e:1c:b0:ee:47:c3:68:af:d3: c0:9d:eb:72:63:7b:ff:cc:68:19:44:e5:9e:e6:ad: f8:03:a7:ee:5b:fc:8d:2f:35:1e:fc:03:e4:0b:5f: 10:11:fa:0c:37:db:d9:85:20:b8:2d:74:fc:40:58: da:fd:00:fb:c9:5c:14:75:5e:27:0d:f9:66:ed:92: 9c:de:e6:1a:2d:ac:3a:78:7b:65:e7:b0:b3:8b:f2: 05:7c:c9:2e:ed:e0:4e:b3:93:9a:a7:9e:ce:92:37: f0:ae:c4:09:40:00:ed:e2:45:c8:df:3f:78:17:ab: 1c:97:b9:b8:08:43:c5:58:88:bd:59:44:f1:69:78: aa:50:c0:c4:bb:21:0e:72:fb:dd:b8:ec:78:ae:5d: 7e:8b:3f:e5:13:93:4d:21:a8:08:60:82:a0:19:7f: 7a:49:0e:8d:6b:39:46:5f:18:74:76:70:05:7a:1e: 35:3d:a2:23:52:e3:aa:70:5e:b2:52:3c:c0:7d:9f: 51:83:3f:76:78:c1:40:41:a0:48:2b:6b:2b:83:f2: 25:fe:58:dd:ac:9b:c1:5e:69:9a:32:90:ae:42:b0: 6e:20:0c:39:6e:57:79:72:5a:52:88:3f:5c:59:c9: 52:3c:3b:2b:57:d0:3b:ee:6c:c6:8d:9a:5c:bd:87: 9d:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:6F:67:2D:4E:C6:08:0D:41:59:40:C0:45:52:3A:C8:ED:E7:B9:D5 X509v3 Authority Key Identifier: keyid:A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/fG9nLU7GCA1BWUDARVI6yO3nudU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.135.18.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:ea:9d:8b:82:d9:31:5e:2d:bb:f4:9c:29:70:0e:81:c7:d6: 2e:b4:5b:9b:2b:9d:0b:9a:91:29:9c:8b:39:70:52:2d:30:74: f5:c0:01:22:65:30:1a:05:6e:ba:9a:41:47:ec:fa:3d:35:60: af:2d:86:0f:cd:88:6b:36:a5:3f:75:69:70:be:be:15:56:68: 66:bb:e9:90:87:06:42:fc:67:b8:ca:5a:8c:31:43:07:cb:4a: a0:24:bc:31:a2:7b:48:f7:2f:d2:b9:73:f6:5a:be:b1:6e:44: 53:cb:a7:57:7b:97:58:fd:06:bf:77:c8:fc:92:82:6f:fe:4d: f3:44:9d:84:b3:03:41:63:cb:22:89:42:4c:d9:bc:90:9c:9b: 37:b3:36:cb:06:18:a2:0b:65:75:58:e4:78:f1:15:8c:79:4a: f1:5e:31:19:e8:c8:99:a5:82:f3:34:0c:de:16:1d:97:44:40: ea:a1:cb:b8:d6:9d:d7:17:78:d9:f6:bb:bf:6d:8e:0f:a1:3b: 16:b6:7d:26:19:84:fd:38:2a:75:42:d1:5d:21:25:b9:ae:ee: 72:81:8f:21:21:5b:d7:72:aa:ea:6b:60:09:43:15:63:0d:95: 6f:58:47:7f:15:bc:0b:53:53:92:74:df:45:8d:54:89:1d:d6: 59:ad:fa:b5 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDccwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTZF RDE0REIxMjEwMUExMjVEMzExMkRDNENDNTYwMkQzMEQ4QjQ3NzAeFw0yNTA4MjIw OTAzMTRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDdDNkY2NzJENEVDNjA4 MEQ0MTU5NDBDMDQ1NTIzQUM4RURFN0I5RDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDS/lP1fR4csO5Hw2iv08Cd63Jje//MaBlE5Z7mrfgDp+5b/I0v NR78A+QLXxAR+gw329mFILgtdPxAWNr9APvJXBR1XicN+Wbtkpze5hotrDp4e2Xn sLOL8gV8yS7t4E6zk5qnns6SN/CuxAlAAO3iRcjfP3gXqxyXubgIQ8VYiL1ZRPFp eKpQwMS7IQ5y+9247HiuXX6LP+UTk00hqAhggqAZf3pJDo1rOUZfGHR2cAV6HjU9 oiNS46pwXrJSPMB9n1GDP3Z4wUBBoEgrayuD8iX+WN2sm8FeaZoykK5CsG4gDDlu V3lyWlKIP1xZyVI8OytX0DvubMaNmly9h53RAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUfG9nLU7GCA1BWUDARVI6yO3nudUwHwYDVR0jBBgwFoAUpu0U2xIQGhJdMRLc TMVgLTDYtHcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvREVOUEFJ Ty9wdTBVMnhJUUdoSmRNUkxjVE1WZ0xURFl0SGMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL3B1MFUyeElRR2hKZE1STGNUTVZnTFREWXRIYy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0RFTlBBSU8vZkc5bkxVN0dDQTFCV1VE QVJWSTZ5TzNudWRVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AGeHEjANBgkqhkiG9w0BAQsFAAOCAQEAK+qdi4LZMV4tu/ScKXAOgcfWLrRbmyud C5qRKZyLOXBSLTB09cABImUwGgVuuppBR+z6PTVgry2GD82IazalP3VpcL6+FVZo ZrvpkIcGQvxnuMpajDFDB8tKoCS8MaJ7SPcv0rlz9lq+sW5EU8unV3uXWP0Gv3fI /JKCb/5N80SdhLMDQWPLIolCTNm8kJybN7M2ywYYogtldVjkePEVjHlK8V4xGejI maWC8zQM3hYdl0RA6qHLuNad1xd42fa7v22OD6E7FrZ9JhmE/TgqdULRXSElua7u coGPISFb13Kq6mtgCUMVYw2Vb1hHfxW8C1NTknTfRY1UiR3WWa36tQ== -----END CERTIFICATE-----Generated at Sun Aug 24 09:59:36 2025 by rpki-client