$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/36iR8CZxD9x6cp9bEm-rnv_RjSM.roa File: 36iR8CZxD9x6cp9bEm-rnv_RjSM.roa (raw, json) Hash identifier: DaL3RZiLh15pHMXN3Cu5dMsZ4BZhsI7QLyPMS5uFQy4= Subject key identifier: DF:A8:91:F0:26:71:0F:DC:7A:72:9F:5B:12:6F:AB:9E:FF:D1:8D:23 Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB Certificate serial: 0E23 Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/36iR8CZxD9x6cp9bEm-rnv_RjSM.roa Signing time: Fri 22 Aug 2025 08:51:57 +0000 ROA not before: Fri 22 Aug 2025 08:51:57 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18046 IP address blocks: 103.234.76.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3619 (0xe23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB Validity Not Before: Aug 22 08:51:57 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=DFA891F026710FDC7A729F5B126FAB9EFFD18D23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:ff:49:96:77:cc:ce:de:3a:06:e0:6d:e1:96: fa:be:30:44:8a:ee:6f:0c:6d:f6:f8:77:f3:b0:bb: 7f:9d:71:92:d3:9d:9f:50:31:c8:24:5f:39:df:2e: ad:e6:2f:e1:a0:94:59:7d:64:9c:11:34:b8:91:6a: 06:15:9e:3d:8a:18:ad:e1:09:a2:a9:49:e5:c3:c1: 55:e4:7d:cc:62:00:ef:95:b9:ed:96:b3:4c:30:a0: 6b:fd:46:f0:c2:ca:c2:32:a3:70:07:33:45:b3:a4: 90:9b:c2:b7:cd:e2:1d:79:2a:a9:9a:00:58:28:2b: b4:6d:b7:78:83:7a:4c:db:27:cb:5b:f4:e5:18:ad: 31:5f:fe:e3:bb:65:b7:f4:12:32:61:02:29:74:0b: 8f:43:a7:00:b8:53:11:2b:94:17:28:9b:b1:af:f8: db:0e:ab:63:b2:dc:3b:26:bd:e1:78:9b:bd:62:b9: 42:78:98:d6:b4:20:42:dd:c3:05:2d:47:6e:2f:d4: c3:d3:b0:6d:bb:86:7d:55:58:da:fe:73:69:01:50: 5f:5c:5e:c4:05:9e:4e:90:0d:ae:ac:2e:6d:71:10: 12:07:1c:dc:1f:ea:5b:d3:d8:ef:4d:43:3f:0a:2f: f0:7c:de:a4:20:d2:72:5b:67:b7:06:7c:7e:aa:c3: b1:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:A8:91:F0:26:71:0F:DC:7A:72:9F:5B:12:6F:AB:9E:FF:D1:8D:23 X509v3 Authority Key Identifier: keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/36iR8CZxD9x6cp9bEm-rnv_RjSM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.234.76.0/22 Signature Algorithm: sha256WithRSAEncryption a8:c3:67:ff:a2:b6:6c:8d:db:ea:9a:48:b6:e8:8d:6c:92:0e: 9b:0f:40:d3:0a:f8:bc:f3:38:fa:c5:c5:ca:89:1b:03:95:16: 98:04:0d:1a:4a:7e:da:12:81:30:2f:3c:8b:3f:2d:c6:01:d3: f8:23:65:2c:36:5c:22:40:86:05:d7:a8:9a:c3:56:23:77:a3: f2:1e:e2:c5:9e:2e:20:f2:68:00:3b:66:ed:61:23:4e:a8:bb: d4:eb:86:91:46:63:c4:2e:69:b0:9e:df:ed:31:52:b5:fc:25: 61:b9:0b:7b:27:5b:98:98:4d:ec:43:fc:35:06:e3:ff:2e:ba: 86:ab:5e:d5:0b:d9:ea:8c:14:59:0c:3e:53:e8:b7:a8:31:4b: 6d:ee:ff:13:b3:ba:ae:79:31:54:da:b2:64:60:3d:d3:89:36: 25:46:c1:9b:80:ef:01:73:3d:c4:88:b2:80:2b:39:25:de:fc: 9b:41:28:65:f8:cd:de:2e:4e:d3:5e:b4:18:88:4a:b4:5b:57: 39:4a:0b:a9:73:9e:21:1b:27:9b:be:92:ac:79:df:3d:37:79: 67:aa:94:a2:aa:56:b0:0b:5b:d5:30:8d:fe:35:c5:18:55:4f: 8c:0d:4c:39:73:51:32:3b:22:b9:5d:ea:fb:be:3b:31:d9:2f: 6a:b6:19:76 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDiMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEM3 ODk2MTY0MkEwNEJFMTMyNzA4REIxOTNEN0JBOTE2QjJCNjdDQjAeFw0yNTA4MjIw ODUxNTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKERGQTg5MUYwMjY3MTBG REM3QTcyOUY1QjEyNkZBQjlFRkZEMThEMjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCR/0mWd8zO3joG4G3hlvq+MESK7m8Mbfb4d/Owu3+dcZLTnZ9Q McgkXznfLq3mL+GglFl9ZJwRNLiRagYVnj2KGK3hCaKpSeXDwVXkfcxiAO+Vue2W s0wwoGv9RvDCysIyo3AHM0WzpJCbwrfN4h15KqmaAFgoK7Rtt3iDekzbJ8tb9OUY rTFf/uO7Zbf0EjJhAil0C49DpwC4UxErlBcom7Gv+NsOq2Oy3DsmveF4m71iuUJ4 mNa0IELdwwUtR24v1MPTsG27hn1VWNr+c2kBUF9cXsQFnk6QDa6sLm1xEBIHHNwf 6lvT2O9NQz8KL/B83qQg0nJbZ7cGfH6qw7FbAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU36iR8CZxD9x6cp9bEm+rnv/RjSMwHwYDVR0jBBgwFoAUDHiWFkKgS+EycI2x k9e6kWsrZ8swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE9OR0ZP TkcvREhpV0ZrS2dTLUV5Y0kyeGs5ZTZrV3NyWjhzLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9ESGlXRmtLZ1MtRXljSTJ4azllNmtXc3JaOHMuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ET05HRk9ORy8zNmlSOENaeEQ5eDZj cDliRW0tcm52X1JqU00ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCZ+pMMA0GCSqGSIb3DQEBCwUAA4IBAQCow2f/orZsjdvqmki26I1skg6bD0DT Cvi88zj6xcXKiRsDlRaYBA0aSn7aEoEwLzyLPy3GAdP4I2UsNlwiQIYF16iaw1Yj d6PyHuLFni4g8mgAO2btYSNOqLvU64aRRmPELmmwnt/tMVK1/CVhuQt7J1uYmE3s Q/w1BuP/LrqGq17VC9nqjBRZDD5T6LeoMUtt7v8Ts7queTFU2rJkYD3TiTYlRsGb gO8Bcz3EiLKAKzkl3vybQShl+M3eLk7TXrQYiEq0W1c5Sgupc54hGyebvpKsed89 N3lnqpSiqlawC1vVMI3+NcUYVU+MDUw5c1EyOyK5Xer7vjsx2S9qthl2 -----END CERTIFICATE-----Generated at Sun Aug 24 07:17:18 2025 by rpki-client