$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DQWL/4rwKbrjbuR2PfztZJQTyK1Ga0es.roa File: 4rwKbrjbuR2PfztZJQTyK1Ga0es.roa (raw, json) Hash identifier: mILZUPoVsVQvEzctvfwjJw3MLUHBFaGU6VP0Js+Mb8M= Subject key identifier: E2:BC:0A:6E:B8:DB:B9:1D:8F:7F:3B:59:25:04:F2:2B:51:9A:D1:EB Certificate issuer: /CN=7CBA374F4F7A0D1E6CB59F8A7B564066C67DD19D Certificate serial: 0973 Authority key identifier: 7C:BA:37:4F:4F:7A:0D:1E:6C:B5:9F:8A:7B:56:40:66:C6:7D:D1:9D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fLo3T096DR5stZ-Ke1ZAZsZ90Z0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DQWL/4rwKbrjbuR2PfztZJQTyK1Ga0es.roa Signing time: Fri 22 Aug 2025 08:44:28 +0000 ROA not before: Fri 22 Aug 2025 08:44:28 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131678 IP address blocks: 103.149.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DQWL/fLo3T096DR5stZ-Ke1ZAZsZ90Z0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DQWL/fLo3T096DR5stZ-Ke1ZAZsZ90Z0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/fLo3T096DR5stZ-Ke1ZAZsZ90Z0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2419 (0x973) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CBA374F4F7A0D1E6CB59F8A7B564066C67DD19D Validity Not Before: Aug 22 08:44:28 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E2BC0A6EB8DBB91D8F7F3B592504F22B519AD1EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:15:eb:2a:7f:af:84:21:fa:68:b9:1d:b2:7b: 8c:a3:c1:99:e4:ca:d7:2f:21:50:1d:15:64:3c:78: 7e:eb:b5:0f:8f:f6:69:11:5f:4f:fc:4c:9a:41:33: 73:fc:09:28:93:18:12:70:96:c6:1f:6c:c9:9f:4b: 3e:85:af:25:34:10:5f:9f:9c:8b:06:bf:d0:99:c2: c2:23:c3:92:02:10:d3:49:92:0c:7e:84:08:27:5a: f0:3f:82:9c:23:63:95:b2:80:42:f7:af:e0:ab:c5: e7:ae:88:08:42:40:b2:53:86:55:aa:06:41:c1:2f: 9b:d0:e8:e7:23:eb:b9:66:23:2a:d1:c1:cb:72:3d: 72:c2:aa:4e:fb:9b:6a:d1:e7:53:4f:b0:b6:29:7b: 38:b8:6e:b4:27:91:13:46:1d:a3:ba:52:0a:f7:c4: 4f:3c:11:8b:67:10:44:67:37:98:12:34:f9:9c:8f: 6c:93:05:dd:b7:76:12:ff:ed:1c:6a:bd:d0:16:91: ee:c0:fe:a5:85:a2:d4:50:3f:e1:80:50:6d:a3:98: fa:e0:c6:40:ec:19:8b:d1:1b:b7:3b:a4:25:1e:c3: 5f:9d:ec:47:48:f7:be:9a:1e:00:5f:eb:35:77:cc: 25:52:7d:2d:44:54:0d:a0:1b:05:a0:92:7b:ef:f8: 9a:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:BC:0A:6E:B8:DB:B9:1D:8F:7F:3B:59:25:04:F2:2B:51:9A:D1:EB X509v3 Authority Key Identifier: keyid:7C:BA:37:4F:4F:7A:0D:1E:6C:B5:9F:8A:7B:56:40:66:C6:7D:D1:9D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DQWL/fLo3T096DR5stZ-Ke1ZAZsZ90Z0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fLo3T096DR5stZ-Ke1ZAZsZ90Z0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DQWL/4rwKbrjbuR2PfztZJQTyK1Ga0es.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.149.67.0/24 Signature Algorithm: sha256WithRSAEncryption 24:43:50:f5:6e:fa:07:d9:2c:1f:2a:aa:1e:3c:21:9b:ee:8e: 28:f7:20:3a:02:e1:f1:7b:d8:50:4f:f3:0d:b8:85:c9:9d:f2: 88:ef:a0:c7:5b:16:b2:ed:52:e2:49:78:54:a0:9c:af:91:be: 15:25:34:fd:6d:5f:0d:84:ed:71:e3:d7:81:ea:86:62:d2:6e: cb:1c:0f:fa:68:2c:96:72:51:0d:ed:a4:01:bc:6d:bd:d9:93: e9:e2:25:19:22:af:8d:b8:d1:be:fb:3e:2d:66:a1:f5:ff:32: 47:82:a8:59:e5:9a:3e:c2:81:d0:dd:45:c3:8b:0e:4c:5b:36: be:af:ff:b6:22:4c:94:da:0c:dc:71:a6:90:73:d0:b9:97:b4: 91:6e:9b:cc:8d:bf:7d:6f:95:c6:48:1b:60:67:e4:95:4d:b0: 1c:4b:50:e8:b2:74:f2:aa:20:ea:c9:d6:b3:2f:8d:e8:73:df: 51:7c:52:4a:e0:b3:7a:dd:3d:d7:a2:26:6c:6d:48:5c:21:9c: ac:68:3d:79:4c:79:07:4b:c7:f1:e4:69:2b:90:1d:28:04:9d: a1:78:ac:2a:62:a8:7c:c7:db:9b:72:7e:4f:68:e6:aa:17:67: af:88:1f:85:e2:2a:a0:c2:83:fb:eb:e4:e9:62:00:81:4e:7a: 98:7a:87:e9 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICCXMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0NC QTM3NEY0RjdBMEQxRTZDQjU5RjhBN0I1NjQwNjZDNjdERDE5RDAeFw0yNTA4MjIw ODQ0MjhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEUyQkMwQTZFQjhEQkI5 MUQ4RjdGM0I1OTI1MDRGMjJCNTE5QUQxRUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUFesqf6+EIfpouR2ye4yjwZnkytcvIVAdFWQ8eH7rtQ+P9mkR X0/8TJpBM3P8CSiTGBJwlsYfbMmfSz6FryU0EF+fnIsGv9CZwsIjw5ICENNJkgx+ hAgnWvA/gpwjY5WygEL3r+CrxeeuiAhCQLJThlWqBkHBL5vQ6Ocj67lmIyrRwcty PXLCqk77m2rR51NPsLYpezi4brQnkRNGHaO6Ugr3xE88EYtnEERnN5gSNPmcj2yT Bd23dhL/7RxqvdAWke7A/qWFotRQP+GAUG2jmPrgxkDsGYvRG7c7pCUew1+d7EdI 976aHgBf6zV3zCVSfS1EVA2gGwWgknvv+JoFAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU4rwKbrjbuR2PfztZJQTyK1Ga0eswHwYDVR0jBBgwFoAUfLo3T096DR5stZ+K e1ZAZsZ90Z0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFFXTC9m TG8zVDA5NkRSNXN0Wi1LZTFaQVpzWjkwWjAuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2ZMbzNUMDk2RFI1c3RaLUtlMVpBWnNaOTBaMC5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0RRV0wvNHJ3S2JyamJ1UjJQZnp0WkpRVHlL MUdhMGVzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeVQzAN BgkqhkiG9w0BAQsFAAOCAQEAJENQ9W76B9ksHyqqHjwhm+6OKPcgOgLh8XvYUE/z DbiFyZ3yiO+gx1sWsu1S4kl4VKCcr5G+FSU0/W1fDYTtcePXgeqGYtJuyxwP+mgs lnJRDe2kAbxtvdmT6eIlGSKvjbjRvvs+LWah9f8yR4KoWeWaPsKB0N1Fw4sOTFs2 vq//tiJMlNoM3HGmkHPQuZe0kW6bzI2/fW+VxkgbYGfklU2wHEtQ6LJ08qog6snW sy+N6HPfUXxSSuCzet0916ImbG1IXCGcrGg9eUx5B0vH8eRpK5AdKASdoXisKmKo fMfbm3J+T2jmqhdnr4gfheIqoMKD++vk6WIAgU56mHqH6Q== -----END CERTIFICATE-----Generated at Sun Aug 24 09:20:34 2025 by rpki-client