$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/1jFpDd7FByPDlxi0v_Ye1XbccM0.roa File: 1jFpDd7FByPDlxi0v_Ye1XbccM0.roa (raw, json) Hash identifier: bX2rPkkl4cDArjbEYpul9oKgoBim6XcI0EM/d1T+m6g= Subject key identifier: D6:31:69:0D:DE:C5:07:23:C3:97:18:B4:BF:F6:1E:D5:76:DC:70:CD Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Certificate serial: 108D Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1jFpDd7FByPDlxi0v_Ye1XbccM0.roa Signing time: Fri 22 Aug 2025 08:57:53 +0000 ROA not before: Fri 22 Aug 2025 08:57:53 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24168 IP address blocks: 103.136.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4237 (0x108d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Validity Not Before: Aug 22 08:57:53 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=D631690DDEC50723C39718B4BFF61ED576DC70CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:36:fb:ff:bb:1c:0c:55:c3:3b:23:98:9a:1a: 66:df:4c:6d:f8:fe:b0:2f:48:ee:fe:83:cf:81:30: 89:b5:b6:71:15:ef:95:0d:3a:2c:ee:1b:ab:ab:bd: 91:bc:2d:26:64:be:4e:5d:68:44:9c:22:8b:2e:9c: 62:5b:19:69:5f:9c:da:69:03:ca:53:5b:29:4b:29: 68:b4:a1:de:98:41:06:f7:70:ce:ae:c3:8c:61:e6: 65:a0:6d:fb:12:70:c3:d9:2d:83:d8:33:3a:ea:89: e5:8f:75:43:c5:67:6c:ff:7b:c0:32:b7:70:2b:b7: 65:d1:2e:0c:50:e4:b4:d2:5f:11:53:76:89:51:bb: 69:7b:5a:cf:b3:36:b0:a8:24:d7:c2:25:19:c3:65: 92:43:f6:15:c2:aa:71:f5:e2:0e:23:c8:de:43:42: d1:aa:b9:de:3b:62:63:a8:c1:9e:fa:11:48:82:a0: ba:6c:14:42:5e:24:b4:85:f1:26:b6:9c:f4:56:d5: 71:03:d3:bd:6f:3d:78:07:65:3e:cc:06:01:19:2e: 2f:82:da:23:3c:98:f9:03:1a:c9:7c:f8:d1:d7:16: 7a:4f:3f:c8:3e:40:ad:43:3a:aa:99:0c:d2:d5:22: 81:61:ec:39:97:76:f3:57:4d:6c:1b:73:ff:25:86: f7:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:31:69:0D:DE:C5:07:23:C3:97:18:B4:BF:F6:1E:D5:76:DC:70:CD X509v3 Authority Key Identifier: keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1jFpDd7FByPDlxi0v_Ye1XbccM0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.136.60.0/24 Signature Algorithm: sha256WithRSAEncryption bb:b4:38:d9:c9:fc:f1:63:7a:41:c2:6b:cf:6e:a7:19:2d:9b: 58:2b:ba:09:5b:3e:24:a0:cf:ce:f4:be:5d:d0:7e:3d:b7:03: c2:1d:51:93:16:48:aa:54:4f:39:b9:25:cc:83:4d:3d:3f:10: 18:5e:8c:f0:54:ce:58:47:65:a9:2d:21:7f:8c:aa:f1:f9:c2: 13:14:8f:d3:da:62:8a:ed:11:4a:7e:d4:46:eb:59:ea:68:a1: 9f:84:a5:a6:27:8f:1f:80:0f:ac:90:20:5f:60:60:bf:80:ed: e8:21:b2:00:4b:eb:81:c2:4a:46:b0:37:d2:4a:c7:bb:4b:1a: d0:88:d0:f8:0a:13:88:50:fb:40:59:90:48:fe:aa:55:c7:fe: fd:e4:8d:18:2b:d6:44:4d:c2:c0:69:3f:dd:cb:ef:da:48:33: 74:59:d9:02:31:4d:d9:72:96:d4:e3:81:aa:eb:2c:fe:4c:23: 9c:68:59:a9:54:e8:fc:0f:7b:42:b0:51:2a:41:71:15:b9:11: d7:19:d2:5f:f9:2b:01:60:04:3c:17:49:48:a3:92:16:f2:12: 0e:3d:7b:c5:39:14:ba:7b:f6:0c:c8:d9:5a:a2:65:d2:7d:c2: 37:cf:5b:86:c8:b7:ab:89:c5:38:e4:d9:79:07:db:37:93:1a: 3c:f8:06:42 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEI0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDRG MEREMEY0RkI4MDEwMjVENTg2RUY5OTlDNUVFRTAyRDdDMjA1OTAeFw0yNTA4MjIw ODU3NTNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEQ2MzE2OTBEREVDNTA3 MjNDMzk3MThCNEJGRjYxRUQ1NzZEQzcwQ0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+Nvv/uxwMVcM7I5iaGmbfTG34/rAvSO7+g8+BMIm1tnEV75UN OizuG6urvZG8LSZkvk5daEScIosunGJbGWlfnNppA8pTWylLKWi0od6YQQb3cM6u w4xh5mWgbfsScMPZLYPYMzrqieWPdUPFZ2z/e8Ayt3Art2XRLgxQ5LTSXxFTdolR u2l7Ws+zNrCoJNfCJRnDZZJD9hXCqnH14g4jyN5DQtGqud47YmOowZ76EUiCoLps FEJeJLSF8Sa2nPRW1XED071vPXgHZT7MBgEZLi+C2iM8mPkDGsl8+NHXFnpPP8g+ QK1DOqqZDNLVIoFh7DmXdvNXTWwbc/8lhvcvAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU1jFpDd7FByPDlxi0v/Ye1XbccM0wHwYDVR0jBBgwFoAU1PDdD0+4AQJdWG75 mcXu4C18IFkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULzFQ RGREMC00QVFKZFdHNzVtY1h1NEMxOElGay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev MVBEZEQwLTRBUUpkV0c3NW1jWHU0QzE4SUZrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULzFqRnBEZDdGQnlQRGx4aTB2X1llMVhi Y2NNMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABniDwwDQYJ KoZIhvcNAQELBQADggEBALu0ONnJ/PFjekHCa89upxktm1gruglbPiSgz870vl3Q fj23A8IdUZMWSKpUTzm5JcyDTT0/EBhejPBUzlhHZaktIX+MqvH5whMUj9PaYort EUp+1EbrWepooZ+EpaYnjx+AD6yQIF9gYL+A7eghsgBL64HCSkawN9JKx7tLGtCI 0PgKE4hQ+0BZkEj+qlXH/v3kjRgr1kRNwsBpP93L79pIM3RZ2QIxTdlyltTjgarr LP5MI5xoWalU6PwPe0KwUSpBcRW5EdcZ0l/5KwFgBDwXSUijkhbyEg49e8U5FLp7 9gzI2VqiZdJ9wjfPW4bIt6uJxTjk2XkH2zeTGjz4BkI= -----END CERTIFICATE-----Generated at Sun Aug 24 09:39:34 2025 by rpki-client