$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/ZH0eUG-WO8sOtJ_vbEo_RxHW0Ck.roa File: ZH0eUG-WO8sOtJ_vbEo_RxHW0Ck.roa (raw, json) Hash identifier: z8gLBb/4pn2mXS2IkEQAmbOdzPc3uyL2Qmrbt1B+XTI= Subject key identifier: 64:7D:1E:50:6F:96:3B:CB:0E:B4:9F:EF:6C:4A:3F:47:11:D6:D0:29 Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Certificate serial: 108F Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/ZH0eUG-WO8sOtJ_vbEo_RxHW0Ck.roa Signing time: Fri 22 Aug 2025 08:57:53 +0000 ROA not before: Fri 22 Aug 2025 08:57:53 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131641 IP address blocks: 103.136.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4239 (0x108f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Validity Not Before: Aug 22 08:57:53 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=647D1E506F963BCB0EB49FEF6C4A3F4711D6D029 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:f3:d3:cf:4f:ca:a4:cb:a7:b3:e6:c2:06:a7: 32:36:97:64:e7:84:83:c5:f0:b2:39:64:66:3c:8b: ac:37:3f:44:60:00:ba:06:fc:c4:46:63:b1:5d:dd: d9:e4:05:f0:48:a6:24:40:f8:2d:45:8d:fb:34:78: 95:68:dc:45:81:88:ad:88:26:10:9f:89:4c:a9:19: fc:87:54:e1:45:31:07:09:ed:68:4c:6b:6e:d2:27: 04:fe:65:0c:73:a8:69:64:09:4b:17:fa:40:78:1e: b6:e5:7f:fd:0a:78:7b:72:bf:b1:75:cf:d2:19:9c: d1:29:69:a9:b7:45:c7:02:c8:f3:68:ff:56:93:4b: a8:86:e9:4d:79:bd:5a:86:47:f6:58:13:16:1f:df: d3:52:50:31:c6:9b:62:9f:42:61:a1:25:4e:23:d5: 11:e5:e0:8d:fc:3f:87:dd:b0:b7:d7:3f:d1:5c:54: b6:81:d2:c7:cb:54:5c:bf:99:69:3b:38:f7:90:c4: e9:e2:ba:b3:4d:aa:cb:62:f5:55:0c:ac:7a:95:40: 56:7d:3b:74:16:33:8c:0e:56:b7:c1:79:f4:aa:89: e8:ba:74:f8:f5:19:44:d8:46:67:5e:78:a9:88:a2: 78:8e:22:96:0e:c2:4f:3e:f4:f7:79:46:fc:03:3e: e6:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:7D:1E:50:6F:96:3B:CB:0E:B4:9F:EF:6C:4A:3F:47:11:D6:D0:29 X509v3 Authority Key Identifier: keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/ZH0eUG-WO8sOtJ_vbEo_RxHW0Ck.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.136.60.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:15:74:ef:bd:84:04:9c:ef:de:60:70:93:80:2c:f1:66:25: 1e:3c:f9:84:ed:2f:ec:1f:f1:71:e4:6c:73:c9:97:22:8d:45: 69:f3:ac:23:5d:c5:71:67:63:41:01:2f:1e:58:29:d0:e3:d8: 22:19:56:8f:a5:c8:f7:9f:6d:85:80:40:07:6f:dd:cc:c4:6b: aa:25:11:e7:f3:37:1c:05:e6:ae:d8:88:a7:56:25:f2:1e:6c: 21:e7:6e:85:f7:7c:c3:81:3d:cb:44:33:4c:b5:da:fd:3b:4a: fa:b2:b5:b7:5b:16:6c:2b:65:ab:1d:c3:a4:87:7d:53:c7:17: d7:07:e7:00:3c:6d:6c:47:11:b5:6a:d1:9c:68:c3:90:d5:4e: 7b:8f:67:58:46:9f:d1:ba:a0:10:35:50:55:18:ab:b3:66:6e: 5b:35:3e:71:9d:ec:14:2f:45:9e:43:70:24:01:10:ff:0c:59: bf:be:3c:5f:16:88:08:2c:85:78:c3:e1:d8:93:d6:66:1b:ba: c9:f7:68:35:21:bf:22:42:9c:c5:a8:35:47:54:7c:b1:d5:28: 57:a1:6f:bf:95:1b:af:a4:5d:41:67:7d:25:8f:e4:02:6e:d1: f3:72:14:5b:ee:a0:05:46:91:65:3e:7e:c6:b9:7d:04:d7:e5: 60:8a:19:af -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEI8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDRG MEREMEY0RkI4MDEwMjVENTg2RUY5OTlDNUVFRTAyRDdDMjA1OTAeFw0yNTA4MjIw ODU3NTNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDY0N0QxRTUwNkY5NjNC Q0IwRUI0OUZFRjZDNEEzRjQ3MTFENkQwMjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDf89PPT8qky6ez5sIGpzI2l2TnhIPF8LI5ZGY8i6w3P0RgALoG /MRGY7Fd3dnkBfBIpiRA+C1Fjfs0eJVo3EWBiK2IJhCfiUypGfyHVOFFMQcJ7WhM a27SJwT+ZQxzqGlkCUsX+kB4Hrblf/0KeHtyv7F1z9IZnNEpaam3RccCyPNo/1aT S6iG6U15vVqGR/ZYExYf39NSUDHGm2KfQmGhJU4j1RHl4I38P4fdsLfXP9FcVLaB 0sfLVFy/mWk7OPeQxOniurNNqsti9VUMrHqVQFZ9O3QWM4wOVrfBefSqiei6dPj1 GUTYRmdeeKmIoniOIpYOwk8+9Pd5RvwDPuYJAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUZH0eUG+WO8sOtJ/vbEo/RxHW0CkwHwYDVR0jBBgwFoAU1PDdD0+4AQJdWG75 mcXu4C18IFkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULzFQ RGREMC00QVFKZFdHNzVtY1h1NEMxOElGay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev MVBEZEQwLTRBUUpkV0c3NW1jWHU0QzE4SUZrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRFdUL1pIMGVVRy1XTzhzT3RKX3ZiRW9fUnhI VzBDay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABniDwwDQYJ KoZIhvcNAQELBQADggEBAJoVdO+9hASc795gcJOALPFmJR48+YTtL+wf8XHkbHPJ lyKNRWnzrCNdxXFnY0EBLx5YKdDj2CIZVo+lyPefbYWAQAdv3czEa6olEefzNxwF 5q7YiKdWJfIebCHnboX3fMOBPctEM0y12v07SvqytbdbFmwrZasdw6SHfVPHF9cH 5wA8bWxHEbVq0Zxow5DVTnuPZ1hGn9G6oBA1UFUYq7Nmbls1PnGd7BQvRZ5DcCQB EP8MWb++PF8WiAgshXjD4diT1mYbusn3aDUhvyJCnMWoNUdUfLHVKFehb7+VG6+k XUFnfSWP5AJu0fNyFFvuoAVGkWU+fsa5fQTX5WCKGa8= -----END CERTIFICATE-----Generated at Sun Aug 24 07:39:52 2025 by rpki-client