$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/GgEo2w9T_fXVha4PVN2E6dKjRJg.roa File: GgEo2w9T_fXVha4PVN2E6dKjRJg.roa (raw, json) Hash identifier: Xc/PD6ve9+6gF85azmsEeKYeLcGCQzz88booj8gOLug= Subject key identifier: 1A:01:28:DB:0F:53:FD:F5:D5:85:AE:0F:54:DD:84:E9:D2:A3:44:98 Certificate issuer: /CN=3BF441B57C86BD9D193451A005D26CE1A3C6DEE7 Certificate serial: 0397 Authority key identifier: 3B:F4:41:B5:7C:86:BD:9D:19:34:51:A0:05:D2:6C:E1:A3:C6:DE:E7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/GgEo2w9T_fXVha4PVN2E6dKjRJg.roa Signing time: Fri 22 Aug 2025 08:52:20 +0000 ROA not before: Fri 22 Aug 2025 08:52:20 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 983 IP address blocks: 103.160.180.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 919 (0x397) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BF441B57C86BD9D193451A005D26CE1A3C6DEE7 Validity Not Before: Aug 22 08:52:20 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1A0128DB0F53FDF5D585AE0F54DD84E9D2A34498 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:0a:d2:95:97:c2:01:ac:4c:b9:3d:6a:fc:b6: 28:04:55:6f:19:dc:ec:61:db:c0:4c:17:5d:f3:45: 90:c8:f1:37:21:1a:10:ca:45:ad:13:0b:6d:41:ac: 24:1d:fa:c7:54:71:ab:b0:83:72:20:d2:d6:2e:53: 78:4c:21:d0:6c:c8:ec:70:ab:e0:40:0a:1c:7f:29: a9:6f:4b:aa:53:9c:56:4e:b5:59:f4:c5:fd:32:ee: 49:e4:10:97:6b:67:25:cb:7e:d2:c1:65:1d:e7:dd: 7b:a9:7a:5a:f7:f2:c7:4f:c8:2b:35:ff:50:05:ed: 6b:bd:78:cd:d7:52:a0:dc:ef:f7:56:85:24:51:47: a0:80:a0:34:71:90:01:d4:74:7b:5e:08:e7:00:12: a2:51:e2:d0:51:c3:9f:91:5d:7d:14:57:1d:93:d4: e8:8f:5e:b6:16:5a:18:a0:07:14:ec:a3:6c:37:06: b4:29:b0:97:c9:4b:22:4d:ea:73:e9:58:e3:f8:3a: 31:53:39:85:7b:bd:bf:fe:c7:06:51:f9:e9:7a:e5: ce:d5:62:a4:c7:e5:f8:c8:dc:70:08:3d:f4:64:ad: 2f:98:26:88:8d:5e:f2:79:e1:cf:d8:34:9b:64:e5: 7a:8c:b1:16:fb:41:28:1d:fc:59:56:19:fe:bc:e4: cd:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:01:28:DB:0F:53:FD:F5:D5:85:AE:0F:54:DD:84:E9:D2:A3:44:98 X509v3 Authority Key Identifier: keyid:3B:F4:41:B5:7C:86:BD:9D:19:34:51:A0:05:D2:6C:E1:A3:C6:DE:E7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/GgEo2w9T_fXVha4PVN2E6dKjRJg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.160.180.0/23 Signature Algorithm: sha256WithRSAEncryption 07:c1:9b:2c:24:98:3f:b0:34:27:e8:eb:bb:fe:be:88:17:ae: bb:ff:80:7f:d0:ff:53:2f:f1:73:1b:0b:93:e1:5d:f7:e1:1e: d6:8e:ef:5c:0f:d1:17:c5:ba:e4:0e:e1:26:14:16:98:70:94: ee:c3:8f:c7:e0:17:f3:d6:c0:21:6f:2e:0e:02:6f:55:7e:6f: e7:61:a3:31:fb:54:9e:5f:dd:cb:e4:51:be:74:f6:21:ab:2b: 5e:61:0b:d8:83:7e:44:ea:f1:7a:55:20:0e:d2:44:ce:f4:fc: 62:e2:03:b9:8f:87:f3:20:93:27:35:4e:11:03:1b:d8:f3:85: d4:3d:16:49:ee:b8:48:b5:84:ef:61:47:a3:b3:2b:b0:58:80: fc:9a:ef:dc:43:9f:6f:24:0d:fd:88:c4:0d:ce:96:31:49:97: ff:1f:ea:60:bf:16:c0:74:b8:a1:ff:78:e0:a9:bd:c9:5e:6f: 56:c2:b1:41:f8:97:9a:2f:de:44:b9:d8:37:de:8c:72:4e:8f: 5c:84:95:08:46:ac:40:4b:36:4e:d8:70:46:18:76:ce:6c:d6: b7:26:a9:4e:0f:99:3e:05:57:88:0c:36:49:0b:9e:6b:58:aa: b0:38:6a:ca:3a:b0:a6:2a:81:96:7a:fc:be:1f:60:42:d2:b9: 4f:5c:52:08 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICA5cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JG NDQxQjU3Qzg2QkQ5RDE5MzQ1MUEwMDVEMjZDRTFBM0M2REVFNzAeFw0yNTA4MjIw ODUyMjBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDFBMDEyOERCMEY1M0ZE RjVENTg1QUUwRjU0REQ4NEU5RDJBMzQ0OTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD2CtKVl8IBrEy5PWr8tigEVW8Z3Oxh28BMF13zRZDI8TchGhDK Ra0TC21BrCQd+sdUcauwg3Ig0tYuU3hMIdBsyOxwq+BAChx/KalvS6pTnFZOtVn0 xf0y7knkEJdrZyXLftLBZR3n3Xupelr38sdPyCs1/1AF7Wu9eM3XUqDc7/dWhSRR R6CAoDRxkAHUdHteCOcAEqJR4tBRw5+RXX0UVx2T1OiPXrYWWhigBxTso2w3BrQp sJfJSyJN6nPpWOP4OjFTOYV7vb/+xwZR+el65c7VYqTH5fjI3HAIPfRkrS+YJoiN XvJ54c/YNJtk5XqMsRb7QSgd/FlWGf685M1dAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUGgEo2w9T/fXVha4PVN2E6dKjRJgwHwYDVR0jBBgwFoAUO/RBtXyGvZ0ZNFGg BdJs4aPG3ucwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRVJBWUlO Rk8vT19SQnRYeUd2WjBaTkZHZ0JkSnM0YVBHM3VjLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9PX1JCdFh5R3ZaMFpORkdnQmRKczRhUEczdWMuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9FUkFZSU5GTy9HZ0VvMnc5VF9mWFZo YTRQVk4yRTZkS2pSSmcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ6C0MA0GCSqGSIb3DQEBCwUAA4IBAQAHwZssJJg/sDQn6Ou7/r6IF667/4B/ 0P9TL/FzGwuT4V334R7Wju9cD9EXxbrkDuEmFBaYcJTuw4/H4Bfz1sAhby4OAm9V fm/nYaMx+1SeX93L5FG+dPYhqyteYQvYg35E6vF6VSAO0kTO9Pxi4gO5j4fzIJMn NU4RAxvY84XUPRZJ7rhItYTvYUejsyuwWID8mu/cQ59vJA39iMQNzpYxSZf/H+pg vxbAdLih/3jgqb3JXm9WwrFB+JeaL95Eudg33oxyTo9chJUIRqxASzZO2HBGGHbO bNa3JqlOD5k+BVeIDDZJC55rWKqwOGrKOrCmKoGWevy+H2BC0rlPXFII -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:53 2025 by rpki-client