$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/QZN53ARWSHPoZybZituovHv2VMA.roa File: QZN53ARWSHPoZybZituovHv2VMA.roa (raw, json) Hash identifier: xpV2mADjKRF8dmb+rzuDG/kcLz+vEDvLmEfLcpG16fA= Subject key identifier: 41:93:79:DC:04:56:48:73:E8:67:26:D9:8A:DB:A8:BC:7B:F6:54:C0 Certificate issuer: /CN=3BF441B57C86BD9D193451A005D26CE1A3C6DEE7 Certificate serial: 0399 Authority key identifier: 3B:F4:41:B5:7C:86:BD:9D:19:34:51:A0:05:D2:6C:E1:A3:C6:DE:E7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/QZN53ARWSHPoZybZituovHv2VMA.roa Signing time: Fri 22 Aug 2025 08:52:21 +0000 ROA not before: Fri 22 Aug 2025 08:52:21 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38136 IP address blocks: 103.160.180.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 921 (0x399) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BF441B57C86BD9D193451A005D26CE1A3C6DEE7 Validity Not Before: Aug 22 08:52:21 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=419379DC04564873E86726D98ADBA8BC7BF654C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:55:13:46:31:f5:9c:93:00:8c:bc:27:72:9f: fd:ab:9e:d1:eb:af:54:9f:7c:de:50:5f:c6:e0:4d: 98:26:f9:cc:7d:2f:91:38:72:76:c0:fe:26:2c:91: 8d:5a:75:6f:ba:a0:f0:62:56:ee:56:5c:b4:d5:b2: d5:60:7e:d0:4e:33:b9:59:63:3c:20:b1:18:50:eb: 91:8d:d4:67:47:0c:9f:80:97:bf:e3:83:96:82:e8: f8:e1:ad:38:b2:6d:80:9e:8d:38:9a:52:8b:d8:dc: aa:d3:c9:22:f5:fa:5f:f1:22:fb:6c:ae:9a:63:d5: 58:22:02:44:1a:a9:5b:3b:12:f9:ec:b2:db:1c:a9: d5:37:59:20:db:7a:31:b2:29:46:2d:81:93:70:11: 5c:7a:9c:47:33:c4:51:ad:c7:68:95:9d:eb:62:09: 11:d8:23:89:1e:5a:f6:ee:d0:04:a6:07:c0:8e:31: 7b:dd:90:d1:12:da:cd:0c:74:f0:a7:c1:1d:0f:76: 48:34:72:f3:24:96:7d:b0:e4:56:6a:2c:ea:0c:15: d9:eb:18:97:7a:dc:0c:a4:e5:91:9b:a8:bc:cf:d1: 71:cc:4a:93:1a:85:dd:dd:c0:7e:fd:a1:35:ba:21: ab:72:63:52:29:b7:83:7c:3b:54:af:43:eb:10:51: 38:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:93:79:DC:04:56:48:73:E8:67:26:D9:8A:DB:A8:BC:7B:F6:54:C0 X509v3 Authority Key Identifier: keyid:3B:F4:41:B5:7C:86:BD:9D:19:34:51:A0:05:D2:6C:E1:A3:C6:DE:E7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/QZN53ARWSHPoZybZituovHv2VMA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.160.180.0/23 Signature Algorithm: sha256WithRSAEncryption 01:f9:e4:e7:2e:46:73:07:70:c6:f0:29:f7:fd:94:5f:62:88: 97:c0:72:94:8e:89:98:ae:ca:d1:5e:a2:f5:76:f4:cf:59:fe: 00:20:54:89:5e:6d:72:87:69:2d:b5:ae:f9:11:21:7a:9f:ee: 96:3b:f7:58:fa:9a:9c:be:08:d8:22:f1:5c:d5:51:91:0f:9e: d6:09:b4:c1:88:ff:f9:09:f2:59:f5:91:7d:75:c8:d3:bc:83: 76:2d:1e:5e:fa:34:aa:62:29:d9:11:fd:35:08:b5:04:16:3f: e1:93:07:26:98:c4:95:f0:68:5e:17:c9:4f:8a:9c:4f:74:f2: e8:4f:19:7b:2b:f8:68:be:03:f2:e5:2a:13:e2:da:1c:f4:a0: ab:25:56:3b:35:fb:a9:4e:d7:ed:bd:07:9b:51:12:75:4b:9c: 71:67:cd:dd:bc:e5:6d:ed:78:01:d4:e4:54:33:ec:11:43:02: 29:9b:d1:7d:6c:f2:a7:50:82:8b:51:68:71:cc:7a:5d:d6:45: 2c:39:8f:29:e3:7e:71:ad:c3:cf:76:d1:df:a9:63:1d:40:30: 74:0e:5f:e7:f0:ac:91:66:65:eb:1b:2e:14:4b:3f:7b:83:5a: 58:87:5a:70:77:4a:2b:9d:e6:b1:42:3f:29:8c:e1:fd:4b:e0: 58:f2:97:0d -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICA5kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JG NDQxQjU3Qzg2QkQ5RDE5MzQ1MUEwMDVEMjZDRTFBM0M2REVFNzAeFw0yNTA4MjIw ODUyMjFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQxOTM3OURDMDQ1NjQ4 NzNFODY3MjZEOThBREJBOEJDN0JGNjU0QzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwVRNGMfWckwCMvCdyn/2rntHrr1SffN5QX8bgTZgm+cx9L5E4 cnbA/iYskY1adW+6oPBiVu5WXLTVstVgftBOM7lZYzwgsRhQ65GN1GdHDJ+Al7/j g5aC6PjhrTiybYCejTiaUovY3KrTySL1+l/xIvtsrppj1VgiAkQaqVs7Evnsstsc qdU3WSDbejGyKUYtgZNwEVx6nEczxFGtx2iVnetiCRHYI4keWvbu0ASmB8COMXvd kNES2s0MdPCnwR0Pdkg0cvMkln2w5FZqLOoMFdnrGJd63Ayk5ZGbqLzP0XHMSpMa hd3dwH79oTW6IatyY1Ipt4N8O1SvQ+sQUTjpAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUQZN53ARWSHPoZybZituovHv2VMAwHwYDVR0jBBgwFoAUO/RBtXyGvZ0ZNFGg BdJs4aPG3ucwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRVJBWUlO Rk8vT19SQnRYeUd2WjBaTkZHZ0JkSnM0YVBHM3VjLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9PX1JCdFh5R3ZaMFpORkdnQmRKczRhUEczdWMuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9FUkFZSU5GTy9RWk41M0FSV1NIUG9a eWJaaXR1b3ZIdjJWTUEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ6C0MA0GCSqGSIb3DQEBCwUAA4IBAQAB+eTnLkZzB3DG8Cn3/ZRfYoiXwHKU jomYrsrRXqL1dvTPWf4AIFSJXm1yh2ktta75ESF6n+6WO/dY+pqcvgjYIvFc1VGR D57WCbTBiP/5CfJZ9ZF9dcjTvIN2LR5e+jSqYinZEf01CLUEFj/hkwcmmMSV8Ghe F8lPipxPdPLoTxl7K/hovgPy5SoT4toc9KCrJVY7NfupTtftvQebURJ1S5xxZ83d vOVt7XgB1ORUM+wRQwIpm9F9bPKnUIKLUWhxzHpd1kUsOY8p435xrcPPdtHfqWMd QDB0Dl/n8KyRZmXrGy4USz97g1pYh1pwd0orneaxQj8pjOH9S+BY8pcN -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:42 2025 by rpki-client