$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/i8dKOZXv1vhIMXMiLXLxGftsai4.roa File: i8dKOZXv1vhIMXMiLXLxGftsai4.roa (raw, json) Hash identifier: dCnmF49hVZrcW6hE5UyiIonjm5uD2CJYDBTlbJ/5LU8= Subject key identifier: 8B:C7:4A:39:95:EF:D6:F8:48:31:73:22:2D:72:F1:19:FB:6C:6A:2E Certificate issuer: /CN=3BF441B57C86BD9D193451A005D26CE1A3C6DEE7 Certificate serial: 0398 Authority key identifier: 3B:F4:41:B5:7C:86:BD:9D:19:34:51:A0:05:D2:6C:E1:A3:C6:DE:E7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/i8dKOZXv1vhIMXMiLXLxGftsai4.roa Signing time: Fri 22 Aug 2025 08:52:20 +0000 ROA not before: Fri 22 Aug 2025 08:52:20 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 56850 IP address blocks: 103.160.180.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 920 (0x398) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BF441B57C86BD9D193451A005D26CE1A3C6DEE7 Validity Not Before: Aug 22 08:52:20 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8BC74A3995EFD6F8483173222D72F119FB6C6A2E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:16:9a:d3:70:4b:d9:6f:d9:8a:e6:66:e0:8c: 1c:dc:07:3c:97:3d:37:3b:94:fd:d9:6f:65:d8:64: f3:8e:39:96:b4:49:1c:ca:9d:2f:24:0b:11:98:a9: f9:18:4a:e2:0b:09:f6:40:43:3e:70:c8:0b:27:6a: 37:46:f3:00:2f:1e:7d:21:37:f4:02:82:2a:8f:81: 3b:bf:86:e7:11:f1:b9:a8:bb:09:cb:5d:c2:55:a4: f2:93:78:21:74:20:c6:a7:82:2f:15:92:11:25:ab: 1d:c5:59:15:d2:f1:82:21:35:5b:a1:f7:9e:d5:d3: 2a:dc:bc:fe:14:95:8e:44:16:0d:d3:f8:d1:46:f3: dd:74:9f:f6:07:e2:ba:4f:ee:e0:d7:99:6f:a6:d9: de:63:b0:32:86:7f:d1:dd:fa:63:2c:eb:25:e5:4b: a3:be:81:f1:29:04:db:ab:ad:70:44:f1:2b:d7:b0: de:23:79:db:5a:93:7a:c9:3d:7e:07:8b:4b:48:12: 07:b3:52:7b:f2:a5:f7:2c:fb:ab:26:c1:11:9b:b5: 84:71:6b:60:e4:e8:da:1b:36:da:d7:7a:92:ff:aa: a5:a6:a8:a0:c3:bc:23:ed:ea:d8:c5:1e:ad:74:44: 6c:76:b1:5e:4d:17:5f:9e:51:7e:8e:84:ea:54:06: 6d:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:C7:4A:39:95:EF:D6:F8:48:31:73:22:2D:72:F1:19:FB:6C:6A:2E X509v3 Authority Key Identifier: keyid:3B:F4:41:B5:7C:86:BD:9D:19:34:51:A0:05:D2:6C:E1:A3:C6:DE:E7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/i8dKOZXv1vhIMXMiLXLxGftsai4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.160.180.0/23 Signature Algorithm: sha256WithRSAEncryption 20:7f:7e:2e:80:2d:56:91:56:61:2f:c6:d7:21:cf:a1:e3:f7: 57:09:46:70:79:0a:a2:a8:bd:9b:61:45:49:e4:99:c4:e0:c6: 31:1b:14:6d:4b:e2:e8:ff:28:63:2f:a3:c8:3b:f0:6b:15:2b: 7d:56:47:b6:31:59:77:0a:9a:96:a1:89:e0:d4:a5:79:57:8b: 01:39:74:16:13:5e:e9:70:27:5a:16:71:71:87:52:d7:88:93: 91:6f:58:13:06:a1:1e:a3:91:f7:31:33:ad:28:e8:ea:be:f8: e5:86:a8:15:98:27:0f:43:23:c8:9f:d6:68:f2:1c:52:38:64: 12:77:9d:0b:89:a6:46:b0:da:b7:c4:52:c7:18:4b:73:25:ff: c3:8b:88:b1:de:6d:c1:f6:41:54:62:67:10:b7:8d:fd:3d:ca: 21:e5:46:c6:92:aa:c7:64:6e:5f:b8:23:64:2d:39:ac:2b:f3: 43:11:39:72:b8:45:4f:26:7c:0a:07:c2:72:cd:2e:25:ac:77: 09:6c:04:b1:24:4b:2b:00:98:ae:b4:e8:fb:40:7f:87:62:d7: cd:14:34:5a:31:f0:99:fa:5a:f0:27:af:c9:9e:88:51:90:eb: 5f:5f:2f:cd:63:8e:cf:ac:53:51:6e:8f:3f:b2:1c:e0:7e:e8: 07:6e:ee:5f -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICA5gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JG NDQxQjU3Qzg2QkQ5RDE5MzQ1MUEwMDVEMjZDRTFBM0M2REVFNzAeFw0yNTA4MjIw ODUyMjBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDhCQzc0QTM5OTVFRkQ2 Rjg0ODMxNzMyMjJENzJGMTE5RkI2QzZBMkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXFprTcEvZb9mK5mbgjBzcBzyXPTc7lP3Zb2XYZPOOOZa0SRzK nS8kCxGYqfkYSuILCfZAQz5wyAsnajdG8wAvHn0hN/QCgiqPgTu/hucR8bmouwnL XcJVpPKTeCF0IMangi8VkhElqx3FWRXS8YIhNVuh957V0yrcvP4UlY5EFg3T+NFG 8910n/YH4rpP7uDXmW+m2d5jsDKGf9Hd+mMs6yXlS6O+gfEpBNurrXBE8SvXsN4j edtak3rJPX4Hi0tIEgezUnvypfcs+6smwRGbtYRxa2Dk6NobNtrXepL/qqWmqKDD vCPt6tjFHq10RGx2sV5NF1+eUX6OhOpUBm2JAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUi8dKOZXv1vhIMXMiLXLxGftsai4wHwYDVR0jBBgwFoAUO/RBtXyGvZ0ZNFGg BdJs4aPG3ucwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRVJBWUlO Rk8vT19SQnRYeUd2WjBaTkZHZ0JkSnM0YVBHM3VjLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9PX1JCdFh5R3ZaMFpORkdnQmRKczRhUEczdWMuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9FUkFZSU5GTy9pOGRLT1pYdjF2aElN WE1pTFhMeEdmdHNhaTQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ6C0MA0GCSqGSIb3DQEBCwUAA4IBAQAgf34ugC1WkVZhL8bXIc+h4/dXCUZw eQqiqL2bYUVJ5JnE4MYxGxRtS+Lo/yhjL6PIO/BrFSt9Vke2MVl3CpqWoYng1KV5 V4sBOXQWE17pcCdaFnFxh1LXiJORb1gTBqEeo5H3MTOtKOjqvvjlhqgVmCcPQyPI n9Zo8hxSOGQSd50LiaZGsNq3xFLHGEtzJf/Di4ix3m3B9kFUYmcQt439Pcoh5UbG kqrHZG5fuCNkLTmsK/NDETlyuEVPJnwKB8JyzS4lrHcJbASxJEsrAJiutOj7QH+H YtfNFDRaMfCZ+lrwJ6/JnohRkOtfXy/NY47PrFNRbo8/shzgfugHbu5f -----END CERTIFICATE-----Generated at Sun Aug 24 05:32:06 2025 by rpki-client