$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FANTASIA/XRIF8jtvbFZ3RNvocZ81bm_LmNw.roa File: XRIF8jtvbFZ3RNvocZ81bm_LmNw.roa (raw, json) Hash identifier: yc5CmqKNiWrICzGfreHezbPGuTauvoyyPup3jXM24GY= Subject key identifier: 5D:12:05:F2:3B:6F:6C:56:77:44:DB:E8:71:9F:35:6E:6F:CB:98:DC Certificate issuer: /CN=5B6B6F9DD4E2976144344002CF16293A0CA0A7D5 Certificate serial: 026B Authority key identifier: 5B:6B:6F:9D:D4:E2:97:61:44:34:40:02:CF:16:29:3A:0C:A0:A7:D5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/W2tvndTil2FENEACzxYpOgygp9U.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASIA/XRIF8jtvbFZ3RNvocZ81bm_LmNw.roa Signing time: Fri 22 Aug 2025 09:03:12 +0000 ROA not before: Fri 22 Aug 2025 09:03:12 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131642 IP address blocks: 103.255.40.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASIA/W2tvndTil2FENEACzxYpOgygp9U.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASIA/W2tvndTil2FENEACzxYpOgygp9U.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/W2tvndTil2FENEACzxYpOgygp9U.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 619 (0x26b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5B6B6F9DD4E2976144344002CF16293A0CA0A7D5 Validity Not Before: Aug 22 09:03:12 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=5D1205F23B6F6C567744DBE8719F356E6FCB98DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:d6:22:4e:cb:b4:b3:d0:ee:2d:3c:8c:e7:5d: 99:69:ca:eb:d2:d4:5f:fd:f4:8e:ba:49:c0:a3:d5: c7:b4:24:39:95:d1:ff:bb:6c:de:25:26:30:dc:66: df:49:d2:f6:3c:8e:a4:4f:f9:f4:17:fd:12:5a:cd: e3:83:eb:fd:1b:d4:04:b8:0d:4b:95:b4:00:79:2d: 9f:c5:7b:0a:aa:08:64:ea:7f:8a:dc:9c:48:e9:2c: b3:45:9b:61:0e:61:9d:7b:3c:83:1d:d7:5e:37:af: dd:8d:54:6b:87:2f:37:28:8b:f0:90:54:0c:0d:1c: a2:3d:20:90:7e:38:5e:1d:4d:01:ac:9f:15:65:5f: ff:e7:64:3a:04:8b:96:1d:c4:8d:35:15:d5:e3:0b: 79:25:4a:c6:ab:8e:3f:44:20:ec:01:40:e4:8f:39: f8:dd:43:c8:cb:e1:af:92:0d:45:f4:60:cd:c7:59: 45:16:a7:d3:18:6e:c7:3d:aa:01:61:90:7c:e7:ef: 28:80:47:e6:f6:95:e7:1f:95:54:3e:ad:8d:d8:cf: 77:dc:51:9b:f1:e1:7b:fd:d5:4c:58:9b:6e:b3:4d: 6f:17:d9:29:3c:06:4c:81:ea:81:7e:a2:e7:84:cc: fa:91:ee:68:ed:b6:3c:7a:e5:23:e6:36:07:95:1f: cd:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:12:05:F2:3B:6F:6C:56:77:44:DB:E8:71:9F:35:6E:6F:CB:98:DC X509v3 Authority Key Identifier: keyid:5B:6B:6F:9D:D4:E2:97:61:44:34:40:02:CF:16:29:3A:0C:A0:A7:D5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASIA/W2tvndTil2FENEACzxYpOgygp9U.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/W2tvndTil2FENEACzxYpOgygp9U.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASIA/XRIF8jtvbFZ3RNvocZ81bm_LmNw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.255.40.0/23 Signature Algorithm: sha256WithRSAEncryption 81:b5:70:2c:2b:dd:89:7c:77:03:0a:69:41:5a:fe:34:3e:8e: 64:f6:79:a2:22:44:85:d3:ef:bd:0d:50:fa:28:82:a8:21:a7: 5c:d6:fd:78:0f:22:26:7d:44:1f:97:6e:4c:c1:e8:6e:0e:22: 45:84:76:8a:17:90:05:24:4b:78:e6:dc:6c:76:ab:07:31:9f: 90:7c:a6:c4:de:e1:61:8e:63:cd:62:db:12:ac:c3:c5:7b:11: 85:3f:e7:88:61:be:60:30:16:e0:0b:2b:ff:2f:f7:25:6c:16: 65:8c:48:56:34:c3:6a:e9:02:6c:56:e1:df:db:59:13:2a:fd: a8:a8:5b:7e:51:46:b3:28:6d:8d:ff:ed:57:2d:58:08:b3:45: c3:53:eb:83:2f:06:66:ff:4d:69:a3:33:bc:31:55:f8:e6:14: 39:b4:62:43:d0:67:d0:a9:d2:0e:b4:e3:d7:f5:35:1b:89:e0: b3:1d:99:67:87:f8:81:0f:a5:9b:d6:62:4d:a7:64:01:b1:2f: ce:39:9c:da:8a:28:c5:c1:23:a5:81:eb:be:17:7f:84:a7:e3: ee:13:b4:ef:00:8c:5b:a7:bf:c0:df:50:c1:ce:a6:0b:e5:90: 79:93:87:88:12:1c:d2:78:b8:9d:f5:6e:e7:2c:f5:be:3b:6f: ea:5e:55:c2 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICAmswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUI2 QjZGOURENEUyOTc2MTQ0MzQ0MDAyQ0YxNjI5M0EwQ0EwQTdENTAeFw0yNTA4MjIw OTAzMTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDVEMTIwNUYyM0I2RjZD NTY3NzQ0REJFODcxOUYzNTZFNkZDQjk4REMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCn1iJOy7Sz0O4tPIznXZlpyuvS1F/99I66ScCj1ce0JDmV0f+7 bN4lJjDcZt9J0vY8jqRP+fQX/RJazeOD6/0b1AS4DUuVtAB5LZ/FewqqCGTqf4rc nEjpLLNFm2EOYZ17PIMd1143r92NVGuHLzcoi/CQVAwNHKI9IJB+OF4dTQGsnxVl X//nZDoEi5YdxI01FdXjC3klSsarjj9EIOwBQOSPOfjdQ8jL4a+SDUX0YM3HWUUW p9MYbsc9qgFhkHzn7yiAR+b2lecflVQ+rY3Yz3fcUZvx4Xv91UxYm26zTW8X2Sk8 BkyB6oF+oueEzPqR7mjttjx65SPmNgeVH82VAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUXRIF8jtvbFZ3RNvocZ81bm/LmNwwHwYDVR0jBBgwFoAUW2tvndTil2FENEAC zxYpOgygp9UwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkFOVEFT SUEvVzJ0dm5kVGlsMkZFTkVBQ3p4WXBPZ3lncDlVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9XMnR2bmRUaWwyRkVORUFDenhZcE9neWdwOVUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9GQU5UQVNJQS9YUklGOGp0dmJGWjNS TnZvY1o4MWJtX0xtTncucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ/8oMA0GCSqGSIb3DQEBCwUAA4IBAQCBtXAsK92JfHcDCmlBWv40Po5k9nmi IkSF0++9DVD6KIKoIadc1v14DyImfUQfl25MwehuDiJFhHaKF5AFJEt45txsdqsH MZ+QfKbE3uFhjmPNYtsSrMPFexGFP+eIYb5gMBbgCyv/L/clbBZljEhWNMNq6QJs VuHf21kTKv2oqFt+UUazKG2N/+1XLVgIs0XDU+uDLwZm/01pozO8MVX45hQ5tGJD 0GfQqdIOtOPX9TUbieCzHZlnh/iBD6Wb1mJNp2QBsS/OOZzaiijFwSOlgeu+F3+E p+PuE7TvAIxbp7/A31DBzqYL5ZB5k4eIEhzSeLid9W7nLPW+O2/qXlXC -----END CERTIFICATE-----Generated at Sun Aug 24 11:45:20 2025 by rpki-client