$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FANTASY/xCeerbNQbCjuFk6yLezQCULFhoQ.roa File: xCeerbNQbCjuFk6yLezQCULFhoQ.roa (raw, json) Hash identifier: pxOV+oFA0pz5SA2LMx1FFl75LQ3+gVk7x0xieYQ8PyI= Subject key identifier: C4:27:9E:AD:B3:50:6C:28:EE:16:4E:B2:2D:EC:D0:09:42:C5:86:84 Certificate issuer: /CN=59DEF2CF828F0D9AB6AD94F426131764D254CC5C Certificate serial: 0B21 Authority key identifier: 59:DE:F2:CF:82:8F:0D:9A:B6:AD:94:F4:26:13:17:64:D2:54:CC:5C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/xCeerbNQbCjuFk6yLezQCULFhoQ.roa Signing time: Fri 22 Aug 2025 08:44:13 +0000 ROA not before: Fri 22 Aug 2025 08:44:13 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131671 IP address blocks: 103.146.212.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2849 (0xb21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=59DEF2CF828F0D9AB6AD94F426131764D254CC5C Validity Not Before: Aug 22 08:44:13 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C4279EADB3506C28EE164EB22DECD00942C58684 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:fe:a6:19:05:94:10:84:d3:99:fc:43:5d:50: a3:36:1b:f9:1b:1c:6a:4b:7e:6e:0f:f7:40:d6:18: 94:3b:30:ee:54:eb:0c:cc:28:ca:38:1b:66:03:91: 6b:a4:12:a2:49:de:8e:11:74:c4:a7:58:c4:e3:9e: 3e:6b:d3:17:e0:15:ab:45:25:b5:f0:7f:a5:d5:23: fe:54:49:54:de:9b:ce:0e:30:bc:8b:e6:38:79:bc: 2a:74:52:20:31:ee:fa:8a:27:42:a2:fe:ac:c8:fb: 7b:cf:2e:43:fb:e0:35:a5:b1:9e:d5:83:22:1c:10: 86:46:36:f1:0a:05:d6:9d:8d:05:96:fc:4f:b6:15: f4:ce:52:96:51:f5:fd:78:7f:06:13:78:37:3a:b8: 68:19:43:60:1f:ab:51:12:bb:e4:0b:2b:da:b2:d1: c1:8b:a0:c0:78:1b:13:2e:de:aa:f1:60:46:2e:8c: 9e:5d:69:98:23:5b:f7:62:3c:c1:75:b9:e6:1b:03: e4:0b:cf:4f:c7:4d:ca:e6:9c:7f:34:31:fd:60:85: 05:df:9a:65:98:4b:3d:a7:9a:c4:6f:d1:dc:91:f0: 89:18:4b:78:aa:8c:10:2e:82:f3:ed:ce:d8:ad:16: 92:1e:b1:cd:5e:d1:94:d0:9c:48:eb:0a:63:25:6f: 19:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:27:9E:AD:B3:50:6C:28:EE:16:4E:B2:2D:EC:D0:09:42:C5:86:84 X509v3 Authority Key Identifier: keyid:59:DE:F2:CF:82:8F:0D:9A:B6:AD:94:F4:26:13:17:64:D2:54:CC:5C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/xCeerbNQbCjuFk6yLezQCULFhoQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.146.212.0/23 Signature Algorithm: sha256WithRSAEncryption 8d:62:c3:9c:d4:bb:b9:11:b8:d7:82:b2:92:ee:bf:e0:e2:5e: 91:a4:43:47:7e:3c:a3:5a:e1:f0:97:2b:6a:90:4c:92:34:f1: 07:68:c5:45:6e:88:70:a9:70:57:e0:ac:4e:0b:c5:bc:2b:8f: d1:f3:0a:3b:a6:d0:68:27:6e:38:08:5f:7a:b8:14:1b:14:f6: 1b:28:41:3e:a6:e1:a9:50:d9:66:18:d2:48:58:3d:26:48:8a: b6:c4:23:47:16:ed:e6:5e:1c:d2:c8:eb:1e:1e:d1:ea:4a:1f: 0d:22:c0:7e:54:52:0a:19:3c:58:c7:f9:a2:ba:d6:55:92:63: 30:1f:64:10:d2:d3:d1:24:da:d9:f3:72:59:b8:37:b5:d6:9a: 7d:89:20:4d:8d:b4:a1:bd:91:f0:66:6f:07:46:e3:07:8a:fb: 38:36:23:9f:9f:9b:0c:87:56:54:9f:0e:39:14:01:b0:29:5b: 8c:2e:20:71:a3:41:77:09:37:b4:ee:ac:69:63:24:22:d4:30: f0:99:a3:b5:76:4f:10:1c:69:15:c7:a8:74:b9:a1:bb:e8:96: ce:c6:8d:6d:3a:bb:dd:19:97:76:b1:ba:35:18:aa:46:39:6c: 97:da:6e:55:a4:72:cf:c6:f7:3e:ee:8a:bf:c9:d5:84:26:9c: dd:f6:04:ca -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICCyEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTlE RUYyQ0Y4MjhGMEQ5QUI2QUQ5NEY0MjYxMzE3NjREMjU0Q0M1QzAeFw0yNTA4MjIw ODQ0MTNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEM0Mjc5RUFEQjM1MDZD MjhFRTE2NEVCMjJERUNEMDA5NDJDNTg2ODQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDF/qYZBZQQhNOZ/ENdUKM2G/kbHGpLfm4P90DWGJQ7MO5U6wzM KMo4G2YDkWukEqJJ3o4RdMSnWMTjnj5r0xfgFatFJbXwf6XVI/5USVTem84OMLyL 5jh5vCp0UiAx7vqKJ0Ki/qzI+3vPLkP74DWlsZ7VgyIcEIZGNvEKBdadjQWW/E+2 FfTOUpZR9f14fwYTeDc6uGgZQ2Afq1ESu+QLK9qy0cGLoMB4GxMu3qrxYEYujJ5d aZgjW/diPMF1ueYbA+QLz0/HTcrmnH80Mf1ghQXfmmWYSz2nmsRv0dyR8IkYS3iq jBAugvPtztitFpIesc1e0ZTQnEjrCmMlbxmxAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUxCeerbNQbCjuFk6yLezQCULFhoQwHwYDVR0jBBgwFoAUWd7yz4KPDZq2rZT0 JhMXZNJUzFwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkFOVEFT WS9XZDd5ejRLUERacTJyWlQwSmhNWFpOSlV6RncuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1dkN3l6NEtQRFpxMnJaVDBKaE1YWk5KVXpGdy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0ZBTlRBU1kveENlZXJiTlFiQ2p1Rms2 eUxlelFDVUxGaG9RLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AWeS1DANBgkqhkiG9w0BAQsFAAOCAQEAjWLDnNS7uRG414Kyku6/4OJekaRDR348 o1rh8JcrapBMkjTxB2jFRW6IcKlwV+CsTgvFvCuP0fMKO6bQaCduOAhfergUGxT2 GyhBPqbhqVDZZhjSSFg9JkiKtsQjRxbt5l4c0sjrHh7R6kofDSLAflRSChk8WMf5 orrWVZJjMB9kENLT0STa2fNyWbg3tdaafYkgTY20ob2R8GZvB0bjB4r7ODYjn5+b DIdWVJ8OORQBsClbjC4gcaNBdwk3tO6saWMkItQw8JmjtXZPEBxpFceodLmhu+iW zsaNbTq73RmXdrG6NRiqRjlsl9puVaRyz8b3Pu6Kv8nVhCac3fYEyg== -----END CERTIFICATE-----Generated at Sun Aug 24 13:40:14 2025 by rpki-client