$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FISC/KlueSoOFYIFMwZxTUWMCWx_Er0k.roa File: KlueSoOFYIFMwZxTUWMCWx_Er0k.roa (raw, json) Hash identifier: q6FaBDJ0gXdttGkSaqW5YLkeXKM0t1IKSHiR9Kbkcak= Subject key identifier: 2A:5B:9E:4A:83:85:60:81:4C:C1:9C:53:51:63:02:5B:1F:C4:AF:49 Certificate issuer: /CN=F0CE10BD7C2B39A03A70C302BA2B08652C0807D2 Certificate serial: 0D97 Authority key identifier: F0:CE:10:BD:7C:2B:39:A0:3A:70:C3:02:BA:2B:08:65:2C:08:07:D2 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8M4QvXwrOaA6cMMCuisIZSwIB9I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FISC/KlueSoOFYIFMwZxTUWMCWx_Er0k.roa Signing time: Fri 22 Aug 2025 08:59:14 +0000 ROA not before: Fri 22 Aug 2025 08:59:14 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131588 IP address blocks: 103.229.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FISC/8M4QvXwrOaA6cMMCuisIZSwIB9I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FISC/8M4QvXwrOaA6cMMCuisIZSwIB9I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8M4QvXwrOaA6cMMCuisIZSwIB9I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 02:44:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3479 (0xd97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F0CE10BD7C2B39A03A70C302BA2B08652C0807D2 Validity Not Before: Aug 22 08:59:14 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2A5B9E4A838560814CC19C535163025B1FC4AF49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:af:b5:7a:c5:73:f2:13:40:8b:39:ab:11:a8: 4e:08:02:31:ef:0a:2d:bd:d3:ba:9f:50:0e:3d:09: 0f:00:ec:73:74:f0:f0:21:13:e0:7a:3e:c5:32:b6: d2:93:ff:1a:9a:62:0e:08:a6:8a:ad:6e:b4:fb:d6: a3:a2:ca:b2:dd:a3:85:3c:0a:90:77:dc:75:60:d9: ed:78:17:44:3a:62:95:6a:54:dc:6b:ad:93:69:93: c7:ec:e3:d2:02:a7:ad:1f:7d:c4:9d:b8:ac:70:d7: e5:81:6d:a0:6a:9f:b9:f8:ea:24:21:09:2b:c3:1c: 2a:20:ce:b4:d7:6d:2b:a9:60:c0:a3:37:76:8b:69: f7:90:e7:51:80:21:94:c3:9e:eb:62:cc:ca:75:eb: f4:87:a8:5c:72:0a:b0:da:53:44:98:ba:87:36:ce: 97:84:05:c2:69:10:3b:51:4e:ee:3a:cd:50:69:c3: 47:ef:7c:6e:0e:65:9c:48:bb:0e:b8:23:00:81:4a: 8d:74:cd:f8:84:91:75:71:58:72:1b:d7:25:a3:e6: bc:4d:79:79:ea:db:c8:ab:b8:92:f8:4a:13:ac:f2: 3b:15:31:3b:d8:f6:52:5a:71:30:04:3e:65:e1:67: 19:6e:fb:1e:cc:a2:54:02:80:d7:88:d7:b0:24:9e: a1:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:5B:9E:4A:83:85:60:81:4C:C1:9C:53:51:63:02:5B:1F:C4:AF:49 X509v3 Authority Key Identifier: keyid:F0:CE:10:BD:7C:2B:39:A0:3A:70:C3:02:BA:2B:08:65:2C:08:07:D2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FISC/8M4QvXwrOaA6cMMCuisIZSwIB9I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8M4QvXwrOaA6cMMCuisIZSwIB9I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FISC/KlueSoOFYIFMwZxTUWMCWx_Er0k.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.229.132.0/24 Signature Algorithm: sha256WithRSAEncryption c5:39:74:0a:48:7d:d2:ae:49:3d:d1:43:ce:e3:e4:6f:4d:25: b1:3a:21:fa:e0:40:73:7e:1e:d1:b2:5d:9c:46:4e:cf:95:44: ed:9b:f9:58:cc:5b:1a:11:f9:bc:9f:a5:2d:68:9c:de:10:53: e4:e8:71:17:08:25:f0:f7:63:a4:58:c4:fd:42:b6:c7:32:1f: 04:06:03:b2:40:6d:7f:b0:e0:a2:ca:13:73:c4:27:d3:53:fb: ea:f1:33:b4:76:a2:5c:47:1d:43:ab:f2:dc:31:3a:08:a4:6f: 25:ff:93:d3:a9:a1:00:ac:ef:fc:b5:82:b1:63:f7:f0:27:7b: 34:0a:d7:09:c6:3d:c1:36:c3:87:27:76:9c:59:ca:df:59:d4: 9d:e4:d6:59:22:75:8e:cc:b7:59:af:68:ff:e8:8d:bb:cf:25: bd:76:83:12:80:7d:1e:c2:9e:95:79:ef:3a:78:44:39:c7:73: b3:0d:a0:d7:68:19:dc:7c:06:46:db:3a:4d:c9:d7:8a:d4:60: 1b:b5:df:98:2f:a2:51:e6:6a:de:12:37:4a:02:d8:5e:10:17: 37:40:db:96:78:90:85:78:db:2c:84:20:e2:d9:21:46:2f:07: 9a:c7:c1:3f:5d:c3:51:df:9a:62:29:95:62:70:a1:01:0e:40: be:84:6d:7c -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDZcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjBD RTEwQkQ3QzJCMzlBMDNBNzBDMzAyQkEyQjA4NjUyQzA4MDdEMjAeFw0yNTA4MjIw ODU5MTRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDJBNUI5RTRBODM4NTYw ODE0Q0MxOUM1MzUxNjMwMjVCMUZDNEFGNDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxr7V6xXPyE0CLOasRqE4IAjHvCi2907qfUA49CQ8A7HN08PAh E+B6PsUyttKT/xqaYg4IpoqtbrT71qOiyrLdo4U8CpB33HVg2e14F0Q6YpVqVNxr rZNpk8fs49ICp60ffcSduKxw1+WBbaBqn7n46iQhCSvDHCogzrTXbSupYMCjN3aL afeQ51GAIZTDnutizMp16/SHqFxyCrDaU0SYuoc2zpeEBcJpEDtRTu46zVBpw0fv fG4OZZxIuw64IwCBSo10zfiEkXVxWHIb1yWj5rxNeXnq28iruJL4ShOs8jsVMTvY 9lJacTAEPmXhZxlu+x7MolQCgNeI17AknqFnAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUKlueSoOFYIFMwZxTUWMCWx/Er0kwHwYDVR0jBBgwFoAU8M4QvXwrOaA6cMMC uisIZSwIB9IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRklTQy84 TTRRdlh3ck9hQTZjTU1DdWlzSVpTd0lCOUkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzhNNFF2WHdyT2FBNmNNTUN1aXNJWlN3SUI5SS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0ZJU0MvS2x1ZVNvT0ZZSUZNd1p4VFVXTUNX eF9FcjBrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGflhDAN BgkqhkiG9w0BAQsFAAOCAQEAxTl0Ckh90q5JPdFDzuPkb00lsToh+uBAc34e0bJd nEZOz5VE7Zv5WMxbGhH5vJ+lLWic3hBT5OhxFwgl8PdjpFjE/UK2xzIfBAYDskBt f7DgosoTc8Qn01P76vEztHaiXEcdQ6vy3DE6CKRvJf+T06mhAKzv/LWCsWP38Cd7 NArXCcY9wTbDhyd2nFnK31nUneTWWSJ1jsy3Wa9o/+iNu88lvXaDEoB9HsKelXnv OnhEOcdzsw2g12gZ3HwGRts6TcnXitRgG7XfmC+iUeZq3hI3SgLYXhAXN0DblniQ hXjbLIQg4tkhRi8HmsfBP13DUd+aYimVYnChAQ5AvoRtfA== -----END CERTIFICATE-----Generated at Mon Aug 25 02:07:15 2025 by rpki-client