$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FLOPPY/lr0fsLso_i5AIOWIlmd2uz9x8Jw.roa File: lr0fsLso_i5AIOWIlmd2uz9x8Jw.roa (raw, json) Hash identifier: P+jNJjK/hN+iXy2sdhtxObGbOlqRJw3RRQAd2k5wQME= Subject key identifier: 96:BD:1F:B0:BB:28:FE:2E:40:20:E5:88:96:67:76:BB:3F:71:F0:9C Certificate issuer: /CN=9E454EA69C0249FFAB072242AEDD882821269838 Certificate serial: 021D Authority key identifier: 9E:45:4E:A6:9C:02:49:FF:AB:07:22:42:AE:DD:88:28:21:26:98:38 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/nkVOppwCSf-rByJCrt2IKCEmmDg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FLOPPY/lr0fsLso_i5AIOWIlmd2uz9x8Jw.roa Signing time: Fri 22 Aug 2025 09:01:04 +0000 ROA not before: Fri 22 Aug 2025 09:01:04 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 150756 IP address blocks: 203.99.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FLOPPY/nkVOppwCSf-rByJCrt2IKCEmmDg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FLOPPY/nkVOppwCSf-rByJCrt2IKCEmmDg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/nkVOppwCSf-rByJCrt2IKCEmmDg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 541 (0x21d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E454EA69C0249FFAB072242AEDD882821269838 Validity Not Before: Aug 22 09:01:04 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=96BD1FB0BB28FE2E4020E588966776BB3F71F09C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:f4:bd:5a:13:23:cb:5f:c9:99:e6:26:33:12: 4e:9e:87:53:3d:22:c6:ce:b6:73:77:d1:58:59:1d: 8f:bf:57:78:43:3f:9b:94:2e:15:1e:15:28:73:30: 45:b0:83:77:b9:d4:0d:5d:e2:c4:6e:28:35:e6:ff: 57:02:c8:d3:7a:a9:d6:b4:27:74:58:cd:06:be:8a: 23:31:44:1d:8f:b6:25:ff:d5:ec:23:89:02:3f:35: 22:e8:6b:13:28:1d:b0:96:7a:ed:37:ce:66:a5:ca: ea:a2:58:de:67:01:d2:7d:08:63:e1:3c:dd:93:dd: c7:82:93:22:84:56:85:26:b1:9e:46:82:d7:74:a5: fd:5d:32:ba:ac:ee:bc:a4:22:bd:2b:2f:a0:78:3d: 9c:51:a6:0d:ae:52:ce:a4:cd:fc:b0:b0:ab:42:f0: 36:ee:45:cf:dc:5a:a1:cf:ea:fd:71:df:b9:9c:19: dd:5f:51:41:a1:81:b2:73:5b:02:a1:b2:70:36:38: 2c:4f:5e:35:85:41:8f:53:24:16:fb:46:0e:b7:4a: d9:82:f1:43:29:4b:9a:75:63:6a:06:08:ff:d0:b4: 4e:6f:c6:c4:10:5a:a2:76:2a:26:57:f9:c0:0b:88: 2c:60:06:4e:5f:29:84:e8:80:39:d3:b2:8b:f2:fa: 8f:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:BD:1F:B0:BB:28:FE:2E:40:20:E5:88:96:67:76:BB:3F:71:F0:9C X509v3 Authority Key Identifier: keyid:9E:45:4E:A6:9C:02:49:FF:AB:07:22:42:AE:DD:88:28:21:26:98:38 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FLOPPY/nkVOppwCSf-rByJCrt2IKCEmmDg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/nkVOppwCSf-rByJCrt2IKCEmmDg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FLOPPY/lr0fsLso_i5AIOWIlmd2uz9x8Jw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.99.147.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:80:9a:a7:8e:f2:16:15:78:bf:a1:f7:60:f7:5c:51:d0:d2: 36:51:c9:c8:89:c3:c3:9f:f4:ea:89:c6:22:87:0f:77:ec:f3: 21:6a:3b:98:aa:2c:b3:94:6c:ed:59:ef:27:6c:3d:bc:d4:ab: fc:40:d6:3c:bb:38:5a:8a:d5:7b:ab:73:82:6f:2f:ad:82:82: 64:ca:7a:c0:eb:9d:74:6d:26:8c:cb:b7:fc:e4:34:b9:98:51: 55:d0:c4:e3:60:0e:f4:6a:87:24:93:59:2e:10:03:ce:9f:18: 89:f1:1b:6b:98:bb:2e:10:b4:f3:a5:ed:36:e6:d8:09:2b:26: 00:4d:07:c0:e3:4d:06:e5:a8:4f:64:f1:c2:81:e8:f5:40:d3: 14:31:a7:49:8a:bc:f2:e6:0b:0f:13:38:df:24:6c:90:b7:30: 5c:fd:e6:ad:1b:27:82:f6:ca:3f:96:aa:73:cf:9c:5a:7e:f5: 27:b3:7e:92:92:7a:9a:d7:e2:81:19:02:6d:05:bd:81:ee:e0: 3f:49:78:f8:8f:9d:f3:37:f2:21:1f:63:db:ed:21:1c:98:d0: ca:95:0b:e7:88:63:9e:16:b5:57:04:12:a8:02:b2:0c:86:c2: 33:a6:27:9e:e7:96:b2:29:f9:63:75:3f:df:80:f2:fd:a5:7e: 13:63:81:78 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICAh0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUU0 NTRFQTY5QzAyNDlGRkFCMDcyMjQyQUVERDg4MjgyMTI2OTgzODAeFw0yNTA4MjIw OTAxMDRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDk2QkQxRkIwQkIyOEZF MkU0MDIwRTU4ODk2Njc3NkJCM0Y3MUYwOUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDu9L1aEyPLX8mZ5iYzEk6eh1M9IsbOtnN30VhZHY+/V3hDP5uU LhUeFShzMEWwg3e51A1d4sRuKDXm/1cCyNN6qda0J3RYzQa+iiMxRB2PtiX/1ewj iQI/NSLoaxMoHbCWeu03zmalyuqiWN5nAdJ9CGPhPN2T3ceCkyKEVoUmsZ5Ggtd0 pf1dMrqs7rykIr0rL6B4PZxRpg2uUs6kzfywsKtC8DbuRc/cWqHP6v1x37mcGd1f UUGhgbJzWwKhsnA2OCxPXjWFQY9TJBb7Rg63StmC8UMpS5p1Y2oGCP/QtE5vxsQQ WqJ2KiZX+cALiCxgBk5fKYTogDnTsovy+o+bAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUlr0fsLso/i5AIOWIlmd2uz9x8JwwHwYDVR0jBBgwFoAUnkVOppwCSf+rByJC rt2IKCEmmDgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkxPUFBZ L25rVk9wcHdDU2YtckJ5SkNydDJJS0NFbW1EZy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbmtWT3Bwd0NTZi1yQnlKQ3J0MklLQ0VtbURnLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkxPUFBZL2xyMGZzTHNvX2k1QUlPV0ls bWQydXo5eDhKdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADL Y5MwDQYJKoZIhvcNAQELBQADggEBAAuAmqeO8hYVeL+h92D3XFHQ0jZRyciJw8Of 9OqJxiKHD3fs8yFqO5iqLLOUbO1Z7ydsPbzUq/xA1jy7OFqK1Xurc4JvL62CgmTK esDrnXRtJozLt/zkNLmYUVXQxONgDvRqhySTWS4QA86fGInxG2uYuy4QtPOl7Tbm 2AkrJgBNB8DjTQblqE9k8cKB6PVA0xQxp0mKvPLmCw8TON8kbJC3MFz95q0bJ4L2 yj+WqnPPnFp+9SezfpKSeprX4oEZAm0FvYHu4D9JePiPnfM38iEfY9vtIRyY0MqV C+eIY54WtVcEEqgCsgyGwjOmJ57nlrIp+WN1P9+A8v2lfhNjgXg= -----END CERTIFICATE-----Generated at Sun Aug 24 09:45:12 2025 by rpki-client