$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GOEASY/1qSVSzIRpsHgGSmA5SeAv7ggJ5k.roa File: 1qSVSzIRpsHgGSmA5SeAv7ggJ5k.roa (raw, json) Hash identifier: eNMVAIgJ6UqvGDHNfA60L+lqNF/U1PTYURc4bPZjgfM= Subject key identifier: D6:A4:95:4B:32:11:A6:C1:E0:19:29:80:E5:27:80:BF:B8:20:27:99 Certificate issuer: /CN=66B69E5B178B8C9444C4D64A6963B0BC9FA35762 Certificate serial: 0473 Authority key identifier: 66:B6:9E:5B:17:8B:8C:94:44:C4:D6:4A:69:63:B0:BC:9F:A3:57:62 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZraeWxeLjJRExNZKaWOwvJ-jV2I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/1qSVSzIRpsHgGSmA5SeAv7ggJ5k.roa Signing time: Fri 22 Aug 2025 09:02:07 +0000 ROA not before: Fri 22 Aug 2025 09:02:07 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 7483 IP address blocks: 103.170.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/ZraeWxeLjJRExNZKaWOwvJ-jV2I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/ZraeWxeLjJRExNZKaWOwvJ-jV2I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ZraeWxeLjJRExNZKaWOwvJ-jV2I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1139 (0x473) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66B69E5B178B8C9444C4D64A6963B0BC9FA35762 Validity Not Before: Aug 22 09:02:07 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=D6A4954B3211A6C1E0192980E52780BFB8202799 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:bb:08:44:62:c4:6f:1c:b7:4d:59:28:1f:f4: cb:0c:96:0e:f6:3e:2d:a5:6a:0d:ed:5d:dd:e9:3e: 09:a9:c8:7e:1b:7c:1f:2c:b6:01:ae:32:c8:23:70: 4a:a0:4d:11:6d:8d:66:b4:ee:2d:c8:f5:40:3c:07: a4:68:36:9e:4b:e2:df:c2:34:6f:01:a4:aa:2d:5e: 26:e7:c5:50:d5:65:ef:bd:82:2c:96:ac:c8:14:7d: 60:f7:aa:6d:8e:02:eb:11:43:a4:9a:ce:5d:5a:8e: 8f:5d:0d:af:65:25:e5:1b:b0:75:f3:2e:44:7a:b4: 05:ad:c8:98:e3:32:81:94:54:55:29:02:5b:26:34: 49:1a:a3:bc:98:0f:67:d0:bf:ad:f9:e1:cb:d9:c4: 56:01:3c:c6:e7:74:ef:50:ff:81:d1:0d:5d:50:46: 76:6f:bc:e3:64:75:f1:6a:61:96:e8:fb:74:28:f9: c1:42:eb:2d:08:d6:a5:14:e0:0e:62:2a:16:ac:d3: d1:20:02:bb:74:32:72:08:cf:21:b1:24:c9:ad:b2: 2c:82:5f:87:06:cb:63:ac:db:5a:99:5f:ed:9c:8d: 12:e9:de:0d:7b:81:30:1c:48:ec:a9:76:3d:b1:fb: 94:fa:fa:9a:5f:e2:a3:f4:fa:cc:fd:b6:e3:f4:1b: a9:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:A4:95:4B:32:11:A6:C1:E0:19:29:80:E5:27:80:BF:B8:20:27:99 X509v3 Authority Key Identifier: keyid:66:B6:9E:5B:17:8B:8C:94:44:C4:D6:4A:69:63:B0:BC:9F:A3:57:62 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/ZraeWxeLjJRExNZKaWOwvJ-jV2I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZraeWxeLjJRExNZKaWOwvJ-jV2I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/1qSVSzIRpsHgGSmA5SeAv7ggJ5k.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.170.15.0/24 Signature Algorithm: sha256WithRSAEncryption 75:e4:64:01:d5:2e:e6:4b:19:25:b8:cd:a2:10:85:f0:e5:ae: 7d:4a:10:50:bf:3b:90:5d:63:e3:f7:46:47:78:86:4b:7f:34: d3:9a:9f:a9:b2:84:8b:9e:6d:6a:a8:af:7f:38:4e:9d:49:fb: 52:85:4a:5f:d8:cb:43:8b:c7:ac:0d:e6:71:be:c8:4b:37:2e: 15:9c:e0:d7:5a:00:65:74:47:b5:dd:8f:72:03:b4:3a:cf:54: 42:1b:7b:5f:8e:69:34:10:d0:d7:fc:84:8e:ef:b4:06:e6:6d: df:ca:b3:ab:67:15:39:51:e4:fa:ba:e3:2a:d3:59:50:26:14: 57:f7:30:19:f0:2e:65:17:2f:3c:4f:af:13:b8:6d:6d:97:8f: 59:e9:50:66:fd:84:39:bc:32:fc:6b:1b:15:05:b6:39:7f:9b: 54:4f:69:e1:d0:4d:06:1a:77:29:07:3f:74:28:e5:b9:17:8e: 2e:20:4d:70:37:b4:7a:a5:3b:6d:72:f4:c8:fd:c5:06:05:80: 53:d0:b8:84:1f:c9:cf:27:48:ba:61:96:5f:16:06:8b:e0:ca: 7b:52:ff:20:b5:e0:94:a1:d6:b6:9d:2a:6b:a9:c6:1f:2e:97: 65:b4:c5:89:cf:04:91:94:27:3c:c2:b8:ef:10:f7:08:5a:fb: b8:4c:ff:bb -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICBHMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjZC NjlFNUIxNzhCOEM5NDQ0QzRENjRBNjk2M0IwQkM5RkEzNTc2MjAeFw0yNTA4MjIw OTAyMDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEQ2QTQ5NTRCMzIxMUE2 QzFFMDE5Mjk4MEU1Mjc4MEJGQjgyMDI3OTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFuwhEYsRvHLdNWSgf9MsMlg72Pi2lag3tXd3pPgmpyH4bfB8s tgGuMsgjcEqgTRFtjWa07i3I9UA8B6RoNp5L4t/CNG8BpKotXibnxVDVZe+9giyW rMgUfWD3qm2OAusRQ6Sazl1ajo9dDa9lJeUbsHXzLkR6tAWtyJjjMoGUVFUpAlsm NEkao7yYD2fQv6354cvZxFYBPMbndO9Q/4HRDV1QRnZvvONkdfFqYZbo+3Qo+cFC 6y0I1qUU4A5iKhas09EgArt0MnIIzyGxJMmtsiyCX4cGy2Os21qZX+2cjRLp3g17 gTAcSOypdj2x+5T6+ppf4qP0+sz9tuP0G6mFAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU1qSVSzIRpsHgGSmA5SeAv7ggJ5kwHwYDVR0jBBgwFoAUZraeWxeLjJRExNZK aWOwvJ+jV2IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR09FQVNZ L1pyYWVXeGVMakpSRXhOWkthV093dkotalYySS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvWnJhZVd4ZUxqSlJFeE5aS2FXT3d2Si1qVjJJLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvR09FQVNZLzFxU1ZTeklScHNIZ0dTbUE1 U2VBdjdnZ0o1ay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn qg8wDQYJKoZIhvcNAQELBQADggEBAHXkZAHVLuZLGSW4zaIQhfDlrn1KEFC/O5Bd Y+P3Rkd4hkt/NNOan6myhIuebWqor384Tp1J+1KFSl/Yy0OLx6wN5nG+yEs3LhWc 4NdaAGV0R7Xdj3IDtDrPVEIbe1+OaTQQ0Nf8hI7vtAbmbd/Ks6tnFTlR5Pq64yrT WVAmFFf3MBnwLmUXLzxPrxO4bW2Xj1npUGb9hDm8MvxrGxUFtjl/m1RPaeHQTQYa dykHP3Qo5bkXji4gTXA3tHqlO21y9Mj9xQYFgFPQuIQfyc8nSLphll8WBovgyntS /yC14JSh1radKmupxh8ul2W0xYnPBJGUJzzCuO8Q9wha+7hM/7s= -----END CERTIFICATE-----Generated at Sun Aug 24 09:44:59 2025 by rpki-client