$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/3OdQqrqKx45Sor9pmB9PzbFFNes.roa File: 3OdQqrqKx45Sor9pmB9PzbFFNes.roa (raw, json) Hash identifier: oZUlUcrAgjSbd4G3WVXERBq5gqzG0i+2h0ps7Yp+Mu8= Subject key identifier: DC:E7:50:AA:BA:8A:C7:8E:52:A2:BF:69:98:1F:4F:CD:B1:45:35:EB Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 08BB Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/3OdQqrqKx45Sor9pmB9PzbFFNes.roa Signing time: Fri 22 Aug 2025 09:02:03 +0000 ROA not before: Fri 22 Aug 2025 09:02:03 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131657 IP address blocks: 103.122.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2235 (0x8bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Aug 22 09:02:03 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=DCE750AABA8AC78E52A2BF69981F4FCDB14535EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:36:ba:26:40:b2:a2:c9:18:e0:f3:17:5b:97: 08:90:1d:5b:94:06:85:b2:fe:ee:0c:0f:80:c6:d7: 46:61:7e:ff:96:b0:e2:69:3d:9d:a7:64:5c:d5:68: 3a:fd:78:8f:fd:ae:8a:ff:30:27:88:54:a4:dd:dc: c4:8c:91:49:b7:a3:f9:f2:14:71:bf:23:d8:72:6d: 29:97:40:fb:47:23:de:f5:d2:7d:00:2e:d8:84:a8: 95:9e:20:83:1f:f1:1c:0f:9c:ef:b3:51:27:ad:a5: 61:57:c4:13:cf:b7:f3:b5:e5:48:ae:ce:03:9b:42: 9e:93:8f:ec:d5:f7:62:1e:43:90:ab:ff:9d:f5:04: ed:55:6c:68:94:cd:19:65:7e:33:ff:2e:fa:b1:88: 90:b7:48:74:7a:95:00:67:c1:08:ea:1d:02:ef:13: 61:31:ab:14:bc:53:e9:89:81:87:52:90:b1:dd:13: aa:26:24:2a:a1:db:5d:2a:69:ef:27:59:0d:05:4d: 34:bc:64:f4:2c:f8:85:6b:63:4f:df:f2:5c:10:df: 5d:a6:df:a0:c9:8c:f8:9d:16:95:19:c4:bc:df:6e: de:af:68:20:99:40:ed:e6:79:b2:44:a4:18:87:fc: fb:e0:54:44:8d:a2:83:0a:a2:4d:83:8c:21:d6:1c: 8f:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:E7:50:AA:BA:8A:C7:8E:52:A2:BF:69:98:1F:4F:CD:B1:45:35:EB X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/3OdQqrqKx45Sor9pmB9PzbFFNes.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.188.0/24 Signature Algorithm: sha256WithRSAEncryption b6:03:aa:00:d1:cd:d4:4b:d5:cb:35:1b:6d:44:e1:ce:37:f3: 1f:34:8d:33:d4:99:56:11:a5:88:86:77:6e:07:4b:4f:8f:00: 0d:06:43:f7:06:bc:47:83:63:21:c3:68:35:71:23:92:97:4a: cb:97:33:7a:6b:61:fe:25:ce:1c:db:5d:2a:55:1c:d2:73:48: 5f:07:d4:6e:81:ec:57:36:e0:8d:e5:e5:a6:3a:e8:7b:2d:f5: fc:c5:ca:2c:09:47:97:24:d6:6b:9f:74:25:f8:5c:dd:5b:00: 88:58:b4:af:63:ce:30:bc:27:31:41:62:45:61:69:06:fe:0d: 9f:44:98:93:48:52:70:b9:ac:bf:d7:72:df:9d:fe:7e:01:72: 73:3d:90:9a:c7:d1:09:c5:53:5a:a3:1e:cf:b8:c2:ad:c1:01: d7:cb:79:bf:a4:af:b6:89:c6:5f:a1:09:96:11:69:32:d4:9a: 18:d1:bc:59:10:84:51:db:0b:1a:bc:dd:b5:ae:e8:27:0c:78: e3:6f:bf:e3:bb:d2:ae:63:69:46:fa:8d:bf:ef:19:63:d2:a4: ae:f9:43:26:e1:d5:59:91:08:4d:a1:95:b1:de:6a:7f:8f:8a: 01:49:15:13:2a:02:34:1d:87:73:0b:c7:9a:54:91:11:8c:9e: 1e:96:29:32 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICCLswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNTA4MjIw OTAyMDNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKERDRTc1MEFBQkE4QUM3 OEU1MkEyQkY2OTk4MUY0RkNEQjE0NTM1RUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8NromQLKiyRjg8xdblwiQHVuUBoWy/u4MD4DG10Zhfv+WsOJp PZ2nZFzVaDr9eI/9ror/MCeIVKTd3MSMkUm3o/nyFHG/I9hybSmXQPtHI9710n0A LtiEqJWeIIMf8RwPnO+zUSetpWFXxBPPt/O15UiuzgObQp6Tj+zV92IeQ5Cr/531 BO1VbGiUzRllfjP/LvqxiJC3SHR6lQBnwQjqHQLvE2ExqxS8U+mJgYdSkLHdE6om JCqh210qae8nWQ0FTTS8ZPQs+IVrY0/f8lwQ312m36DJjPidFpUZxLzfbt6vaCCZ QO3mebJEpBiH/PvgVESNooMKok2DjCHWHI/pAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU3OdQqrqKx45Sor9pmB9PzbFFNeswHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBLzNPZFFxcnFLeDQ1U29yOXBt QjlQemJGRk5lcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn erwwDQYJKoZIhvcNAQELBQADggEBALYDqgDRzdRL1cs1G21E4c438x80jTPUmVYR pYiGd24HS0+PAA0GQ/cGvEeDYyHDaDVxI5KXSsuXM3prYf4lzhzbXSpVHNJzSF8H 1G6B7Fc24I3l5aY66Hst9fzFyiwJR5ck1mufdCX4XN1bAIhYtK9jzjC8JzFBYkVh aQb+DZ9EmJNIUnC5rL/Xct+d/n4BcnM9kJrH0QnFU1qjHs+4wq3BAdfLeb+kr7aJ xl+hCZYRaTLUmhjRvFkQhFHbCxq83bWu6CcMeONvv+O70q5jaUb6jb/vGWPSpK75 Qybh1VmRCE2hlbHean+PigFJFRMqAjQdh3MLx5pUkRGMnh6WKTI= -----END CERTIFICATE-----Generated at Sun Aug 24 05:10:04 2025 by rpki-client