$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/6o4g-58KSYRsh9JzFrqIYN2N6u8.roa File: 6o4g-58KSYRsh9JzFrqIYN2N6u8.roa (raw, json) Hash identifier: S64GB6oGddx4KR30CyX8cUdW2bE30oEJRpjtDARcmbo= Subject key identifier: EA:8E:20:FB:9F:0A:49:84:6C:87:D2:73:16:BA:88:60:DD:8D:EA:EF Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 08A7 Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/6o4g-58KSYRsh9JzFrqIYN2N6u8.roa Signing time: Fri 22 Aug 2025 09:01:58 +0000 ROA not before: Fri 22 Aug 2025 09:01:58 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17418 IP address blocks: 103.153.176.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2215 (0x8a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Aug 22 09:01:58 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=EA8E20FB9F0A49846C87D27316BA8860DD8DEAEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:57:5d:e2:c1:b9:dd:a0:94:48:dd:70:d6:99: 1f:2f:ce:93:0d:9a:4e:72:4a:bc:35:f6:d0:ff:7e: 62:4e:b7:53:a3:be:8e:2b:5e:a5:e3:55:01:38:a5: 15:9a:03:0c:af:3e:5e:a5:0b:be:59:b0:8d:3c:84: 23:8c:68:7d:7a:3d:51:71:8b:6e:64:d3:b2:87:1a: 89:c4:d2:8d:0b:1e:be:38:c6:b8:de:57:a0:c6:bc: e1:33:be:a3:68:3f:64:75:c8:10:4c:7e:49:c6:d0: 14:5f:e5:cd:77:6d:62:7c:73:23:da:44:5a:fc:0e: 99:16:ab:19:d1:7a:fe:f4:f0:cf:22:05:52:53:7a: 59:6c:b9:58:9f:c2:f7:dd:0d:0a:fd:5c:a7:3d:66: 3c:68:5f:b1:08:2f:5a:40:34:1c:ea:00:11:53:00: ca:3e:fb:70:9c:a5:ef:84:46:d9:78:10:d5:05:4d: 70:75:c0:85:67:95:3d:00:eb:44:f7:a1:97:2b:e0: 76:33:bc:b8:6c:5d:82:1f:28:43:65:57:ee:2a:00: 0a:26:1d:cd:13:1d:d9:af:81:b5:0a:e1:be:79:18: 34:c0:4b:98:de:d8:0a:a4:87:ea:1b:f7:04:96:77: ba:8e:da:e8:70:6e:c6:08:31:22:5e:09:ca:0a:38: 58:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:8E:20:FB:9F:0A:49:84:6C:87:D2:73:16:BA:88:60:DD:8D:EA:EF X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/6o4g-58KSYRsh9JzFrqIYN2N6u8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.153.176.0/23 Signature Algorithm: sha256WithRSAEncryption 85:ff:d8:7b:dc:07:1b:64:c2:d7:bd:7b:0b:b8:15:0f:b8:df: ba:3e:a9:63:57:2b:e6:6b:2f:5c:e8:69:4b:f7:f1:32:a3:e0: d0:b6:8a:2a:f9:52:fa:1a:f0:d4:ac:4f:21:4e:7e:0f:58:96: f7:bc:05:16:84:09:66:a8:e5:13:99:11:55:ce:d4:47:9d:6c: aa:93:42:89:94:3c:d2:47:30:60:7b:a6:f3:cf:dc:96:45:19: 93:31:1b:81:a2:84:22:20:60:05:70:d8:23:b4:6e:c3:22:84: 17:30:25:2c:74:b5:af:27:5f:ca:77:95:04:f1:35:0d:04:e7: 23:e9:e7:8b:0c:91:3a:bd:08:d3:a2:f5:34:66:76:14:f5:ef: 94:9d:d9:99:f9:e9:00:2f:fb:5a:05:91:ef:2c:9f:39:9a:a7: a3:70:19:57:64:05:9c:33:ff:85:44:66:0a:cd:e4:a8:18:11: fc:c1:7d:c5:18:6e:f6:0f:13:24:16:40:a6:ed:69:8e:0a:80: dc:d5:5d:e8:eb:b2:78:ac:59:71:3b:ca:d2:24:7d:43:8b:8e: b3:ed:ca:aa:8e:d9:94:e3:93:0e:fc:a4:3a:4f:df:ef:7f:67: fd:f0:a4:5c:32:87:b6:34:61:8c:a5:2b:6f:3a:8e:91:35:a7: f8:e6:cb:a2 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICCKcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNTA4MjIw OTAxNThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEVBOEUyMEZCOUYwQTQ5 ODQ2Qzg3RDI3MzE2QkE4ODYwREQ4REVBRUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBV13iwbndoJRI3XDWmR8vzpMNmk5ySrw19tD/fmJOt1Ojvo4r XqXjVQE4pRWaAwyvPl6lC75ZsI08hCOMaH16PVFxi25k07KHGonE0o0LHr44xrje V6DGvOEzvqNoP2R1yBBMfknG0BRf5c13bWJ8cyPaRFr8DpkWqxnRev708M8iBVJT ellsuVifwvfdDQr9XKc9ZjxoX7EIL1pANBzqABFTAMo++3Ccpe+ERtl4ENUFTXB1 wIVnlT0A60T3oZcr4HYzvLhsXYIfKENlV+4qAAomHc0THdmvgbUK4b55GDTAS5je 2Aqkh+ob9wSWd7qO2uhwbsYIMSJeCcoKOFiZAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU6o4g+58KSYRsh9JzFrqIYN2N6u8wHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBLzZvNGctNThLU1lSc2g5SnpG cnFJWU4yTjZ1OC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn mbAwDQYJKoZIhvcNAQELBQADggEBAIX/2HvcBxtkwte9ewu4FQ+437o+qWNXK+Zr L1zoaUv38TKj4NC2iir5Uvoa8NSsTyFOfg9Ylve8BRaECWao5ROZEVXO1EedbKqT QomUPNJHMGB7pvPP3JZFGZMxG4GihCIgYAVw2CO0bsMihBcwJSx0ta8nX8p3lQTx NQ0E5yPp54sMkTq9CNOi9TRmdhT175Sd2Zn56QAv+1oFke8snzmap6NwGVdkBZwz /4VEZgrN5KgYEfzBfcUYbvYPEyQWQKbtaY4KgNzVXejrsnisWXE7ytIkfUOLjrPt yqqO2ZTjkw78pDpP3+9/Z/3wpFwyh7Y0YYylK286jpE1p/jmy6I= -----END CERTIFICATE-----Generated at Sun Aug 24 05:10:15 2025 by rpki-client