$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/Acd-ZuQY1ErQxsINkD7ht3xrQvQ.roa File: Acd-ZuQY1ErQxsINkD7ht3xrQvQ.roa (raw, json) Hash identifier: 1O/oYT8Vac2n8giNFOAjOL/Keh4ch3h8LOS6f3lWFsE= Subject key identifier: 01:C7:7E:66:E4:18:D4:4A:D0:C6:C2:0D:90:3E:E1:B7:7C:6B:42:F4 Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 08AE Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/Acd-ZuQY1ErQxsINkD7ht3xrQvQ.roa Signing time: Fri 22 Aug 2025 09:02:00 +0000 ROA not before: Fri 22 Aug 2025 09:02:00 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 20473 IP address blocks: 103.122.188.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2222 (0x8ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Aug 22 09:02:00 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=01C77E66E418D44AD0C6C20D903EE1B77C6B42F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:45:6c:f4:37:cc:61:7d:3f:4a:52:72:e4:f1: f2:86:fe:86:7e:5d:3e:2e:6c:6d:d8:e6:3c:9a:30: 15:cd:09:7b:53:cc:b4:f0:c5:be:40:fc:f9:d3:8e: 31:72:c7:60:d9:33:24:1b:d1:bc:aa:2d:24:99:8e: ff:c5:3f:14:12:68:22:a2:3a:9c:86:2d:0c:4e:bd: d7:87:9e:4a:ef:05:07:51:e6:db:12:50:79:1d:7f: 3d:16:2a:06:f0:6e:90:45:e8:ac:cc:03:13:17:77: 92:39:97:db:ab:b1:d9:b0:7d:99:8b:07:72:54:89: f8:f9:25:9b:b4:79:8e:3e:26:66:0b:0c:c9:30:70: e2:12:60:d4:8e:a4:7c:35:7a:ae:da:8e:fc:0e:2a: 7d:77:fc:19:1f:bd:67:b0:d6:be:ac:ff:da:f8:a6: 0c:dc:88:6b:62:4a:29:b2:b8:e4:42:ae:47:66:52: 18:ac:fe:99:7d:7c:e2:b3:2a:36:e4:a2:75:e1:e6: 3f:2e:a6:40:fb:31:fc:cc:25:8d:1c:57:7d:2f:8b: 60:7b:99:72:eb:f8:64:d3:53:2c:72:e1:3a:45:53: 55:3f:bc:f3:18:54:4f:ae:be:94:b7:92:99:67:63: 58:a2:ec:ca:cf:68:ca:0e:0c:72:f1:59:1b:d7:f4: 82:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:C7:7E:66:E4:18:D4:4A:D0:C6:C2:0D:90:3E:E1:B7:7C:6B:42:F4 X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/Acd-ZuQY1ErQxsINkD7ht3xrQvQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.188.0/22 Signature Algorithm: sha256WithRSAEncryption 90:d8:f1:24:10:48:77:d9:8b:95:1a:7b:e5:1d:02:ef:4b:4a: 68:a8:5a:79:79:70:86:66:b4:55:02:12:a3:77:c9:5a:1e:c9: e7:04:d4:31:6d:4b:1a:1a:d3:5e:bf:e5:e9:af:29:c9:79:bb: 4a:3a:7f:3a:77:01:cf:18:a3:a5:6d:83:9a:41:83:1d:be:01: 0e:5d:d7:63:79:7b:b4:94:fd:3d:19:ec:05:2a:80:46:55:22: 31:04:40:de:28:b9:1d:93:8a:56:54:34:10:79:52:ff:bf:b7: 03:52:87:43:26:65:4e:5f:69:a4:64:d7:12:20:a3:5f:2e:f2: f5:94:0a:0e:17:15:6b:34:47:b5:40:02:87:f4:56:a3:74:f7: a9:1b:d6:fa:4b:ae:2f:74:11:c3:99:93:ed:32:70:e2:38:3f: 8b:43:36:9c:c1:b6:95:99:c1:28:d2:01:6d:38:47:9a:98:c6: bb:db:08:86:ae:62:12:9d:1d:65:ad:11:27:f7:03:70:92:fc: 15:26:d0:f1:1b:7d:3b:ce:dc:ba:20:1e:a3:7c:e2:44:ce:6e: 2b:17:9e:05:35:a3:ca:b5:2d:fa:9f:1a:00:57:b4:09:15:98: c1:c3:35:e4:24:91:17:ec:c0:7d:60:49:35:c3:cd:e2:50:d6: 9d:f0:50:17 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICCK4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNTA4MjIw OTAyMDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDAxQzc3RTY2RTQxOEQ0 NEFEMEM2QzIwRDkwM0VFMUI3N0M2QjQyRjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCsRWz0N8xhfT9KUnLk8fKG/oZ+XT4ubG3Y5jyaMBXNCXtTzLTw xb5A/PnTjjFyx2DZMyQb0byqLSSZjv/FPxQSaCKiOpyGLQxOvdeHnkrvBQdR5tsS UHkdfz0WKgbwbpBF6KzMAxMXd5I5l9ursdmwfZmLB3JUifj5JZu0eY4+JmYLDMkw cOISYNSOpHw1eq7ajvwOKn13/BkfvWew1r6s/9r4pgzciGtiSimyuORCrkdmUhis /pl9fOKzKjbkonXh5j8upkD7MfzMJY0cV30vi2B7mXLr+GTTUyxy4TpFU1U/vPMY VE+uvpS3kplnY1ii7MrPaMoODHLxWRvX9IKjAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUAcd+ZuQY1ErQxsINkD7ht3xrQvQwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL0FjZC1adVFZMUVyUXhzSU5r RDdodDN4clF2US5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn erwwDQYJKoZIhvcNAQELBQADggEBAJDY8SQQSHfZi5Uae+UdAu9LSmioWnl5cIZm tFUCEqN3yVoeyecE1DFtSxoa016/5emvKcl5u0o6fzp3Ac8Yo6Vtg5pBgx2+AQ5d 12N5e7SU/T0Z7AUqgEZVIjEEQN4ouR2TilZUNBB5Uv+/twNSh0MmZU5faaRk1xIg o18u8vWUCg4XFWs0R7VAAof0VqN096kb1vpLri90EcOZk+0ycOI4P4tDNpzBtpWZ wSjSAW04R5qYxrvbCIauYhKdHWWtESf3A3CS/BUm0PEbfTvO3LogHqN84kTObisX ngU1o8q1LfqfGgBXtAkVmMHDNeQkkRfswH1gSTXDzeJQ1p3wUBc= -----END CERTIFICATE-----Generated at Sun Aug 24 05:08:09 2025 by rpki-client