$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/BDe1F7hRC9fkrw-E2v7uV6jv2XU.roa File: BDe1F7hRC9fkrw-E2v7uV6jv2XU.roa (raw, json) Hash identifier: 9+FrDhMVzPBZhn3Nk0KwhCQjgnp9ZacXWQgeOFXaB8Y= Subject key identifier: 04:37:B5:17:B8:51:0B:D7:E4:AF:0F:84:DA:FE:EE:57:A8:EF:D9:75 Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 089F Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/BDe1F7hRC9fkrw-E2v7uV6jv2XU.roa Signing time: Fri 22 Aug 2025 09:01:55 +0000 ROA not before: Fri 22 Aug 2025 09:01:55 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 134823 IP address blocks: 103.122.188.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2207 (0x89f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Aug 22 09:01:55 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=0437B517B8510BD7E4AF0F84DAFEEE57A8EFD975 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:15:a2:02:c5:9b:54:7f:86:57:d3:31:01:b2: e9:ba:97:41:fd:8d:fa:97:9a:36:84:45:54:b1:1f: cf:70:47:aa:53:ee:95:e2:2e:12:23:99:0d:a1:08: 43:a1:4c:d1:cd:5a:48:7e:c3:cc:ab:a3:9e:d4:50: a6:77:6b:4f:7c:8a:ab:fa:c2:f5:bb:ea:68:f2:85: 54:16:d4:25:77:a2:00:cb:ac:56:a8:f9:27:58:7c: 02:48:11:5b:d1:3b:88:b1:25:dc:6a:99:91:c5:e0: 4d:73:95:41:a6:8e:6f:e9:fe:4e:20:59:8f:41:91: 3b:e9:d9:cc:16:45:d2:1c:01:e9:01:bd:cc:f2:5b: 3f:06:72:43:94:3f:ce:6e:81:be:73:a3:c1:a1:5f: 38:10:71:7c:a1:63:e5:b0:cc:d7:3a:e8:e0:14:c8: 79:ea:7e:69:69:0a:d3:85:c9:e9:cb:9b:82:70:ee: 27:89:81:7e:5c:5b:3d:c6:ec:b9:9a:7c:d1:f0:fe: 16:66:01:7b:fb:52:99:eb:df:31:dc:a7:69:05:5e: bb:aa:4f:c7:f5:34:9e:04:bf:28:c0:cd:3c:0c:d1: ef:0a:69:2e:39:bd:ed:09:9f:57:5f:0d:c6:44:02: 99:fb:d5:94:89:5e:50:b5:65:79:56:4c:b4:1d:f4: 8f:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:37:B5:17:B8:51:0B:D7:E4:AF:0F:84:DA:FE:EE:57:A8:EF:D9:75 X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/BDe1F7hRC9fkrw-E2v7uV6jv2XU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.188.0/22 Signature Algorithm: sha256WithRSAEncryption 3a:93:7a:de:94:6c:3d:04:c5:87:fa:c8:a6:68:ae:8d:f5:8a: 45:bc:76:61:ea:a1:50:18:f6:16:af:d1:73:9d:af:de:9a:7a: 72:a4:f8:30:d6:ec:91:8e:88:ff:6e:b2:e7:eb:85:7c:ce:f8: 5c:84:4b:8b:52:1b:a6:ea:32:2b:2c:a9:86:f8:7c:ba:63:33: d7:25:02:b5:45:57:d4:08:71:39:2d:46:64:62:27:60:2c:ec: 5d:68:0a:d2:55:02:0f:d9:39:3c:63:25:33:bc:5e:b1:a9:73: 03:6c:ce:60:1f:bd:70:9c:df:13:2b:d2:c8:80:62:73:5f:a8: e9:a3:74:10:43:de:99:41:55:b9:d3:17:2a:de:91:96:82:cb: 3e:a7:a0:bc:e5:67:de:4e:54:03:59:4c:18:43:58:dc:3d:91: ce:96:81:c2:5c:aa:62:0a:fd:07:fd:c7:4a:0a:89:9a:72:96: 15:bc:d0:c9:6c:e4:c6:9a:92:13:60:c6:06:6e:88:3f:a6:18: 72:8d:ee:b9:ef:d7:e9:3b:e9:22:51:26:f7:04:5a:9d:2d:df: 15:a5:58:c9:a8:10:97:61:33:c9:76:3a:55:e4:dd:49:83:87: d5:04:64:6b:02:e4:23:57:49:ac:9e:bc:92:35:7e:ec:33:13: 6f:f6:f8:68 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICCJ8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNTA4MjIw OTAxNTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDA0MzdCNTE3Qjg1MTBC RDdFNEFGMEY4NERBRkVFRTU3QThFRkQ5NzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4FaICxZtUf4ZX0zEBsum6l0H9jfqXmjaERVSxH89wR6pT7pXi LhIjmQ2hCEOhTNHNWkh+w8yro57UUKZ3a098iqv6wvW76mjyhVQW1CV3ogDLrFao +SdYfAJIEVvRO4ixJdxqmZHF4E1zlUGmjm/p/k4gWY9BkTvp2cwWRdIcAekBvczy Wz8GckOUP85ugb5zo8GhXzgQcXyhY+WwzNc66OAUyHnqfmlpCtOFyenLm4Jw7ieJ gX5cWz3G7LmafNHw/hZmAXv7Upnr3zHcp2kFXruqT8f1NJ4EvyjAzTwM0e8KaS45 ve0Jn1dfDcZEApn71ZSJXlC1ZXlWTLQd9I8bAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUBDe1F7hRC9fkrw+E2v7uV6jv2XUwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL0JEZTFGN2hSQzlma3J3LUUy djd1VjZqdjJYVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn erwwDQYJKoZIhvcNAQELBQADggEBADqTet6UbD0ExYf6yKZoro31ikW8dmHqoVAY 9hav0XOdr96aenKk+DDW7JGOiP9usufrhXzO+FyES4tSG6bqMissqYb4fLpjM9cl ArVFV9QIcTktRmRiJ2As7F1oCtJVAg/ZOTxjJTO8XrGpcwNszmAfvXCc3xMr0siA YnNfqOmjdBBD3plBVbnTFyrekZaCyz6noLzlZ95OVANZTBhDWNw9kc6WgcJcqmIK /Qf9x0oKiZpylhW80Mls5MaakhNgxgZuiD+mGHKN7rnv1+k76SJRJvcEWp0t3xWl WMmoEJdhM8l2OlXk3UmDh9UEZGsC5CNXSayevJI1fuwzE2/2+Gg= -----END CERTIFICATE-----Generated at Sun Aug 24 05:06:15 2025 by rpki-client