$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/FFAGfkuLGUm-xWUm79rYhvFWD3o.roa File: FFAGfkuLGUm-xWUm79rYhvFWD3o.roa (raw, json) Hash identifier: b5BTDbfbGPP8gz2QbodCFNh511useKia2pS+a69e4bI= Subject key identifier: 14:50:06:7E:4B:8B:19:49:BE:C5:65:26:EF:DA:D8:86:F1:56:0F:7A Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 08A9 Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/FFAGfkuLGUm-xWUm79rYhvFWD3o.roa Signing time: Fri 22 Aug 2025 09:01:58 +0000 ROA not before: Fri 22 Aug 2025 09:01:58 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 134823 IP address blocks: 103.122.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2217 (0x8a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Aug 22 09:01:58 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1450067E4B8B1949BEC56526EFDAD886F1560F7A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:19:91:ae:54:e5:41:b6:2f:36:37:d4:9a:be: b2:be:c4:55:70:d9:c0:e6:18:3c:fe:58:c8:a9:3a: 03:51:55:16:17:07:77:f8:3d:47:49:d2:31:ba:f1: aa:9f:e9:2e:44:14:4a:c1:ec:40:00:ca:83:d2:30: 93:0b:f4:e2:67:02:e8:e8:ee:fd:6b:bd:fc:ef:4b: 32:43:23:4a:54:82:9f:e3:eb:c4:5b:cd:af:36:ca: 9e:df:2b:1f:d6:ba:f2:ea:f7:f6:2a:59:75:21:4e: 7c:d1:d6:85:97:18:b6:07:18:82:5f:0c:dc:8c:4c: 62:45:7a:92:25:19:21:c0:a5:20:45:e0:61:14:63: 76:4c:8b:95:54:cc:d2:21:ae:69:ac:bf:c9:e5:3e: 72:8c:1d:17:ff:e5:7f:a4:40:62:ee:5f:d2:f4:d4: b0:15:47:5b:ee:09:71:ca:2a:16:67:cb:28:f2:46: b4:43:ef:01:c5:25:3c:e5:b8:f5:5b:67:6d:5b:1f: 3b:0d:3a:70:6a:60:b4:d3:8b:82:70:e0:d8:12:9b: 0b:aa:c7:56:7c:c3:f8:be:c9:99:66:63:5d:8c:04: d3:1f:16:83:35:3c:b8:b8:90:de:f5:1d:4b:1a:a7: 38:c7:bb:43:e6:98:04:eb:a1:b9:5e:a8:fc:51:00: 12:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:50:06:7E:4B:8B:19:49:BE:C5:65:26:EF:DA:D8:86:F1:56:0F:7A X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/FFAGfkuLGUm-xWUm79rYhvFWD3o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.190.0/24 Signature Algorithm: sha256WithRSAEncryption 91:e7:67:eb:84:d9:72:c7:5a:f9:fb:3e:38:65:28:b8:d0:31: 9e:c5:2a:ac:7d:43:02:4c:53:4a:7f:e6:22:cd:2b:7c:bb:b2: 0a:f2:3e:11:59:fa:ec:ad:cd:9a:4e:34:e1:a9:f9:dc:66:bd: 15:b2:95:73:e6:3b:54:92:62:a5:54:ea:44:a8:92:b8:d0:63: 11:d8:5b:7a:ab:af:ce:e6:e1:8d:4d:72:5a:78:ab:3b:d4:c4: 53:19:60:82:31:03:b7:f6:f5:03:01:b7:3c:39:2d:0c:c8:d3: a0:87:7d:21:5b:74:34:cf:1e:47:b9:06:de:d1:d1:5e:d0:6b: 42:c8:a7:77:05:b3:67:3a:05:61:75:17:46:1a:f1:63:06:f2: 47:62:96:4b:63:ce:08:87:e6:96:ae:f9:6c:2e:51:00:53:f1: 42:81:55:bb:74:3e:83:4e:a4:9e:8c:09:e4:9d:ea:f9:c3:31: 07:23:13:1b:33:f3:7d:ca:d5:eb:78:2d:71:98:08:7f:a9:13: a9:36:bb:a0:47:f7:1c:4f:7a:6f:5c:34:b0:17:0c:53:09:4e: 48:3d:73:76:3a:4c:fd:9b:76:d2:b7:ea:e1:70:2e:79:51:a8: 79:ad:b0:bb:20:e3:22:bf:c4:3a:c5:6c:36:05:e7:8e:db:fd: b2:97:8d:45 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICCKkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNTA4MjIw OTAxNThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDE0NTAwNjdFNEI4QjE5 NDlCRUM1NjUyNkVGREFEODg2RjE1NjBGN0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDZGZGuVOVBti82N9SavrK+xFVw2cDmGDz+WMipOgNRVRYXB3f4 PUdJ0jG68aqf6S5EFErB7EAAyoPSMJML9OJnAujo7v1rvfzvSzJDI0pUgp/j68Rb za82yp7fKx/WuvLq9/YqWXUhTnzR1oWXGLYHGIJfDNyMTGJFepIlGSHApSBF4GEU Y3ZMi5VUzNIhrmmsv8nlPnKMHRf/5X+kQGLuX9L01LAVR1vuCXHKKhZnyyjyRrRD 7wHFJTzluPVbZ21bHzsNOnBqYLTTi4Jw4NgSmwuqx1Z8w/i+yZlmY12MBNMfFoM1 PLi4kN71HUsapzjHu0PmmATrobleqPxRABIpAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUFFAGfkuLGUm+xWUm79rYhvFWD3owHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL0ZGQUdma3VMR1VtLXhXVW03 OXJZaHZGV0Qzby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn er4wDQYJKoZIhvcNAQELBQADggEBAJHnZ+uE2XLHWvn7PjhlKLjQMZ7FKqx9QwJM U0p/5iLNK3y7sgryPhFZ+uytzZpONOGp+dxmvRWylXPmO1SSYqVU6kSokrjQYxHY W3qrr87m4Y1Nclp4qzvUxFMZYIIxA7f29QMBtzw5LQzI06CHfSFbdDTPHke5Bt7R 0V7Qa0LIp3cFs2c6BWF1F0Ya8WMG8kdilktjzgiH5pau+WwuUQBT8UKBVbt0PoNO pJ6MCeSd6vnDMQcjExsz833K1et4LXGYCH+pE6k2u6BH9xxPem9cNLAXDFMJTkg9 c3Y6TP2bdtK36uFwLnlRqHmtsLsg4yK/xDrFbDYF547b/bKXjUU= -----END CERTIFICATE-----Generated at Sun Aug 24 05:06:16 2025 by rpki-client