$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/LaVX5X3D7Y0PPLIsHr12ZGd8Yj8.roa File: LaVX5X3D7Y0PPLIsHr12ZGd8Yj8.roa (raw, json) Hash identifier: zcnTubw2yTX8ZPxOv3MP0E6IcCLJ+3BXmwPYfAHyTvE= Subject key identifier: 2D:A5:57:E5:7D:C3:ED:8D:0F:3C:B2:2C:1E:BD:76:64:67:7C:62:3F Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 08A1 Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/LaVX5X3D7Y0PPLIsHr12ZGd8Yj8.roa Signing time: Fri 22 Aug 2025 09:01:56 +0000 ROA not before: Fri 22 Aug 2025 09:01:56 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131657 IP address blocks: 103.153.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2209 (0x8a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Aug 22 09:01:56 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2DA557E57DC3ED8D0F3CB22C1EBD7664677C623F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:36:3f:b9:cc:20:9a:d5:0e:4a:95:1d:fa:6e: 62:f2:0f:35:cc:f7:d5:01:1d:de:2c:9a:eb:20:29: 79:0c:32:bd:07:0e:35:eb:ba:2a:48:5f:00:e8:d1: 2a:12:66:87:c6:1e:04:df:37:8a:ab:1e:87:4e:08: c1:31:af:00:f0:f1:ac:ad:a6:95:fd:0d:2c:67:eb: 73:0d:9d:50:f3:fa:55:ee:e1:f5:c2:02:94:a3:9d: f1:fe:86:82:ba:82:3a:23:3f:70:e2:7b:fb:9e:37: 4b:f8:b7:f7:89:0f:95:f8:ff:01:ac:cd:da:ec:8b: a7:db:75:b3:63:67:05:4e:bc:65:8b:e9:9b:16:b3: a2:69:6c:0a:35:1f:15:3c:d2:6e:89:04:f3:84:9a: 61:8b:3e:41:1c:be:3f:14:bb:36:cf:e8:02:77:95: 0c:b0:36:44:a6:47:91:7d:b4:82:55:6b:0f:e7:fe: ae:3c:2c:9d:22:90:33:f6:32:85:86:45:5f:0c:74: de:f5:ed:62:6e:6d:69:0c:33:d4:30:77:00:fe:44: c8:7a:c6:31:79:3a:3d:46:f4:d3:4a:92:fe:16:45: 0e:d8:15:49:60:a0:1a:bd:95:4a:c7:16:82:cf:fc: da:59:2e:28:f5:6e:33:86:97:e9:a9:1a:cf:3a:35: 57:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:A5:57:E5:7D:C3:ED:8D:0F:3C:B2:2C:1E:BD:76:64:67:7C:62:3F X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/LaVX5X3D7Y0PPLIsHr12ZGd8Yj8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.153.176.0/24 Signature Algorithm: sha256WithRSAEncryption 97:9a:1e:bc:40:60:ce:ca:e3:18:37:f9:4f:d8:e5:c0:47:3d: 74:32:97:b2:8f:5f:5c:29:01:85:8e:86:1b:96:5b:02:32:47: 5c:b0:42:85:de:e1:20:22:89:95:0f:c1:23:5e:af:ac:12:bf: 18:5b:c7:89:a5:c6:c0:79:d5:8d:d6:57:9f:27:3e:17:49:13: 5f:99:b9:af:d9:15:75:5d:d1:c7:7d:d0:b3:50:4a:67:ff:3d: 57:c6:e0:40:6c:4d:8b:20:99:1b:ad:e3:6e:e1:a5:13:7c:b8: 2d:45:a5:08:ea:68:e7:9b:4d:c3:59:1b:0e:3b:8c:20:b0:a0: bb:7d:8d:f2:55:0f:31:86:6c:5b:d1:69:62:84:07:f9:75:4f: 2a:6b:d5:96:b4:30:21:bb:c2:13:3e:69:34:7e:4c:bd:a5:06: 6e:9f:cb:30:3c:cc:db:48:f4:61:d2:7a:55:0d:90:3f:39:40: e7:e9:99:81:cc:61:5d:68:cb:2f:b0:ca:59:ff:f5:d4:57:c3: 54:2c:9a:22:db:45:bd:43:39:89:70:b7:fb:f0:67:ec:73:49: 7c:c7:aa:4b:9c:49:f8:43:f9:fc:be:63:91:d5:c1:51:77:fb: cb:3d:0a:1d:52:99:27:5f:a4:5d:ee:a1:03:46:fe:87:0e:e3: ec:2e:87:ca -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICCKEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNTA4MjIw OTAxNTZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDJEQTU1N0U1N0RDM0VE OEQwRjNDQjIyQzFFQkQ3NjY0Njc3QzYyM0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDANj+5zCCa1Q5KlR36bmLyDzXM99UBHd4smusgKXkMMr0HDjXr uipIXwDo0SoSZofGHgTfN4qrHodOCMExrwDw8aytppX9DSxn63MNnVDz+lXu4fXC ApSjnfH+hoK6gjojP3Die/ueN0v4t/eJD5X4/wGszdrsi6fbdbNjZwVOvGWL6ZsW s6JpbAo1HxU80m6JBPOEmmGLPkEcvj8UuzbP6AJ3lQywNkSmR5F9tIJVaw/n/q48 LJ0ikDP2MoWGRV8MdN717WJubWkMM9QwdwD+RMh6xjF5Oj1G9NNKkv4WRQ7YFUlg oBq9lUrHFoLP/NpZLij1bjOGl+mpGs86NVcdAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQULaVX5X3D7Y0PPLIsHr12ZGd8Yj8wHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL0xhVlg1WDNEN1kwUFBMSXNI cjEyWkdkOFlqOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn mbAwDQYJKoZIhvcNAQELBQADggEBAJeaHrxAYM7K4xg3+U/Y5cBHPXQyl7KPX1wp AYWOhhuWWwIyR1ywQoXe4SAiiZUPwSNer6wSvxhbx4mlxsB51Y3WV58nPhdJE1+Z ua/ZFXVd0cd90LNQSmf/PVfG4EBsTYsgmRut427hpRN8uC1FpQjqaOebTcNZGw47 jCCwoLt9jfJVDzGGbFvRaWKEB/l1Typr1Za0MCG7whM+aTR+TL2lBm6fyzA8zNtI 9GHSelUNkD85QOfpmYHMYV1oyy+wyln/9dRXw1QsmiLbRb1DOYlwt/vwZ+xzSXzH qkucSfhD+fy+Y5HVwVF3+8s9Ch1SmSdfpF3uoQNG/ocO4+wuh8o= -----END CERTIFICATE-----Generated at Sun Aug 24 05:08:51 2025 by rpki-client