$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/NKu1wNiCL4lxmeLvnpZLpxJN7cg.roa File: NKu1wNiCL4lxmeLvnpZLpxJN7cg.roa (raw, json) Hash identifier: QH/XxO5oQAZ4xHPHuh1g/h1LJV6N/F/W/s5k4bYlY4k= Subject key identifier: 34:AB:B5:C0:D8:82:2F:89:71:99:E2:EF:9E:96:4B:A7:12:4D:ED:C8 Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 08A4 Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/NKu1wNiCL4lxmeLvnpZLpxJN7cg.roa Signing time: Fri 22 Aug 2025 09:01:57 +0000 ROA not before: Fri 22 Aug 2025 09:01:57 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 134823 IP address blocks: 103.122.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2212 (0x8a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Aug 22 09:01:57 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=34ABB5C0D8822F897199E2EF9E964BA7124DEDC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:79:68:22:83:36:7c:03:93:43:5f:f5:73:85: 54:db:f8:47:f3:a7:f5:a0:49:8d:5d:27:e3:78:25: 77:04:ea:bc:d8:d2:c9:bd:ad:9f:80:59:df:79:77: 29:87:1a:f7:e4:28:a3:c0:4a:57:dc:25:e9:2f:9b: 38:82:4a:57:12:82:f0:2f:13:f6:ff:db:cd:b9:97: 80:18:fc:1e:f1:8d:51:0f:32:85:36:5c:cd:8c:b3: 40:8a:53:1b:f5:82:18:c2:58:ed:a3:40:f9:a8:ec: 28:02:40:97:c6:c3:92:c7:ee:99:d5:07:b6:bd:32: a1:ad:1c:61:67:08:f2:f7:08:15:d1:e7:1c:b9:00: 63:88:d8:8c:1d:59:37:d1:81:7a:87:fe:53:31:3a: ca:a8:47:df:e0:9d:5c:63:de:c1:a9:02:ba:a0:71: 81:14:41:2a:cb:56:4c:d7:04:20:2c:72:89:09:49: f7:5c:2f:b1:b6:e0:b1:f0:04:85:62:cc:60:d3:4d: 4b:b8:66:9e:7c:44:73:96:93:10:82:87:5f:35:f4: a0:aa:84:84:9b:01:9e:d0:d2:b0:6e:a5:37:f3:40: 11:fd:32:7b:d4:01:b2:5e:a6:4b:d3:8a:8e:90:37: a3:15:85:fb:b8:a1:0e:d9:16:ee:10:b3:58:12:7a: 18:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:AB:B5:C0:D8:82:2F:89:71:99:E2:EF:9E:96:4B:A7:12:4D:ED:C8 X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/NKu1wNiCL4lxmeLvnpZLpxJN7cg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.188.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:6c:fa:d9:2e:4e:85:08:3b:79:55:ce:03:a1:9d:7d:95:c5: d0:e5:b6:bf:1e:97:1d:da:13:94:64:3e:67:3a:c9:7a:26:bc: 2b:f1:58:0c:12:e0:9a:d8:f1:6d:b2:7d:e6:9c:c2:f6:56:b2: b8:6f:85:e7:d4:7f:9a:7d:35:32:d1:32:d5:e1:2c:b2:07:27: 7e:86:db:2a:e1:3c:10:cf:f8:01:a0:24:2c:f0:ac:21:bb:50: 81:67:a9:44:e8:96:72:92:86:4b:46:8b:7f:e3:7d:26:9f:91: 0f:65:cf:73:3f:a9:c1:d9:03:d9:99:8d:a1:0c:7f:54:01:6e: 1e:3d:91:45:72:71:96:a0:e3:d0:41:7f:be:38:b1:f8:f0:f9: 70:63:2c:9e:5f:15:22:32:07:cd:9d:bd:4f:97:10:da:ab:3e: a2:e6:a0:30:b3:98:1f:f6:fe:a8:f8:52:b3:11:eb:ff:f6:ba: d4:c8:ed:17:59:53:96:05:aa:76:45:a7:e0:b3:4c:5e:8a:0d: 7a:d0:33:78:02:95:b0:49:9a:70:46:c4:aa:fe:0e:67:05:2f: c9:dd:3a:ab:40:bd:d7:34:75:7d:60:b4:17:97:df:39:ac:f3: d1:75:52:c1:91:bd:a4:30:24:28:8d:eb:d9:9d:c1:0c:c1:f7: f8:31:92:27 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICCKQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNTA4MjIw OTAxNTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDM0QUJCNUMwRDg4MjJG ODk3MTk5RTJFRjlFOTY0QkE3MTI0REVEQzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+eWgigzZ8A5NDX/VzhVTb+Efzp/WgSY1dJ+N4JXcE6rzY0sm9 rZ+AWd95dymHGvfkKKPASlfcJekvmziCSlcSgvAvE/b/2825l4AY/B7xjVEPMoU2 XM2Ms0CKUxv1ghjCWO2jQPmo7CgCQJfGw5LH7pnVB7a9MqGtHGFnCPL3CBXR5xy5 AGOI2IwdWTfRgXqH/lMxOsqoR9/gnVxj3sGpArqgcYEUQSrLVkzXBCAscokJSfdc L7G24LHwBIVizGDTTUu4Zp58RHOWkxCCh1819KCqhISbAZ7Q0rBupTfzQBH9MnvU AbJepkvTio6QN6MVhfu4oQ7ZFu4Qs1gSehjPAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUNKu1wNiCL4lxmeLvnpZLpxJN7cgwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL05LdTF3TmlDTDRseG1lTHZu cFpMcHhKTjdjZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn erwwDQYJKoZIhvcNAQELBQADggEBAJxs+tkuToUIO3lVzgOhnX2VxdDltr8elx3a E5RkPmc6yXomvCvxWAwS4JrY8W2yfeacwvZWsrhvhefUf5p9NTLRMtXhLLIHJ36G 2yrhPBDP+AGgJCzwrCG7UIFnqUTolnKShktGi3/jfSafkQ9lz3M/qcHZA9mZjaEM f1QBbh49kUVycZag49BBf744sfjw+XBjLJ5fFSIyB82dvU+XENqrPqLmoDCzmB/2 /qj4UrMR6//2utTI7RdZU5YFqnZFp+CzTF6KDXrQM3gClbBJmnBGxKr+DmcFL8nd OqtAvdc0dX1gtBeX3zms89F1UsGRvaQwJCiN69mdwQzB9/gxkic= -----END CERTIFICATE-----Generated at Sun Aug 24 05:04:34 2025 by rpki-client