$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/PKTHrJ5RFqzu4xvMN3Urw6vISow.roa File: PKTHrJ5RFqzu4xvMN3Urw6vISow.roa (raw, json) Hash identifier: mjzlyoRGgBxW0WHO+5r+JHdnaihOvne2iG3+JAHbjbc= Subject key identifier: 3C:A4:C7:AC:9E:51:16:AC:EE:E3:1B:CC:37:75:2B:C3:AB:C8:4A:8C Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 08B7 Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/PKTHrJ5RFqzu4xvMN3Urw6vISow.roa Signing time: Fri 22 Aug 2025 09:02:02 +0000 ROA not before: Fri 22 Aug 2025 09:02:02 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131657 IP address blocks: 103.153.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2231 (0x8b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Aug 22 09:02:02 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=3CA4C7AC9E5116ACEEE31BCC37752BC3ABC84A8C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:f3:18:a3:f9:8b:b6:14:4a:ac:c9:fb:73:4f: b6:b5:3f:77:5d:fc:d6:98:d4:3a:7c:4f:b6:aa:8c: 92:46:56:f7:1e:cb:e8:1c:56:5e:dd:e1:b0:1d:da: 05:81:33:2a:69:08:1b:b9:a2:b5:d4:59:0f:d8:d1: 04:53:1a:28:e2:be:3d:4a:71:69:d5:be:90:c9:53: cf:d9:12:62:96:eb:6f:1a:e9:21:e3:a1:78:db:5d: c4:5c:bd:c9:a4:0e:30:f0:63:f1:34:01:1d:56:b6: 2f:6f:ef:01:11:16:2a:49:1c:61:2b:60:64:f4:b0: 45:cb:bb:26:17:f4:0f:e5:cb:f9:02:34:78:8b:38: 31:25:ab:46:0a:e7:2e:65:3a:fc:a3:52:47:59:c3: 91:d5:86:40:39:77:d2:a2:50:f1:02:c1:64:3b:24: e3:5b:25:10:fa:fa:19:9f:c5:f5:43:e5:6e:8b:9c: 0e:8f:9c:a2:cc:8a:31:1e:2a:87:53:6c:28:a5:31: c5:7f:03:33:07:e1:0c:17:4b:16:f1:10:38:27:c0: 82:c3:b2:5b:cf:1d:1b:a8:ee:fc:f7:50:0c:62:4c: 43:34:b7:dc:35:0c:b6:a8:21:05:b0:67:0a:5f:e6: 3a:1e:3b:cb:46:50:a3:ef:5e:e3:d9:93:63:38:d5: 04:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:A4:C7:AC:9E:51:16:AC:EE:E3:1B:CC:37:75:2B:C3:AB:C8:4A:8C X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/PKTHrJ5RFqzu4xvMN3Urw6vISow.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.153.177.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:47:23:67:71:e8:03:60:03:b3:84:66:8c:fa:6d:db:7d:fa: 6a:fd:97:27:2f:7b:bd:f3:aa:0f:8b:76:f3:8f:0d:6f:10:50: 48:71:36:06:37:0d:31:2e:4b:7c:a3:47:d7:61:17:8d:6b:6e: ba:1b:36:d7:8c:9f:db:7c:9f:73:8b:ed:64:72:a1:3f:cc:a2: 5b:81:26:e3:ca:dd:5a:58:26:a6:28:bf:0c:e3:52:e5:35:b9: 07:22:3f:a9:62:e9:4b:b2:03:79:ad:c3:9a:9e:96:5b:6b:6a: 46:61:69:89:b9:7e:b6:6d:0e:ec:eb:bd:c0:69:fa:fa:b3:56: 59:db:d4:72:97:18:04:75:77:29:a3:35:5f:c1:c8:c4:ed:79: 24:be:55:54:2a:8f:3a:4c:b6:0d:47:9a:75:fc:39:80:47:3f: 4b:a9:00:f2:e9:f2:79:44:cd:f3:de:67:63:1c:87:e5:da:fe: 35:5e:c2:3b:4b:38:12:c6:d5:08:de:54:a1:81:59:24:46:fe: 1a:b8:74:9e:57:06:72:29:84:41:f1:ff:5c:92:bf:1c:82:0f: 3e:41:63:3f:6a:c6:dc:d2:6d:c3:8c:d1:c5:71:87:b3:37:00: c2:8d:92:c4:28:af:5f:0a:5c:15:b8:b7:3c:80:63:87:44:93: 39:0b:f0:14 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICCLcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNTA4MjIw OTAyMDJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDNDQTRDN0FDOUU1MTE2 QUNFRUUzMUJDQzM3NzUyQkMzQUJDODRBOEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDG8xij+Yu2FEqsyftzT7a1P3dd/NaY1Dp8T7aqjJJGVvcey+gc Vl7d4bAd2gWBMyppCBu5orXUWQ/Y0QRTGijivj1KcWnVvpDJU8/ZEmKW628a6SHj oXjbXcRcvcmkDjDwY/E0AR1Wti9v7wERFipJHGErYGT0sEXLuyYX9A/ly/kCNHiL ODElq0YK5y5lOvyjUkdZw5HVhkA5d9KiUPECwWQ7JONbJRD6+hmfxfVD5W6LnA6P nKLMijEeKodTbCilMcV/AzMH4QwXSxbxEDgnwILDslvPHRuo7vz3UAxiTEM0t9w1 DLaoIQWwZwpf5joeO8tGUKPvXuPZk2M41QTzAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUPKTHrJ5RFqzu4xvMN3Urw6vISowwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL1BLVEhySjVSRnF6dTR4dk1O M1VydzZ2SVNvdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn mbEwDQYJKoZIhvcNAQELBQADggEBAIxHI2dx6ANgA7OEZoz6bdt9+mr9lycve73z qg+LdvOPDW8QUEhxNgY3DTEuS3yjR9dhF41rbrobNteMn9t8n3OL7WRyoT/MoluB JuPK3VpYJqYovwzjUuU1uQciP6li6UuyA3mtw5qelltrakZhaYm5frZtDuzrvcBp +vqzVlnb1HKXGAR1dymjNV/ByMTteSS+VVQqjzpMtg1HmnX8OYBHP0upAPLp8nlE zfPeZ2Mch+Xa/jVewjtLOBLG1QjeVKGBWSRG/hq4dJ5XBnIphEHx/1ySvxyCDz5B Yz9qxtzSbcOM0cVxh7M3AMKNksQor18KXBW4tzyAY4dEkzkL8BQ= -----END CERTIFICATE-----Generated at Sun Aug 24 05:08:55 2025 by rpki-client