$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/U6pvLdGa_NUOvO816yEESLgL9Ds.roa File: U6pvLdGa_NUOvO816yEESLgL9Ds.roa (raw, json) Hash identifier: 4Vfdfvv8a0GcWJ6LPjET6785IUF4VM8KmZKlQePznBQ= Subject key identifier: 53:AA:6F:2D:D1:9A:FC:D5:0E:BC:EF:35:EB:21:04:48:B8:0B:F4:3B Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 08B6 Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/U6pvLdGa_NUOvO816yEESLgL9Ds.roa Signing time: Fri 22 Aug 2025 09:02:02 +0000 ROA not before: Fri 22 Aug 2025 09:02:02 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 134823 IP address blocks: 103.153.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2230 (0x8b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Aug 22 09:02:02 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=53AA6F2DD19AFCD50EBCEF35EB210448B80BF43B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:5d:c8:77:7c:64:e3:0f:a8:f5:8f:4e:bb:30: 11:9d:c3:32:16:a7:5b:f5:50:1b:8a:dd:ab:e0:a8: 79:69:26:c2:48:6b:df:c7:f1:9a:1e:87:8c:ab:99: 62:fe:3f:cf:af:ee:27:10:b2:a4:0d:a7:35:02:ce: cb:eb:2d:75:2d:46:1c:be:c8:f1:d0:b3:de:5f:55: a3:2e:6f:2d:07:be:d7:15:60:78:23:a1:d4:6a:dd: 86:95:b7:df:20:53:14:5d:5a:a3:65:c1:36:df:eb: 2f:cd:ae:f3:36:e4:c6:fe:de:9b:af:3a:8b:02:bd: 8c:b0:da:ed:5e:89:2b:79:1f:1b:db:8f:7e:56:c3: a2:dd:51:70:75:e4:ad:05:38:c8:8b:67:6b:ec:d8: bc:7f:c7:ab:21:cd:8d:20:94:49:11:d4:9d:72:7b: d6:6e:09:82:9a:31:44:32:31:27:e1:a3:95:73:1f: 3f:3e:06:25:ff:d2:ed:99:40:0d:a3:7e:cd:25:29: 86:12:85:23:08:71:a1:27:a6:bf:95:02:08:3a:c8: 1c:a6:a4:83:32:22:3c:0b:80:b5:49:8a:4b:8c:5d: 04:08:61:1b:58:51:c6:5f:07:7a:f8:41:1e:87:b8: b8:2f:7d:87:7b:83:bf:ee:03:36:01:ac:6a:b1:7c: 93:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:AA:6F:2D:D1:9A:FC:D5:0E:BC:EF:35:EB:21:04:48:B8:0B:F4:3B X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/U6pvLdGa_NUOvO816yEESLgL9Ds.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.153.176.0/24 Signature Algorithm: sha256WithRSAEncryption 97:1f:34:cd:e5:f4:e6:bc:67:85:de:8e:25:6e:37:16:d2:8b: f6:7c:03:b7:80:1c:50:be:71:69:fb:6f:7b:bb:f7:2f:a0:48: db:5f:58:a8:e3:b0:23:c4:8a:73:ab:f3:04:6d:f4:d6:ce:56: 08:cc:83:61:96:04:80:e2:66:b8:e5:b7:67:0a:de:85:33:67: 20:be:d8:e1:2b:fe:d8:0c:9f:d2:64:90:f7:00:83:fa:1a:c2: d7:06:9a:73:68:3c:e4:db:b8:2c:31:13:5f:6e:b2:3b:5e:3a: 92:0f:9d:6c:81:7d:81:be:c7:9a:8d:c8:a2:4a:2f:6c:d9:41: 6f:ab:8c:2e:94:f0:20:c3:4e:48:9e:79:f0:97:48:9c:8b:59: eb:9a:b6:86:93:9c:11:42:b5:03:93:ce:e5:ab:1f:b3:38:eb: 0e:14:f3:88:27:11:ea:d8:f0:81:cf:5e:6f:4d:19:5b:60:62: 11:ee:0f:55:64:f8:a1:81:5f:48:f1:72:be:f0:aa:88:20:78: 7a:44:7a:6c:37:6c:ff:f6:6b:4b:8c:b0:b6:97:bb:f4:0a:ef: cc:eb:b1:b9:44:9e:df:ef:61:bf:79:00:43:68:0a:a4:5d:13: 3c:83:a1:ef:66:3c:35:3f:78:1c:52:3d:aa:c8:ce:70:19:62: cd:3a:49:eb -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICCLYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNTA4MjIw OTAyMDJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDUzQUE2RjJERDE5QUZD RDUwRUJDRUYzNUVCMjEwNDQ4QjgwQkY0M0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDjXch3fGTjD6j1j067MBGdwzIWp1v1UBuK3avgqHlpJsJIa9/H 8Zoeh4yrmWL+P8+v7icQsqQNpzUCzsvrLXUtRhy+yPHQs95fVaMuby0HvtcVYHgj odRq3YaVt98gUxRdWqNlwTbf6y/NrvM25Mb+3puvOosCvYyw2u1eiSt5Hxvbj35W w6LdUXB15K0FOMiLZ2vs2Lx/x6shzY0glEkR1J1ye9ZuCYKaMUQyMSfho5VzHz8+ BiX/0u2ZQA2jfs0lKYYShSMIcaEnpr+VAgg6yBympIMyIjwLgLVJikuMXQQIYRtY UcZfB3r4QR6HuLgvfYd7g7/uAzYBrGqxfJNFAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUU6pvLdGa/NUOvO816yEESLgL9DswHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL1U2cHZMZEdhX05VT3ZPODE2 eUVFU0xnTDlEcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn mbAwDQYJKoZIhvcNAQELBQADggEBAJcfNM3l9Oa8Z4XejiVuNxbSi/Z8A7eAHFC+ cWn7b3u79y+gSNtfWKjjsCPEinOr8wRt9NbOVgjMg2GWBIDiZrjlt2cK3oUzZyC+ 2OEr/tgMn9JkkPcAg/oawtcGmnNoPOTbuCwxE19usjteOpIPnWyBfYG+x5qNyKJK L2zZQW+rjC6U8CDDTkieefCXSJyLWeuatoaTnBFCtQOTzuWrH7M46w4U84gnEerY 8IHPXm9NGVtgYhHuD1Vk+KGBX0jxcr7wqoggeHpEemw3bP/2a0uMsLaXu/QK78zr sblEnt/vYb95AENoCqRdEzyDoe9mPDU/eBxSParIznAZYs06Ses= -----END CERTIFICATE-----Generated at Sun Aug 24 05:05:35 2025 by rpki-client