$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/YO9jgT9HVgoCyvEuUMtV31k4oJk.roa File: YO9jgT9HVgoCyvEuUMtV31k4oJk.roa (raw, json) Hash identifier: yvMmpxHxPtLln4/tnuiP5BLp9GBg6UShAOpNcMGAKWI= Subject key identifier: 60:EF:63:81:3F:47:56:0A:02:CA:F1:2E:50:CB:55:DF:59:38:A0:99 Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 08B2 Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/YO9jgT9HVgoCyvEuUMtV31k4oJk.roa Signing time: Fri 22 Aug 2025 09:02:01 +0000 ROA not before: Fri 22 Aug 2025 09:02:01 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 396982 IP address blocks: 103.153.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2226 (0x8b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Aug 22 09:02:01 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=60EF63813F47560A02CAF12E50CB55DF5938A099 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:be:04:c1:ab:12:9a:40:fd:cd:77:30:34:20: 0d:46:14:c4:e8:83:36:c7:a1:9c:5c:e8:ff:fd:4b: f8:50:bd:0c:96:93:75:a2:e1:8c:0f:a0:da:63:4b: fa:04:33:ff:14:46:0e:43:41:82:88:e2:da:0a:c6: 6e:1e:65:3a:b8:0f:cf:10:22:f9:25:a0:75:3a:57: a3:de:74:06:78:b7:2a:3b:3f:6c:5f:d2:47:7b:c9: 7f:81:ef:9d:0a:2a:b0:dc:72:b4:0f:7a:14:eb:bd: 90:4d:53:60:4b:93:43:04:31:cf:db:da:c3:c4:0e: d3:a0:7d:72:fc:a0:94:16:a2:85:80:2b:a4:bc:6b: ae:6a:bc:4f:e9:e5:cc:58:d8:45:13:06:4f:a1:3b: 83:fb:50:95:99:14:2b:3f:d9:5d:79:b0:16:32:57: 04:ea:33:d2:cc:a5:57:35:a5:07:dd:62:67:c9:15: 68:a4:4b:33:5a:d9:7e:aa:8a:f9:40:c3:30:c9:57: 14:f1:3c:93:e5:64:9a:b2:04:aa:bc:4b:f8:75:45: 15:0f:9c:cf:7c:28:c6:7b:c7:a0:3f:80:60:cd:2b: e8:4a:f4:f9:2e:3c:4d:21:e6:7d:97:16:2f:81:80: db:6a:07:21:26:a1:a7:fc:ad:7a:b8:1c:b2:4e:f3: 60:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:EF:63:81:3F:47:56:0A:02:CA:F1:2E:50:CB:55:DF:59:38:A0:99 X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/YO9jgT9HVgoCyvEuUMtV31k4oJk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.153.177.0/24 Signature Algorithm: sha256WithRSAEncryption 99:f2:b0:19:f9:36:37:d9:bd:46:e0:54:c0:1e:40:31:8a:5c: 78:12:32:96:cf:e6:22:dd:e6:2a:b2:90:f6:93:79:c9:2e:56: 84:ef:cc:5a:55:d3:55:3a:db:1e:05:4e:a6:59:97:75:d1:4e: 75:75:17:99:6c:0e:95:7f:d5:75:04:53:ce:15:23:fe:24:ec: 34:e4:22:b3:72:e1:19:f6:bb:a8:f8:4f:fc:88:6a:54:b2:c4: e5:09:e0:d0:fe:12:49:f7:88:3c:de:d6:1a:ae:8d:ae:07:c0: e3:2f:84:ee:68:4b:c5:ff:cf:d6:82:f6:a1:5f:cc:64:e1:6b: 72:90:ab:ce:d5:28:9f:a1:e9:ae:d1:50:8a:4e:65:b2:6f:5f: 20:ea:52:87:3f:23:87:8d:ee:af:e4:72:51:24:dd:4c:89:65: da:e9:be:e0:d2:68:5e:37:33:ce:e3:84:d4:94:48:01:5d:bf: ad:ea:cc:a7:79:1b:36:9a:76:d1:12:cb:ff:ce:fc:d8:45:2f: 9a:bf:c6:3d:e3:b6:d8:4c:86:f7:90:2d:9f:cb:05:1f:a0:87: aa:98:de:93:27:09:bb:74:9d:5e:40:27:9b:d1:7d:63:25:ce: 53:e3:ce:c5:63:a1:a5:50:f0:ea:07:d8:b3:df:2f:f2:fa:84: 03:6b:f3:53 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICCLIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNTA4MjIw OTAyMDFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDYwRUY2MzgxM0Y0NzU2 MEEwMkNBRjEyRTUwQ0I1NURGNTkzOEEwOTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuvgTBqxKaQP3NdzA0IA1GFMTogzbHoZxc6P/9S/hQvQyWk3Wi 4YwPoNpjS/oEM/8URg5DQYKI4toKxm4eZTq4D88QIvkloHU6V6PedAZ4tyo7P2xf 0kd7yX+B750KKrDccrQPehTrvZBNU2BLk0MEMc/b2sPEDtOgfXL8oJQWooWAK6S8 a65qvE/p5cxY2EUTBk+hO4P7UJWZFCs/2V15sBYyVwTqM9LMpVc1pQfdYmfJFWik SzNa2X6qivlAwzDJVxTxPJPlZJqyBKq8S/h1RRUPnM98KMZ7x6A/gGDNK+hK9Pku PE0h5n2XFi+BgNtqByEmoaf8rXq4HLJO82B1AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUYO9jgT9HVgoCyvEuUMtV31k4oJkwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL1lPOWpnVDlIVmdvQ3l2RXVV TXRWMzFrNG9Kay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn mbEwDQYJKoZIhvcNAQELBQADggEBAJnysBn5NjfZvUbgVMAeQDGKXHgSMpbP5iLd 5iqykPaTeckuVoTvzFpV01U62x4FTqZZl3XRTnV1F5lsDpV/1XUEU84VI/4k7DTk IrNy4Rn2u6j4T/yIalSyxOUJ4ND+Ekn3iDze1hquja4HwOMvhO5oS8X/z9aC9qFf zGTha3KQq87VKJ+h6a7RUIpOZbJvXyDqUoc/I4eN7q/kclEk3UyJZdrpvuDSaF43 M87jhNSUSAFdv63qzKd5GzaadtESy//O/NhFL5q/xj3jtthMhveQLZ/LBR+gh6qY 3pMnCbt0nV5AJ5vRfWMlzlPjzsVjoaVQ8OoH2LPfL/L6hANr81M= -----END CERTIFICATE-----Generated at Sun Aug 24 05:05:42 2025 by rpki-client