$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/kZdj-TnApUAVpFD87SplXPDr8vo.roa File: kZdj-TnApUAVpFD87SplXPDr8vo.roa (raw, json) Hash identifier: +JesA1S1crxGbFoTrGotOOf+QJWC/Wj1GO5FJqGSBVc= Subject key identifier: 91:97:63:F9:39:C0:A5:40:15:A4:50:FC:ED:2A:65:5C:F0:EB:F2:FA Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 08AA Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/kZdj-TnApUAVpFD87SplXPDr8vo.roa Signing time: Fri 22 Aug 2025 09:01:59 +0000 ROA not before: Fri 22 Aug 2025 09:01:59 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 20473 IP address blocks: 103.122.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2218 (0x8aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Aug 22 09:01:59 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=919763F939C0A54015A450FCED2A655CF0EBF2FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:f4:58:0f:63:c7:1c:27:fe:26:9d:10:5d:c2: 57:23:a7:2a:5a:7c:60:e7:4d:a1:ae:fe:2d:52:99: 21:24:db:ca:d2:cb:d4:46:62:6c:66:cc:5d:d7:a4: 3c:05:04:6e:26:ed:94:1e:ff:67:b5:45:dd:5f:6d: 98:a3:39:81:43:32:06:0c:4b:5f:c6:b1:68:b0:17: cf:55:18:3c:9e:f5:36:e9:00:5c:43:d3:7d:7b:15: 56:07:1d:4c:77:05:7e:16:10:80:48:6c:48:15:51: a3:5a:e6:21:af:68:20:36:ad:2a:f0:d2:5c:4f:e8: da:5f:d0:1a:57:28:69:f8:32:79:da:02:88:34:9f: e6:ff:d7:7e:72:9c:eb:c6:42:c4:c3:ba:07:52:dd: 1d:38:72:d3:2c:db:fb:b4:b1:31:cc:f8:b9:4d:42: df:fe:fb:0c:e4:61:9a:b2:ae:85:9d:1c:9d:28:6a: a2:13:cd:96:94:5d:ff:03:ca:4f:f4:57:d1:64:87: 16:75:5f:eb:d2:30:b0:63:cf:9e:e3:d5:2e:2e:8b: 5e:83:64:da:61:1f:1f:e7:07:6e:b0:e8:95:07:0d: 2e:7d:91:1e:d8:e4:b4:54:56:ce:4b:29:4d:95:9a: 48:4f:df:31:f4:26:8d:6e:e8:3e:65:9c:0f:f8:a6: a1:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:97:63:F9:39:C0:A5:40:15:A4:50:FC:ED:2A:65:5C:F0:EB:F2:FA X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/kZdj-TnApUAVpFD87SplXPDr8vo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.188.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:e8:c1:4b:3a:a6:ee:02:bf:e9:36:e9:76:f4:e2:f2:32:ab: b8:26:c6:7c:9f:5b:c1:54:6d:0a:5f:10:89:a8:f0:9c:ad:90: c7:6b:bb:1c:a5:07:df:9c:51:4f:93:8a:02:1c:29:1d:96:2f: ed:c6:d6:2c:14:fb:d7:16:e5:a9:07:e1:a9:0f:ac:97:46:37: 63:e5:19:09:79:fc:2a:16:fa:17:19:b4:e1:98:1f:63:6d:4a: 6d:98:41:07:fb:86:54:6d:a7:64:42:e8:5e:bb:8d:f5:69:1c: 37:06:6d:03:c9:0a:47:89:ac:ee:38:19:6f:e2:53:4e:74:2b: bc:c3:21:d5:b0:d6:b7:42:7b:83:3a:6d:35:a5:9d:43:6d:27: 72:93:09:db:37:eb:36:43:42:7a:27:0e:99:39:40:df:2d:66: dc:ea:7a:1a:85:2e:76:4f:17:af:82:ef:b5:db:a3:27:ea:37: 56:2b:51:18:35:1e:04:bc:ad:6b:97:14:d4:66:f8:c2:c8:31: d4:d7:ca:3b:e9:e7:38:a8:7b:86:34:d9:ff:eb:b2:0f:63:a2: b2:3b:b2:e5:16:43:0f:fc:18:2c:2a:67:30:8c:f7:71:95:75: 94:6c:8d:35:d7:5f:6b:1b:ee:73:63:4b:72:2f:58:ff:59:3a: 76:e1:fb:d3 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICCKowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNTA4MjIw OTAxNTlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDkxOTc2M0Y5MzlDMEE1 NDAxNUE0NTBGQ0VEMkE2NTVDRjBFQkYyRkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCo9FgPY8ccJ/4mnRBdwlcjpypafGDnTaGu/i1SmSEk28rSy9RG YmxmzF3XpDwFBG4m7ZQe/2e1Rd1fbZijOYFDMgYMS1/GsWiwF89VGDye9TbpAFxD 0317FVYHHUx3BX4WEIBIbEgVUaNa5iGvaCA2rSrw0lxP6Npf0BpXKGn4MnnaAog0 n+b/135ynOvGQsTDugdS3R04ctMs2/u0sTHM+LlNQt/++wzkYZqyroWdHJ0oaqIT zZaUXf8Dyk/0V9FkhxZ1X+vSMLBjz57j1S4ui16DZNphHx/nB26w6JUHDS59kR7Y 5LRUVs5LKU2VmkhP3zH0Jo1u6D5lnA/4pqFrAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUkZdj+TnApUAVpFD87SplXPDr8vowHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL2taZGotVG5BcFVBVnBGRDg3 U3BsWFBEcjh2by5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn erwwDQYJKoZIhvcNAQELBQADggEBAAvowUs6pu4Cv+k26Xb04vIyq7gmxnyfW8FU bQpfEImo8JytkMdruxylB9+cUU+TigIcKR2WL+3G1iwU+9cW5akH4akPrJdGN2Pl GQl5/CoW+hcZtOGYH2NtSm2YQQf7hlRtp2RC6F67jfVpHDcGbQPJCkeJrO44GW/i U050K7zDIdWw1rdCe4M6bTWlnUNtJ3KTCds36zZDQnonDpk5QN8tZtzqehqFLnZP F6+C77XboyfqN1YrURg1HgS8rWuXFNRm+MLIMdTXyjvp5zioe4Y02f/rsg9jorI7 suUWQw/8GCwqZzCM93GVdZRsjTXXX2sb7nNjS3IvWP9ZOnbh+9M= -----END CERTIFICATE-----Generated at Sun Aug 24 05:05:47 2025 by rpki-client