$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/wtzCy8iqfwzWsH40LY2Y_3FecvY.roa File: wtzCy8iqfwzWsH40LY2Y_3FecvY.roa (raw, json) Hash identifier: vaQ931hn5OFNWqIre20+ecuekMW63boCNORCSjWiVqY= Subject key identifier: C2:DC:C2:CB:C8:AA:7F:0C:D6:B0:7E:34:2D:8D:98:FF:71:5E:72:F6 Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 08AB Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/wtzCy8iqfwzWsH40LY2Y_3FecvY.roa Signing time: Fri 22 Aug 2025 09:01:59 +0000 ROA not before: Fri 22 Aug 2025 09:01:59 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 134823 IP address blocks: 103.122.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2219 (0x8ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Aug 22 09:01:59 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C2DCC2CBC8AA7F0CD6B07E342D8D98FF715E72F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d6:b2:75:96:95:2f:e6:c0:ba:64:22:b8:02: 41:f3:52:3d:59:81:6a:9a:62:d6:28:ae:6a:ce:c9: 70:0d:ec:d8:35:ee:44:35:5c:ad:c5:46:4b:09:c1: c4:02:3c:2f:63:af:07:9f:84:16:1b:b7:fa:dd:4b: 4c:ef:aa:d5:c5:49:70:53:05:c7:4f:fd:a1:74:b0: 05:30:54:b8:8c:db:d6:73:81:bc:4b:75:16:55:49: 05:39:c7:f9:ba:f4:45:8c:93:8e:77:27:05:f1:45: 06:24:90:db:49:8a:07:d6:10:8d:d5:65:29:4d:21: d8:e5:01:31:71:4a:b5:8a:28:fd:51:80:73:9c:d0: 80:b1:17:a4:88:a7:65:63:10:32:67:d7:2d:4b:91: 8c:20:0d:58:9b:53:61:e5:ca:15:72:4b:99:d5:4d: 34:ab:69:61:1a:1f:b3:fb:12:5f:7a:4a:b7:66:39: a3:d7:04:a4:cd:8c:14:dc:e6:41:e1:21:76:1b:ac: c2:82:14:4a:43:c0:f3:24:6c:8a:00:3f:59:ab:30: b7:9c:ae:6c:55:fd:20:1b:79:a1:4c:9c:f0:fa:d6: ec:34:64:50:b0:e0:5b:a5:20:0a:16:a8:09:09:24: 07:4a:24:dd:bb:ac:27:60:d4:5d:02:36:35:62:26: 2a:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:DC:C2:CB:C8:AA:7F:0C:D6:B0:7E:34:2D:8D:98:FF:71:5E:72:F6 X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/wtzCy8iqfwzWsH40LY2Y_3FecvY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.189.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:96:12:fe:c9:7e:a1:15:8c:5c:33:67:5b:32:d9:2c:eb:2a: a9:23:f2:04:cc:b4:3a:e4:0c:84:3d:2b:54:58:3b:10:f3:2b: 1f:9c:2a:de:e6:90:79:90:ae:e8:3d:b3:6d:b5:c6:0f:1b:a9: 71:d8:2f:48:a2:e8:b5:54:ed:65:d8:5f:2c:65:4e:6f:e9:d0: d5:b7:2f:9f:ac:e3:8f:0d:9b:07:b5:f4:46:56:33:d5:50:9c: 7e:de:ca:cd:f3:24:6e:94:98:e5:3f:c0:24:8a:27:2b:7f:41: fc:21:db:3f:5a:f6:a7:c8:0d:ec:f1:66:12:23:f6:7f:5f:3c: 97:31:89:8f:9f:a6:8e:d5:74:5a:de:a2:45:11:be:01:d1:c2: a7:8c:d4:92:ef:9b:84:94:a2:c3:9c:3f:26:7e:90:58:7f:5a: b7:2c:4d:98:d6:ac:a4:0c:66:d5:1a:ad:93:25:f4:54:5e:9c: 8c:c9:fa:4f:10:da:12:bc:03:32:2c:3d:e1:b8:f6:57:34:26: bd:72:f4:d6:f2:a1:ab:82:6a:0a:94:4d:2c:36:28:9d:13:e0: f2:1a:96:cd:63:e1:ec:75:65:ea:84:94:5a:93:03:c5:4f:ac: 3c:63:3a:3a:e7:2b:0f:4d:69:90:5e:7a:15:3b:46:cd:65:2e: 07:8f:ec:24 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICCKswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNTA4MjIw OTAxNTlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEMyRENDMkNCQzhBQTdG MENENkIwN0UzNDJEOEQ5OEZGNzE1RTcyRjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDM1rJ1lpUv5sC6ZCK4AkHzUj1ZgWqaYtYormrOyXAN7Ng17kQ1 XK3FRksJwcQCPC9jrwefhBYbt/rdS0zvqtXFSXBTBcdP/aF0sAUwVLiM29ZzgbxL dRZVSQU5x/m69EWMk453JwXxRQYkkNtJigfWEI3VZSlNIdjlATFxSrWKKP1RgHOc 0ICxF6SIp2VjEDJn1y1LkYwgDVibU2HlyhVyS5nVTTSraWEaH7P7El96SrdmOaPX BKTNjBTc5kHhIXYbrMKCFEpDwPMkbIoAP1mrMLecrmxV/SAbeaFMnPD61uw0ZFCw 4FulIAoWqAkJJAdKJN27rCdg1F0CNjViJiorAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUwtzCy8iqfwzWsH40LY2Y/3FecvYwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL3d0ekN5OGlxZnd6V3NINDBM WTJZXzNGZWN2WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn er0wDQYJKoZIhvcNAQELBQADggEBADqWEv7JfqEVjFwzZ1sy2SzrKqkj8gTMtDrk DIQ9K1RYOxDzKx+cKt7mkHmQrug9s221xg8bqXHYL0ii6LVU7WXYXyxlTm/p0NW3 L5+s448Nmwe19EZWM9VQnH7eys3zJG6UmOU/wCSKJyt/Qfwh2z9a9qfIDezxZhIj 9n9fPJcxiY+fpo7VdFreokURvgHRwqeM1JLvm4SUosOcPyZ+kFh/WrcsTZjWrKQM ZtUarZMl9FRenIzJ+k8Q2hK8AzIsPeG49lc0Jr1y9NbyoauCagqUTSw2KJ0T4PIa ls1j4ex1ZeqElFqTA8VPrDxjOjrnKw9NaZBeehU7Rs1lLgeP7CQ= -----END CERTIFICATE-----Generated at Sun Aug 24 05:08:19 2025 by rpki-client