$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/xQze02nZE4NzXW-xp3LAAn4HZ1c.roa File: xQze02nZE4NzXW-xp3LAAn4HZ1c.roa (raw, json) Hash identifier: h/Ev30htpoVDhFnm6OBXUecMMRLSjeTucmSbqCsb19M= Subject key identifier: C5:0C:DE:D3:69:D9:13:83:73:5D:6F:B1:A7:72:C0:02:7E:07:67:57 Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 08B1 Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/xQze02nZE4NzXW-xp3LAAn4HZ1c.roa Signing time: Fri 22 Aug 2025 09:02:00 +0000 ROA not before: Fri 22 Aug 2025 09:02:00 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 20473 IP address blocks: 103.122.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2225 (0x8b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Aug 22 09:02:00 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C50CDED369D91383735D6FB1A772C0027E076757 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e8:16:32:8a:51:82:22:b2:bb:19:b3:d2:aa: 5b:9e:99:c0:a9:2b:df:d0:de:11:2c:95:3f:7a:66: f5:d4:b6:a9:ba:66:03:4e:10:29:61:20:d1:50:64: 69:46:71:71:22:86:a7:f9:64:06:f4:93:82:31:3e: 14:1a:f8:eb:e3:1c:c2:44:95:ed:fb:5f:80:8f:b5: e5:9c:68:ab:9c:7a:6a:73:98:6d:c2:6e:91:b7:97: 99:ce:41:39:80:49:9d:76:f5:a7:61:01:3e:88:31: ee:41:63:d0:08:c6:52:6e:35:52:ca:88:6a:ee:53: 94:18:b8:8d:60:97:b0:4a:9f:43:dc:43:95:89:28: 00:9e:9f:80:63:a5:b8:38:2b:46:a0:c8:68:84:30: c2:0b:f0:84:10:20:49:23:73:af:d4:6f:32:12:1b: 63:a6:33:86:44:20:f4:e2:45:c0:16:6d:4e:18:2a: 97:69:c7:86:87:9b:13:c1:ff:ad:e5:91:87:47:8a: ee:b5:9d:bc:47:c9:39:a6:60:f6:59:d0:cf:eb:49: 7d:fe:59:10:1f:f2:14:ca:e7:ef:e5:c5:95:63:2c: 76:e2:7a:a1:e4:e3:00:9a:1f:32:f5:fb:d6:f2:40: c0:c9:90:9f:e3:df:0d:a2:86:e6:c8:f8:aa:f7:c4: f4:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:0C:DE:D3:69:D9:13:83:73:5D:6F:B1:A7:72:C0:02:7E:07:67:57 X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/xQze02nZE4NzXW-xp3LAAn4HZ1c.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.191.0/24 Signature Algorithm: sha256WithRSAEncryption bd:8a:43:23:97:03:75:a8:45:f8:ca:ae:a8:e7:ae:72:27:58: e3:a0:1b:83:bc:2b:5f:a4:f5:8a:fa:4b:0d:11:b7:f7:1c:70: 6f:25:ae:f5:2e:10:d7:d6:d5:e3:3b:f0:4b:2e:d8:18:65:28: 60:64:e6:e9:6f:0e:d6:7a:7a:84:50:d2:35:93:81:7b:fa:b5: 5a:9d:9c:7e:48:0c:52:74:9b:d7:68:5a:35:89:9e:2a:73:67: f9:fd:39:93:b6:0b:55:9b:5f:e7:b7:97:dc:70:b5:e9:49:08: 1d:ad:06:e9:3d:45:36:3b:8a:b6:6d:c1:79:2c:67:2d:66:21: 5f:08:81:ac:8c:85:f9:a0:47:55:e1:d7:a6:33:ba:3b:37:1a: 4f:ea:d5:d8:8b:d0:19:5f:05:b7:d9:65:84:60:a3:59:dd:76: a7:54:3f:ff:c9:81:c6:b3:1b:3a:f5:26:05:5c:e3:57:9b:f1: 97:15:3f:8c:47:2a:fb:0f:41:57:8d:b0:6b:5c:d7:0f:e2:18: a1:a0:ac:71:03:cc:b6:e2:48:5e:9d:1a:48:88:49:b9:ef:d5: 79:0f:b0:e1:03:e9:e0:d4:bd:82:00:fb:c1:be:18:06:a9:cd: 56:cb:73:06:53:59:06:7a:49:b6:50:0b:2e:e1:ff:58:ce:be: c2:92:12:e3 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICCLEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNTA4MjIw OTAyMDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEM1MENERUQzNjlEOTEz ODM3MzVENkZCMUE3NzJDMDAyN0UwNzY3NTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDN6BYyilGCIrK7GbPSqluemcCpK9/Q3hEslT96ZvXUtqm6ZgNO EClhINFQZGlGcXEihqf5ZAb0k4IxPhQa+OvjHMJEle37X4CPteWcaKucempzmG3C bpG3l5nOQTmASZ129adhAT6IMe5BY9AIxlJuNVLKiGruU5QYuI1gl7BKn0PcQ5WJ KACen4Bjpbg4K0agyGiEMMIL8IQQIEkjc6/UbzISG2OmM4ZEIPTiRcAWbU4YKpdp x4aHmxPB/63lkYdHiu61nbxHyTmmYPZZ0M/rSX3+WRAf8hTK5+/lxZVjLHbieqHk 4wCaHzL1+9byQMDJkJ/j3w2ihubI+Kr3xPQnAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUxQze02nZE4NzXW+xp3LAAn4HZ1cwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL3hRemUwMm5aRTROelhXLXhw M0xBQW40SFoxYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn er8wDQYJKoZIhvcNAQELBQADggEBAL2KQyOXA3WoRfjKrqjnrnInWOOgG4O8K1+k 9Yr6Sw0Rt/cccG8lrvUuENfW1eM78Esu2BhlKGBk5ulvDtZ6eoRQ0jWTgXv6tVqd nH5IDFJ0m9doWjWJnipzZ/n9OZO2C1WbX+e3l9xwtelJCB2tBuk9RTY7irZtwXks Zy1mIV8IgayMhfmgR1Xh16Yzujs3Gk/q1diL0BlfBbfZZYRgo1nddqdUP//Jgcaz Gzr1JgVc41eb8ZcVP4xHKvsPQVeNsGtc1w/iGKGgrHEDzLbiSF6dGkiISbnv1XkP sOED6eDUvYIA+8G+GAapzVbLcwZTWQZ6SbZQCy7h/1jOvsKSEuM= -----END CERTIFICATE-----Generated at Sun Aug 24 05:06:17 2025 by rpki-client