$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/z6tHKo-XlUb2Lv2gWwz5Lu-pIC8.roa File: z6tHKo-XlUb2Lv2gWwz5Lu-pIC8.roa (raw, json) Hash identifier: hxJbTA1VDfe8QIGQySS34F6xpz1I6ISD8xmY3gBSQ2o= Subject key identifier: CF:AB:47:2A:8F:97:95:46:F6:2E:FD:A0:5B:0C:F9:2E:EF:A9:20:2F Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 08B0 Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/z6tHKo-XlUb2Lv2gWwz5Lu-pIC8.roa Signing time: Fri 22 Aug 2025 09:02:00 +0000 ROA not before: Fri 22 Aug 2025 09:02:00 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131657 IP address blocks: 103.153.176.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2224 (0x8b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Aug 22 09:02:00 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=CFAB472A8F979546F62EFDA05B0CF92EEFA9202F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:bc:b4:8a:c2:3c:55:ec:d2:a5:56:de:98:34: 68:e9:a6:79:aa:36:06:3c:b5:a9:da:2b:c0:2f:5e: 8e:57:d6:c8:49:42:45:5f:cd:ee:23:96:34:cd:df: 8a:eb:fe:57:73:98:84:87:eb:cb:9f:a1:9d:1f:80: c6:44:c2:f8:59:37:0e:de:99:f5:c9:62:f7:e9:bf: a4:32:38:8e:63:42:10:b3:7c:29:cd:83:8d:83:7e: 34:c9:4d:f2:fc:39:6a:fd:a0:32:16:ea:05:c0:39: af:c9:40:25:86:eb:bf:61:5c:30:b3:6d:f5:ac:fc: c1:2f:dc:a2:9d:9a:12:ba:1f:f1:26:54:95:05:de: 59:b3:b7:99:c4:0f:e2:64:f1:27:2a:d2:07:c8:17: fc:fd:8f:9e:78:ec:1e:e4:8c:1b:13:fc:3e:f8:82: cf:76:dc:67:a7:67:2b:15:11:4c:6b:b2:4a:5b:e2: 91:1d:51:04:3e:49:e7:a3:2e:1b:1c:ba:03:85:77: 37:20:f4:4e:60:72:4a:4d:b2:b9:f0:1a:0c:85:2e: a7:3e:43:6f:b4:88:36:32:b6:d4:2e:09:cf:00:66: bc:52:94:e2:48:01:6e:0b:3d:23:1e:09:f0:14:11: ba:d7:b8:9f:b5:ee:f4:3e:ae:bd:f7:cb:bc:c3:20: 7e:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:AB:47:2A:8F:97:95:46:F6:2E:FD:A0:5B:0C:F9:2E:EF:A9:20:2F X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/z6tHKo-XlUb2Lv2gWwz5Lu-pIC8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.153.176.0/23 Signature Algorithm: sha256WithRSAEncryption 5e:75:7f:5a:90:74:1f:39:f0:93:c4:0a:f9:78:1a:a7:aa:ff: c1:5f:70:b7:3f:54:51:9c:61:d1:80:03:0c:09:7b:48:5f:f7: d7:9c:93:bd:72:b6:f7:27:a3:53:a5:38:1c:56:90:62:4e:c9: 0c:76:cb:bb:77:a4:1b:d1:e2:15:e0:ab:2b:0b:08:95:2a:47: 5d:c3:9c:33:0c:fd:a6:04:75:42:25:f8:81:67:b7:71:cd:57: 28:ca:76:35:05:2e:c8:ab:cb:d6:db:df:40:aa:32:90:1e:8a: 9a:de:fa:f3:4b:fe:6f:0b:77:b0:bd:dc:9b:df:9a:f8:04:9b: 83:a5:a2:a5:8f:fe:48:6c:c1:dc:7c:4d:03:66:12:d1:59:53: 60:e0:7f:ff:13:61:83:8a:c8:9e:47:18:a6:5d:b9:e1:18:99: ab:17:3a:d2:b9:5d:ff:cf:de:3e:2c:ce:b7:34:2e:b6:c3:86: e0:8d:91:ed:cb:a2:5b:f1:ea:f1:2f:9f:0b:8f:9c:9f:3f:ed: b0:89:46:1c:aa:ac:0f:59:60:56:07:8f:24:2a:7e:a1:9c:3d: 19:b8:f2:4c:7d:e3:12:30:11:d3:fa:7e:d5:e7:1d:bf:0b:dd: 3c:64:7a:84:12:dd:9e:44:13:38:c5:ec:6d:06:ab:66:69:a2: 8d:8c:a1:e8 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICCLAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNTA4MjIw OTAyMDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKENGQUI0NzJBOEY5Nzk1 NDZGNjJFRkRBMDVCMENGOTJFRUZBOTIwMkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCnvLSKwjxV7NKlVt6YNGjppnmqNgY8tanaK8AvXo5X1shJQkVf ze4jljTN34rr/ldzmISH68ufoZ0fgMZEwvhZNw7emfXJYvfpv6QyOI5jQhCzfCnN g42DfjTJTfL8OWr9oDIW6gXAOa/JQCWG679hXDCzbfWs/MEv3KKdmhK6H/EmVJUF 3lmzt5nED+Jk8Scq0gfIF/z9j5547B7kjBsT/D74gs923GenZysVEUxrskpb4pEd UQQ+SeejLhscugOFdzcg9E5gckpNsrnwGgyFLqc+Q2+0iDYyttQuCc8AZrxSlOJI AW4LPSMeCfAUEbrXuJ+17vQ+rr33y7zDIH4PAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUz6tHKo+XlUb2Lv2gWwz5Lu+pIC8wHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL3o2dEhLby1YbFViMkx2MmdX d3o1THUtcElDOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn mbAwDQYJKoZIhvcNAQELBQADggEBAF51f1qQdB858JPECvl4Gqeq/8FfcLc/VFGc YdGAAwwJe0hf99eck71ytvcno1OlOBxWkGJOyQx2y7t3pBvR4hXgqysLCJUqR13D nDMM/aYEdUIl+IFnt3HNVyjKdjUFLsiry9bb30CqMpAeipre+vNL/m8Ld7C93Jvf mvgEm4OloqWP/khswdx8TQNmEtFZU2Dgf/8TYYOKyJ5HGKZdueEYmasXOtK5Xf/P 3j4szrc0LrbDhuCNke3Lolvx6vEvnwuPnJ8/7bCJRhyqrA9ZYFYHjyQqfqGcPRm4 8kx94xIwEdP6ftXnHb8L3TxkeoQS3Z5EEzjF7G0Gq2Zpoo2Moeg= -----END CERTIFICATE-----Generated at Sun Aug 24 05:08:38 2025 by rpki-client