$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGJAY/b-lIYl4MvHh5vyo5fYbkTjHI6kY.roa File: b-lIYl4MvHh5vyo5fYbkTjHI6kY.roa (raw, json) Hash identifier: D0YAZXHmOXjQQPxt/0pfu+4Ddhdt5GbJ1TAGEboMoDw= Subject key identifier: 6F:E9:48:62:5E:0C:BC:78:79:BF:2A:39:7D:86:E4:4E:31:C8:EA:46 Certificate issuer: /CN=324A7E6EBF678F98B87228EC8466C3690A43DDB6 Certificate serial: 0D73 Authority key identifier: 32:4A:7E:6E:BF:67:8F:98:B8:72:28:EC:84:66:C3:69:0A:43:DD:B6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Mkp-br9nj5i4cijshGbDaQpD3bY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGJAY/b-lIYl4MvHh5vyo5fYbkTjHI6kY.roa Signing time: Fri 22 Aug 2025 08:44:27 +0000 ROA not before: Fri 22 Aug 2025 08:44:27 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18046 IP address blocks: 220.158.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGJAY/Mkp-br9nj5i4cijshGbDaQpD3bY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGJAY/Mkp-br9nj5i4cijshGbDaQpD3bY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Mkp-br9nj5i4cijshGbDaQpD3bY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3443 (0xd73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=324A7E6EBF678F98B87228EC8466C3690A43DDB6 Validity Not Before: Aug 22 08:44:27 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=6FE948625E0CBC7879BF2A397D86E44E31C8EA46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a4:0c:1b:07:95:70:e4:3e:2f:8c:6f:e1:15: e8:1d:fb:3d:fb:bb:a5:78:40:07:d5:5c:3e:2d:a8: 47:fd:03:4f:8e:96:7c:65:4a:a6:31:89:96:2b:01: 05:b8:84:60:ff:07:bf:7a:56:ad:04:21:07:19:31: ad:dc:de:4f:e1:29:ce:d9:7e:25:1c:1b:d7:27:3c: 31:6a:f0:7c:1b:d4:47:0b:c6:1b:5a:9f:fe:76:ad: c0:03:5a:27:7c:8b:d2:a7:2d:92:43:79:e5:f3:1e: 67:68:30:c5:ee:8f:0e:3e:d4:e1:15:c9:fc:2b:54: 11:d8:21:36:76:59:11:e3:28:22:16:0b:26:fd:a3: e2:ab:37:a1:34:a2:cc:16:a5:7c:50:98:ac:0a:07: ed:fb:2a:86:e2:2f:c5:e2:b2:0a:a7:6e:40:0b:2e: 8d:67:f7:62:04:1a:a0:bc:33:fb:e6:6d:b3:6c:8a: 8f:22:53:3c:62:ad:2d:18:7b:be:f8:67:02:8f:9a: d4:be:c3:1d:ee:51:b1:42:c7:e4:33:9b:50:8b:86: 23:af:15:97:b8:dd:dd:88:f6:07:eb:a3:9a:ba:e7: e6:e7:c3:38:26:f5:04:5c:b9:69:e9:c1:6c:9e:f0: e7:b8:43:1b:01:fa:b2:32:c1:95:4b:7d:dd:49:91: 21:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:E9:48:62:5E:0C:BC:78:79:BF:2A:39:7D:86:E4:4E:31:C8:EA:46 X509v3 Authority Key Identifier: keyid:32:4A:7E:6E:BF:67:8F:98:B8:72:28:EC:84:66:C3:69:0A:43:DD:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGJAY/Mkp-br9nj5i4cijshGbDaQpD3bY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Mkp-br9nj5i4cijshGbDaQpD3bY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGJAY/b-lIYl4MvHh5vyo5fYbkTjHI6kY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 220.158.228.0/22 Signature Algorithm: sha256WithRSAEncryption 73:d5:a2:f7:31:2f:bf:5f:69:4d:2a:f1:25:3b:53:f0:e4:ce: ce:fb:7b:35:11:3c:7f:23:09:48:20:46:30:98:89:e7:b2:b9: 64:dd:31:43:ef:26:e0:f0:71:4b:22:ec:b7:f8:be:9c:2b:f2: fc:9f:4c:50:f3:fc:a7:79:43:86:3a:49:68:c0:d3:38:60:9b: b4:19:89:32:de:a6:8d:2b:09:d4:08:8d:fa:1b:29:54:07:b5: f1:b2:61:b3:b3:aa:cd:3e:24:b3:6c:eb:b8:01:7a:09:05:bb: 4b:ee:b6:e6:1d:a6:a4:c6:e4:5c:c0:cc:4b:7d:37:f5:c7:29: 75:5a:ca:72:55:ef:2e:4f:65:05:eb:c2:d6:70:37:b8:9c:0d: fe:36:50:0b:f4:e9:59:84:0f:f3:42:65:48:c9:e0:91:66:06: 4b:1e:73:18:43:48:13:0d:8d:b4:43:8e:09:ba:cc:a7:2b:15: 1d:f1:9c:52:b2:02:40:72:1f:8e:98:52:ed:12:99:84:fc:d6: 7c:7b:ca:97:79:65:79:c3:86:f3:a1:3a:df:a6:db:d9:97:f3: c4:89:d8:a5:44:65:31:2f:ef:2e:13:37:58:6f:07:01:cb:91: 8c:ed:b9:b9:d9:5f:f4:90:9b:f4:4c:bb:21:b4:6a:50:5f:b4: 30:97:ef:d3 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDXMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzI0 QTdFNkVCRjY3OEY5OEI4NzIyOEVDODQ2NkMzNjkwQTQzRERCNjAeFw0yNTA4MjIw ODQ0MjdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDZGRTk0ODYyNUUwQ0JD Nzg3OUJGMkEzOTdEODZFNDRFMzFDOEVBNDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/pAwbB5Vw5D4vjG/hFegd+z37u6V4QAfVXD4tqEf9A0+Olnxl SqYxiZYrAQW4hGD/B796Vq0EIQcZMa3c3k/hKc7ZfiUcG9cnPDFq8Hwb1EcLxhta n/52rcADWid8i9KnLZJDeeXzHmdoMMXujw4+1OEVyfwrVBHYITZ2WRHjKCIWCyb9 o+KrN6E0oswWpXxQmKwKB+37KobiL8XisgqnbkALLo1n92IEGqC8M/vmbbNsio8i UzxirS0Ye774ZwKPmtS+wx3uUbFCx+Qzm1CLhiOvFZe43d2I9gfro5q65+bnwzgm 9QRcuWnpwWye8Oe4QxsB+rIywZVLfd1JkSFnAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUb+lIYl4MvHh5vyo5fYbkTjHI6kYwHwYDVR0jBBgwFoAUMkp+br9nj5i4cijs hGbDaQpD3bYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0pB WS9Na3AtYnI5bmo1aTRjaWpzaEdiRGFRcEQzYlkuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL01rcC1icjluajVpNGNpanNoR2JEYVFwRDNiWS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0hPTkdKQVkvYi1sSVlsNE12SGg1dnlv NWZZYmtUakhJNmtZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME Atye5DANBgkqhkiG9w0BAQsFAAOCAQEAc9Wi9zEvv19pTSrxJTtT8OTOzvt7NRE8 fyMJSCBGMJiJ57K5ZN0xQ+8m4PBxSyLst/i+nCvy/J9MUPP8p3lDhjpJaMDTOGCb tBmJMt6mjSsJ1AiN+hspVAe18bJhs7OqzT4ks2zruAF6CQW7S+625h2mpMbkXMDM S3039ccpdVrKclXvLk9lBevC1nA3uJwN/jZQC/TpWYQP80JlSMngkWYGSx5zGENI Ew2NtEOOCbrMpysVHfGcUrICQHIfjphS7RKZhPzWfHvKl3llecOG86E636bb2Zfz xInYpURlMS/vLhM3WG8HAcuRjO25udlf9JCb9Ey7IbRqUF+0MJfv0w== -----END CERTIFICATE-----Generated at Sun Aug 24 09:44:52 2025 by rpki-client