$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/GIG8ZdyB5-c-1FoFLP4Ft_6LUJc.roa File: GIG8ZdyB5-c-1FoFLP4Ft_6LUJc.roa (raw, json) Hash identifier: 4oBckO6paU72uWlQ+WBdkPSJ5BEE5JF4HeLlE/nNLLU= Subject key identifier: 18:81:BC:65:DC:81:E7:E7:3E:D4:5A:05:2C:FE:05:B7:FE:8B:50:97 Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C Certificate serial: 0802 Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/GIG8ZdyB5-c-1FoFLP4Ft_6LUJc.roa Signing time: Fri 22 Aug 2025 08:58:50 +0000 ROA not before: Fri 22 Aug 2025 08:58:50 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9678 IP address blocks: 103.98.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2050 (0x802) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C Validity Not Before: Aug 22 08:58:50 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1881BC65DC81E7E73ED45A052CFE05B7FE8B5097 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:06:43:fa:6f:f8:b0:be:a9:25:b0:3c:af:1d: 44:0c:61:96:80:f5:ea:aa:3a:ee:b9:d4:ab:a1:07: be:66:da:84:b1:08:41:a0:50:5f:a2:95:09:f0:1c: 5a:55:ee:ed:48:a9:10:4e:5b:6d:f4:7e:22:1c:c1: 33:48:b1:75:f5:7c:c3:a3:18:4d:51:6d:d3:de:1a: 22:0a:73:59:45:99:47:35:26:a1:22:f8:df:c8:2b: dd:7a:03:71:e8:b8:72:47:4a:1e:03:77:23:4c:78: 2a:74:33:25:e1:75:88:57:a3:a6:00:d3:a8:92:50: c6:07:dd:26:a7:e2:5e:37:eb:91:da:04:7c:f6:2e: 6c:b9:b5:33:4b:71:26:e2:5a:30:1e:b6:c6:05:02: cb:8f:d5:9a:72:b3:5b:0e:a1:98:45:7e:be:39:d9: d3:4b:2c:33:36:51:8f:e4:cc:b4:c7:c0:d3:cc:1e: 21:c5:09:67:f6:4d:75:b1:ff:44:32:2c:da:27:cf: 6e:f5:88:56:fc:e5:8c:81:6e:78:93:c5:99:d2:ae: 78:10:06:ae:96:cc:17:6d:50:2d:57:28:cc:c0:02: a5:23:ed:6e:56:80:14:9c:ca:60:35:91:08:05:76: 52:60:61:73:f4:05:c9:52:fc:c3:b8:98:b6:fe:e5: 8c:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:81:BC:65:DC:81:E7:E7:3E:D4:5A:05:2C:FE:05:B7:FE:8B:50:97 X509v3 Authority Key Identifier: keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/GIG8ZdyB5-c-1FoFLP4Ft_6LUJc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.98.74.0/24 Signature Algorithm: sha256WithRSAEncryption a3:94:38:72:c5:2f:e8:03:25:e9:e2:94:c3:02:ed:e9:4b:d3: 4d:a0:c1:da:67:f2:c4:17:c6:b0:c5:39:b3:57:90:78:f9:f0: 45:f2:e9:c0:03:55:08:1e:dd:b4:38:c2:7a:0e:ea:63:61:44: 94:a5:90:96:3b:42:61:2a:70:31:5e:c0:39:da:34:23:4a:45: 9a:2e:18:94:05:00:e6:ad:90:9b:bc:7f:a1:8e:3a:1d:c4:e6: ec:24:c4:7f:c6:23:a5:62:40:30:9c:26:66:ff:2d:e2:b1:71: e1:db:64:2d:ee:83:39:bc:68:e0:32:2a:46:43:dc:9c:14:fd: 92:b1:e2:bd:ef:27:2b:f0:55:e7:14:af:68:f7:d6:fe:2a:4c: 41:40:64:3f:98:05:c0:53:ff:6a:15:7c:ca:e4:18:e5:30:7c: e5:53:9a:1f:3e:c2:d2:70:7a:e5:9d:6d:29:89:51:76:db:b9: 51:7c:03:92:93:74:62:f3:09:c9:c4:62:ae:35:c7:ad:60:bf: 1b:be:8c:92:d0:0a:76:1b:77:e0:41:ae:ac:bd:9b:da:0d:3e: 63:7e:bf:4f:e9:44:e9:5d:2f:f2:22:7d:b6:c4:aa:3d:04:97: e4:71:f1:ae:93:56:66:42:e4:f6:f2:cc:d5:d4:94:57:de:e4: 6b:83:0c:41 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICCAIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJF RDI4RkZDQzA0MEUzNjAzMkM0MjYxNTQ5NTU2MkJDQzZFRjQ1QzAeFw0yNTA4MjIw ODU4NTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDE4ODFCQzY1REM4MUU3 RTczRUQ0NUEwNTJDRkUwNUI3RkU4QjUwOTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQBkP6b/iwvqklsDyvHUQMYZaA9eqqOu651KuhB75m2oSxCEGg UF+ilQnwHFpV7u1IqRBOW230fiIcwTNIsXX1fMOjGE1RbdPeGiIKc1lFmUc1JqEi +N/IK916A3HouHJHSh4DdyNMeCp0MyXhdYhXo6YA06iSUMYH3San4l4365HaBHz2 Lmy5tTNLcSbiWjAetsYFAsuP1Zpys1sOoZhFfr452dNLLDM2UY/kzLTHwNPMHiHF CWf2TXWx/0QyLNonz271iFb85YyBbniTxZnSrngQBq6WzBdtUC1XKMzAAqUj7W5W gBScymA1kQgFdlJgYXP0BclS/MO4mLb+5YzjAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUGIG8ZdyB5+c+1FoFLP4Ft/6LUJcwHwYDVR0jBBgwFoAUq+0o/8wEDjYDLEJh VJVWK8xu9FwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElO L3EtMG9fOHdFRGpZRExFSmhWSlZXSzh4dTlGdy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvcS0wb184d0VEallETEVKaFZKVldLOHh1OUZ3LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElOL0dJRzhaZHlCNS1jLTFGb0ZM UDRGdF82TFVKYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn YkowDQYJKoZIhvcNAQELBQADggEBAKOUOHLFL+gDJenilMMC7elL002gwdpn8sQX xrDFObNXkHj58EXy6cADVQge3bQ4wnoO6mNhRJSlkJY7QmEqcDFewDnaNCNKRZou GJQFAOatkJu8f6GOOh3E5uwkxH/GI6ViQDCcJmb/LeKxceHbZC3ugzm8aOAyKkZD 3JwU/ZKx4r3vJyvwVecUr2j31v4qTEFAZD+YBcBT/2oVfMrkGOUwfOVTmh8+wtJw euWdbSmJUXbbuVF8A5KTdGLzCcnEYq41x61gvxu+jJLQCnYbd+BBrqy9m9oNPmN+ v0/pROldL/IifbbEqj0El+Rx8a6TVmZC5PbyzNXUlFfe5GuDDEE= -----END CERTIFICATE-----Generated at Sun Aug 24 09:22:29 2025 by rpki-client