$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/LrDQUDQhMEFoCs9fICylNFhe7C8.roa File: LrDQUDQhMEFoCs9fICylNFhe7C8.roa (raw, json) Hash identifier: Fqh0M1J163IHLpVJ5y3GP71aMdX4Ro56qfgBCjSs69w= Subject key identifier: 2E:B0:D0:50:34:21:30:41:68:0A:CF:5F:20:2C:A5:34:58:5E:EC:2F Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C Certificate serial: 0805 Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/LrDQUDQhMEFoCs9fICylNFhe7C8.roa Signing time: Fri 22 Aug 2025 08:58:51 +0000 ROA not before: Fri 22 Aug 2025 08:58:51 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9678 IP address blocks: 103.98.73.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2053 (0x805) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C Validity Not Before: Aug 22 08:58:51 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2EB0D05034213041680ACF5F202CA534585EEC2F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:9b:4f:69:74:a2:6d:48:73:a3:9f:4d:2f:83: 20:da:1f:18:c5:e6:da:91:4e:70:fb:7d:52:7f:b1: 75:3c:38:8b:1c:42:26:31:67:c9:fa:74:87:97:99: 3e:a8:50:9c:bf:7b:e2:8c:74:a3:a1:2c:8a:55:9d: d6:3a:ad:60:59:9f:80:45:c6:eb:97:e9:0d:5f:68: cb:1c:b3:cb:52:25:67:4b:5d:40:c3:94:43:86:84: 14:41:7a:ea:e0:f3:96:94:19:f3:90:2d:97:96:c5: 2d:95:58:93:e7:e7:1e:6a:72:f3:c9:c3:b3:90:cf: 1d:be:55:de:81:29:38:6f:f9:1f:35:4f:2c:cf:71: c2:f4:d1:21:a0:3b:80:03:59:82:48:75:51:a3:7f: 21:ff:12:6c:de:6e:48:27:f2:e0:b9:7a:bf:fe:01: 22:f2:a1:9f:2d:b4:3a:45:c7:5a:ea:5e:93:33:49: 4c:ff:85:b3:86:de:6b:53:e2:b3:97:22:d8:b4:46: 7e:b6:92:f2:7f:cd:5f:92:84:d9:46:14:f4:1f:74: 0e:e9:ef:cc:68:c9:a2:3a:b3:cb:46:40:a6:e3:e4: a4:78:99:6a:5d:24:b7:7a:6d:2d:25:4a:0d:73:76: 7b:5c:2a:43:e4:97:eb:e5:8b:ef:f2:bc:f2:52:20: 20:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:B0:D0:50:34:21:30:41:68:0A:CF:5F:20:2C:A5:34:58:5E:EC:2F X509v3 Authority Key Identifier: keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/LrDQUDQhMEFoCs9fICylNFhe7C8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.98.73.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:4b:f5:18:ce:ed:ce:e9:73:89:87:88:f2:9c:64:86:71:d9: 9e:b2:24:23:50:73:dc:d3:03:60:65:f1:ad:b4:f1:4e:25:a7: c1:a4:4b:91:5b:01:1e:ae:2e:ae:29:a5:cb:c1:97:b1:97:2f: 86:42:f9:a7:5c:10:91:2b:1c:cc:87:07:b4:e3:99:72:64:a9: 90:bf:63:80:25:be:fa:dd:14:85:bc:84:db:fd:cc:3e:1d:de: 90:e6:5d:c2:e1:7b:a2:dd:9d:f4:4c:b6:b2:4c:22:fc:fe:6c: e1:db:de:0d:67:da:f8:90:b8:e4:85:66:38:aa:e3:e2:01:93: 65:48:9c:9d:61:7b:8b:5c:a5:34:e0:bf:40:5e:15:df:f2:99: 84:84:06:ce:88:9b:f0:8c:3a:b4:bf:1d:34:09:8a:97:50:17: 3b:96:0d:66:c4:d8:1d:c2:22:f1:69:4b:df:d6:ee:17:5d:64: db:90:2c:ac:4c:d9:8d:b1:07:58:75:a2:37:fb:3d:2f:cf:15: b9:97:2c:51:94:bc:59:32:ed:78:ac:0f:8e:fb:03:6d:b5:1c: 9e:d0:36:97:57:33:20:a4:78:77:d0:ef:2a:95:ac:16:3a:23: cb:0c:78:38:00:a5:bf:64:ba:8f:cb:dc:7d:d3:a6:97:5c:1a: ad:72:f0:f4 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICCAUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJF RDI4RkZDQzA0MEUzNjAzMkM0MjYxNTQ5NTU2MkJDQzZFRjQ1QzAeFw0yNTA4MjIw ODU4NTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDJFQjBEMDUwMzQyMTMw NDE2ODBBQ0Y1RjIwMkNBNTM0NTg1RUVDMkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDmm09pdKJtSHOjn00vgyDaHxjF5tqRTnD7fVJ/sXU8OIscQiYx Z8n6dIeXmT6oUJy/e+KMdKOhLIpVndY6rWBZn4BFxuuX6Q1faMscs8tSJWdLXUDD lEOGhBRBeurg85aUGfOQLZeWxS2VWJPn5x5qcvPJw7OQzx2+Vd6BKThv+R81TyzP ccL00SGgO4ADWYJIdVGjfyH/Emzebkgn8uC5er/+ASLyoZ8ttDpFx1rqXpMzSUz/ hbOG3mtT4rOXIti0Rn62kvJ/zV+ShNlGFPQfdA7p78xoyaI6s8tGQKbj5KR4mWpd JLd6bS0lSg1zdntcKkPkl+vli+/yvPJSICDpAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQULrDQUDQhMEFoCs9fICylNFhe7C8wHwYDVR0jBBgwFoAUq+0o/8wEDjYDLEJh VJVWK8xu9FwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElO L3EtMG9fOHdFRGpZRExFSmhWSlZXSzh4dTlGdy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvcS0wb184d0VEallETEVKaFZKVldLOHh1OUZ3LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElOL0xyRFFVRFFoTUVGb0NzOWZJ Q3lsTkZoZTdDOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn YkkwDQYJKoZIhvcNAQELBQADggEBAE5L9RjO7c7pc4mHiPKcZIZx2Z6yJCNQc9zT A2Bl8a208U4lp8GkS5FbAR6uLq4ppcvBl7GXL4ZC+adcEJErHMyHB7TjmXJkqZC/ Y4AlvvrdFIW8hNv9zD4d3pDmXcLhe6LdnfRMtrJMIvz+bOHb3g1n2viQuOSFZjiq 4+IBk2VInJ1he4tcpTTgv0BeFd/ymYSEBs6Im/CMOrS/HTQJipdQFzuWDWbE2B3C IvFpS9/W7hddZNuQLKxM2Y2xB1h1ojf7PS/PFbmXLFGUvFky7XisD477A221HJ7Q NpdXMyCkeHfQ7yqVrBY6I8sMeDgApb9kuo/L3H3TppdcGq1y8PQ= -----END CERTIFICATE-----Generated at Sun Aug 24 09:20:31 2025 by rpki-client