$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/luycyQCVnCSeD4L7Alh2HW7K8WE.roa File: luycyQCVnCSeD4L7Alh2HW7K8WE.roa (raw, json) Hash identifier: NKeSwfVC6MnpCu1V8tuFvgPHdMm3NDSYpXHpT7g9wMc= Subject key identifier: 96:EC:9C:C9:00:95:9C:24:9E:0F:82:FB:02:58:76:1D:6E:CA:F1:61 Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C Certificate serial: 07FE Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/luycyQCVnCSeD4L7Alh2HW7K8WE.roa Signing time: Fri 22 Aug 2025 08:58:49 +0000 ROA not before: Fri 22 Aug 2025 08:58:49 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9678 IP address blocks: 103.98.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2046 (0x7fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C Validity Not Before: Aug 22 08:58:49 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=96EC9CC900959C249E0F82FB0258761D6ECAF161 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:45:b1:2f:d7:a0:aa:c6:35:60:c5:86:11:84: 70:68:fc:85:cb:ea:21:14:22:da:aa:cb:c1:23:dd: 33:b9:7d:f9:c5:4a:c0:cf:6e:8a:65:43:7d:28:7d: e3:42:5b:a9:9d:21:ed:af:9d:3c:8b:c5:53:0a:dc: fa:c2:53:f5:67:9d:d7:e3:29:1b:b0:a8:40:60:5c: f5:75:f0:b6:57:1e:98:44:1e:5b:97:e7:8b:e6:5d: 9b:0e:ad:26:dd:67:e4:be:de:5a:51:98:54:fc:55: f9:35:c6:35:c7:11:6a:c1:70:85:bb:d6:c2:4f:b6: 16:4b:76:67:08:d8:75:c9:ef:52:5b:5a:fb:6a:d8: 53:7c:1a:51:e1:ae:e9:ee:d8:aa:83:1c:ec:58:99: dc:5f:89:b1:e9:fa:27:9b:29:45:91:d7:9c:b9:e5: 39:38:6f:d5:f3:d2:1a:47:d0:ac:5d:c2:0c:4c:98: ff:1a:73:97:42:ad:56:73:fe:c6:ed:cf:d7:e8:a6: 99:a7:e5:5f:9d:c5:58:7f:2e:fd:dc:35:ec:12:ca: 10:cd:ee:1c:45:55:c5:1e:e6:2a:75:0a:9f:7f:b8: f7:d0:be:41:e6:05:34:88:7c:47:06:61:e0:4d:66: 60:95:97:2e:02:b0:fe:19:58:62:f4:b1:c1:d5:bd: 9e:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:EC:9C:C9:00:95:9C:24:9E:0F:82:FB:02:58:76:1D:6E:CA:F1:61 X509v3 Authority Key Identifier: keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/luycyQCVnCSeD4L7Alh2HW7K8WE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.98.75.0/24 Signature Algorithm: sha256WithRSAEncryption aa:65:34:76:c9:b5:59:82:a9:01:10:21:4c:87:75:64:5a:45: bb:e9:cf:35:13:ff:77:c4:fa:8f:22:a5:20:c4:f5:21:31:16: 67:cc:a9:30:74:99:c6:c3:aa:ef:3b:c5:f3:13:10:28:4e:bc: c3:55:43:10:14:c5:62:8b:b0:12:ee:c6:02:1f:6b:c3:93:4c: ac:5d:19:39:30:45:3e:f7:7b:56:a4:76:50:1a:ca:63:7e:2e: f6:b1:a0:13:21:15:b7:ec:e6:8d:a8:10:3b:c6:db:86:ba:dd: 74:89:9c:3c:0a:39:7d:4d:fc:9a:ea:8c:d9:55:ac:c8:88:3b: 3f:a1:a0:1b:5a:d7:13:b3:04:2e:dc:8b:e8:2c:81:4f:59:59: 8c:7d:17:c6:1b:39:08:c4:ba:63:c8:58:a3:0b:79:4b:b7:0b: 54:f7:91:ae:4e:93:75:a2:1e:e8:7f:4f:a3:a4:32:d8:42:f9: c4:25:55:93:67:82:54:45:5e:e8:0b:c9:bb:fa:73:52:0a:21: d2:90:81:a2:12:ac:40:d6:2b:87:bd:65:21:bb:0b:2e:ae:f2: 52:c9:4a:de:f7:69:38:93:6d:79:ad:10:fb:83:ca:2d:bf:80: 15:ad:e4:e0:01:e9:c0:60:de:77:a0:da:b5:51:8e:12:ce:92: 08:83:13:80 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICB/4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJF RDI4RkZDQzA0MEUzNjAzMkM0MjYxNTQ5NTU2MkJDQzZFRjQ1QzAeFw0yNTA4MjIw ODU4NDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDk2RUM5Q0M5MDA5NTlD MjQ5RTBGODJGQjAyNTg3NjFENkVDQUYxNjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJRbEv16CqxjVgxYYRhHBo/IXL6iEUItqqy8Ej3TO5ffnFSsDP boplQ30ofeNCW6mdIe2vnTyLxVMK3PrCU/VnndfjKRuwqEBgXPV18LZXHphEHluX 54vmXZsOrSbdZ+S+3lpRmFT8Vfk1xjXHEWrBcIW71sJPthZLdmcI2HXJ71JbWvtq 2FN8GlHhrunu2KqDHOxYmdxfibHp+iebKUWR15y55Tk4b9Xz0hpH0KxdwgxMmP8a c5dCrVZz/sbtz9foppmn5V+dxVh/Lv3cNewSyhDN7hxFVcUe5ip1Cp9/uPfQvkHm BTSIfEcGYeBNZmCVly4CsP4ZWGL0scHVvZ6BAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUluycyQCVnCSeD4L7Alh2HW7K8WEwHwYDVR0jBBgwFoAUq+0o/8wEDjYDLEJh VJVWK8xu9FwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElO L3EtMG9fOHdFRGpZRExFSmhWSlZXSzh4dTlGdy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvcS0wb184d0VEallETEVKaFZKVldLOHh1OUZ3LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElOL2x1eWN5UUNWbkNTZUQ0TDdB bGgySFc3SzhXRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn YkswDQYJKoZIhvcNAQELBQADggEBAKplNHbJtVmCqQEQIUyHdWRaRbvpzzUT/3fE +o8ipSDE9SExFmfMqTB0mcbDqu87xfMTEChOvMNVQxAUxWKLsBLuxgIfa8OTTKxd GTkwRT73e1akdlAaymN+LvaxoBMhFbfs5o2oEDvG24a63XSJnDwKOX1N/JrqjNlV rMiIOz+hoBta1xOzBC7ci+gsgU9ZWYx9F8YbOQjEumPIWKMLeUu3C1T3ka5Ok3Wi Huh/T6OkMthC+cQlVZNnglRFXugLybv6c1IKIdKQgaISrEDWK4e9ZSG7Cy6u8lLJ St73aTiTbXmtEPuDyi2/gBWt5OAB6cBg3neg2rVRjhLOkgiDE4A= -----END CERTIFICATE-----Generated at Sun Aug 24 09:16:23 2025 by rpki-client