$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HST/Yt4-rzeOglJ4lYxRe0DmA96qa4I.roa File: Yt4-rzeOglJ4lYxRe0DmA96qa4I.roa (raw, json) Hash identifier: XufuaZYkRwOhpwR50NCkgbAl1VmLCeMj8nMzL5jBC3g= Subject key identifier: 62:DE:3E:AF:37:8E:82:52:78:95:8C:51:7B:40:E6:03:DE:AA:6B:82 Certificate issuer: /CN=833D5BF79B45C730ED141CB539A508D01AA30908 Certificate serial: 0AF4 Authority key identifier: 83:3D:5B:F7:9B:45:C7:30:ED:14:1C:B5:39:A5:08:D0:1A:A3:09:08 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gz1b95tFxzDtFBy1OaUI0BqjCQg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/Yt4-rzeOglJ4lYxRe0DmA96qa4I.roa Signing time: Fri 22 Aug 2025 08:48:59 +0000 ROA not before: Fri 22 Aug 2025 08:48:59 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131666 IP address blocks: 103.144.34.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/gz1b95tFxzDtFBy1OaUI0BqjCQg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/gz1b95tFxzDtFBy1OaUI0BqjCQg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gz1b95tFxzDtFBy1OaUI0BqjCQg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2804 (0xaf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=833D5BF79B45C730ED141CB539A508D01AA30908 Validity Not Before: Aug 22 08:48:59 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=62DE3EAF378E825278958C517B40E603DEAA6B82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:52:f0:50:35:16:da:36:ad:60:be:f3:4e:e8: 11:76:9e:8a:97:d4:8c:a5:62:86:9b:2f:39:ab:91: 86:91:19:26:ef:34:b7:b4:4c:16:e8:70:8e:f8:6e: ca:b9:1e:ea:b7:bf:8f:2d:a6:91:16:e9:a9:ce:61: b5:26:e3:cf:51:9a:42:bb:ab:f1:6d:d0:31:8f:11: 26:f8:9e:e2:15:af:69:8a:1a:e3:bb:1b:70:2f:ae: 9e:b6:77:bb:d5:e7:fe:4f:99:8d:fc:92:76:71:74: d6:11:03:b0:21:7e:87:96:f3:51:76:a2:27:e8:d7: 6e:0e:cd:fe:37:20:da:85:af:f4:f4:e4:c2:41:a5: 4a:64:51:e1:82:a5:57:bb:51:2a:79:56:20:37:f1: d0:9d:4c:57:93:24:59:db:fe:b7:08:8f:9e:79:2a: 4f:c6:6a:e6:4c:de:8d:99:7f:e7:5f:fb:e9:14:5d: 85:fc:81:d9:d9:b3:71:d8:5f:d2:0f:9b:67:ec:1a: fc:b1:b7:4f:a6:c1:e4:5f:46:e9:7d:66:ff:4e:2b: 50:79:0f:e7:22:cc:66:4f:40:9a:3d:9c:c4:c3:24: 98:88:c4:01:a7:fb:07:33:63:08:33:ea:2d:94:e8: 75:da:ec:9e:a2:1b:2d:b6:91:24:16:a1:bf:0b:ea: b6:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:DE:3E:AF:37:8E:82:52:78:95:8C:51:7B:40:E6:03:DE:AA:6B:82 X509v3 Authority Key Identifier: keyid:83:3D:5B:F7:9B:45:C7:30:ED:14:1C:B5:39:A5:08:D0:1A:A3:09:08 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/gz1b95tFxzDtFBy1OaUI0BqjCQg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gz1b95tFxzDtFBy1OaUI0BqjCQg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/Yt4-rzeOglJ4lYxRe0DmA96qa4I.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.144.34.0/23 Signature Algorithm: sha256WithRSAEncryption 39:55:0e:1a:c7:25:83:56:82:e5:0c:ae:4d:f6:18:86:a1:93: c4:11:a1:98:2c:2f:52:95:9c:61:ab:a3:90:10:15:d1:29:c7: dd:d9:8b:b9:2d:92:14:75:13:cd:8f:de:0a:f6:52:b2:99:80: d5:90:96:36:72:c7:8e:0c:40:af:48:4a:81:d0:40:6c:40:0a: e3:33:46:1a:45:35:3e:84:fd:53:1f:fb:85:32:bf:ff:da:df: 4a:90:3c:67:6f:d7:c3:9e:7e:84:08:76:d9:34:45:59:e5:66: 8f:4e:2c:00:15:f3:4a:41:bb:ab:12:f0:82:a4:12:aa:30:2b: ba:b9:47:bc:b7:d2:16:eb:8a:35:27:53:6c:ab:66:d1:d7:69: f9:87:1d:99:06:79:de:3e:1c:c5:fe:81:d0:ff:3f:93:d5:8a: a8:f9:d8:b5:10:55:d8:e8:c5:f2:e0:5f:e4:d5:9e:3a:ee:5c: 55:0e:18:1a:32:a5:e8:ea:23:8e:45:80:74:fe:cc:4d:35:c3: 7d:b1:95:7c:64:43:bc:29:46:84:d9:ce:bc:14:72:87:d8:da: 3f:eb:39:2d:b8:78:dd:90:06:1d:99:bf:09:98:5b:d4:8e:b0: 72:3e:c6:b4:9b:95:2e:e2:cf:af:bd:99:bb:a3:07:ee:21:b3: f4:21:b7:d2 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICCvQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMz RDVCRjc5QjQ1QzczMEVEMTQxQ0I1MzlBNTA4RDAxQUEzMDkwODAeFw0yNTA4MjIw ODQ4NTlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDYyREUzRUFGMzc4RTgy NTI3ODk1OEM1MTdCNDBFNjAzREVBQTZCODIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvUvBQNRbaNq1gvvNO6BF2noqX1IylYoabLzmrkYaRGSbvNLe0 TBbocI74bsq5Huq3v48tppEW6anOYbUm489RmkK7q/Ft0DGPESb4nuIVr2mKGuO7 G3Avrp62d7vV5/5PmY38knZxdNYRA7AhfoeW81F2oifo124Ozf43INqFr/T05MJB pUpkUeGCpVe7USp5ViA38dCdTFeTJFnb/rcIj555Kk/GauZM3o2Zf+df++kUXYX8 gdnZs3HYX9IPm2fsGvyxt0+mweRfRul9Zv9OK1B5D+cizGZPQJo9nMTDJJiIxAGn +wczYwgz6i2U6HXa7J6iGy22kSQWob8L6rZfAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUYt4+rzeOglJ4lYxRe0DmA96qa4IwHwYDVR0jBBgwFoAUgz1b95tFxzDtFBy1 OaUI0BqjCQgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSFNUL2d6 MWI5NXRGeHpEdEZCeTFPYVVJMEJxakNRZy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev Z3oxYjk1dEZ4ekR0RkJ5MU9hVUkwQnFqQ1FnLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvSFNUL1l0NC1yemVPZ2xKNGxZeFJlMERtQTk2 cWE0SS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnkCIwDQYJ KoZIhvcNAQELBQADggEBADlVDhrHJYNWguUMrk32GIahk8QRoZgsL1KVnGGro5AQ FdEpx93Zi7ktkhR1E82P3gr2UrKZgNWQljZyx44MQK9ISoHQQGxACuMzRhpFNT6E /VMf+4Uyv//a30qQPGdv18OefoQIdtk0RVnlZo9OLAAV80pBu6sS8IKkEqowK7q5 R7y30hbrijUnU2yrZtHXafmHHZkGed4+HMX+gdD/P5PViqj52LUQVdjoxfLgX+TV njruXFUOGBoypejqI45FgHT+zE01w32xlXxkQ7wpRoTZzrwUcofY2j/rOS24eN2Q Bh2ZvwmYW9SOsHI+xrSblS7iz6+9mbujB+4hs/Qht9I= -----END CERTIFICATE-----Generated at Sun Aug 24 07:41:21 2025 by rpki-client