$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HUANGDEXIA/DdJ-7UfiK73AI2I9-j_h4VBta6k.roa File: DdJ-7UfiK73AI2I9-j_h4VBta6k.roa (raw, json) Hash identifier: FxHrcdMcXw5ctXSPqllV4Y87DMdr5ht4OlkhaHDpHCA= Subject key identifier: 0D:D2:7E:ED:47:E2:2B:BD:C0:23:62:3D:FA:3F:E1:E1:50:6D:6B:A9 Certificate issuer: /CN=CAA8405CBD8CE6AE1EA3A9DAA6779756EC6EDC42 Certificate serial: 0254 Authority key identifier: CA:A8:40:5C:BD:8C:E6:AE:1E:A3:A9:DA:A6:77:97:56:EC:6E:DC:42 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/yqhAXL2M5q4eo6napneXVuxu3EI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HUANGDEXIA/DdJ-7UfiK73AI2I9-j_h4VBta6k.roa Signing time: Fri 22 Aug 2025 08:50:56 +0000 ROA not before: Fri 22 Aug 2025 08:50:56 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131642 IP address blocks: 103.99.142.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HUANGDEXIA/yqhAXL2M5q4eo6napneXVuxu3EI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HUANGDEXIA/yqhAXL2M5q4eo6napneXVuxu3EI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/yqhAXL2M5q4eo6napneXVuxu3EI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 596 (0x254) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CAA8405CBD8CE6AE1EA3A9DAA6779756EC6EDC42 Validity Not Before: Aug 22 08:50:56 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=0DD27EED47E22BBDC023623DFA3FE1E1506D6BA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a2:1a:a6:10:0d:45:e3:ab:5f:96:f2:9e:74: 2d:69:ca:1a:7a:b8:6b:03:98:dc:f8:1f:30:0c:8f: 51:1f:dc:82:7b:5e:ca:34:e8:89:70:f7:ac:06:6f: 6e:54:32:32:ef:f9:60:93:6a:4e:35:b0:ca:26:83: b4:5b:f4:25:9c:fd:a6:a0:d4:c7:57:4b:ae:a1:d6: 18:73:8b:56:b0:05:05:e9:72:63:19:c5:c2:b2:c3: f6:50:26:a3:f0:e3:7d:2b:1b:1c:10:da:26:ce:3b: 78:39:9d:5e:53:1e:49:e2:8b:f6:84:46:23:88:af: f3:a7:46:72:c2:b9:40:80:54:99:c7:34:ea:66:b3: 62:e8:e0:a8:ae:58:8d:9b:2c:ce:18:d6:5c:fa:98: b9:ab:fa:53:3c:f5:6f:d3:18:fa:30:9d:df:6b:b3: 3e:b7:a9:ff:c5:e1:8b:6b:1d:50:26:75:1f:51:84: 94:a5:7a:f1:59:d5:3d:f4:c3:79:04:8b:a8:bc:e2: 57:f8:ed:2a:f6:b6:ff:33:8a:76:d2:f6:84:9f:51: 25:f4:29:5c:34:fd:26:a7:52:ab:d0:c8:a7:63:2c: 5b:c6:fa:36:bb:e1:8a:52:3c:be:ce:3c:7a:e9:59: 82:50:01:24:3a:24:0f:2f:71:24:68:59:f1:32:c8: 6a:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:D2:7E:ED:47:E2:2B:BD:C0:23:62:3D:FA:3F:E1:E1:50:6D:6B:A9 X509v3 Authority Key Identifier: keyid:CA:A8:40:5C:BD:8C:E6:AE:1E:A3:A9:DA:A6:77:97:56:EC:6E:DC:42 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HUANGDEXIA/yqhAXL2M5q4eo6napneXVuxu3EI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/yqhAXL2M5q4eo6napneXVuxu3EI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HUANGDEXIA/DdJ-7UfiK73AI2I9-j_h4VBta6k.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.99.142.0/23 Signature Algorithm: sha256WithRSAEncryption 9b:70:fd:03:8b:a9:d7:c6:f2:4c:0c:3d:05:37:b5:30:58:db: 6d:ad:7d:64:27:42:c8:21:8c:a6:8d:86:3d:28:13:ee:a8:27: db:1e:6f:27:fe:5e:14:84:3b:af:7d:7c:38:ed:03:17:1e:77: 83:9c:77:30:bd:fd:9d:01:14:1c:75:9f:78:63:9c:79:a6:f7: d2:82:9e:a2:c6:db:3d:a4:fc:7f:3c:d6:02:e9:6e:47:62:30: f5:73:b5:73:b9:c4:6c:87:fa:68:ee:ff:6e:eb:19:0a:49:48: 5e:1a:f0:08:7c:e8:9a:f8:85:de:e6:a5:aa:4a:3e:f4:1c:d5: 37:89:64:cb:cd:d2:0b:cd:94:8d:de:86:52:ef:72:4a:3c:d9: ba:d6:ec:60:a7:c5:37:d2:fc:ed:84:89:f3:29:d1:ca:be:5e: df:75:dd:9f:14:01:cb:48:71:0a:a0:91:7d:17:c4:29:60:6d: 13:00:8d:66:eb:91:a2:61:19:45:7b:d9:99:02:9a:90:2a:c0: 3e:1f:f5:53:b6:de:c3:c2:45:bd:96:79:35:44:82:63:ea:f6: 74:cf:82:99:20:ad:79:fe:2b:5c:1c:b9:be:fd:f2:18:65:c2: df:bf:0a:fe:08:00:b1:1c:dd:28:c4:5e:ac:da:6c:08:f7:8b: 2e:b4:2c:1c -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICAlQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0FB ODQwNUNCRDhDRTZBRTFFQTNBOURBQTY3Nzk3NTZFQzZFREM0MjAeFw0yNTA4MjIw ODUwNTZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDBERDI3RUVENDdFMjJC QkRDMDIzNjIzREZBM0ZFMUUxNTA2RDZCQTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/ohqmEA1F46tflvKedC1pyhp6uGsDmNz4HzAMj1Ef3IJ7Xso0 6Ilw96wGb25UMjLv+WCTak41sMomg7Rb9CWc/aag1MdXS66h1hhzi1awBQXpcmMZ xcKyw/ZQJqPw430rGxwQ2ibOO3g5nV5THknii/aERiOIr/OnRnLCuUCAVJnHNOpm s2Lo4KiuWI2bLM4Y1lz6mLmr+lM89W/TGPownd9rsz63qf/F4YtrHVAmdR9RhJSl evFZ1T30w3kEi6i84lf47Sr2tv8zinbS9oSfUSX0KVw0/SanUqvQyKdjLFvG+ja7 4YpSPL7OPHrpWYJQASQ6JA8vcSRoWfEyyGr3AgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUDdJ+7UfiK73AI2I9+j/h4VBta6kwHwYDVR0jBBgwFoAUyqhAXL2M5q4eo6na pneXVuxu3EIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSFVBTkdE RVhJQS95cWhBWEwyTTVxNGVvNm5hcG5lWFZ1eHUzRUkuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL3lxaEFYTDJNNXE0ZW82bmFwbmVYVnV4dTNFSS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0hVQU5HREVYSUEvRGRKLTdVZmlL NzNBSTJJOS1qX2g0VkJ0YTZrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAWdjjjANBgkqhkiG9w0BAQsFAAOCAQEAm3D9A4up18byTAw9BTe1MFjb ba19ZCdCyCGMpo2GPSgT7qgn2x5vJ/5eFIQ7r318OO0DFx53g5x3ML39nQEUHHWf eGOceab30oKeosbbPaT8fzzWAuluR2Iw9XO1c7nEbIf6aO7/busZCklIXhrwCHzo mviF3ualqko+9BzVN4lky83SC82Ujd6GUu9ySjzZutbsYKfFN9L87YSJ8ynRyr5e 33XdnxQBy0hxCqCRfRfEKWBtEwCNZuuRomEZRXvZmQKakCrAPh/1U7bew8JFvZZ5 NUSCY+r2dM+CmSCtef4rXBy5vv3yGGXC378K/ggAsRzdKMRerNpsCPeLLrQsHA== -----END CERTIFICATE-----Generated at Sun Aug 24 07:41:55 2025 by rpki-client