$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HUSHENGXIN/7BzNlrjSSD7b_acycO2WrNJ3jFQ.roa File: 7BzNlrjSSD7b_acycO2WrNJ3jFQ.roa (raw, json) Hash identifier: GCKwgsERnETJENkahtQ+0Zl7lsB33lZYO1cw/h4UkeY= Subject key identifier: EC:1C:CD:96:B8:D2:48:3E:DB:FD:A7:32:70:ED:96:AC:D2:77:8C:54 Certificate issuer: /CN=6D1243152906B6566A2B3E19CC468E46DE709D04 Certificate serial: 0253 Authority key identifier: 6D:12:43:15:29:06:B6:56:6A:2B:3E:19:CC:46:8E:46:DE:70:9D:04 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bRJDFSkGtlZqKz4ZzEaORt5wnQQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HUSHENGXIN/7BzNlrjSSD7b_acycO2WrNJ3jFQ.roa Signing time: Fri 22 Aug 2025 09:00:59 +0000 ROA not before: Fri 22 Aug 2025 09:00:59 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131642 IP address blocks: 103.127.216.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HUSHENGXIN/bRJDFSkGtlZqKz4ZzEaORt5wnQQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HUSHENGXIN/bRJDFSkGtlZqKz4ZzEaORt5wnQQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/bRJDFSkGtlZqKz4ZzEaORt5wnQQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 595 (0x253) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6D1243152906B6566A2B3E19CC468E46DE709D04 Validity Not Before: Aug 22 09:00:59 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=EC1CCD96B8D2483EDBFDA73270ED96ACD2778C54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:7a:6e:27:13:dc:42:27:11:70:79:99:5b:5e: fa:b3:1b:cc:ee:0a:ec:b9:f6:79:5f:e5:d9:9e:5d: aa:3c:21:e1:d8:fc:00:77:be:2a:d4:a2:83:76:dc: 89:9b:4a:f9:ec:ef:6b:c4:69:b5:66:4a:f4:3c:90: 03:d0:31:3f:49:1a:96:50:e4:09:71:91:8e:68:64: 97:c2:5d:a7:f7:50:5a:fd:00:ee:6b:0c:83:7d:22: b4:eb:05:50:d9:1c:a4:e2:5f:3b:1e:08:e6:37:0c: 2a:a4:e7:82:bd:32:2f:f3:10:8d:d0:1b:22:60:52: a6:52:0a:d4:8a:ce:77:3e:78:17:b4:04:52:94:1c: 0d:07:ff:3d:b5:4e:4b:3a:b1:72:af:5a:af:4b:8f: fd:ba:ec:cc:11:97:5d:83:b8:db:db:da:55:43:8a: ab:ba:1f:06:1b:2f:74:0f:c2:88:70:2a:09:03:e3: 55:59:d4:0b:8a:0f:0e:20:bd:63:38:cb:59:be:19: 45:6b:98:82:6d:3d:ba:f5:7e:bf:6f:42:72:5a:2f: 0d:59:98:1b:66:a3:82:fa:ee:1d:a7:1f:90:64:b4: 88:19:c2:4c:d5:4a:9c:0e:2d:49:04:5a:92:75:9d: 53:9f:cd:2b:b6:0f:72:3e:05:a7:ae:06:8a:81:f0: 1d:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:1C:CD:96:B8:D2:48:3E:DB:FD:A7:32:70:ED:96:AC:D2:77:8C:54 X509v3 Authority Key Identifier: keyid:6D:12:43:15:29:06:B6:56:6A:2B:3E:19:CC:46:8E:46:DE:70:9D:04 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HUSHENGXIN/bRJDFSkGtlZqKz4ZzEaORt5wnQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bRJDFSkGtlZqKz4ZzEaORt5wnQQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HUSHENGXIN/7BzNlrjSSD7b_acycO2WrNJ3jFQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.127.216.0/23 Signature Algorithm: sha256WithRSAEncryption 05:c2:0f:ef:3f:f8:02:d8:62:94:4b:28:a5:02:b5:31:4c:e7: 12:70:00:c9:d4:91:2e:0e:15:3d:fc:6e:3d:2d:f9:a5:c4:54: e5:1f:16:48:b8:03:d8:1e:42:2b:11:48:93:46:15:27:9f:44: 18:57:f3:12:5c:f8:34:77:88:2c:0f:1e:6e:c7:04:fe:ac:ef: e2:67:69:a2:d6:de:42:18:29:42:aa:a1:65:85:ae:0e:ba:c1: d6:81:da:b7:0d:03:2f:56:a6:b9:c1:8b:10:6e:ed:d8:c0:d9: 76:23:21:b7:4d:78:95:13:16:3f:f8:2d:2a:65:49:bf:85:45: 8b:da:3c:40:f7:e3:72:b8:2a:01:70:c0:6f:32:4a:ea:22:7e: 96:b8:07:c0:03:24:2f:ad:a0:78:0e:0f:ae:23:59:9f:13:1c: 6c:03:7d:1b:b1:57:2b:1d:ab:5a:91:fb:2b:9d:22:f1:ed:4c: 40:54:a7:98:37:99:12:96:ab:45:8d:81:f6:76:6a:a0:df:97: fb:92:1f:de:0f:4f:18:77:29:a1:51:69:85:40:17:b9:96:e0: e8:45:1e:36:db:94:57:12:e9:9a:1d:1c:4b:2f:54:16:c6:6c: 73:3e:49:d9:f0:ff:3e:ef:ce:f7:d6:8e:9d:67:f5:a0:7c:ae: 16:0c:d1:1e -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICAlMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkQx MjQzMTUyOTA2QjY1NjZBMkIzRTE5Q0M0NjhFNDZERTcwOUQwNDAeFw0yNTA4MjIw OTAwNTlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEVDMUNDRDk2QjhEMjQ4 M0VEQkZEQTczMjcwRUQ5NkFDRDI3NzhDNTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMem4nE9xCJxFweZlbXvqzG8zuCuy59nlf5dmeXao8IeHY/AB3 virUooN23ImbSvns72vEabVmSvQ8kAPQMT9JGpZQ5AlxkY5oZJfCXaf3UFr9AO5r DIN9IrTrBVDZHKTiXzseCOY3DCqk54K9Mi/zEI3QGyJgUqZSCtSKznc+eBe0BFKU HA0H/z21Tks6sXKvWq9Lj/267MwRl12DuNvb2lVDiqu6HwYbL3QPwohwKgkD41VZ 1AuKDw4gvWM4y1m+GUVrmIJtPbr1fr9vQnJaLw1ZmBtmo4L67h2nH5BktIgZwkzV SpwOLUkEWpJ1nVOfzSu2D3I+BaeuBoqB8B1rAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQU7BzNlrjSSD7b/acycO2WrNJ3jFQwHwYDVR0jBBgwFoAUbRJDFSkGtlZqKz4Z zEaORt5wnQQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSFVTSEVO R1hJTi9iUkpERlNrR3RsWnFLejRaekVhT1J0NXduUVEuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL2JSSkRGU2tHdGxacUt6NFp6RWFPUnQ1d25RUS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0hVU0hFTkdYSU4vN0J6TmxyalNT RDdiX2FjeWNPMldyTkozakZRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAWd/2DANBgkqhkiG9w0BAQsFAAOCAQEABcIP7z/4AthilEsopQK1MUzn EnAAydSRLg4VPfxuPS35pcRU5R8WSLgD2B5CKxFIk0YVJ59EGFfzElz4NHeILA8e bscE/qzv4mdpotbeQhgpQqqhZYWuDrrB1oHatw0DL1amucGLEG7t2MDZdiMht014 lRMWP/gtKmVJv4VFi9o8QPfjcrgqAXDAbzJK6iJ+lrgHwAMkL62geA4PriNZnxMc bAN9G7FXKx2rWpH7K50i8e1MQFSnmDeZEparRY2B9nZqoN+X+5If3g9PGHcpoVFp hUAXuZbg6EUeNtuUVxLpmh0cSy9UFsZscz5J2fD/Pu/O99aOnWf1oHyuFgzRHg== -----END CERTIFICATE-----Generated at Sun Aug 24 07:43:50 2025 by rpki-client