$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HWME1204/cBM_ByQmPV8_j4DApS9vGSOdA7g.roa File: cBM_ByQmPV8_j4DApS9vGSOdA7g.roa (raw, json) Hash identifier: oLScwBIKSuONhmSA/9sbGHCPJrKQ1wyBklgWHl6SIpk= Subject key identifier: 70:13:3F:07:24:26:3D:5F:3F:8F:80:C0:A5:2F:6F:19:23:9D:03:B8 Certificate issuer: /CN=E95973EB86F597CAE612C67929ED9352E70B5528 Certificate serial: 1283 Authority key identifier: E9:59:73:EB:86:F5:97:CA:E6:12:C6:79:29:ED:93:52:E7:0B:55:28 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/6Vlz64b1l8rmEsZ5Ke2TUucLVSg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HWME1204/cBM_ByQmPV8_j4DApS9vGSOdA7g.roa Signing time: Fri 22 Aug 2025 09:03:55 +0000 ROA not before: Fri 22 Aug 2025 09:03:55 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18046 IP address blocks: 103.126.180.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HWME1204/6Vlz64b1l8rmEsZ5Ke2TUucLVSg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HWME1204/6Vlz64b1l8rmEsZ5Ke2TUucLVSg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/6Vlz64b1l8rmEsZ5Ke2TUucLVSg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4739 (0x1283) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E95973EB86F597CAE612C67929ED9352E70B5528 Validity Not Before: Aug 22 09:03:55 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=70133F0724263D5F3F8F80C0A52F6F19239D03B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:69:d2:22:3f:b9:84:15:ab:f0:4b:91:06:d4: 08:13:91:3e:e9:ec:98:3c:17:9f:5f:84:b4:aa:45: d5:96:25:66:f7:6f:e3:0d:80:1e:ba:06:78:9f:a2: e3:77:a7:98:80:99:39:7c:c5:b7:f0:23:60:ff:bb: cd:b7:a5:05:78:89:29:2a:5e:28:de:6c:36:52:dc: 5a:5b:24:14:37:39:96:e4:1f:3a:fc:1a:a2:91:08: 4d:cc:15:a1:c7:80:a3:b9:73:b5:ba:d1:b4:7c:8b: 4c:85:cc:84:c7:f7:db:a3:2b:3a:56:92:95:40:2f: fa:81:96:39:e4:eb:74:79:e0:92:23:94:f3:94:b3: fa:c5:70:af:2b:83:a8:04:68:04:82:05:94:28:30: 27:3e:92:8e:ea:81:07:05:c5:b8:0c:df:7a:13:6e: db:a7:48:fc:eb:a6:9c:a1:48:83:82:9c:ee:5d:cd: 24:2d:2e:d8:aa:2b:74:a9:80:2c:67:8d:85:da:57: 0b:34:ea:64:69:c8:e7:5c:ca:b8:60:d7:99:1d:d0: 5d:dd:d5:ba:c8:88:5b:90:c7:7c:e4:df:32:24:bf: 86:1f:bb:c7:8b:b4:65:1a:f8:e7:c0:2c:a4:f9:0a: 85:0a:cc:78:5b:96:4e:84:de:bb:d4:d9:36:1a:7b: 59:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:13:3F:07:24:26:3D:5F:3F:8F:80:C0:A5:2F:6F:19:23:9D:03:B8 X509v3 Authority Key Identifier: keyid:E9:59:73:EB:86:F5:97:CA:E6:12:C6:79:29:ED:93:52:E7:0B:55:28 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HWME1204/6Vlz64b1l8rmEsZ5Ke2TUucLVSg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/6Vlz64b1l8rmEsZ5Ke2TUucLVSg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HWME1204/cBM_ByQmPV8_j4DApS9vGSOdA7g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.126.180.0/22 Signature Algorithm: sha256WithRSAEncryption 2b:46:a6:2d:8f:5b:ec:0a:9f:fa:09:b6:cf:36:58:f3:32:86: 9e:3e:1c:16:bf:72:19:d9:83:c7:7a:d8:97:eb:15:fc:ed:16: eb:4e:da:64:58:df:c1:b4:52:13:70:f9:46:1a:bc:aa:1b:05: 65:ce:68:40:4a:e7:d9:7a:88:99:47:a0:91:0d:ea:e1:e2:4b: df:01:24:6f:cb:2d:4f:0f:69:7f:9e:cf:49:66:2b:2f:ca:d5: b7:89:d5:63:c1:1a:58:4b:cf:9c:3b:ef:4f:c2:fc:9d:3b:2d: b5:a6:9d:03:97:4c:f0:f0:17:cc:e8:ac:3c:90:50:2b:80:a5: 3f:39:79:8e:ad:a9:62:71:82:57:14:64:bb:41:c5:1c:af:a7: 11:b5:70:ab:47:51:9e:5b:47:3f:5c:19:f6:fc:ac:0e:12:8f: 45:af:0f:06:ea:c4:50:a5:f7:f5:36:b4:ab:90:67:9d:66:ea: e9:1d:71:e2:14:f8:a3:ee:18:f3:51:9c:f1:e7:b0:75:42:42: ce:10:3f:ba:b1:04:da:58:48:21:50:11:7f:e3:56:d2:29:16: 0c:f1:e5:3f:d3:40:fa:ec:04:7d:81:49:ba:bd:9c:06:7c:fb: db:ee:de:c2:b7:29:4e:f2:a7:45:5b:e0:1e:22:1e:22:93:ad: ef:be:d4:d0 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEoMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTk1 OTczRUI4NkY1OTdDQUU2MTJDNjc5MjlFRDkzNTJFNzBCNTUyODAeFw0yNTA4MjIw OTAzNTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDcwMTMzRjA3MjQyNjNE NUYzRjhGODBDMEE1MkY2RjE5MjM5RDAzQjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFadIiP7mEFavwS5EG1AgTkT7p7Jg8F59fhLSqRdWWJWb3b+MN gB66BnifouN3p5iAmTl8xbfwI2D/u823pQV4iSkqXijebDZS3FpbJBQ3OZbkHzr8 GqKRCE3MFaHHgKO5c7W60bR8i0yFzITH99ujKzpWkpVAL/qBljnk63R54JIjlPOU s/rFcK8rg6gEaASCBZQoMCc+ko7qgQcFxbgM33oTbtunSPzrppyhSIOCnO5dzSQt LtiqK3SpgCxnjYXaVws06mRpyOdcyrhg15kd0F3d1brIiFuQx3zk3zIkv4Yfu8eL tGUa+OfALKT5CoUKzHhblk6E3rvU2TYae1lVAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUcBM/ByQmPV8/j4DApS9vGSOdA7gwHwYDVR0jBBgwFoAU6Vlz64b1l8rmEsZ5 Ke2TUucLVSgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSFdNRTEy MDQvNlZsejY0YjFsOHJtRXNaNUtlMlRVdWNMVlNnLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS82Vmx6NjRiMWw4cm1Fc1o1S2UyVFV1Y0xWU2cuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9IV01FMTIwNC9jQk1fQnlRbVBWOF9q NERBcFM5dkdTT2RBN2cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCZ360MA0GCSqGSIb3DQEBCwUAA4IBAQArRqYtj1vsCp/6CbbPNljzMoaePhwW v3IZ2YPHetiX6xX87RbrTtpkWN/BtFITcPlGGryqGwVlzmhASufZeoiZR6CRDerh 4kvfASRvyy1PD2l/ns9JZisvytW3idVjwRpYS8+cO+9PwvydOy21pp0Dl0zw8BfM 6Kw8kFArgKU/OXmOralicYJXFGS7QcUcr6cRtXCrR1GeW0c/XBn2/KwOEo9Frw8G 6sRQpff1NrSrkGedZurpHXHiFPij7hjzUZzx57B1QkLOED+6sQTaWEghUBF/41bS KRYM8eU/00D67AR9gUm6vZwGfPvb7t7CtylO8qdFW+AeIh4ik63vvtTQ -----END CERTIFICATE-----Generated at Sun Aug 24 06:47:43 2025 by rpki-client