$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IMCRS/JH6qYgr3IAtOHKp_ITUCtiVXPbg.roa File: JH6qYgr3IAtOHKp_ITUCtiVXPbg.roa (raw, json) Hash identifier: t95JaeX8j8so7N/rz1IBxOAXiQjGybTGN016LbMGzTw= Subject key identifier: 24:7E:AA:62:0A:F7:20:0B:4E:1C:AA:7F:21:35:02:B6:25:57:3D:B8 Certificate issuer: /CN=22C51298D97A102902731FDC49BDFAB39D52AB2B Certificate serial: 0415 Authority key identifier: 22:C5:12:98:D9:7A:10:29:02:73:1F:DC:49:BD:FA:B3:9D:52:AB:2B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IsUSmNl6ECkCcx_cSb36s51Sqys.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/JH6qYgr3IAtOHKp_ITUCtiVXPbg.roa Signing time: Fri 22 Aug 2025 08:51:41 +0000 ROA not before: Fri 22 Aug 2025 08:51:41 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38042 IP address blocks: 103.177.32.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/IsUSmNl6ECkCcx_cSb36s51Sqys.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/IsUSmNl6ECkCcx_cSb36s51Sqys.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/IsUSmNl6ECkCcx_cSb36s51Sqys.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1045 (0x415) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22C51298D97A102902731FDC49BDFAB39D52AB2B Validity Not Before: Aug 22 08:51:41 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=247EAA620AF7200B4E1CAA7F213502B625573DB8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:79:ab:de:15:dd:6d:0b:e6:73:43:a6:db:02: 35:f0:bf:09:7c:d7:4c:5f:b1:bd:9a:f1:b1:2f:38: 3f:05:8a:f1:73:99:f2:a2:55:a3:9a:58:c0:a0:a0: 64:66:60:ac:04:0f:ae:98:de:c1:4f:ca:cf:ba:88: fb:2e:e7:07:3d:db:43:7f:d4:d0:72:51:1d:da:c9: 85:aa:5d:fc:45:6a:08:26:0c:72:75:61:9b:85:70: ff:e5:b1:08:dc:1f:5c:e4:43:65:a3:05:56:e9:00: c9:ac:98:d8:5a:2d:ef:3b:a6:82:96:41:21:a8:d0: da:d2:4d:86:bc:be:8c:c8:c0:bc:f9:3d:08:d2:c3: d2:19:e2:6f:32:5d:15:79:c2:61:a1:cc:ed:b0:1f: b6:ba:57:01:be:17:62:b9:12:70:c6:ac:94:4f:d7: 0b:e0:a6:ff:ec:31:69:a1:99:ec:08:ad:fd:ee:91: 09:20:76:c1:cc:fd:39:8b:d0:f8:08:93:5c:c2:c3: d3:07:b0:50:7c:f0:14:db:97:40:22:12:bc:04:5e: 34:60:61:b7:e8:39:45:f4:81:79:49:cf:10:10:94: 34:23:aa:e1:6f:cc:6c:67:d3:d2:9c:f1:d3:bf:49: 66:c6:d0:10:7a:91:17:89:f4:76:69:b6:ee:24:be: d2:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:7E:AA:62:0A:F7:20:0B:4E:1C:AA:7F:21:35:02:B6:25:57:3D:B8 X509v3 Authority Key Identifier: keyid:22:C5:12:98:D9:7A:10:29:02:73:1F:DC:49:BD:FA:B3:9D:52:AB:2B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/IsUSmNl6ECkCcx_cSb36s51Sqys.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IsUSmNl6ECkCcx_cSb36s51Sqys.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/JH6qYgr3IAtOHKp_ITUCtiVXPbg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.177.32.0/23 Signature Algorithm: sha256WithRSAEncryption 39:3e:89:f0:04:28:3b:de:9d:23:a3:cb:cc:ac:cb:a1:68:de: 93:d5:b1:a5:76:5c:5a:1e:26:d2:9b:db:66:e2:8c:10:0b:b7: f0:cc:4d:57:50:61:dd:8f:bc:d3:f6:80:7c:6a:92:c0:ab:1b: 62:fa:38:52:b8:1b:8a:e9:e8:dd:ed:68:d6:0e:82:09:d6:14: 78:48:76:e2:55:58:72:88:ed:27:bf:f3:5c:be:57:87:72:f7: 38:29:94:db:52:9a:c5:f6:b8:4c:38:96:77:1c:32:0a:95:b4: 07:8c:e7:46:4a:40:87:be:df:25:6a:45:0d:c2:e0:34:91:5c: 2a:27:7d:b2:63:22:9a:2e:05:3e:8e:7a:2d:00:7d:55:97:88: cf:ae:fc:26:1d:16:68:60:fe:7c:b5:20:4f:25:1a:f9:0e:46: bc:48:04:54:9d:9e:91:1c:78:fd:cf:b0:2a:80:58:81:96:d8: a2:36:c7:8e:9f:94:a4:f8:12:b1:57:89:33:e4:bd:f7:09:3b: ca:36:fe:fe:f8:07:e5:f2:ed:b4:f3:9a:49:ae:ab:38:44:84: 9f:bc:3d:ed:9f:f9:28:0b:f4:a6:84:b3:2a:91:74:1f:6e:aa: 5c:94:86:b2:8c:bc:02:fb:bc:18:1b:85:c9:c9:72:c6:d7:06: 6d:fc:e6:6a -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICBBUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjJD NTEyOThEOTdBMTAyOTAyNzMxRkRDNDlCREZBQjM5RDUyQUIyQjAeFw0yNTA4MjIw ODUxNDFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDI0N0VBQTYyMEFGNzIw MEI0RTFDQUE3RjIxMzUwMkI2MjU1NzNEQjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDpeaveFd1tC+ZzQ6bbAjXwvwl810xfsb2a8bEvOD8FivFzmfKi VaOaWMCgoGRmYKwED66Y3sFPys+6iPsu5wc920N/1NByUR3ayYWqXfxFaggmDHJ1 YZuFcP/lsQjcH1zkQ2WjBVbpAMmsmNhaLe87poKWQSGo0NrSTYa8vozIwLz5PQjS w9IZ4m8yXRV5wmGhzO2wH7a6VwG+F2K5EnDGrJRP1wvgpv/sMWmhmewIrf3ukQkg dsHM/TmL0PgIk1zCw9MHsFB88BTbl0AiErwEXjRgYbfoOUX0gXlJzxAQlDQjquFv zGxn09Kc8dO/SWbG0BB6kReJ9HZptu4kvtJpAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUJH6qYgr3IAtOHKp/ITUCtiVXPbgwHwYDVR0jBBgwFoAUIsUSmNl6ECkCcx/c Sb36s51SqyswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSU1DUlMv SXNVU21ObDZFQ2tDY3hfY1NiMzZzNTFTcXlzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9Jc1VTbU5sNkVDa0NjeF9jU2IzNnM1MVNxeXMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9JTUNSUy9KSDZxWWdyM0lBdE9IS3BfSVRV Q3RpVlhQYmcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7Eg MA0GCSqGSIb3DQEBCwUAA4IBAQA5PonwBCg73p0jo8vMrMuhaN6T1bGldlxaHibS m9tm4owQC7fwzE1XUGHdj7zT9oB8apLAqxti+jhSuBuK6ejd7WjWDoIJ1hR4SHbi VVhyiO0nv/NcvleHcvc4KZTbUprF9rhMOJZ3HDIKlbQHjOdGSkCHvt8lakUNwuA0 kVwqJ32yYyKaLgU+jnotAH1Vl4jPrvwmHRZoYP58tSBPJRr5Dka8SARUnZ6RHHj9 z7AqgFiBltiiNseOn5Sk+BKxV4kz5L33CTvKNv7++Afl8u2085pJrqs4RISfvD3t n/koC/SmhLMqkXQfbqpclIayjLwC+7wYG4XJyXLG1wZt/OZq -----END CERTIFICATE-----Generated at Sun Aug 24 05:44:09 2025 by rpki-client