$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IMCRS/wXNpkQmppBLq9rEzWKeNcufQD5c.roa File: wXNpkQmppBLq9rEzWKeNcufQD5c.roa (raw, json) Hash identifier: JzHJvlWAKUiHUSiGJ9aqb6u+Fg27yeo7K0QNZZFGOVE= Subject key identifier: C1:73:69:91:09:A9:A4:12:EA:F6:B1:33:58:A7:8D:72:E7:D0:0F:97 Certificate issuer: /CN=22C51298D97A102902731FDC49BDFAB39D52AB2B Certificate serial: 0414 Authority key identifier: 22:C5:12:98:D9:7A:10:29:02:73:1F:DC:49:BD:FA:B3:9D:52:AB:2B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IsUSmNl6ECkCcx_cSb36s51Sqys.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/wXNpkQmppBLq9rEzWKeNcufQD5c.roa Signing time: Fri 22 Aug 2025 08:51:41 +0000 ROA not before: Fri 22 Aug 2025 08:51:41 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 214432 IP address blocks: 103.177.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/IsUSmNl6ECkCcx_cSb36s51Sqys.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/IsUSmNl6ECkCcx_cSb36s51Sqys.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/IsUSmNl6ECkCcx_cSb36s51Sqys.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1044 (0x414) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22C51298D97A102902731FDC49BDFAB39D52AB2B Validity Not Before: Aug 22 08:51:41 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C173699109A9A412EAF6B13358A78D72E7D00F97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a9:5c:8d:44:40:10:a9:a8:cf:2c:56:cf:59: 34:45:37:61:0c:15:49:c9:bd:44:79:33:ec:76:38: 61:6a:2a:44:b8:99:b1:66:ea:43:83:b7:60:17:5b: c6:cc:75:85:f0:9e:c7:35:2c:90:e2:7b:b0:06:e0: ec:2b:3e:ff:d3:2d:31:99:51:7f:32:fc:d4:0c:81: 6e:6a:3e:57:b0:6d:ad:7f:99:3d:24:b6:ad:47:0f: e4:fd:e8:33:95:cc:cc:18:b7:bb:c1:c4:cb:9d:44: 32:4e:54:5a:45:e7:7e:f3:03:55:5d:7e:bc:ae:38: e1:56:a0:e2:45:f1:34:7a:a5:88:cd:3e:b9:8c:2f: 37:8d:d3:78:0a:04:00:56:bc:80:ca:a8:8c:4c:23: f6:69:7c:c7:fa:30:07:19:b1:76:f5:a3:ee:e3:6c: fa:c6:5f:75:16:30:f1:b1:b0:c9:37:ee:60:ec:f0: 06:18:9b:09:6c:8b:f9:28:be:a1:3e:7c:9e:ae:0c: 97:19:8b:80:20:02:ae:7c:f1:0b:69:da:c9:fe:6e: 44:f2:d2:9b:ff:7c:08:4f:7c:37:15:eb:8d:2e:1d: 5b:21:3a:3c:c8:b6:79:e7:98:37:51:52:e0:53:44: b0:d6:b5:e7:85:6f:5f:7e:1b:b9:18:1e:a3:d0:12: 98:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:73:69:91:09:A9:A4:12:EA:F6:B1:33:58:A7:8D:72:E7:D0:0F:97 X509v3 Authority Key Identifier: keyid:22:C5:12:98:D9:7A:10:29:02:73:1F:DC:49:BD:FA:B3:9D:52:AB:2B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/IsUSmNl6ECkCcx_cSb36s51Sqys.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IsUSmNl6ECkCcx_cSb36s51Sqys.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/wXNpkQmppBLq9rEzWKeNcufQD5c.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.177.32.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:fb:23:9b:15:36:24:97:8b:ab:a8:96:c0:2a:eb:6b:a8:c6: 03:0d:5d:bb:ce:8e:ab:b0:9a:79:40:13:32:04:74:19:f1:d0: 5e:c2:4e:2e:f9:ad:48:49:7a:52:18:02:32:c8:28:5c:34:ab: bb:69:24:5a:05:7f:af:0d:3c:41:33:7a:50:d1:34:fb:42:4b: 9d:53:0b:a7:ed:66:d8:41:15:07:c0:0e:50:75:3b:93:ff:32: a9:ad:8b:11:06:57:49:59:80:38:0a:29:a5:3d:1e:08:68:bd: f4:f4:b2:0c:90:02:0d:0a:7f:ff:c4:66:81:6f:e0:26:5c:8b: 86:e5:47:02:61:94:06:dc:37:35:46:ee:ee:7e:12:9a:70:64: b3:4e:a3:7e:e6:1c:0c:2f:dd:7c:90:b7:e1:87:87:bd:0d:20: 3a:a5:33:05:90:39:c0:e4:36:0f:c8:ce:f9:ad:74:6b:e7:75: b7:80:74:5b:de:3f:b2:67:cd:e4:7f:fa:76:c3:fc:ac:1b:89: 25:46:fe:18:91:1e:00:2d:b5:d6:b8:64:5a:98:30:41:2f:92: 66:5a:3b:e7:ff:c6:08:7b:87:d1:01:75:41:c0:8f:e9:25:cf: 4b:91:74:f5:64:af:34:22:4e:76:b4:43:5c:f9:1b:f6:b7:29: c5:7f:e9:14 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICBBQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjJD NTEyOThEOTdBMTAyOTAyNzMxRkRDNDlCREZBQjM5RDUyQUIyQjAeFw0yNTA4MjIw ODUxNDFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEMxNzM2OTkxMDlBOUE0 MTJFQUY2QjEzMzU4QTc4RDcyRTdEMDBGOTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1qVyNREAQqajPLFbPWTRFN2EMFUnJvUR5M+x2OGFqKkS4mbFm 6kODt2AXW8bMdYXwnsc1LJDie7AG4OwrPv/TLTGZUX8y/NQMgW5qPlewba1/mT0k tq1HD+T96DOVzMwYt7vBxMudRDJOVFpF537zA1VdfryuOOFWoOJF8TR6pYjNPrmM LzeN03gKBABWvIDKqIxMI/ZpfMf6MAcZsXb1o+7jbPrGX3UWMPGxsMk37mDs8AYY mwlsi/kovqE+fJ6uDJcZi4AgAq588Qtp2sn+bkTy0pv/fAhPfDcV640uHVshOjzI tnnnmDdRUuBTRLDWteeFb19+G7kYHqPQEpgrAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUwXNpkQmppBLq9rEzWKeNcufQD5cwHwYDVR0jBBgwFoAUIsUSmNl6ECkCcx/c Sb36s51SqyswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSU1DUlMv SXNVU21ObDZFQ2tDY3hfY1NiMzZzNTFTcXlzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9Jc1VTbU5sNkVDa0NjeF9jU2IzNnM1MVNxeXMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9JTUNSUy93WE5wa1FtcHBCTHE5ckV6V0tl TmN1ZlFENWMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7Eg MA0GCSqGSIb3DQEBCwUAA4IBAQB++yObFTYkl4urqJbAKutrqMYDDV27zo6rsJp5 QBMyBHQZ8dBewk4u+a1ISXpSGAIyyChcNKu7aSRaBX+vDTxBM3pQ0TT7QkudUwun 7WbYQRUHwA5QdTuT/zKprYsRBldJWYA4CimlPR4IaL309LIMkAINCn//xGaBb+Am XIuG5UcCYZQG3Dc1Ru7ufhKacGSzTqN+5hwML918kLfhh4e9DSA6pTMFkDnA5DYP yM75rXRr53W3gHRb3j+yZ83kf/p2w/ysG4klRv4YkR4ALbXWuGRamDBBL5JmWjvn /8YIe4fRAXVBwI/pJc9LkXT1ZK80Ik52tENc+Rv2tynFf+kU -----END CERTIFICATE-----Generated at Sun Aug 24 05:45:14 2025 by rpki-client