$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/INFORICH/47h1MFYC8xn9JwyZAJK5uHzQ99k.roa File: 47h1MFYC8xn9JwyZAJK5uHzQ99k.roa (raw, json) Hash identifier: xc+KqU+tQUiFVTk07oxjttpDggSKdU1j2oQ1jddJliw= Subject key identifier: E3:B8:75:30:56:02:F3:19:FD:27:0C:99:00:92:B9:B8:7C:D0:F7:D9 Certificate issuer: /CN=9197E979AFBB1BEC2EFC2647207560561BE900B6 Certificate serial: 066D Authority key identifier: 91:97:E9:79:AF:BB:1B:EC:2E:FC:26:47:20:75:60:56:1B:E9:00:B6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/kZfpea-7G-wu_CZHIHVgVhvpALY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/47h1MFYC8xn9JwyZAJK5uHzQ99k.roa Signing time: Fri 22 Aug 2025 09:01:52 +0000 ROA not before: Fri 22 Aug 2025 09:01:52 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131677 IP address blocks: 103.152.252.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/kZfpea-7G-wu_CZHIHVgVhvpALY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/kZfpea-7G-wu_CZHIHVgVhvpALY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/kZfpea-7G-wu_CZHIHVgVhvpALY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1645 (0x66d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9197E979AFBB1BEC2EFC2647207560561BE900B6 Validity Not Before: Aug 22 09:01:52 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E3B875305602F319FD270C990092B9B87CD0F7D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f8:a8:74:9a:73:37:1f:d8:99:eb:04:ab:46: 19:73:05:76:69:70:02:21:f1:c6:48:2c:fb:c6:c5: fc:f3:64:7d:3d:31:b0:e3:5c:cc:bb:f9:cf:8c:1c: 41:51:c3:8f:e9:de:73:f9:e0:c3:c9:32:5d:cc:b8: ab:14:36:cb:f2:6d:48:43:82:c9:65:ae:c5:f2:c4: 83:88:f6:55:62:89:5c:62:75:81:a0:8e:a5:82:6a: 64:f1:20:70:24:95:18:7c:4b:e4:fb:a4:be:0d:f9: d1:38:42:8d:d5:20:97:0d:e9:c6:cc:2e:f2:5f:bd: 59:59:c6:42:8f:1c:f7:67:3a:71:88:07:6f:09:79: de:fa:b2:ed:5b:89:a8:50:f7:c2:29:66:39:89:8e: 10:f4:e7:b8:e1:63:a3:8f:64:73:80:35:a9:3a:f1: 88:bb:3b:14:bb:70:8f:27:73:30:9e:3d:39:1f:5a: eb:17:70:1c:5e:30:4c:08:75:8e:3b:21:24:c2:d6: c9:1a:9c:b4:8e:41:7a:40:c2:6e:9e:85:c2:5a:7e: 13:56:a3:0f:0c:fe:45:66:4c:dd:22:a1:7a:b4:69: 0a:38:52:8d:c2:5c:be:7b:74:ac:80:a4:24:0f:9f: 2f:74:c8:e2:24:5a:a6:1f:e3:90:c4:6e:ac:5b:cd: a7:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:B8:75:30:56:02:F3:19:FD:27:0C:99:00:92:B9:B8:7C:D0:F7:D9 X509v3 Authority Key Identifier: keyid:91:97:E9:79:AF:BB:1B:EC:2E:FC:26:47:20:75:60:56:1B:E9:00:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/kZfpea-7G-wu_CZHIHVgVhvpALY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/kZfpea-7G-wu_CZHIHVgVhvpALY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/47h1MFYC8xn9JwyZAJK5uHzQ99k.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.152.252.0/23 Signature Algorithm: sha256WithRSAEncryption 95:8b:7e:d7:c1:95:b8:25:29:d2:97:c8:3d:55:f8:d6:dc:17: 0f:3f:d2:08:b3:8e:05:bc:12:e6:a8:3f:97:8a:1a:67:aa:c0: 2a:98:68:1c:32:0a:65:56:9f:50:ff:7e:d6:8b:ba:40:60:d5: e5:7f:5a:d6:54:8c:fd:01:4f:b4:b9:b8:a6:10:2f:f8:7a:f5: f4:67:b4:da:fa:f5:6c:ea:46:8d:72:8d:03:52:eb:27:a4:f9: a3:bb:f6:15:8f:78:5b:f9:6b:29:32:46:09:87:ff:7b:db:01: 32:9e:61:f5:bf:cd:93:13:b0:e7:c2:12:e1:49:8d:6c:53:c8: ba:35:8e:12:ba:76:83:2f:97:99:6c:51:33:ab:59:6f:73:9d: 65:04:d1:22:38:c0:34:69:96:6b:72:58:1c:9c:a7:4e:8c:2f: 54:77:1d:60:87:db:a7:fb:6a:ac:ed:9b:00:09:8c:af:20:ff: 72:21:99:85:64:57:43:2b:43:b9:ae:4d:9a:cf:0b:e9:26:11: 71:e9:0d:b7:cb:f9:a0:4c:b3:61:8c:1a:73:d0:18:96:23:5d: 56:f4:c1:32:99:5d:48:45:b4:be:d4:72:24:56:95:4b:26:e0: b3:b0:19:41:29:bc:98:d4:90:df:e4:85:2c:43:73:33:21:f6: e3:9f:91:79 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICBm0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTE5 N0U5NzlBRkJCMUJFQzJFRkMyNjQ3MjA3NTYwNTYxQkU5MDBCNjAeFw0yNTA4MjIw OTAxNTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEUzQjg3NTMwNTYwMkYz MTlGRDI3MEM5OTAwOTJCOUI4N0NEMEY3RDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDK+Kh0mnM3H9iZ6wSrRhlzBXZpcAIh8cZILPvGxfzzZH09MbDj XMy7+c+MHEFRw4/p3nP54MPJMl3MuKsUNsvybUhDgsllrsXyxIOI9lViiVxidYGg jqWCamTxIHAklRh8S+T7pL4N+dE4Qo3VIJcN6cbMLvJfvVlZxkKPHPdnOnGIB28J ed76su1biahQ98IpZjmJjhD057jhY6OPZHOANak68Yi7OxS7cI8nczCePTkfWusX cBxeMEwIdY47ISTC1skanLSOQXpAwm6ehcJafhNWow8M/kVmTN0ioXq0aQo4Uo3C XL57dKyApCQPny90yOIkWqYf45DEbqxbzaftAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU47h1MFYC8xn9JwyZAJK5uHzQ99kwHwYDVR0jBBgwFoAUkZfpea+7G+wu/CZH IHVgVhvpALYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSU5GT1JJ Q0gva1pmcGVhLTdHLXd1X0NaSElIVmdWaHZwQUxZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9rWmZwZWEtN0ctd3VfQ1pISUhWZ1ZodnBBTFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9JTkZPUklDSC80N2gxTUZZQzh4bjlK d3laQUpLNXVIelE5OWsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ5j8MA0GCSqGSIb3DQEBCwUAA4IBAQCVi37XwZW4JSnSl8g9VfjW3BcPP9II s44FvBLmqD+XihpnqsAqmGgcMgplVp9Q/37Wi7pAYNXlf1rWVIz9AU+0ubimEC/4 evX0Z7Ta+vVs6kaNco0DUusnpPmju/YVj3hb+WspMkYJh/972wEynmH1v82TE7Dn whLhSY1sU8i6NY4SunaDL5eZbFEzq1lvc51lBNEiOMA0aZZrclgcnKdOjC9Udx1g h9un+2qs7ZsACYyvIP9yIZmFZFdDK0O5rk2azwvpJhFx6Q23y/mgTLNhjBpz0BiW I11W9MEymV1IRbS+1HIkVpVLJuCzsBlBKbyY1JDf5IUsQ3MzIfbjn5F5 -----END CERTIFICATE-----Generated at Sun Aug 24 11:15:29 2025 by rpki-client