$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/INFORICH/QJ12B2uW7MVJvEfjHH6Cl4LJC24.roa File: QJ12B2uW7MVJvEfjHH6Cl4LJC24.roa (raw, json) Hash identifier: b+eiTWz7Hv4WmQJO4nLo/e1L4Po3GNViBOr5LnjCKzc= Subject key identifier: 40:9D:76:07:6B:96:EC:C5:49:BC:47:E3:1C:7E:82:97:82:C9:0B:6E Certificate issuer: /CN=9197E979AFBB1BEC2EFC2647207560561BE900B6 Certificate serial: 066E Authority key identifier: 91:97:E9:79:AF:BB:1B:EC:2E:FC:26:47:20:75:60:56:1B:E9:00:B6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/kZfpea-7G-wu_CZHIHVgVhvpALY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/QJ12B2uW7MVJvEfjHH6Cl4LJC24.roa Signing time: Fri 22 Aug 2025 09:01:52 +0000 ROA not before: Fri 22 Aug 2025 09:01:52 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131674 IP address blocks: 103.152.252.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/kZfpea-7G-wu_CZHIHVgVhvpALY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/kZfpea-7G-wu_CZHIHVgVhvpALY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/kZfpea-7G-wu_CZHIHVgVhvpALY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1646 (0x66e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9197E979AFBB1BEC2EFC2647207560561BE900B6 Validity Not Before: Aug 22 09:01:52 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=409D76076B96ECC549BC47E31C7E829782C90B6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f4:50:f8:0d:18:ea:18:f0:24:70:ee:f1:dc: d9:93:3d:ba:48:64:39:19:e9:e6:5c:fa:62:11:25: 53:96:ff:d9:a6:1d:f1:8b:d3:26:5f:f3:a1:58:ba: ea:dd:01:74:53:e7:8b:18:30:f3:a7:55:a8:ba:cf: 19:b6:d9:79:80:45:67:0c:4a:0b:50:1a:83:4b:8b: 2a:08:96:eb:44:90:b7:2d:72:a5:0a:9f:f0:4f:f8: d9:44:72:f1:85:10:e8:18:68:f0:fc:8f:b5:37:0e: 18:75:72:2f:35:44:b5:d2:0e:c6:7a:58:76:30:d3: 18:b2:2e:67:b4:ef:dd:a2:27:92:0b:92:eb:4e:c1: 1a:65:55:41:fc:5e:3e:be:71:0d:fe:47:bb:cc:ed: 4d:5b:c0:74:c8:1d:76:01:2a:dd:31:37:ab:1c:51: b6:13:bc:42:07:e0:3c:97:41:dd:6f:02:a6:a9:af: 4c:64:af:b7:9c:4f:5a:0c:86:e2:96:c2:58:22:9f: d0:ff:55:da:e9:2e:7e:21:69:47:a5:24:12:fe:63: bb:2f:6c:d1:9a:57:29:2b:3a:02:b2:f8:38:34:b5: da:36:ac:52:14:49:6b:db:9f:af:23:e6:e0:5f:6b: 75:48:5b:27:6e:dd:02:67:d1:36:a4:4d:64:e9:25: 19:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:9D:76:07:6B:96:EC:C5:49:BC:47:E3:1C:7E:82:97:82:C9:0B:6E X509v3 Authority Key Identifier: keyid:91:97:E9:79:AF:BB:1B:EC:2E:FC:26:47:20:75:60:56:1B:E9:00:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/kZfpea-7G-wu_CZHIHVgVhvpALY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/kZfpea-7G-wu_CZHIHVgVhvpALY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/QJ12B2uW7MVJvEfjHH6Cl4LJC24.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.152.252.0/23 Signature Algorithm: sha256WithRSAEncryption 2f:09:15:13:ea:50:cd:97:a5:c8:5f:0d:6c:bc:e1:4b:27:43: bf:5c:a3:c1:5a:46:7c:10:a4:b0:99:81:41:08:eb:5d:a1:1c: 91:8e:fc:a1:02:66:18:6b:70:55:76:9e:ec:b6:ef:18:a9:67: 03:8d:3f:7e:63:72:ba:af:05:7f:04:43:88:f8:01:0f:73:cc: e1:09:f9:e6:72:1a:ff:14:5c:db:0d:73:67:7a:28:f9:f9:2a: c0:32:d9:ef:30:74:38:9d:bb:83:ec:06:a6:db:a3:8f:1f:8b: dc:41:86:ed:c4:50:da:42:55:82:0d:a5:6d:96:4f:a3:ec:d1: e4:56:b2:7e:e4:3a:14:35:f8:77:6c:cc:85:cd:68:02:77:e5: 2a:2a:05:e7:a7:35:b2:be:d8:23:07:39:5e:cd:bb:e5:e3:29: da:93:1c:b7:4d:1d:80:be:fc:6a:d2:11:36:9e:ff:62:29:b1: d5:df:2d:ed:86:45:88:d8:4c:80:d5:4c:37:80:74:ff:22:d5: 9a:47:d0:43:d2:da:93:3b:74:83:8a:c2:02:99:26:23:1e:9f: 51:0b:06:b3:9d:48:b9:aa:84:a2:1b:5a:da:3b:8d:bc:e0:99: 1e:86:11:53:cf:56:f1:71:ac:7d:0c:21:de:4f:32:db:2e:da: c8:55:e7:fb -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICBm4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTE5 N0U5NzlBRkJCMUJFQzJFRkMyNjQ3MjA3NTYwNTYxQkU5MDBCNjAeFw0yNTA4MjIw OTAxNTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQwOUQ3NjA3NkI5NkVD QzU0OUJDNDdFMzFDN0U4Mjk3ODJDOTBCNkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCr9FD4DRjqGPAkcO7x3NmTPbpIZDkZ6eZc+mIRJVOW/9mmHfGL 0yZf86FYuurdAXRT54sYMPOnVai6zxm22XmARWcMSgtQGoNLiyoIlutEkLctcqUK n/BP+NlEcvGFEOgYaPD8j7U3Dhh1ci81RLXSDsZ6WHYw0xiyLme0792iJ5ILkutO wRplVUH8Xj6+cQ3+R7vM7U1bwHTIHXYBKt0xN6scUbYTvEIH4DyXQd1vAqapr0xk r7ecT1oMhuKWwlgin9D/VdrpLn4haUelJBL+Y7svbNGaVykrOgKy+Dg0tdo2rFIU SWvbn68j5uBfa3VIWydu3QJn0TakTWTpJRmdAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUQJ12B2uW7MVJvEfjHH6Cl4LJC24wHwYDVR0jBBgwFoAUkZfpea+7G+wu/CZH IHVgVhvpALYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSU5GT1JJ Q0gva1pmcGVhLTdHLXd1X0NaSElIVmdWaHZwQUxZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9rWmZwZWEtN0ctd3VfQ1pISUhWZ1ZodnBBTFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9JTkZPUklDSC9RSjEyQjJ1VzdNVkp2 RWZqSEg2Q2w0TEpDMjQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ5j8MA0GCSqGSIb3DQEBCwUAA4IBAQAvCRUT6lDNl6XIXw1svOFLJ0O/XKPB WkZ8EKSwmYFBCOtdoRyRjvyhAmYYa3BVdp7stu8YqWcDjT9+Y3K6rwV/BEOI+AEP c8zhCfnmchr/FFzbDXNneij5+SrAMtnvMHQ4nbuD7Aam26OPH4vcQYbtxFDaQlWC DaVtlk+j7NHkVrJ+5DoUNfh3bMyFzWgCd+UqKgXnpzWyvtgjBzlezbvl4ynakxy3 TR2Avvxq0hE2nv9iKbHV3y3thkWI2EyA1Uw3gHT/ItWaR9BD0tqTO3SDisICmSYj Hp9RCwaznUi5qoSiG1raO4284JkehhFTz1bxcax9DCHeTzLbLtrIVef7 -----END CERTIFICATE-----Generated at Sun Aug 24 11:14:25 2025 by rpki-client