$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ISTVC/WI80NCpV2BS0jtRsw_SudM646mc.roa File: WI80NCpV2BS0jtRsw_SudM646mc.roa (raw, json) Hash identifier: CZCIO63FyXb5aceOpAT5/VXQ2dYgzsu0eki4huEkv2w= Subject key identifier: 58:8F:34:34:2A:55:D8:14:B4:8E:D4:6C:C3:F4:AE:74:CE:B8:EA:67 Certificate issuer: /CN=6887985DB19E5FD82F962B420ECC0FC4ED730D02 Certificate serial: 041E Authority key identifier: 68:87:98:5D:B1:9E:5F:D8:2F:96:2B:42:0E:CC:0F:C4:ED:73:0D:02 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/aIeYXbGeX9gvlitCDswPxO1zDQI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/WI80NCpV2BS0jtRsw_SudM646mc.roa Signing time: Fri 22 Aug 2025 08:59:15 +0000 ROA not before: Fri 22 Aug 2025 08:59:15 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9920 IP address blocks: 103.173.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/aIeYXbGeX9gvlitCDswPxO1zDQI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/aIeYXbGeX9gvlitCDswPxO1zDQI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/aIeYXbGeX9gvlitCDswPxO1zDQI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1054 (0x41e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6887985DB19E5FD82F962B420ECC0FC4ED730D02 Validity Not Before: Aug 22 08:59:15 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=588F34342A55D814B48ED46CC3F4AE74CEB8EA67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:bd:ad:c1:b8:45:77:33:a1:19:e7:4e:fa:c4: 77:e8:a6:5c:76:5e:52:b0:95:c7:f1:c2:14:d6:75: cf:3a:2e:53:e6:34:58:ec:d9:9a:9d:33:34:2c:c2: db:2d:c9:99:e9:c3:72:ac:b5:52:3a:5c:f8:57:36: 35:1e:3b:b7:45:31:cd:5f:2f:0f:18:4a:89:71:69: e2:41:85:76:76:ad:c3:8d:66:2e:6e:d9:97:df:2e: 2b:0a:a2:b1:c1:3d:90:b9:98:51:a7:25:63:4e:06: 89:f2:10:4a:7a:10:59:6a:3d:00:c6:bf:ba:17:e9: be:d2:51:99:2e:5d:a0:00:58:00:6f:8d:2e:dd:56: e1:a7:02:9d:9e:38:f2:97:9d:49:e5:b1:b9:48:67: 39:03:f0:b2:0d:ec:8f:b9:dd:11:81:b9:35:10:ec: 16:c4:e4:94:dc:29:70:f7:32:d3:44:5e:68:a3:5e: 0a:c8:10:16:1e:a1:fc:6a:27:40:da:e5:70:4c:31: a1:3c:0d:56:55:fc:c8:7d:4f:a4:6e:00:64:a9:4a: 99:c1:05:30:0e:cd:c9:64:04:ef:99:50:47:59:b6: 3d:6e:ef:82:45:19:2f:33:44:0d:8f:79:28:3c:97: c4:0b:b0:ad:eb:4c:78:0f:c9:1f:14:d6:f2:a0:32: 71:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:8F:34:34:2A:55:D8:14:B4:8E:D4:6C:C3:F4:AE:74:CE:B8:EA:67 X509v3 Authority Key Identifier: keyid:68:87:98:5D:B1:9E:5F:D8:2F:96:2B:42:0E:CC:0F:C4:ED:73:0D:02 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/aIeYXbGeX9gvlitCDswPxO1zDQI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/aIeYXbGeX9gvlitCDswPxO1zDQI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/WI80NCpV2BS0jtRsw_SudM646mc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.173.95.0/24 Signature Algorithm: sha256WithRSAEncryption 12:98:15:ab:ce:f0:3d:6c:7e:ed:44:e3:70:11:72:fa:db:ba: ab:30:d7:05:c7:d6:77:67:e3:1c:d3:73:bc:5f:79:d0:ea:71: 0f:71:0a:10:ec:3a:c6:66:87:ca:96:94:36:c6:c4:fa:be:e9: 33:d9:0b:99:63:47:a1:78:c2:e7:67:bf:87:2a:e8:aa:57:79: 14:44:ef:ca:c7:75:65:dc:92:be:48:57:d2:f8:24:b5:06:4a: 2b:ce:b5:37:f4:0e:4b:01:9e:07:a9:99:00:28:8f:a1:89:3d: 71:66:f9:2c:cb:35:27:7e:15:19:cc:f0:77:14:d3:4b:4b:78: 20:cc:75:99:15:b2:11:af:69:c9:2d:54:5b:2d:58:4c:51:a7: 21:74:f4:77:16:4b:bf:f8:d0:73:63:40:6b:20:f3:9d:30:d5: 3c:0b:54:46:c9:17:f4:d1:34:a3:17:5d:cf:ee:f8:db:b1:09: ca:b8:f7:88:30:18:e7:c4:39:fb:86:21:2a:02:88:56:12:a7: c3:ad:00:60:c6:e3:7d:71:47:1a:00:50:91:20:c0:26:73:78: 80:dd:ee:ce:26:59:2b:fe:31:e3:b2:ad:84:c8:18:02:fb:1a: 34:c3:61:c2:8c:e9:84:b3:5d:6d:86:f3:17:b2:94:ca:a2:d3: cb:6c:3b:ad -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICBB4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjg4 Nzk4NURCMTlFNUZEODJGOTYyQjQyMEVDQzBGQzRFRDczMEQwMjAeFw0yNTA4MjIw ODU5MTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDU4OEYzNDM0MkE1NUQ4 MTRCNDhFRDQ2Q0MzRjRBRTc0Q0VCOEVBNjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLva3BuEV3M6EZ5076xHfoplx2XlKwlcfxwhTWdc86LlPmNFjs 2ZqdMzQswtstyZnpw3KstVI6XPhXNjUeO7dFMc1fLw8YSolxaeJBhXZ2rcONZi5u 2ZffLisKorHBPZC5mFGnJWNOBonyEEp6EFlqPQDGv7oX6b7SUZkuXaAAWABvjS7d VuGnAp2eOPKXnUnlsblIZzkD8LIN7I+53RGBuTUQ7BbE5JTcKXD3MtNEXmijXgrI EBYeofxqJ0Da5XBMMaE8DVZV/Mh9T6RuAGSpSpnBBTAOzclkBO+ZUEdZtj1u74JF GS8zRA2PeSg8l8QLsK3rTHgPyR8U1vKgMnGjAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUWI80NCpV2BS0jtRsw/SudM646mcwHwYDVR0jBBgwFoAUaIeYXbGeX9gvlitC DswPxO1zDQIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSVNUVkMv YUllWVhiR2VYOWd2bGl0Q0Rzd1B4TzF6RFFJLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9hSWVZWGJHZVg5Z3ZsaXRDRHN3UHhPMXpEUUkuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9JU1RWQy9XSTgwTkNwVjJCUzBqdFJzd19T dWRNNjQ2bWMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ61f MA0GCSqGSIb3DQEBCwUAA4IBAQASmBWrzvA9bH7tRONwEXL627qrMNcFx9Z3Z+Mc 03O8X3nQ6nEPcQoQ7DrGZofKlpQ2xsT6vukz2QuZY0eheMLnZ7+HKuiqV3kURO/K x3Vl3JK+SFfS+CS1BkorzrU39A5LAZ4HqZkAKI+hiT1xZvksyzUnfhUZzPB3FNNL S3ggzHWZFbIRr2nJLVRbLVhMUachdPR3Fku/+NBzY0BrIPOdMNU8C1RGyRf00TSj F13P7vjbsQnKuPeIMBjnxDn7hiEqAohWEqfDrQBgxuN9cUcaAFCRIMAmc3iA3e7O Jlkr/jHjsq2EyBgC+xo0w2HCjOmEs11thvMXspTKotPLbDut -----END CERTIFICATE-----Generated at Sun Aug 24 13:44:12 2025 by rpki-client