$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ISTVC/nZQgF6GS8RX7kpuzpDo1zOhO7RM.roa File: nZQgF6GS8RX7kpuzpDo1zOhO7RM.roa (raw, json) Hash identifier: HyDa/9d2re4C1JhwrZORVmnXg47bqchMEMMO/tp5uHA= Subject key identifier: 9D:94:20:17:A1:92:F1:15:FB:92:9B:B3:A4:3A:35:CC:E8:4E:ED:13 Certificate issuer: /CN=6887985DB19E5FD82F962B420ECC0FC4ED730D02 Certificate serial: 041D Authority key identifier: 68:87:98:5D:B1:9E:5F:D8:2F:96:2B:42:0E:CC:0F:C4:ED:73:0D:02 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/aIeYXbGeX9gvlitCDswPxO1zDQI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/nZQgF6GS8RX7kpuzpDo1zOhO7RM.roa Signing time: Fri 22 Aug 2025 08:59:15 +0000 ROA not before: Fri 22 Aug 2025 08:59:15 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9920 IP address blocks: 103.173.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/aIeYXbGeX9gvlitCDswPxO1zDQI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/aIeYXbGeX9gvlitCDswPxO1zDQI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/aIeYXbGeX9gvlitCDswPxO1zDQI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1053 (0x41d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6887985DB19E5FD82F962B420ECC0FC4ED730D02 Validity Not Before: Aug 22 08:59:15 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=9D942017A192F115FB929BB3A43A35CCE84EED13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:04:60:4c:1b:bd:95:5d:7c:9f:7b:56:cc:8d: 2c:bb:08:93:0e:b7:89:03:09:68:5f:a8:00:15:c3: c0:51:35:93:ff:85:28:31:ae:12:8e:50:3e:d4:7e: d8:54:3c:18:78:c8:6a:c7:ce:a8:fe:9e:f6:18:6d: 36:0a:32:b6:f5:65:b0:e6:b9:23:15:06:a7:90:4b: 87:2b:93:7c:3a:4a:6e:fe:3c:25:97:4f:c0:e2:00: 40:f4:56:0c:48:f5:d8:36:74:72:16:fa:7b:33:b8: f9:24:01:2e:44:21:5a:1d:8f:ae:be:4d:67:0f:30: 45:02:f3:a6:5f:ea:48:4f:95:f6:c6:65:d4:a7:8c: d2:8c:84:6f:22:1e:48:cb:b6:b9:8c:db:bb:81:dc: 14:9b:b9:18:83:ea:c4:1b:f2:bb:96:cb:23:28:0d: 76:cb:8a:a3:a1:29:52:f2:5b:21:23:15:9a:21:a1: 14:c5:31:74:8a:41:d8:3d:0d:45:9f:ab:50:99:b1: f4:e7:1c:8a:42:d5:59:d9:b9:a3:91:ce:d4:b4:7c: 9f:4a:31:75:60:fe:9c:a6:44:77:81:d1:d3:9c:16: e4:6c:6d:34:85:b1:80:cc:59:8b:be:05:68:fb:47: a9:16:6c:ce:34:3e:b2:fc:39:95:9e:f7:b2:f8:3e: 26:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:94:20:17:A1:92:F1:15:FB:92:9B:B3:A4:3A:35:CC:E8:4E:ED:13 X509v3 Authority Key Identifier: keyid:68:87:98:5D:B1:9E:5F:D8:2F:96:2B:42:0E:CC:0F:C4:ED:73:0D:02 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/aIeYXbGeX9gvlitCDswPxO1zDQI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/aIeYXbGeX9gvlitCDswPxO1zDQI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/nZQgF6GS8RX7kpuzpDo1zOhO7RM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.173.94.0/24 Signature Algorithm: sha256WithRSAEncryption 89:e2:1f:ca:09:3a:92:7e:9f:2c:45:9f:24:ed:eb:e7:1f:80: e1:8f:77:f6:e7:2e:0f:3d:f6:64:e3:fa:fa:e9:d6:88:88:fd: 3e:ff:80:59:01:b3:f6:2b:7f:17:53:d4:c7:34:3b:c7:f3:e8: 09:93:ae:b5:7d:41:52:c3:ff:65:ad:60:64:f1:ae:f1:84:d1: 6f:c8:98:a2:ce:05:75:be:a8:f3:52:12:d3:dd:e1:e0:b0:bb: c5:2d:f9:c7:b1:79:ec:79:f7:64:8b:3b:b2:e8:8c:bb:ea:ff: d3:b0:5d:2b:bb:bf:b9:cf:57:58:ee:e3:b7:2a:56:e9:0a:bd: 71:54:99:f1:b6:bc:10:10:fb:33:70:ef:11:26:cb:2a:b4:57: 08:a2:fe:7e:0f:36:01:ab:87:1c:93:32:69:86:b0:29:0a:f1: 61:c6:69:1f:6e:62:c8:52:9e:e1:19:0d:c1:3c:3c:e0:6e:a3: 09:d2:6a:89:0c:34:d6:81:30:8f:95:13:51:42:86:23:5e:85: f9:d6:68:df:e4:a5:11:ff:ea:77:92:e0:5d:52:93:3e:b5:81: db:28:dd:e2:e9:55:58:b4:5e:cb:d9:78:f9:38:5d:67:25:d7: b0:c1:99:da:d6:ee:dc:ec:f8:83:86:35:fa:e4:9b:9b:b2:ab: b0:a7:f8:23 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICBB0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjg4 Nzk4NURCMTlFNUZEODJGOTYyQjQyMEVDQzBGQzRFRDczMEQwMjAeFw0yNTA4MjIw ODU5MTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDlEOTQyMDE3QTE5MkYx MTVGQjkyOUJCM0E0M0EzNUNDRTg0RUVEMTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD8BGBMG72VXXyfe1bMjSy7CJMOt4kDCWhfqAAVw8BRNZP/hSgx rhKOUD7UfthUPBh4yGrHzqj+nvYYbTYKMrb1ZbDmuSMVBqeQS4crk3w6Sm7+PCWX T8DiAED0VgxI9dg2dHIW+nszuPkkAS5EIVodj66+TWcPMEUC86Zf6khPlfbGZdSn jNKMhG8iHkjLtrmM27uB3BSbuRiD6sQb8ruWyyMoDXbLiqOhKVLyWyEjFZohoRTF MXSKQdg9DUWfq1CZsfTnHIpC1VnZuaORztS0fJ9KMXVg/pymRHeB0dOcFuRsbTSF sYDMWYu+BWj7R6kWbM40PrL8OZWe97L4PibNAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUnZQgF6GS8RX7kpuzpDo1zOhO7RMwHwYDVR0jBBgwFoAUaIeYXbGeX9gvlitC DswPxO1zDQIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSVNUVkMv YUllWVhiR2VYOWd2bGl0Q0Rzd1B4TzF6RFFJLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9hSWVZWGJHZVg5Z3ZsaXRDRHN3UHhPMXpEUUkuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9JU1RWQy9uWlFnRjZHUzhSWDdrcHV6cERv MXpPaE83Uk0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ61e MA0GCSqGSIb3DQEBCwUAA4IBAQCJ4h/KCTqSfp8sRZ8k7evnH4Dhj3f25y4PPfZk 4/r66daIiP0+/4BZAbP2K38XU9THNDvH8+gJk661fUFSw/9lrWBk8a7xhNFvyJii zgV1vqjzUhLT3eHgsLvFLfnHsXnsefdkizuy6Iy76v/TsF0ru7+5z1dY7uO3Klbp Cr1xVJnxtrwQEPszcO8RJssqtFcIov5+DzYBq4cckzJphrApCvFhxmkfbmLIUp7h GQ3BPDzgbqMJ0mqJDDTWgTCPlRNRQoYjXoX51mjf5KUR/+p3kuBdUpM+tYHbKN3i 6VVYtF7L2Xj5OF1nJdewwZna1u7c7PiDhjX65Jubsquwp/gj -----END CERTIFICATE-----Generated at Sun Aug 24 13:38:03 2025 by rpki-client