$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/JIGENTEC/_tWnmt3FWhBCn49-axqjUNG3LS4.roa File: _tWnmt3FWhBCn49-axqjUNG3LS4.roa (raw, json) Hash identifier: AFFJi6IPS4yoS8axncJqMKcky+ClNeoIqct83uaoQ/E= Subject key identifier: FE:D5:A7:9A:DD:C5:5A:10:42:9F:8F:7E:6B:1A:A3:50:D1:B7:2D:2E Certificate issuer: /CN=830BC4410162A58D0DB17E0A351551FBB3D751A1 Certificate serial: 0DA9 Authority key identifier: 83:0B:C4:41:01:62:A5:8D:0D:B1:7E:0A:35:15:51:FB:B3:D7:51:A1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gwvEQQFipY0NsX4KNRVR-7PXUaE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JIGENTEC/_tWnmt3FWhBCn49-axqjUNG3LS4.roa Signing time: Fri 22 Aug 2025 08:56:47 +0000 ROA not before: Fri 22 Aug 2025 08:56:47 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131619 IP address blocks: 103.116.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/JIGENTEC/gwvEQQFipY0NsX4KNRVR-7PXUaE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/JIGENTEC/gwvEQQFipY0NsX4KNRVR-7PXUaE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gwvEQQFipY0NsX4KNRVR-7PXUaE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3497 (0xda9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=830BC4410162A58D0DB17E0A351551FBB3D751A1 Validity Not Before: Aug 22 08:56:47 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=FED5A79ADDC55A10429F8F7E6B1AA350D1B72D2E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:25:d5:c8:4b:5b:35:03:78:dd:e1:29:7a:48: 62:34:2b:bd:97:5e:a6:05:b6:27:c1:bb:d0:cc:78: 0e:d9:46:47:fd:a8:c9:d8:c3:aa:bd:c0:5f:cc:79: d1:28:69:37:fe:da:ed:bc:ef:26:bc:50:14:89:a0: a4:43:20:97:13:f3:ca:0d:8c:52:53:a2:d4:36:6d: c3:6e:72:2a:b1:45:d1:f2:ac:c2:a8:a4:6c:ff:60: 3c:bc:81:ce:8b:93:66:d2:b6:52:ca:0e:d6:97:76: f5:20:4a:33:7c:1c:15:bc:f3:2b:26:64:b5:4c:d5: 4c:4b:b1:69:8e:ec:b8:91:d6:61:90:29:de:32:99: e6:b9:1f:06:91:64:81:f0:8a:ea:4b:2d:c4:a7:3c: fb:e1:12:1b:db:27:08:cc:62:8b:f4:d8:0f:f8:64: 20:8a:6c:69:cd:18:3b:d4:bb:4f:6b:81:99:35:d8: db:30:16:e2:70:c0:d3:34:2c:fe:cb:c2:5b:ba:59: a4:34:df:94:78:6b:e7:d5:02:b3:60:0e:2b:08:8d: 8d:a5:a4:9c:12:6d:b2:c0:56:0a:4e:ae:26:0e:18: e4:06:5b:50:f4:8b:69:f0:1d:00:92:9d:26:e2:9c: 2e:dd:ca:70:a2:55:1b:34:4f:98:01:0d:37:5c:c5: aa:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:D5:A7:9A:DD:C5:5A:10:42:9F:8F:7E:6B:1A:A3:50:D1:B7:2D:2E X509v3 Authority Key Identifier: keyid:83:0B:C4:41:01:62:A5:8D:0D:B1:7E:0A:35:15:51:FB:B3:D7:51:A1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JIGENTEC/gwvEQQFipY0NsX4KNRVR-7PXUaE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gwvEQQFipY0NsX4KNRVR-7PXUaE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JIGENTEC/_tWnmt3FWhBCn49-axqjUNG3LS4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.116.97.0/24 Signature Algorithm: sha256WithRSAEncryption 88:08:d4:fd:0b:5d:c9:ee:c8:7f:ad:61:7b:6d:ba:78:20:b8: 39:5f:6e:e1:ed:41:e2:9b:89:43:a4:8f:2c:4a:28:51:bb:2e: 3c:5a:31:37:7c:fa:08:8f:3d:25:fd:6e:7e:11:43:eb:65:5e: 0a:1d:1c:1b:39:b7:ee:66:09:8d:25:1f:26:cd:e1:20:c4:7c: 77:8b:b6:d8:7f:45:db:54:5b:5a:8e:06:15:91:f8:1c:40:4d: fb:6c:70:67:47:1b:be:60:c1:e4:14:76:d7:f3:97:20:ce:81: 88:41:dd:0e:5e:33:16:da:fa:d0:25:1d:90:ca:9f:cc:3e:d0: 19:d2:c2:c7:f4:45:97:a6:c2:87:77:27:86:10:c3:ae:d5:28: 02:c4:cf:a0:52:0a:38:d5:67:9c:4f:9b:c0:32:4d:45:19:69: f7:44:12:9f:50:3c:4b:b7:a2:80:9e:63:21:e6:c4:52:28:32: 26:fe:2d:d6:4d:4c:a8:99:e4:e2:71:24:b2:6e:ae:19:ee:a2: d6:d3:65:57:0d:64:cb:b3:83:37:69:4c:ee:0e:35:ea:d6:40: c7:70:df:3b:64:12:3a:16:f4:f2:64:89:5b:47:53:cb:3e:24: 2d:82:f9:9e:62:7b:7c:e0:9b:8c:21:cc:e4:68:f6:04:ad:59: fc:51:16:84 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDakwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMw QkM0NDEwMTYyQTU4RDBEQjE3RTBBMzUxNTUxRkJCM0Q3NTFBMTAeFw0yNTA4MjIw ODU2NDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEZFRDVBNzlBRERDNTVB MTA0MjlGOEY3RTZCMUFBMzUwRDFCNzJEMkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvJdXIS1s1A3jd4Sl6SGI0K72XXqYFtifBu9DMeA7ZRkf9qMnY w6q9wF/MedEoaTf+2u287ya8UBSJoKRDIJcT88oNjFJTotQ2bcNuciqxRdHyrMKo pGz/YDy8gc6Lk2bStlLKDtaXdvUgSjN8HBW88ysmZLVM1UxLsWmO7LiR1mGQKd4y mea5HwaRZIHwiupLLcSnPPvhEhvbJwjMYov02A/4ZCCKbGnNGDvUu09rgZk12Nsw FuJwwNM0LP7Lwlu6WaQ035R4a+fVArNgDisIjY2lpJwSbbLAVgpOriYOGOQGW1D0 i2nwHQCSnSbinC7dynCiVRs0T5gBDTdcxapXAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU/tWnmt3FWhBCn49+axqjUNG3LS4wHwYDVR0jBBgwFoAUgwvEQQFipY0NsX4K NRVR+7PXUaEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSklHRU5U RUMvZ3d2RVFRRmlwWTBOc1g0S05SVlItN1BYVWFFLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9nd3ZFUVFGaXBZME5zWDRLTlJWUi03UFhVYUUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9KSUdFTlRFQy9fdFdubXQzRldoQkNu NDktYXhxalVORzNMUzQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZ3RhMA0GCSqGSIb3DQEBCwUAA4IBAQCICNT9C13J7sh/rWF7bbp4ILg5X27h 7UHim4lDpI8sSihRuy48WjE3fPoIjz0l/W5+EUPrZV4KHRwbObfuZgmNJR8mzeEg xHx3i7bYf0XbVFtajgYVkfgcQE37bHBnRxu+YMHkFHbX85cgzoGIQd0OXjMW2vrQ JR2Qyp/MPtAZ0sLH9EWXpsKHdyeGEMOu1SgCxM+gUgo41WecT5vAMk1FGWn3RBKf UDxLt6KAnmMh5sRSKDIm/i3WTUyomeTicSSybq4Z7qLW02VXDWTLs4M3aUzuDjXq 1kDHcN87ZBI6FvTyZIlbR1PLPiQtgvmeYnt84JuMIczkaPYErVn8URaE -----END CERTIFICATE-----Generated at Sun Aug 24 13:36:47 2025 by rpki-client