$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/qb10jBUSS__aRyofeJ1wJ8zhTmU.roa File: qb10jBUSS__aRyofeJ1wJ8zhTmU.roa (raw, json) Hash identifier: qXAwUdQtZdFdorK0xXhZGKR6TcPGB4KualcreWDx3vo= Subject key identifier: A9:BD:74:8C:15:12:4B:FF:DA:47:2A:1F:78:9D:70:27:CC:E1:4E:65 Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Certificate serial: 0EAA Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/qb10jBUSS__aRyofeJ1wJ8zhTmU.roa Signing time: Fri 22 Aug 2025 08:52:30 +0000 ROA not before: Fri 22 Aug 2025 08:52:30 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18042 IP address blocks: 119.14.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3754 (0xeaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Validity Not Before: Aug 22 08:52:30 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=A9BD748C15124BFFDA472A1F789D7027CCE14E65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:1b:05:88:52:db:a7:85:2f:c7:40:60:ef:ec: 7e:d4:50:94:e0:12:1f:ee:23:06:65:7b:5c:a9:ce: 26:d0:ea:39:76:65:72:90:c1:9e:ff:af:89:62:08: 6f:16:b3:a3:63:37:96:df:39:d8:fe:f6:91:86:2d: af:29:d9:a4:12:97:e2:0f:68:1d:32:aa:5b:3b:bb: 05:5b:f7:ef:72:28:66:9d:51:e7:a7:6a:44:7a:b1: 9c:28:d2:e9:23:03:c5:37:5e:bd:bb:36:ee:1a:e0: dc:b0:73:13:c8:4b:f6:8a:f1:cc:0c:25:28:68:11: 07:d3:17:ec:cd:a8:48:ed:c7:61:af:2f:f1:3e:1c: ef:d9:03:f4:a3:9c:43:2d:22:ea:75:b3:57:21:bc: 58:9f:7c:4d:82:ce:66:c8:89:d4:f6:94:76:ab:8e: 5c:c1:a6:cd:8b:a2:ea:95:94:f6:67:86:a8:f7:7c: 56:a6:41:c9:49:1d:44:4e:94:4f:38:0d:3e:e6:d0: 5e:16:d0:1d:5e:44:90:4b:f0:de:30:a5:59:17:9a: 86:a1:f4:60:84:ce:65:af:e6:1b:d6:40:b1:7d:24: 8a:35:14:7a:e8:e5:e1:46:8a:3f:8f:7a:3c:d0:93: 8b:e2:6b:8a:80:38:b9:55:4d:fb:69:11:6c:78:b2: 3e:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:BD:74:8C:15:12:4B:FF:DA:47:2A:1F:78:9D:70:27:CC:E1:4E:65 X509v3 Authority Key Identifier: keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/qb10jBUSS__aRyofeJ1wJ8zhTmU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 119.14.128.0/17 Signature Algorithm: sha256WithRSAEncryption 10:13:d9:4e:72:47:dd:76:79:1d:09:36:cb:3e:53:96:95:42: 17:40:38:7d:58:89:94:a9:32:23:56:88:7e:03:0d:e4:07:38: b3:d2:eb:80:ec:3f:7f:57:43:a4:2d:7c:34:41:b8:16:35:b1: b4:b3:46:12:d1:99:62:d5:aa:a9:35:d9:0c:eb:fd:f4:cc:8d: ed:7c:a2:54:af:b3:a7:f1:ee:fe:17:c8:f2:34:17:ce:7a:c9: 04:69:b7:7f:dc:cb:c6:6d:0a:39:70:6b:9d:89:3e:e3:c5:7d: ac:cf:f3:9e:bf:83:35:3c:41:6b:96:a9:c0:4f:c4:6c:c1:c4: 5b:ee:7d:af:6f:89:99:f2:d4:e4:d2:92:f4:9e:8d:3c:cd:2a: 52:af:cb:e3:24:f9:09:76:ca:e4:e2:95:1f:45:fe:67:2b:c5: 44:da:49:49:c5:0b:cd:cc:9f:d8:f4:80:2d:e3:2e:44:1d:ea: f2:73:13:8e:13:51:ce:2b:21:3a:22:d5:03:7c:bc:67:79:38: 13:6a:a1:8d:4b:3f:08:e1:69:5f:c9:59:08:56:af:3b:f6:09: 51:58:37:b8:cc:d5:66:85:85:8a:1a:f9:8e:5e:0a:3b:d2:73: 30:96:99:24:e1:27:d3:51:68:d6:28:8a:17:7b:9d:d5:0f:bf: 6b:ac:64:19 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDqowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk5 QkJFMTMxREY1RDM0NkYyNzYyN0NDNEY4RkE5RkI1NzU4MTkyOTAeFw0yNTA4MjIw ODUyMzBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEE5QkQ3NDhDMTUxMjRC RkZEQTQ3MkExRjc4OUQ3MDI3Q0NFMTRFNjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6GwWIUtunhS/HQGDv7H7UUJTgEh/uIwZle1ypzibQ6jl2ZXKQ wZ7/r4liCG8Ws6NjN5bfOdj+9pGGLa8p2aQSl+IPaB0yqls7uwVb9+9yKGadUeen akR6sZwo0ukjA8U3Xr27Nu4a4NywcxPIS/aK8cwMJShoEQfTF+zNqEjtx2GvL/E+ HO/ZA/SjnEMtIup1s1chvFiffE2CzmbIidT2lHarjlzBps2LouqVlPZnhqj3fFam QclJHUROlE84DT7m0F4W0B1eRJBL8N4wpVkXmoah9GCEzmWv5hvWQLF9JIo1FHro 5eFGij+PejzQk4via4qAOLlVTftpEWx4sj6RAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUqb10jBUSS//aRyofeJ1wJ8zhTmUwHwYDVR0jBBgwFoAUmZu+Ex3100bydifM T4+p+1dYGSkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5H L21adS1FeDMxMDBieWRpZk1UNC1wLTFkWUdTay5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbVp1LUV4MzEwMGJ5ZGlmTVQ0LXAtMWRZR1NrLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5HL3FiMTBqQlVTU19fYVJ5b2Zl SjF3Sjh6aFRtVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAd3 DoAwDQYJKoZIhvcNAQELBQADggEBABAT2U5yR912eR0JNss+U5aVQhdAOH1YiZSp MiNWiH4DDeQHOLPS64DsP39XQ6QtfDRBuBY1sbSzRhLRmWLVqqk12Qzr/fTMje18 olSvs6fx7v4XyPI0F856yQRpt3/cy8ZtCjlwa52JPuPFfazP856/gzU8QWuWqcBP xGzBxFvufa9viZny1OTSkvSejTzNKlKvy+Mk+Ql2yuTilR9F/mcrxUTaSUnFC83M n9j0gC3jLkQd6vJzE44TUc4rIToi1QN8vGd5OBNqoY1LPwjhaV/JWQhWrzv2CVFY N7jM1WaFhYoa+Y5eCjvSczCWmSThJ9NRaNYoihd7ndUPv2usZBk= -----END CERTIFICATE-----Generated at Sun Aug 24 09:43:17 2025 by rpki-client