$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KKCO/fAA_7kU5d-eAsYyb4t9T_m-K9so.roa File: fAA_7kU5d-eAsYyb4t9T_m-K9so.roa (raw, json) Hash identifier: 0ssxX45r2zal8T5TYsBqjtxaxF/5kSi/C5RnyqK7E4Q= Subject key identifier: 7C:00:3F:EE:45:39:77:E7:80:B1:8C:9B:E2:DF:53:FE:6F:8A:F6:CA Certificate issuer: /CN=828BD19EFA8EBE59EF407BB7FAB6898F754C7EC1 Certificate serial: 110D Authority key identifier: 82:8B:D1:9E:FA:8E:BE:59:EF:40:7B:B7:FA:B6:89:8F:75:4C:7E:C1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/govRnvqOvlnvQHu3-raJj3VMfsE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/fAA_7kU5d-eAsYyb4t9T_m-K9so.roa Signing time: Fri 22 Aug 2025 09:01:29 +0000 ROA not before: Fri 22 Aug 2025 09:01:29 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131645 IP address blocks: 103.134.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/govRnvqOvlnvQHu3-raJj3VMfsE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4365 (0x110d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=828BD19EFA8EBE59EF407BB7FAB6898F754C7EC1 Validity Not Before: Aug 22 09:01:29 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7C003FEE453977E780B18C9BE2DF53FE6F8AF6CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ac:02:74:2e:b3:e7:6c:a8:56:59:7d:e6:21: 1c:38:17:9e:df:c5:64:5f:d9:c0:7a:72:a8:a3:4e: c3:45:20:b3:50:a0:35:12:32:2e:5e:bc:74:89:92: ad:55:18:a5:c1:f5:1f:f4:a6:0a:72:1a:33:de:26: 91:ec:82:bb:e7:f6:6b:c0:87:f1:ee:03:7a:b6:87: e8:67:ef:10:b2:48:e7:83:15:99:93:ab:68:7f:b2: 70:61:a3:43:f4:61:3c:d4:29:4b:6f:fd:91:57:12: e8:25:c7:d6:98:bd:bd:6b:55:a5:39:df:5e:a5:26: d6:25:ca:5e:b3:84:cc:39:e0:00:bc:5e:54:0b:64: 46:32:31:35:c9:21:e9:2b:ee:19:19:e9:af:67:20: 9f:d8:3e:a9:be:dc:5d:51:07:10:97:98:80:7b:af: 39:d5:b1:5b:2a:c0:a3:6f:82:b8:f0:93:5f:e6:52: 73:d7:c1:1e:d7:f2:35:6f:09:40:3c:9b:6b:80:28: ed:05:b1:67:fd:82:9d:85:cc:61:f2:1b:13:f8:d4: 06:9b:9e:17:96:0f:75:80:04:5c:78:90:55:b7:45: bf:6c:78:7e:d6:f3:e5:c6:77:f0:f7:b8:d3:ff:4e: bf:c8:26:55:3e:ee:16:80:9f:ca:4f:bf:7d:29:0b: b7:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:00:3F:EE:45:39:77:E7:80:B1:8C:9B:E2:DF:53:FE:6F:8A:F6:CA X509v3 Authority Key Identifier: keyid:82:8B:D1:9E:FA:8E:BE:59:EF:40:7B:B7:FA:B6:89:8F:75:4C:7E:C1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/govRnvqOvlnvQHu3-raJj3VMfsE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/fAA_7kU5d-eAsYyb4t9T_m-K9so.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.134.120.0/22 Signature Algorithm: sha256WithRSAEncryption 20:a0:4d:f3:1d:9a:b3:bf:4b:36:2d:56:cc:e1:74:ed:31:57: 68:01:5c:8e:a1:74:f2:5d:16:4b:dc:a7:30:be:b1:71:59:fc: 91:ba:9a:07:cb:a8:75:1d:93:08:76:d2:da:a6:a3:ff:ef:d9: d8:19:44:85:e7:0b:7b:d1:a3:19:af:2e:c9:06:48:2f:6e:44: 0d:a0:fb:88:25:4d:02:93:4d:db:38:47:bd:e3:f0:4e:da:4f: 56:4d:bf:54:55:89:a3:a7:43:00:da:f8:c5:4c:6e:35:9f:67: ac:1e:a3:fb:53:24:d2:bb:27:4c:e9:1a:86:8a:7f:03:09:7d: d2:c2:bc:97:c1:48:59:4e:46:44:39:64:21:09:df:b5:84:57: cf:9d:58:60:6e:32:93:cb:cf:56:76:56:1e:31:a8:c7:f1:3c: de:94:64:27:fe:7a:1a:d1:84:7d:15:9f:e7:07:fd:3f:8e:a8: 67:dc:60:03:99:5f:ac:dc:0f:dd:ea:4c:c7:ae:b7:49:4a:59: 12:74:5f:dc:5b:e6:8c:d3:59:98:5d:de:e9:41:df:af:73:ee: 88:ca:88:34:0b:56:6d:4d:ef:53:e0:5a:c6:2d:3d:25:7a:21: 5b:ce:14:6e:01:41:9a:6c:0b:16:3e:41:9e:cf:a7:4b:42:e3: 3c:5a:0d:2f -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEQ0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODI4 QkQxOUVGQThFQkU1OUVGNDA3QkI3RkFCNjg5OEY3NTRDN0VDMTAeFw0yNTA4MjIw OTAxMjlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDdDMDAzRkVFNDUzOTc3 RTc4MEIxOEM5QkUyREY1M0ZFNkY4QUY2Q0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5rAJ0LrPnbKhWWX3mIRw4F57fxWRf2cB6cqijTsNFILNQoDUS Mi5evHSJkq1VGKXB9R/0pgpyGjPeJpHsgrvn9mvAh/HuA3q2h+hn7xCySOeDFZmT q2h/snBho0P0YTzUKUtv/ZFXEuglx9aYvb1rVaU5316lJtYlyl6zhMw54AC8XlQL ZEYyMTXJIekr7hkZ6a9nIJ/YPqm+3F1RBxCXmIB7rznVsVsqwKNvgrjwk1/mUnPX wR7X8jVvCUA8m2uAKO0FsWf9gp2FzGHyGxP41AabnheWD3WABFx4kFW3Rb9seH7W 8+XGd/D3uNP/Tr/IJlU+7haAn8pPv30pC7cjAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUfAA/7kU5d+eAsYyb4t9T/m+K9sowHwYDVR0jBBgwFoAUgovRnvqOvlnvQHu3 +raJj3VMfsEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0tDTy9n b3ZSbnZxT3ZsbnZRSHUzLXJhSmozVk1mc0UuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2dvdlJudnFPdmxudlFIdTMtcmFKajNWTWZzRS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0tLQ08vZkFBXzdrVTVkLWVBc1l5YjR0OVRf bS1LOXNvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmeGeDAN BgkqhkiG9w0BAQsFAAOCAQEAIKBN8x2as79LNi1WzOF07TFXaAFcjqF08l0WS9yn ML6xcVn8kbqaB8uodR2TCHbS2qaj/+/Z2BlEhecLe9GjGa8uyQZIL25EDaD7iCVN ApNN2zhHvePwTtpPVk2/VFWJo6dDANr4xUxuNZ9nrB6j+1Mk0rsnTOkahop/Awl9 0sK8l8FIWU5GRDlkIQnftYRXz51YYG4yk8vPVnZWHjGox/E83pRkJ/56GtGEfRWf 5wf9P46oZ9xgA5lfrNwP3epMx663SUpZEnRf3FvmjNNZmF3e6UHfr3PuiMqINAtW bU3vU+Baxi09JXohW84UbgFBmmwLFj5Bns+nS0LjPFoNLw== -----END CERTIFICATE-----Generated at Sun Aug 24 11:45:20 2025 by rpki-client