$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LIBO/SJ2TtZ3tKM4UyICRxxohV5qvZuU.roa File: SJ2TtZ3tKM4UyICRxxohV5qvZuU.roa (raw, json) Hash identifier: 1YIHWc2HO74R73/tnHA6QJbEdt7pUgxWwZFRFLDmlhE= Subject key identifier: 48:9D:93:B5:9D:ED:28:CE:14:C8:80:91:C7:1A:21:57:9A:AF:66:E5 Certificate issuer: /CN=6D0EDF410C499A7FC419BB4BB09219673E74614B Certificate serial: 027E Authority key identifier: 6D:0E:DF:41:0C:49:9A:7F:C4:19:BB:4B:B0:92:19:67:3E:74:61:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bQ7fQQxJmn_EGbtLsJIZZz50YUs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIBO/SJ2TtZ3tKM4UyICRxxohV5qvZuU.roa Signing time: Fri 22 Aug 2025 09:01:15 +0000 ROA not before: Fri 22 Aug 2025 09:01:15 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131149 IP address blocks: 103.237.48.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIBO/bQ7fQQxJmn_EGbtLsJIZZz50YUs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LIBO/bQ7fQQxJmn_EGbtLsJIZZz50YUs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/bQ7fQQxJmn_EGbtLsJIZZz50YUs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 638 (0x27e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6D0EDF410C499A7FC419BB4BB09219673E74614B Validity Not Before: Aug 22 09:01:15 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=489D93B59DED28CE14C88091C71A21579AAF66E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d3:56:4a:d0:47:0d:26:87:5b:a2:02:97:39: 43:1f:86:e7:98:18:d6:13:93:9f:84:15:86:f5:69: f8:a7:1d:73:67:2b:94:91:f3:77:46:a7:23:fa:d1: eb:dc:b9:d8:7c:bc:9d:f7:cb:f0:93:8d:cc:a4:c6: 08:f6:c9:20:85:f8:eb:0b:52:2c:e7:f3:51:2e:9f: 9a:86:80:75:da:2f:64:96:f6:8f:b1:05:0d:5f:0b: e1:f1:6e:9b:4b:41:fd:76:75:c8:c0:26:dd:63:cb: 7e:d8:bb:de:58:8b:84:3e:c0:53:0d:26:76:48:1c: 92:73:30:5b:48:e4:09:5e:6e:b4:e4:27:47:4c:66: 64:16:f4:ba:9e:02:72:ee:1c:ba:0d:af:6a:53:a4: 14:31:02:b6:80:10:5c:0c:8a:54:bd:70:5f:65:2f: e8:d7:e7:06:ab:9d:5a:e1:d3:9e:c4:e4:90:b5:f3: d1:fa:96:a1:8a:93:ed:26:9c:bc:33:76:84:62:86: 64:5b:e7:3b:f3:8c:62:db:24:95:f7:c5:9f:27:5a: d7:a5:e4:90:db:29:88:86:89:e8:9c:47:38:38:ec: 50:74:f2:d6:de:51:d8:ec:6a:cd:4f:a1:42:b6:73: bd:0c:65:8c:db:a1:0d:aa:90:6e:29:85:cc:1b:c4: ec:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:9D:93:B5:9D:ED:28:CE:14:C8:80:91:C7:1A:21:57:9A:AF:66:E5 X509v3 Authority Key Identifier: keyid:6D:0E:DF:41:0C:49:9A:7F:C4:19:BB:4B:B0:92:19:67:3E:74:61:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIBO/bQ7fQQxJmn_EGbtLsJIZZz50YUs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bQ7fQQxJmn_EGbtLsJIZZz50YUs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIBO/SJ2TtZ3tKM4UyICRxxohV5qvZuU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.237.48.0/23 Signature Algorithm: sha256WithRSAEncryption 70:a1:85:a8:44:ec:50:57:e9:3b:48:f4:ec:72:d9:4d:66:77: 27:b9:fb:d4:ba:a6:91:5a:f8:2b:ec:31:ef:97:5a:23:cc:12: 21:24:33:2a:13:ad:18:15:2b:77:d9:af:6d:79:01:fa:3f:f1: 24:05:43:2f:64:d6:be:d5:99:85:e6:1f:6e:e0:55:2b:95:c8: a4:74:4d:fb:5f:09:a0:e7:5a:b6:4f:e0:5d:79:6b:5d:98:b7: 29:a9:c8:7f:dc:55:0a:02:fe:90:2c:5b:17:0f:6c:a6:07:91: 1b:92:84:47:a5:06:f2:e9:a5:8e:05:dc:f3:8c:82:21:63:44: ea:05:47:5d:48:ac:23:d7:30:ad:8a:95:44:62:cd:ee:01:72: a4:54:fb:35:86:fb:aa:9a:ac:bd:75:5f:82:62:42:bc:6a:64: f7:4b:21:0e:23:12:5c:17:a5:4b:ba:ef:43:7d:90:80:e6:f1: 81:96:61:b3:6d:cd:7a:9a:63:0b:48:30:24:5a:f1:aa:c2:c8: 24:e4:a3:6a:0e:80:01:c0:e7:de:d5:f2:46:0f:45:42:61:93: e3:46:b4:5a:ea:45:ac:d3:3c:e5:cc:19:7f:ba:10:72:6a:ec: d3:0d:7c:ec:8c:6c:67:7d:12:d8:04:b5:0b:55:ad:ef:86:7c: 19:01:5d:f3 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICAn4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkQw RURGNDEwQzQ5OUE3RkM0MTlCQjRCQjA5MjE5NjczRTc0NjE0QjAeFw0yNTA4MjIw OTAxMTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQ4OUQ5M0I1OURFRDI4 Q0UxNEM4ODA5MUM3MUEyMTU3OUFBRjY2RTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDI01ZK0EcNJodbogKXOUMfhueYGNYTk5+EFYb1afinHXNnK5SR 83dGpyP60evcudh8vJ33y/CTjcykxgj2ySCF+OsLUizn81Eun5qGgHXaL2SW9o+x BQ1fC+HxbptLQf12dcjAJt1jy37Yu95Yi4Q+wFMNJnZIHJJzMFtI5AlebrTkJ0dM ZmQW9LqeAnLuHLoNr2pTpBQxAraAEFwMilS9cF9lL+jX5warnVrh057E5JC189H6 lqGKk+0mnLwzdoRihmRb5zvzjGLbJJX3xZ8nWtel5JDbKYiGieicRzg47FB08tbe Udjsas1PoUK2c70MZYzboQ2qkG4phcwbxOwHAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUSJ2TtZ3tKM4UyICRxxohV5qvZuUwHwYDVR0jBBgwFoAUbQ7fQQxJmn/EGbtL sJIZZz50YUswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTElCTy9i UTdmUVF4Sm1uX0VHYnRMc0pJWlp6NTBZVXMuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2JRN2ZRUXhKbW5fRUdidExzSklaWno1MFlVcy5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0xJQk8vU0oyVHRaM3RLTTRVeUlDUnh4b2hW NXF2WnVVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWftMDAN BgkqhkiG9w0BAQsFAAOCAQEAcKGFqETsUFfpO0j07HLZTWZ3J7n71LqmkVr4K+wx 75daI8wSISQzKhOtGBUrd9mvbXkB+j/xJAVDL2TWvtWZheYfbuBVK5XIpHRN+18J oOdatk/gXXlrXZi3KanIf9xVCgL+kCxbFw9spgeRG5KER6UG8umljgXc84yCIWNE 6gVHXUisI9cwrYqVRGLN7gFypFT7NYb7qpqsvXVfgmJCvGpk90shDiMSXBelS7rv Q32QgObxgZZhs23NeppjC0gwJFrxqsLIJOSjag6AAcDn3tXyRg9FQmGT40a0WupF rNM85cwZf7oQcmrs0w187IxsZ30S2AS1C1Wt74Z8GQFd8w== -----END CERTIFICATE-----Generated at Sun Aug 24 09:44:46 2025 by rpki-client