$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LILIANG/r5OXScvPH8ud-AOrjid-bloF_zE.roa File: r5OXScvPH8ud-AOrjid-bloF_zE.roa (raw, json) Hash identifier: Bbw9Q4SQe5KIf/HrvNbtFrlbhFNDv5A9H7fdKZAWNHA= Subject key identifier: AF:93:97:49:CB:CF:1F:CB:9D:F8:03:AB:8E:27:7E:6E:5A:05:FF:31 Certificate issuer: /CN=FBE0E2FD417A37B1B56BB37DA16834229A399256 Certificate serial: 025C Authority key identifier: FB:E0:E2:FD:41:7A:37:B1:B5:6B:B3:7D:A1:68:34:22:9A:39:92:56 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/--Di_UF6N7G1a7N9oWg0Ipo5klY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LILIANG/r5OXScvPH8ud-AOrjid-bloF_zE.roa Signing time: Fri 22 Aug 2025 09:01:07 +0000 ROA not before: Fri 22 Aug 2025 09:01:07 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131642 IP address blocks: 103.69.52.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LILIANG/--Di_UF6N7G1a7N9oWg0Ipo5klY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LILIANG/--Di_UF6N7G1a7N9oWg0Ipo5klY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/--Di_UF6N7G1a7N9oWg0Ipo5klY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 604 (0x25c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FBE0E2FD417A37B1B56BB37DA16834229A399256 Validity Not Before: Aug 22 09:01:07 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=AF939749CBCF1FCB9DF803AB8E277E6E5A05FF31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:9d:6e:75:4d:22:4f:ed:7f:8c:8a:1e:19:9c: 6d:8c:01:ee:ec:2c:b9:1b:92:ec:4e:21:f0:9d:31: d3:5c:c2:8c:d8:5a:95:41:e4:c7:9d:87:24:70:aa: 91:b5:19:ff:9a:8b:36:7b:40:51:e4:2c:93:ee:a7: a6:6f:62:dc:c0:81:c7:8a:64:d2:dd:14:20:ca:2d: be:a2:9a:f3:0e:15:13:01:61:06:8d:21:c7:aa:60: e1:77:ae:a1:59:b3:0d:8f:1b:b6:e6:e3:37:4f:c7: 83:9d:85:dc:36:d8:c6:2f:39:7f:d7:de:91:2b:f0: d6:96:21:26:9b:40:5c:50:c6:0a:b6:39:2a:68:e4: 47:c5:43:d0:d9:ad:18:bc:84:c9:7d:40:09:6d:73: 70:21:0b:0f:fa:db:c6:2d:9c:23:46:d8:fb:52:6f: 7a:9c:c3:9e:20:54:12:1e:74:01:23:74:47:f7:dc: ab:a5:c5:49:7a:f2:d8:36:7d:20:e3:bc:04:4d:d5: 0d:5b:5c:a5:ba:a3:cd:12:74:88:da:12:aa:d4:86: 06:1e:d0:e5:e3:42:13:dd:28:b9:d1:66:1b:b6:fe: 1f:ef:ae:43:53:b9:02:95:2d:d0:31:3a:d2:57:09: f0:19:19:be:ee:e8:97:ed:99:6e:28:1b:40:30:09: 41:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:93:97:49:CB:CF:1F:CB:9D:F8:03:AB:8E:27:7E:6E:5A:05:FF:31 X509v3 Authority Key Identifier: keyid:FB:E0:E2:FD:41:7A:37:B1:B5:6B:B3:7D:A1:68:34:22:9A:39:92:56 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LILIANG/--Di_UF6N7G1a7N9oWg0Ipo5klY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/--Di_UF6N7G1a7N9oWg0Ipo5klY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LILIANG/r5OXScvPH8ud-AOrjid-bloF_zE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.69.52.0/23 Signature Algorithm: sha256WithRSAEncryption ab:08:fa:e2:b0:65:a7:22:27:ad:ce:f4:f3:5c:6b:6e:ea:69: c6:55:1a:74:31:04:af:bf:ed:aa:d5:8d:b1:0f:16:69:94:65: b7:dd:b8:8f:ef:83:62:14:7d:d9:7e:ac:0e:90:ed:39:8c:b0: 96:20:8d:dc:9a:a4:56:fc:d7:3e:91:6f:51:b8:8c:2a:58:af: 9a:5f:31:e2:6e:ce:d6:0e:93:05:1a:28:05:a4:bb:2a:93:8c: 3a:b5:82:90:9d:ec:70:58:a5:5b:e8:42:46:45:be:eb:a3:5a: 01:dd:91:8d:b6:91:50:fa:0c:ce:6d:ec:a3:ae:18:57:b4:00: e4:01:a6:c8:02:bd:cd:9d:64:43:04:bd:31:78:05:48:04:f5: 5b:a9:14:ca:cb:fa:45:cf:16:e9:b8:b6:0b:93:e6:33:81:e8: 94:92:03:c7:cb:17:3f:fc:b3:3f:6d:20:b8:c2:e0:50:42:8f: 84:13:40:c4:38:23:ee:65:ff:44:1c:f5:b2:2e:63:bf:c7:5c: 50:de:1a:cd:a2:23:ce:3c:21:f9:d5:4c:09:6c:0c:1a:3b:f7: c8:eb:07:21:bb:e4:2c:0e:3c:49:80:a5:7d:2a:32:27:1d:38: d0:b1:0b:72:c1:2d:2e:c1:8e:55:46:ab:2a:dd:a1:11:59:f1: 57:34:6f:bc -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICAlwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkJF MEUyRkQ0MTdBMzdCMUI1NkJCMzdEQTE2ODM0MjI5QTM5OTI1NjAeFw0yNTA4MjIw OTAxMDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEFGOTM5NzQ5Q0JDRjFG Q0I5REY4MDNBQjhFMjc3RTZFNUEwNUZGMzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOnW51TSJP7X+Mih4ZnG2MAe7sLLkbkuxOIfCdMdNcwozYWpVB 5MedhyRwqpG1Gf+aizZ7QFHkLJPup6ZvYtzAgceKZNLdFCDKLb6imvMOFRMBYQaN IceqYOF3rqFZsw2PG7bm4zdPx4Odhdw22MYvOX/X3pEr8NaWISabQFxQxgq2OSpo 5EfFQ9DZrRi8hMl9QAltc3AhCw/628YtnCNG2PtSb3qcw54gVBIedAEjdEf33Kul xUl68tg2fSDjvARN1Q1bXKW6o80SdIjaEqrUhgYe0OXjQhPdKLnRZhu2/h/vrkNT uQKVLdAxOtJXCfAZGb7u6JftmW4oG0AwCUFlAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUr5OXScvPH8ud+AOrjid+bloF/zEwHwYDVR0jBBgwFoAU++Di/UF6N7G1a7N9 oWg0Ipo5klYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTElMSUFO Ry8tLURpX1VGNk43RzFhN045b1dnMElwbzVrbFkuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBLy0tRGlfVUY2TjdHMWE3TjlvV2cwSXBvNWtsWS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0xJTElBTkcvcjVPWFNjdlBIOHVkLUFP cmppZC1ibG9GX3pFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AWdFNDANBgkqhkiG9w0BAQsFAAOCAQEAqwj64rBlpyInrc7081xrbuppxlUadDEE r7/tqtWNsQ8WaZRlt924j++DYhR92X6sDpDtOYywliCN3JqkVvzXPpFvUbiMKliv ml8x4m7O1g6TBRooBaS7KpOMOrWCkJ3scFilW+hCRkW+66NaAd2RjbaRUPoMzm3s o64YV7QA5AGmyAK9zZ1kQwS9MXgFSAT1W6kUysv6Rc8W6bi2C5PmM4HolJIDx8sX P/yzP20guMLgUEKPhBNAxDgj7mX/RBz1si5jv8dcUN4azaIjzjwh+dVMCWwMGjv3 yOsHIbvkLA48SYClfSoyJx040LELcsEtLsGOVUarKt2hEVnxVzRvvA== -----END CERTIFICATE-----Generated at Sun Aug 24 11:44:01 2025 by rpki-client