$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/M2NIM/H03zGJR4JzrdpOBn8gEb3LyMmOY.roa File: H03zGJR4JzrdpOBn8gEb3LyMmOY.roa (raw, json) Hash identifier: J0PLlsyLM6MnFrPMtvhaey1DCBu3gjOSz45UTsZtaCI= Subject key identifier: 1F:4D:F3:18:94:78:27:3A:DD:A4:E0:67:F2:01:1B:DC:BC:8C:98:E6 Certificate issuer: /CN=07D3E73EC5EB3D704863889E221845B7695D409C Certificate serial: 01E4 Authority key identifier: 07:D3:E7:3E:C5:EB:3D:70:48:63:88:9E:22:18:45:B7:69:5D:40:9C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/B9PnPsXrPXBIY4ieIhhFt2ldQJw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/M2NIM/H03zGJR4JzrdpOBn8gEb3LyMmOY.roa Signing time: Fri 22 Aug 2025 08:44:09 +0000 ROA not before: Fri 22 Aug 2025 08:44:09 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 32595 IP address blocks: 157.20.134.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/M2NIM/B9PnPsXrPXBIY4ieIhhFt2ldQJw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/M2NIM/B9PnPsXrPXBIY4ieIhhFt2ldQJw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/B9PnPsXrPXBIY4ieIhhFt2ldQJw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 484 (0x1e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=07D3E73EC5EB3D704863889E221845B7695D409C Validity Not Before: Aug 22 08:44:09 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1F4DF3189478273ADDA4E067F2011BDCBC8C98E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:7c:23:48:4a:db:d8:f9:a3:89:12:f0:cd:89: aa:00:73:d0:7c:87:83:81:79:70:58:08:95:0c:62: 95:42:f4:66:ac:61:be:01:e7:d1:dc:31:db:0c:3d: b2:d0:4b:18:c3:43:86:f0:a5:b4:eb:31:fe:5d:ce: aa:2d:cd:fc:93:fb:e3:1b:ae:73:12:77:f2:56:14: 5b:4a:35:3c:80:af:71:aa:ad:b2:8a:14:6a:0a:fe: 3a:9a:0a:84:5e:8d:64:60:57:69:80:72:12:3a:ca: 33:d4:90:aa:65:d1:7f:60:2b:e2:15:32:c7:8e:d0: 03:d5:5d:40:c7:fa:95:db:8b:d4:bd:35:83:2a:f7: f5:0e:13:41:43:c5:07:10:5c:ae:3c:10:e1:1e:96: cd:48:4b:0f:a0:7b:05:72:ae:09:45:0f:df:27:cc: e7:c2:a1:04:f6:40:9f:5f:5b:d7:da:a2:11:67:00: b5:d9:80:2c:03:c5:29:b0:8b:03:ae:a2:76:89:b5: 75:27:d3:3e:fe:28:6b:7c:27:3a:2b:24:1e:3e:cc: e7:bf:fd:9a:51:ef:61:de:f2:bf:43:f1:9e:7f:12: 4b:82:80:34:5e:e0:d6:43:33:7a:e3:7a:e4:00:39: 92:3f:aa:95:7a:ea:f2:94:5c:da:ae:47:5a:1b:57: f5:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:4D:F3:18:94:78:27:3A:DD:A4:E0:67:F2:01:1B:DC:BC:8C:98:E6 X509v3 Authority Key Identifier: keyid:07:D3:E7:3E:C5:EB:3D:70:48:63:88:9E:22:18:45:B7:69:5D:40:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/M2NIM/B9PnPsXrPXBIY4ieIhhFt2ldQJw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/B9PnPsXrPXBIY4ieIhhFt2ldQJw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/M2NIM/H03zGJR4JzrdpOBn8gEb3LyMmOY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.134.0/23 Signature Algorithm: sha256WithRSAEncryption 08:55:b8:ae:14:40:15:e3:02:29:b1:d5:ac:19:fd:be:e0:80: 17:b9:64:b9:ce:24:9c:5c:ca:2f:c7:1c:8b:9b:cd:cd:0c:5d: b9:48:1a:35:99:36:e2:e9:7b:3e:32:b4:a8:da:67:94:b3:b6: 72:a9:93:f8:ad:45:ef:b3:3c:21:4d:66:78:6e:64:c0:66:14: df:3d:17:db:d8:20:ab:bf:1d:70:48:6b:ea:0b:21:f3:4b:7f: c9:ba:71:62:c8:ea:73:21:bd:22:d8:1b:de:e3:6b:48:29:20: 29:9a:03:16:3e:57:9e:2f:8f:87:b6:fb:d2:69:5e:08:d5:93: 50:b9:81:7e:08:06:74:72:1a:61:d9:38:a0:a5:63:ac:de:79: fc:d5:78:66:34:40:ea:7b:ad:1a:69:aa:50:ba:d0:d8:dc:ff: 5d:23:fd:de:95:23:2d:7a:82:36:2d:a2:b2:ef:73:8b:b1:22: 7f:a2:b6:1a:d6:97:4c:96:b1:30:13:40:1b:ac:80:3b:23:c8: cc:e4:23:b1:69:d6:69:92:92:ad:be:73:a5:eb:c8:a6:e9:c7: ac:5f:97:55:29:a7:bc:ea:5f:df:8c:29:77:1d:1c:e0:4f:b0: c6:d4:f6:48:f4:d4:f4:c7:c3:9a:ef:7c:c9:58:3c:ae:2b:5b: 2d:ca:2e:53 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICAeQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDdE M0U3M0VDNUVCM0Q3MDQ4NjM4ODlFMjIxODQ1Qjc2OTVENDA5QzAeFw0yNTA4MjIw ODQ0MDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDFGNERGMzE4OTQ3ODI3 M0FEREE0RTA2N0YyMDExQkRDQkM4Qzk4RTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXfCNIStvY+aOJEvDNiaoAc9B8h4OBeXBYCJUMYpVC9GasYb4B 59HcMdsMPbLQSxjDQ4bwpbTrMf5dzqotzfyT++MbrnMSd/JWFFtKNTyAr3GqrbKK FGoK/jqaCoRejWRgV2mAchI6yjPUkKpl0X9gK+IVMseO0APVXUDH+pXbi9S9NYMq 9/UOE0FDxQcQXK48EOEels1ISw+gewVyrglFD98nzOfCoQT2QJ9fW9faohFnALXZ gCwDxSmwiwOuonaJtXUn0z7+KGt8JzorJB4+zOe//ZpR72He8r9D8Z5/EkuCgDRe 4NZDM3rjeuQAOZI/qpV66vKUXNquR1obV/W1AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUH03zGJR4JzrdpOBn8gEb3LyMmOYwHwYDVR0jBBgwFoAUB9PnPsXrPXBIY4ie IhhFt2ldQJwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTTJOSU0v QjlQblBzWHJQWEJJWTRpZUloaEZ0MmxkUUp3LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9COVBuUHNYclBYQklZNGllSWhoRnQybGRRSncuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9NMk5JTS9IMDN6R0pSNEp6cmRwT0JuOGdF YjNMeU1tT1kucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnRSG MA0GCSqGSIb3DQEBCwUAA4IBAQAIVbiuFEAV4wIpsdWsGf2+4IAXuWS5ziScXMov xxyLm83NDF25SBo1mTbi6Xs+MrSo2meUs7ZyqZP4rUXvszwhTWZ4bmTAZhTfPRfb 2CCrvx1wSGvqCyHzS3/JunFiyOpzIb0i2Bve42tIKSApmgMWPleeL4+HtvvSaV4I 1ZNQuYF+CAZ0chph2TigpWOs3nn81XhmNEDqe60aaapQutDY3P9dI/3elSMteoI2 LaKy73OLsSJ/orYa1pdMlrEwE0AbrIA7I8jM5COxadZpkpKtvnOl68im6cesX5dV Kae86l/fjCl3HRzgT7DG1PZI9NT0x8Oa73zJWDyuK1styi5T -----END CERTIFICATE-----Generated at Sun Aug 24 05:32:16 2025 by rpki-client