$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/J1Kkf5M-Pk2qWrt-8ayVZXulJF0.roa File: J1Kkf5M-Pk2qWrt-8ayVZXulJF0.roa (raw, json) Hash identifier: DKY0Q3gg3AlMHdmLc5Jl5+Ubod6LpzjwBfR3WohFirk= Subject key identifier: 27:52:A4:7F:93:3E:3E:4D:AA:5A:BB:7E:F1:AC:95:65:7B:A5:24:5D Certificate issuer: /CN=602CBCE32DD76D0BB39F5A706324248869119435 Certificate serial: 0D83 Authority key identifier: 60:2C:BC:E3:2D:D7:6D:0B:B3:9F:5A:70:63:24:24:88:69:11:94:35 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YCy84y3XbQuzn1pwYyQkiGkRlDU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/J1Kkf5M-Pk2qWrt-8ayVZXulJF0.roa Signing time: Fri 22 Aug 2025 08:43:53 +0000 ROA not before: Fri 22 Aug 2025 08:43:53 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131587 IP address blocks: 103.228.216.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/YCy84y3XbQuzn1pwYyQkiGkRlDU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/YCy84y3XbQuzn1pwYyQkiGkRlDU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/YCy84y3XbQuzn1pwYyQkiGkRlDU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3459 (0xd83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=602CBCE32DD76D0BB39F5A706324248869119435 Validity Not Before: Aug 22 08:43:53 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2752A47F933E3E4DAA5ABB7EF1AC95657BA5245D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:ba:28:16:bf:8c:7e:43:02:0d:a1:5c:ad:3a: 43:a7:bc:ea:e1:d3:82:97:69:86:18:07:a8:8e:a7: 31:a5:f7:f3:27:7e:4b:55:73:b6:21:66:6b:73:46: 87:bf:56:7a:ec:e7:a2:82:7f:77:82:04:22:fb:07: 7f:66:2a:36:83:0a:fa:5b:f2:43:73:f1:43:b9:1b: 3d:fa:98:0c:f2:a8:d5:66:ba:80:89:35:f8:09:28: c5:4b:03:6f:9c:45:30:e4:0e:b9:36:e5:8e:a2:75: 01:da:48:b0:16:55:26:e9:4d:02:6e:4e:ef:6c:53: f6:9f:20:24:9b:5c:27:28:72:4c:1e:aa:70:26:57: d1:8a:aa:58:13:2d:dd:cf:1d:a6:39:c5:3b:28:9a: 1e:a2:ac:4c:36:09:07:c7:23:76:b1:93:0d:8d:b2: f5:16:10:c6:e0:d8:4f:21:44:af:3c:38:8a:e8:06: 1d:b0:f9:69:99:d7:a1:4f:74:cc:dc:a7:32:00:d3: b7:ba:af:88:5f:24:99:14:48:f8:b5:a5:5d:2a:95: 96:d5:79:ea:fb:aa:b1:60:f7:66:9b:78:86:ee:2a: 4f:25:e3:0a:d3:f3:96:b3:89:8a:ad:45:a3:e8:ce: f4:49:26:04:83:6a:a5:25:b7:e3:e3:ba:20:32:91: 0f:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:52:A4:7F:93:3E:3E:4D:AA:5A:BB:7E:F1:AC:95:65:7B:A5:24:5D X509v3 Authority Key Identifier: keyid:60:2C:BC:E3:2D:D7:6D:0B:B3:9F:5A:70:63:24:24:88:69:11:94:35 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/YCy84y3XbQuzn1pwYyQkiGkRlDU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YCy84y3XbQuzn1pwYyQkiGkRlDU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/J1Kkf5M-Pk2qWrt-8ayVZXulJF0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.228.216.0/22 Signature Algorithm: sha256WithRSAEncryption 18:a2:d2:62:15:59:39:c4:fc:7e:75:e4:c2:fc:a6:a8:fc:ef: 34:f4:ba:a5:49:f3:50:39:a8:28:cc:b7:f5:2c:f4:a3:78:fc: 25:21:fd:6f:c4:0b:43:dd:ad:ae:8f:48:43:05:3c:07:f8:8f: e4:2d:0e:7c:96:0f:fc:20:ae:93:d4:fd:3f:68:f5:b3:d5:bc: 70:b9:08:02:64:cd:ea:f8:85:36:02:1d:98:78:96:95:05:b8: 87:16:c1:9c:08:70:2a:cc:f6:b1:4a:6d:12:00:65:b7:23:92: 44:ca:a1:aa:a8:0a:96:fe:ac:64:f0:66:ab:c6:92:89:ac:5a: 75:b6:11:b3:89:fc:d3:ec:8d:aa:51:b4:2b:ec:40:a2:ae:6d: af:2d:00:c2:41:ea:18:01:aa:24:88:0a:8e:83:02:d3:37:b6: 44:d6:3a:32:a3:b3:90:c9:4b:17:9c:e0:09:07:0a:7e:d6:1a: 5d:89:1d:6e:53:12:52:df:fd:c6:d3:53:33:68:d4:b2:46:f2: 71:f0:cf:3a:44:72:0b:b7:26:17:ba:42:6f:26:f8:12:f3:59: fc:95:82:55:d4:55:74:38:26:4e:d7:93:01:4d:5d:c8:f1:c4: e6:e3:26:8c:79:d3:0a:0a:9f:f3:4b:73:06:d8:aa:02:e6:02: 1e:2a:a5:83 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDYMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjAy Q0JDRTMyREQ3NkQwQkIzOUY1QTcwNjMyNDI0ODg2OTExOTQzNTAeFw0yNTA4MjIw ODQzNTNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDI3NTJBNDdGOTMzRTNF NERBQTVBQkI3RUYxQUM5NTY1N0JBNTI0NUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDsuigWv4x+QwINoVytOkOnvOrh04KXaYYYB6iOpzGl9/MnfktV c7YhZmtzRoe/Vnrs56KCf3eCBCL7B39mKjaDCvpb8kNz8UO5Gz36mAzyqNVmuoCJ NfgJKMVLA2+cRTDkDrk25Y6idQHaSLAWVSbpTQJuTu9sU/afICSbXCcockweqnAm V9GKqlgTLd3PHaY5xTsomh6irEw2CQfHI3axkw2NsvUWEMbg2E8hRK88OIroBh2w +WmZ16FPdMzcpzIA07e6r4hfJJkUSPi1pV0qlZbVeer7qrFg92abeIbuKk8l4wrT 85aziYqtRaPozvRJJgSDaqUlt+PjuiAykQ8/AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUJ1Kkf5M+Pk2qWrt+8ayVZXulJF0wHwYDVR0jBBgwFoAUYCy84y3XbQuzn1pw YyQkiGkRlDUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUVHQUlD QkMvWUN5ODR5M1hiUXV6bjFwd1l5UWtpR2tSbERVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9ZQ3k4NHkzWGJRdXpuMXB3WXlRa2lHa1JsRFUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9NRUdBSUNCQy9KMUtrZjVNLVBrMnFX cnQtOGF5VlpYdWxKRjAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCZ+TYMA0GCSqGSIb3DQEBCwUAA4IBAQAYotJiFVk5xPx+deTC/Kao/O809Lql SfNQOagozLf1LPSjePwlIf1vxAtD3a2uj0hDBTwH+I/kLQ58lg/8IK6T1P0/aPWz 1bxwuQgCZM3q+IU2Ah2YeJaVBbiHFsGcCHAqzPaxSm0SAGW3I5JEyqGqqAqW/qxk 8GarxpKJrFp1thGzifzT7I2qUbQr7ECirm2vLQDCQeoYAaokiAqOgwLTN7ZE1joy o7OQyUsXnOAJBwp+1hpdiR1uUxJS3/3G01MzaNSyRvJx8M86RHILtyYXukJvJvgS 81n8lYJV1FV0OCZO15MBTV3I8cTm4yaMedMKCp/zS3MG2KoC5gIeKqWD -----END CERTIFICATE-----Generated at Sun Aug 24 07:42:08 2025 by rpki-client