$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGDING/a8lA-Ozxx4ZBHxNYTd6f8QvhLQ8.roa File: a8lA-Ozxx4ZBHxNYTd6f8QvhLQ8.roa (raw, json) Hash identifier: 06lITZoPTWHk6OfRzVZvP/cPDHiPDIQ9wbImr2d2nb8= Subject key identifier: 6B:C9:40:F8:EC:F1:C7:86:41:1F:13:58:4D:DE:9F:F1:0B:E1:2D:0F Certificate issuer: /CN=6F74C3DD6D64294B112072CF1CF667142875A45F Certificate serial: 03 Authority key identifier: 6F:74:C3:DD:6D:64:29:4B:11:20:72:CF:1C:F6:67:14:28:75:A4:5F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/b3TD3W1kKUsRIHLPHPZnFCh1pF8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGDING/a8lA-Ozxx4ZBHxNYTd6f8QvhLQ8.roa Signing time: Tue 01 Jul 2025 06:16:56 +0000 ROA not before: Tue 01 Jul 2025 06:16:56 +0000 ROA not after: Wed 01 Jul 2026 00:43:49 +0000 asID: 134823 IP address blocks: 165.101.86.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGDING/b3TD3W1kKUsRIHLPHPZnFCh1pF8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGDING/b3TD3W1kKUsRIHLPHPZnFCh1pF8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/b3TD3W1kKUsRIHLPHPZnFCh1pF8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 09:03:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6F74C3DD6D64294B112072CF1CF667142875A45F Validity Not Before: Jul 1 06:16:56 2025 GMT Not After : Jul 1 00:43:49 2026 GMT Subject: CN=6BC940F8ECF1C786411F13584DDE9FF10BE12D0F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:2e:42:c2:b0:cb:10:5f:c9:17:94:d7:59:3b: 43:2f:cf:3a:4b:59:11:2b:50:f4:d1:38:37:b0:4a: 60:5c:59:06:ae:e9:65:7f:f7:bc:0e:fc:a5:81:e6: c2:a7:79:0e:eb:d1:88:5c:b3:1f:20:bb:91:7e:a9: c7:1e:76:dc:98:53:5d:38:26:8b:2e:33:1e:6f:3e: ef:e7:f3:35:ed:b7:85:d9:16:38:d3:a1:19:2f:74: f9:a4:2e:95:85:a8:c3:4a:2f:6b:34:c6:e7:ef:09: 40:84:8f:9e:d1:10:53:34:0c:d5:68:34:e1:7c:ca: 1a:52:3d:45:cf:88:dd:9d:07:35:3d:7e:8a:3a:e5: 20:bb:c7:f9:37:3f:8a:ac:f7:df:bd:96:cc:a2:ad: 2b:d8:25:68:f9:95:8c:b4:20:8a:dc:fa:25:b1:21: e9:73:a6:af:94:c0:8e:80:09:37:62:4a:f3:27:eb: 1b:10:8f:0c:ab:6d:ed:c9:c2:61:63:d5:f2:8c:ec: 31:59:69:cf:b3:61:6e:42:ce:87:dd:f9:88:da:b6: 24:2c:5d:24:92:58:27:2a:ec:ba:3d:75:b2:da:69: 99:28:64:ee:12:ff:ec:65:f2:80:90:e9:f6:5a:4e: 30:5b:ff:bc:01:c9:88:77:f4:35:e8:82:70:43:83: d6:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:C9:40:F8:EC:F1:C7:86:41:1F:13:58:4D:DE:9F:F1:0B:E1:2D:0F X509v3 Authority Key Identifier: keyid:6F:74:C3:DD:6D:64:29:4B:11:20:72:CF:1C:F6:67:14:28:75:A4:5F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGDING/b3TD3W1kKUsRIHLPHPZnFCh1pF8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/b3TD3W1kKUsRIHLPHPZnFCh1pF8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGDING/a8lA-Ozxx4ZBHxNYTd6f8QvhLQ8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 165.101.86.0/23 Signature Algorithm: sha256WithRSAEncryption a9:56:79:57:19:c8:f5:92:9d:ba:f5:57:b4:07:e8:07:0e:46: 48:e3:55:fe:fb:50:ff:5d:22:17:c8:05:f8:50:b1:75:4c:36: 2e:3a:68:76:6d:34:9a:6f:ec:ce:d9:f8:f4:45:de:2a:e4:14: 90:88:47:38:3d:79:61:e8:8d:37:d9:27:8f:f5:9c:e1:6a:03: e1:71:52:b2:bc:19:20:d8:75:4c:0b:ba:95:34:12:5a:62:f8: 83:fb:03:d7:36:ee:7e:d9:23:c2:3d:3d:3d:fa:a6:57:2c:16: 4e:11:dc:28:06:b6:35:29:08:42:c5:ec:be:3a:d2:73:00:76: 88:44:25:87:11:af:75:71:25:db:15:fe:c8:d8:99:0f:b9:89: ce:8c:33:20:b5:21:a0:fb:38:28:db:8d:68:37:84:db:a2:7c: 37:08:6e:ec:fe:6b:fd:32:3a:26:39:7f:2b:41:76:df:5d:20: fb:c7:89:3f:61:aa:0b:b7:5c:1c:80:d7:6a:e6:99:b2:a0:59: d6:87:bb:87:31:20:00:7b:09:78:1c:4c:28:a3:cc:6f:f3:9e: 99:59:bb:13:24:e4:fb:79:8b:23:c3:7f:0d:0b:83:58:61:55: 28:76:67:72:0b:a1:bb:be:87:b3:55:68:b3:2f:cc:c0:60:2f: a4:d2:71:3a -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgIBAzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2Rjc0 QzNERDZENjQyOTRCMTEyMDcyQ0YxQ0Y2NjcxNDI4NzVBNDVGMB4XDTI1MDcwMTA2 MTY1NloXDTI2MDcwMTAwNDM0OVowMzExMC8GA1UEAxMoNkJDOTQwRjhFQ0YxQzc4 NjQxMUYxMzU4NERERTlGRjEwQkUxMkQwRjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALsuQsKwyxBfyReU11k7Qy/POktZEStQ9NE4N7BKYFxZBq7pZX/3 vA78pYHmwqd5DuvRiFyzHyC7kX6pxx523JhTXTgmiy4zHm8+7+fzNe23hdkWONOh GS90+aQulYWow0ovazTG5+8JQISPntEQUzQM1Wg04XzKGlI9Rc+I3Z0HNT1+ijrl ILvH+Tc/iqz3372WzKKtK9glaPmVjLQgitz6JbEh6XOmr5TAjoAJN2JK8yfrGxCP DKtt7cnCYWPV8ozsMVlpz7NhbkLOh935iNq2JCxdJJJYJyrsuj11stppmShk7hL/ 7GXygJDp9lpOMFv/vAHJiHf0NeiCcEOD1nkCAwEAAaOCAfIwggHuMB0GA1UdDgQW BBRryUD47PHHhkEfE1hN3p/xC+EtDzAfBgNVHSMEGDAWgBRvdMPdbWQpSxEgcs8c 9mcUKHWkXzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF4GA1UdHwRXMFUwU6BR oE+GTXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9NSU5HRElO Ry9iM1REM1cxa0tVc1JJSExQSFBabkZDaDFwRjguY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL2IzVEQzVzFrS1VzUklITFBIUFpuRkNoMXBGOC5jZXIwDgYDVR0PAQH/BAQD AgeAMIGeBggrBgEFBQcBCwSBkTCBjjBZBggrBgEFBQcwC4ZNcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL01JTkdESU5HL2E4bEEtT3p4eDRaQkh4 TllUZDZmOFF2aExROC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25p Yy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGlZVYwDQYJKoZIhvcNAQELBQADggEBAKlWeVcZyPWSnbr1V7QH6AcORkjjVf77 UP9dIhfIBfhQsXVMNi46aHZtNJpv7M7Z+PRF3irkFJCIRzg9eWHojTfZJ4/1nOFq A+FxUrK8GSDYdUwLupU0Elpi+IP7A9c27n7ZI8I9PT36plcsFk4R3CgGtjUpCELF 7L460nMAdohEJYcRr3VxJdsV/sjYmQ+5ic6MMyC1IaD7OCjbjWg3hNuifDcIbuz+ a/0yOiY5fytBdt9dIPvHiT9hqgu3XByA12rmmbKgWdaHu4cxIAB7CXgcTCijzG/z nplZuxMk5Pt5iyPDfw0Lg1hhVSh2Z3ILobu+h7NVaLMvzMBgL6TScTo= -----END CERTIFICATE-----Generated at Sat Jul 5 06:41:50 2025 by rpki-client