$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/J5fNdMEhy7gHZ2JBspxnG1hNo2E.roa File: J5fNdMEhy7gHZ2JBspxnG1hNo2E.roa (raw, json) Hash identifier: MUkTBc/4eIEaSmSWvFMQcd0p7JlUd0tJIJJZxfD0YMQ= Subject key identifier: 27:97:CD:74:C1:21:CB:B8:07:67:62:41:B2:9C:67:1B:58:4D:A3:61 Certificate issuer: /CN=A18EB377DD0318AE465D8F3F7D6E0AD0A4E9ED1E Certificate serial: 0FDE Authority key identifier: A1:8E:B3:77:DD:03:18:AE:46:5D:8F:3F:7D:6E:0A:D0:A4:E9:ED:1E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/J5fNdMEhy7gHZ2JBspxnG1hNo2E.roa Signing time: Fri 22 Aug 2025 08:56:18 +0000 ROA not before: Fri 22 Aug 2025 08:56:18 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131633 IP address blocks: 103.135.20.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4062 (0xfde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A18EB377DD0318AE465D8F3F7D6E0AD0A4E9ED1E Validity Not Before: Aug 22 08:56:18 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2797CD74C121CBB807676241B29C671B584DA361 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f9:00:97:08:78:4a:f7:4e:70:3e:ff:42:3f: 50:f6:92:c0:25:1b:fa:00:10:8f:19:e8:f8:67:dc: 9b:d0:bb:67:ef:70:3f:18:4d:a6:13:f0:26:e9:01: 38:eb:cc:8d:15:b2:6e:d1:b6:cf:f6:bc:ce:11:e8: ba:c1:df:98:0b:e6:7e:94:d9:64:7a:d4:51:94:5f: 42:0c:c8:a4:02:a7:27:c9:ef:97:28:b9:7a:f7:02: 42:ee:51:60:c5:c4:6f:f3:64:c8:79:3d:6d:d7:36: 60:15:f1:ad:b9:91:e9:39:e5:fd:08:ec:b0:81:43: 43:ef:00:2d:64:0d:58:c6:35:45:1a:b7:9f:6f:dd: d2:10:10:01:52:42:53:c3:74:c6:5f:d4:87:09:25: 41:2d:f5:27:f2:7f:d8:b4:ae:b3:11:0c:cd:8f:05: e4:c4:76:c1:8b:12:bb:2f:d8:10:f7:de:3f:5d:af: 15:fc:1a:08:27:22:42:c3:0b:64:c0:83:7b:3b:49: 73:43:9d:20:80:4b:7c:32:b0:cb:2a:a8:2e:4c:81: 1d:0d:c6:b5:a4:d5:e3:83:e9:6a:56:80:83:c9:3c: 23:7f:27:13:b8:70:bf:d3:22:4a:f2:3f:67:3c:fe: cc:7a:9d:fb:f9:97:00:5f:e6:7f:c7:85:5a:eb:1d: d8:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:97:CD:74:C1:21:CB:B8:07:67:62:41:B2:9C:67:1B:58:4D:A3:61 X509v3 Authority Key Identifier: keyid:A1:8E:B3:77:DD:03:18:AE:46:5D:8F:3F:7D:6E:0A:D0:A4:E9:ED:1E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/J5fNdMEhy7gHZ2JBspxnG1hNo2E.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.135.20.0/22 Signature Algorithm: sha256WithRSAEncryption 6c:98:8c:24:ca:f7:fc:a5:06:7a:1e:c6:e2:87:83:e0:78:32: f1:eb:71:75:5a:1c:b9:3c:33:01:e8:58:3a:82:f9:36:f0:65: 01:22:ee:ba:e1:19:f7:f7:73:7f:8a:2f:5a:18:f7:be:8a:f3: 9d:c6:09:ee:76:7f:dd:18:03:cb:e3:70:16:d6:b3:68:a5:0f: 93:6d:1e:93:6f:70:36:26:7e:ff:6b:b3:a0:ea:7e:2c:cd:c3: b7:29:8c:55:ff:6b:18:63:35:fc:10:ab:e1:03:8e:30:b1:69: 35:55:7e:cf:b0:31:e2:55:2d:83:81:87:5b:45:69:39:c3:3c: c6:62:b7:ef:aa:2c:b7:88:a5:42:ac:f1:1b:77:66:dc:f8:9c: 7b:a8:09:15:e4:3e:c0:3f:c1:dc:f4:98:6d:3b:5f:5e:0e:8e: dd:e0:99:f4:1a:b0:d3:13:ec:13:b6:6a:1a:57:11:ba:b5:56: 15:d8:ab:22:36:70:f4:a6:2b:9f:c6:d7:16:54:cb:49:79:b9: fd:73:36:ce:09:50:91:73:3b:1a:63:ec:67:3d:d7:98:63:b1: eb:27:78:0d:5f:84:2a:22:d1:48:c6:62:29:bb:e8:fa:a1:6c: cf:e8:2d:e6:6d:b5:c1:c7:d3:91:fe:a6:18:38:9b:09:da:e3: 65:56:a6:ed -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICD94wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTE4 RUIzNzdERDAzMThBRTQ2NUQ4RjNGN0Q2RTBBRDBBNEU5RUQxRTAeFw0yNTA4MjIw ODU2MThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDI3OTdDRDc0QzEyMUNC QjgwNzY3NjI0MUIyOUM2NzFCNTg0REEzNjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/+QCXCHhK905wPv9CP1D2ksAlG/oAEI8Z6Phn3JvQu2fvcD8Y TaYT8CbpATjrzI0Vsm7Rts/2vM4R6LrB35gL5n6U2WR61FGUX0IMyKQCpyfJ75co uXr3AkLuUWDFxG/zZMh5PW3XNmAV8a25kek55f0I7LCBQ0PvAC1kDVjGNUUat59v 3dIQEAFSQlPDdMZf1IcJJUEt9Sfyf9i0rrMRDM2PBeTEdsGLErsv2BD33j9drxX8 GggnIkLDC2TAg3s7SXNDnSCAS3wysMsqqC5MgR0NxrWk1eOD6WpWgIPJPCN/JxO4 cL/TIkryP2c8/sx6nfv5lwBf5n/HhVrrHdjZAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUJ5fNdMEhy7gHZ2JBspxnG1hNo2EwHwYDVR0jBBgwFoAUoY6zd90DGK5GXY8/ fW4K0KTp7R4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR0pJ TkdFTi9vWTZ6ZDkwREdLNUdYWThfZlc0SzBLVHA3UjQuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL29ZNnpkOTBER0s1R1hZOF9mVzRLMEtUcDdSNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL01JTkdKSU5HRU4vSjVmTmRNRWh5 N2dIWjJKQnNweG5HMWhObzJFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAmeHFDANBgkqhkiG9w0BAQsFAAOCAQEAbJiMJMr3/KUGeh7G4oeD4Hgy 8etxdVocuTwzAehYOoL5NvBlASLuuuEZ9/dzf4ovWhj3vorzncYJ7nZ/3RgDy+Nw FtazaKUPk20ek29wNiZ+/2uzoOp+LM3DtymMVf9rGGM1/BCr4QOOMLFpNVV+z7Ax 4lUtg4GHW0VpOcM8xmK376ost4ilQqzxG3dm3Pice6gJFeQ+wD/B3PSYbTtfXg6O 3eCZ9Bqw0xPsE7ZqGlcRurVWFdirIjZw9KYrn8bXFlTLSXm5/XM2zglQkXM7GmPs Zz3XmGOx6yd4DV+EKiLRSMZiKbvo+qFsz+gt5m21wcfTkf6mGDibCdrjZVam7Q== -----END CERTIFICATE-----Generated at Sun Aug 24 05:08:40 2025 by rpki-client