$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/JQcce5o_xVRKp_GPqeu8dqDKVO8.roa File: JQcce5o_xVRKp_GPqeu8dqDKVO8.roa (raw, json) Hash identifier: KxxHI/9wdteNmdbJX1B9yihyolKLm0Rw9xw+g1z3S1I= Subject key identifier: 25:07:1C:7B:9A:3F:C5:54:4A:A7:F1:8F:A9:EB:BC:76:A0:CA:54:EF Certificate issuer: /CN=A18EB377DD0318AE465D8F3F7D6E0AD0A4E9ED1E Certificate serial: 0FD7 Authority key identifier: A1:8E:B3:77:DD:03:18:AE:46:5D:8F:3F:7D:6E:0A:D0:A4:E9:ED:1E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/JQcce5o_xVRKp_GPqeu8dqDKVO8.roa Signing time: Fri 22 Aug 2025 08:56:16 +0000 ROA not before: Fri 22 Aug 2025 08:56:16 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 208932 IP address blocks: 103.135.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4055 (0xfd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A18EB377DD0318AE465D8F3F7D6E0AD0A4E9ED1E Validity Not Before: Aug 22 08:56:16 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=25071C7B9A3FC5544AA7F18FA9EBBC76A0CA54EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:20:9a:17:1e:20:9a:57:fe:d0:37:46:df:59: 94:bf:4b:ad:42:54:80:28:78:d1:b7:c7:3a:17:dd: bb:73:fc:c4:78:77:ef:bf:94:ef:57:ff:12:39:d2: fe:ee:b5:52:5c:dd:14:bb:cb:d4:5c:1e:7a:14:c1: 4b:21:7b:8e:f8:d5:df:96:8d:bd:2b:74:6d:42:f5: f1:90:da:2e:f3:02:df:6f:29:1f:f3:0e:7f:bf:28: ea:da:3f:59:4a:89:79:c8:fe:c0:8b:c6:d4:f9:5c: 8c:e5:5c:0f:48:75:91:b2:cc:48:45:37:7a:09:c1: 88:f6:f1:f5:33:79:e2:59:52:0e:97:eb:cd:d3:99: e9:cf:d6:6e:63:84:f5:af:83:2d:06:d8:77:a4:0a: 95:2d:7b:8f:5b:a3:7a:31:1c:8f:b7:49:75:19:03: c7:d4:6c:2f:c6:aa:9a:2d:8a:b3:3d:4e:19:d4:e4: f0:2c:ac:d3:23:bc:cd:c2:ab:58:3c:3e:c8:f9:f1: 46:e5:d0:47:2b:81:11:63:b8:6f:19:11:8e:86:77: a0:94:c0:65:1f:84:dd:56:4a:98:b9:de:f1:66:59: 74:6c:86:cc:0f:b2:06:1b:a9:ac:3b:66:a3:c1:e0: 97:db:06:9b:46:07:a3:7c:f3:fc:e5:c6:49:1c:9e: c2:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:07:1C:7B:9A:3F:C5:54:4A:A7:F1:8F:A9:EB:BC:76:A0:CA:54:EF X509v3 Authority Key Identifier: keyid:A1:8E:B3:77:DD:03:18:AE:46:5D:8F:3F:7D:6E:0A:D0:A4:E9:ED:1E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/JQcce5o_xVRKp_GPqeu8dqDKVO8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.135.22.0/24 Signature Algorithm: sha256WithRSAEncryption 28:a3:e3:75:7a:06:77:7c:12:c1:08:6e:d5:8b:51:a8:fb:23: aa:53:76:b4:fd:e0:55:41:4f:b5:3a:f3:0e:a2:c3:e9:63:5e: b3:b5:d3:5e:88:48:78:45:9c:57:9d:55:29:31:05:5a:6b:30: 2e:e6:60:8c:8f:27:52:54:3f:b3:cd:e3:28:0a:28:8c:4e:eb: 84:76:e7:3e:cd:f6:16:83:7f:e9:82:01:bd:01:68:0f:06:d7: f8:ed:3e:2e:6e:4a:0c:9e:6f:90:4e:29:c3:b0:36:52:4f:8a: 63:94:9b:d9:ca:ed:dd:ee:fe:67:9a:37:92:e9:d6:7a:b8:2d: 6b:23:7d:24:ff:a0:c6:ed:df:0d:29:57:b1:53:fc:65:6a:46: 2a:38:fe:fd:5e:e2:17:41:ed:ab:ec:37:0c:79:00:aa:d8:f8: 86:6d:a6:00:47:a1:c4:da:38:46:dd:2a:0a:65:12:53:89:56: ff:bc:60:ff:fe:f9:46:61:64:ab:d0:23:45:48:06:b7:28:d8: c8:93:11:b6:bc:4d:97:2c:9f:bd:e4:91:d5:ae:72:24:72:4b: 57:6b:72:a2:13:66:ec:82:c9:7f:3d:50:fa:28:ea:a1:dc:fd: 09:28:1a:e1:4d:c0:6e:e2:e8:c7:47:82:2b:da:3d:b6:e7:48: b4:9d:c2:f5 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICD9cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTE4 RUIzNzdERDAzMThBRTQ2NUQ4RjNGN0Q2RTBBRDBBNEU5RUQxRTAeFw0yNTA4MjIw ODU2MTZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDI1MDcxQzdCOUEzRkM1 NTQ0QUE3RjE4RkE5RUJCQzc2QTBDQTU0RUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCsIJoXHiCaV/7QN0bfWZS/S61CVIAoeNG3xzoX3btz/MR4d++/ lO9X/xI50v7utVJc3RS7y9RcHnoUwUshe4741d+Wjb0rdG1C9fGQ2i7zAt9vKR/z Dn+/KOraP1lKiXnI/sCLxtT5XIzlXA9IdZGyzEhFN3oJwYj28fUzeeJZUg6X683T menP1m5jhPWvgy0G2HekCpUte49bo3oxHI+3SXUZA8fUbC/GqpotirM9ThnU5PAs rNMjvM3Cq1g8Psj58Ubl0EcrgRFjuG8ZEY6Gd6CUwGUfhN1WSpi53vFmWXRshswP sgYbqaw7ZqPB4JfbBptGB6N88/zlxkkcnsIXAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUJQcce5o/xVRKp/GPqeu8dqDKVO8wHwYDVR0jBBgwFoAUoY6zd90DGK5GXY8/ fW4K0KTp7R4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR0pJ TkdFTi9vWTZ6ZDkwREdLNUdYWThfZlc0SzBLVHA3UjQuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL29ZNnpkOTBER0s1R1hZOF9mVzRLMEtUcDdSNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL01JTkdKSU5HRU4vSlFjY2U1b194 VlJLcF9HUHFldThkcURLVk84LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAGeHFjANBgkqhkiG9w0BAQsFAAOCAQEAKKPjdXoGd3wSwQhu1YtRqPsj qlN2tP3gVUFPtTrzDqLD6WNes7XTXohIeEWcV51VKTEFWmswLuZgjI8nUlQ/s83j KAoojE7rhHbnPs32FoN/6YIBvQFoDwbX+O0+Lm5KDJ5vkE4pw7A2Uk+KY5Sb2crt 3e7+Z5o3kunWergtayN9JP+gxu3fDSlXsVP8ZWpGKjj+/V7iF0Htq+w3DHkAqtj4 hm2mAEehxNo4Rt0qCmUSU4lW/7xg//75RmFkq9AjRUgGtyjYyJMRtrxNlyyfveSR 1a5yJHJLV2tyohNm7ILJfz1Q+ijqodz9CSga4U3AbuLox0eCK9o9tudItJ3C9Q== -----END CERTIFICATE-----Generated at Sun Aug 24 05:06:48 2025 by rpki-client