$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/MWTOx1zPk-C90vuBRgn9P8nryok.roa File: MWTOx1zPk-C90vuBRgn9P8nryok.roa (raw, json) Hash identifier: HUbHvZZBmo10DW8MZxl3d6MDo54lA48f8BOUF9Fjg04= Subject key identifier: 31:64:CE:C7:5C:CF:93:E0:BD:D2:FB:81:46:09:FD:3F:C9:EB:CA:89 Certificate issuer: /CN=A18EB377DD0318AE465D8F3F7D6E0AD0A4E9ED1E Certificate serial: 0FDD Authority key identifier: A1:8E:B3:77:DD:03:18:AE:46:5D:8F:3F:7D:6E:0A:D0:A4:E9:ED:1E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/MWTOx1zPk-C90vuBRgn9P8nryok.roa Signing time: Fri 22 Aug 2025 08:56:18 +0000 ROA not before: Fri 22 Aug 2025 08:56:18 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 10103 IP address blocks: 103.135.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4061 (0xfdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A18EB377DD0318AE465D8F3F7D6E0AD0A4E9ED1E Validity Not Before: Aug 22 08:56:18 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=3164CEC75CCF93E0BDD2FB814609FD3FC9EBCA89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:fa:62:07:87:2d:e5:f8:4f:81:15:cb:00:91: d7:6c:5a:ee:b2:61:49:3c:67:54:37:c8:b7:bf:b2: 2e:68:8a:0a:d0:91:8f:3d:2d:2d:dc:3e:64:f4:9c: d0:bb:10:09:c4:a0:7b:6a:f8:4b:54:53:c8:14:56: 2f:19:9c:75:7d:63:3a:4e:f1:da:07:e0:8e:5e:da: 15:ee:a4:fa:88:44:e9:20:bf:53:17:8e:e1:5d:41: b7:53:11:b0:9a:34:ec:2b:a9:45:57:df:7b:47:87: 7c:57:34:aa:78:64:c8:f9:55:19:ac:c7:b9:cd:94: 10:ce:f3:9a:73:c9:36:1c:3d:85:4e:41:7b:1f:b8: cd:76:6f:84:65:59:56:2d:d8:cd:02:ee:47:32:94: fb:91:3a:14:f6:5a:6f:28:50:41:99:fd:ad:9e:af: 77:9b:2e:28:89:3d:05:c7:fc:53:1a:ff:75:eb:99: 98:d5:a7:03:85:a5:f5:b6:3a:57:ad:a2:68:f0:b9: 3c:c8:37:e6:81:2f:80:3b:cd:db:86:2c:6a:7e:92: 8b:dd:db:a6:1e:e6:10:58:c4:88:d6:ce:e3:f2:f4: e9:3f:24:a0:f9:3e:15:cf:e2:fb:b0:92:81:c2:b8: f3:3a:53:a3:15:8e:77:4b:2d:8f:e4:f3:e6:f7:a4: 11:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:64:CE:C7:5C:CF:93:E0:BD:D2:FB:81:46:09:FD:3F:C9:EB:CA:89 X509v3 Authority Key Identifier: keyid:A1:8E:B3:77:DD:03:18:AE:46:5D:8F:3F:7D:6E:0A:D0:A4:E9:ED:1E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/MWTOx1zPk-C90vuBRgn9P8nryok.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.135.22.0/23 Signature Algorithm: sha256WithRSAEncryption 40:f2:c4:21:45:17:1f:0f:99:b4:0b:00:73:cc:a6:e3:39:95: a3:5e:6c:51:97:19:81:fc:4d:81:b2:42:cd:af:86:09:d1:33: 10:5c:c9:30:07:7a:c8:f1:0d:3c:e0:a4:bf:96:4d:d0:7d:36: 6d:f1:20:1e:88:22:46:79:5f:2e:5f:56:85:3e:3e:19:a5:57: 6a:d4:34:4d:9e:5e:36:b0:ff:fa:32:e4:00:43:ed:ab:de:bc: a8:70:99:b4:dd:83:c7:fe:01:4b:c5:21:2d:5f:00:0b:fe:5b: e2:08:d1:fe:ce:c6:42:8a:7a:cf:f7:3c:af:a8:f6:ff:3b:c8: 71:34:80:c7:42:24:b6:ed:1f:a4:17:76:fc:7f:a4:e1:fa:dc: 50:9b:e8:03:87:eb:08:d2:5f:5e:6b:91:79:a9:a2:d7:47:33: 19:84:48:16:68:0e:cd:bd:b3:0e:0a:2f:d3:fa:da:87:a8:81: 05:d8:d9:fd:ca:f4:fc:38:2b:c0:2b:a4:31:5c:c4:e0:b9:0d: d2:61:4b:51:7e:04:01:1c:eb:46:79:ac:98:c8:46:29:43:70: 0f:96:b1:58:b2:66:43:d4:ad:f8:02:f9:36:bc:eb:33:34:0b: dc:48:ee:92:0a:99:3f:35:de:96:bc:55:2c:c1:17:9e:3b:5a: 1c:37:57:64 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICD90wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTE4 RUIzNzdERDAzMThBRTQ2NUQ4RjNGN0Q2RTBBRDBBNEU5RUQxRTAeFw0yNTA4MjIw ODU2MThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDMxNjRDRUM3NUNDRjkz RTBCREQyRkI4MTQ2MDlGRDNGQzlFQkNBODkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDC+mIHhy3l+E+BFcsAkddsWu6yYUk8Z1Q3yLe/si5oigrQkY89 LS3cPmT0nNC7EAnEoHtq+EtUU8gUVi8ZnHV9YzpO8doH4I5e2hXupPqIROkgv1MX juFdQbdTEbCaNOwrqUVX33tHh3xXNKp4ZMj5VRmsx7nNlBDO85pzyTYcPYVOQXsf uM12b4RlWVYt2M0C7kcylPuROhT2Wm8oUEGZ/a2er3ebLiiJPQXH/FMa/3XrmZjV pwOFpfW2OletomjwuTzIN+aBL4A7zduGLGp+kovd26Ye5hBYxIjWzuPy9Ok/JKD5 PhXP4vuwkoHCuPM6U6MVjndLLY/k8+b3pBHXAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUMWTOx1zPk+C90vuBRgn9P8nryokwHwYDVR0jBBgwFoAUoY6zd90DGK5GXY8/ fW4K0KTp7R4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR0pJ TkdFTi9vWTZ6ZDkwREdLNUdYWThfZlc0SzBLVHA3UjQuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL29ZNnpkOTBER0s1R1hZOF9mVzRLMEtUcDdSNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL01JTkdKSU5HRU4vTVdUT3gxelBr LUM5MHZ1QlJnbjlQOG5yeW9rLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAWeHFjANBgkqhkiG9w0BAQsFAAOCAQEAQPLEIUUXHw+ZtAsAc8ym4zmV o15sUZcZgfxNgbJCza+GCdEzEFzJMAd6yPENPOCkv5ZN0H02bfEgHogiRnlfLl9W hT4+GaVXatQ0TZ5eNrD/+jLkAEPtq968qHCZtN2Dx/4BS8UhLV8AC/5b4gjR/s7G Qop6z/c8r6j2/zvIcTSAx0Iktu0fpBd2/H+k4frcUJvoA4frCNJfXmuReami10cz GYRIFmgOzb2zDgov0/rah6iBBdjZ/cr0/DgrwCukMVzE4LkN0mFLUX4EARzrRnms mMhGKUNwD5axWLJmQ9St+AL5NrzrMzQL3EjukgqZPzXelrxVLMEXnjtaHDdXZA== -----END CERTIFICATE-----Generated at Sun Aug 24 05:08:55 2025 by rpki-client