$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/njXiHQM2YoNEf_GnjLKJCq--2lg.roa File: njXiHQM2YoNEf_GnjLKJCq--2lg.roa (raw, json) Hash identifier: 4d3J5uAMcboHXzfCzXkyM2AWOOU2igqi0vMbvE4RvjY= Subject key identifier: 9E:35:E2:1D:03:36:62:83:44:7F:F1:A7:8C:B2:89:0A:AF:BE:DA:58 Certificate issuer: /CN=ADFE6E56DAF8492EC7DE88B3A906B3139B55B864 Certificate serial: 0858 Authority key identifier: AD:FE:6E:56:DA:F8:49:2E:C7:DE:88:B3:A9:06:B3:13:9B:55:B8:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/rf5uVtr4SS7H3oizqQazE5tVuGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/njXiHQM2YoNEf_GnjLKJCq--2lg.roa Signing time: Fri 22 Aug 2025 08:44:23 +0000 ROA not before: Fri 22 Aug 2025 08:44:23 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131668 IP address blocks: 103.152.202.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/rf5uVtr4SS7H3oizqQazE5tVuGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/rf5uVtr4SS7H3oizqQazE5tVuGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/rf5uVtr4SS7H3oizqQazE5tVuGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2136 (0x858) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADFE6E56DAF8492EC7DE88B3A906B3139B55B864 Validity Not Before: Aug 22 08:44:23 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=9E35E21D03366283447FF1A78CB2890AAFBEDA58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d8:32:1e:3e:bc:2e:1a:b9:0f:bd:07:3c:85: 28:ce:c5:7e:12:28:99:6c:91:26:c3:ec:52:43:30: 52:a7:09:fc:e1:2c:3f:b6:ce:dd:78:6b:e9:08:11: 20:00:1a:04:ba:9e:b0:56:0a:d6:ae:ad:6c:51:d0: 9d:3e:3d:a5:ec:e9:58:64:d7:2c:a1:67:b9:d3:61: 1f:ce:7e:d1:b9:ec:3c:f5:c0:56:6c:9c:16:3f:f2: d8:6a:15:0c:89:9e:44:a4:3e:c9:99:f9:f1:63:c9: 78:f4:fd:b1:1c:48:f3:62:b6:7f:a1:40:cd:a6:cb: c4:08:ff:6f:ed:95:6a:56:b1:6b:88:25:fd:06:b9: 71:1a:d9:59:01:96:a3:c3:c5:8c:cb:49:c8:80:03: 63:82:3f:f5:4a:69:70:58:e4:a5:26:df:f3:9e:bd: 23:0d:39:66:20:3f:8f:e0:50:0b:8a:c2:67:29:b1: 00:70:92:c1:75:09:1b:a2:b7:2e:cb:74:ea:68:3a: dd:ff:de:fd:cc:d0:9b:81:bd:70:ff:db:a6:cb:17: 64:d1:a8:c5:2b:82:2f:49:dd:93:7e:4c:0d:61:e9: a3:4e:dd:1b:56:fb:a1:23:82:03:30:82:4a:df:0f: 4e:e3:3c:38:6e:00:69:5e:71:33:f1:49:9e:eb:a3: 5d:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:35:E2:1D:03:36:62:83:44:7F:F1:A7:8C:B2:89:0A:AF:BE:DA:58 X509v3 Authority Key Identifier: keyid:AD:FE:6E:56:DA:F8:49:2E:C7:DE:88:B3:A9:06:B3:13:9B:55:B8:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/rf5uVtr4SS7H3oizqQazE5tVuGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/rf5uVtr4SS7H3oizqQazE5tVuGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/njXiHQM2YoNEf_GnjLKJCq--2lg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.152.202.0/24 Signature Algorithm: sha256WithRSAEncryption b0:4e:e0:2a:e5:6b:b0:e1:40:ca:9b:a9:4d:43:e8:bb:e0:cd: d8:95:13:19:4b:83:65:4e:53:0d:63:81:f1:e5:13:16:79:41: 39:0d:e0:6b:9d:c0:e2:1f:27:1d:16:7a:16:36:b5:f8:34:e9: df:62:e2:12:55:23:07:9a:27:3c:4b:e2:d2:b3:dc:12:9b:e6: 8f:71:44:82:04:2a:56:1f:eb:d5:0d:c0:34:a8:df:1a:5b:86: 12:6b:f3:ff:69:9e:17:de:aa:d5:29:ef:94:a2:55:a2:1f:2c: 0f:aa:c8:5c:3f:5d:81:42:99:98:cc:5d:f4:bb:82:b4:2b:81: 78:37:65:5f:0e:96:a9:14:da:06:a9:d1:56:f9:52:1e:fe:a3: 60:a1:34:db:27:4b:5f:03:78:80:3b:99:82:da:05:0f:6a:54: 3e:3c:4e:4c:18:3b:00:5b:75:f5:e4:df:61:a4:09:54:e6:4e: b5:8c:dc:3f:34:bf:9a:fd:f7:c1:3f:50:74:ce:9d:3f:76:d7: 42:b5:c8:60:ac:90:a9:87:94:3f:11:36:f3:86:ec:bc:50:3c: 30:b5:b3:57:48:2a:09:70:1a:51:ca:c0:1b:e9:4f:f6:31:06: ed:92:fe:1f:3a:2c:ae:0e:7e:0b:d5:65:51:fc:db:03:ec:6e: 5d:54:3c:41 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICCFgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQURG RTZFNTZEQUY4NDkyRUM3REU4OEIzQTkwNkIzMTM5QjU1Qjg2NDAeFw0yNTA4MjIw ODQ0MjNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDlFMzVFMjFEMDMzNjYy ODM0NDdGRjFBNzhDQjI4OTBBQUZCRURBNTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC42DIePrwuGrkPvQc8hSjOxX4SKJlskSbD7FJDMFKnCfzhLD+2 zt14a+kIESAAGgS6nrBWCtaurWxR0J0+PaXs6Vhk1yyhZ7nTYR/OftG57Dz1wFZs nBY/8thqFQyJnkSkPsmZ+fFjyXj0/bEcSPNitn+hQM2my8QI/2/tlWpWsWuIJf0G uXEa2VkBlqPDxYzLSciAA2OCP/VKaXBY5KUm3/OevSMNOWYgP4/gUAuKwmcpsQBw ksF1CRuity7LdOpoOt3/3v3M0JuBvXD/26bLF2TRqMUrgi9J3ZN+TA1h6aNO3RtW +6EjggMwgkrfD07jPDhuAGlecTPxSZ7ro11BAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUnjXiHQM2YoNEf/GnjLKJCq++2lgwHwYDVR0jBBgwFoAUrf5uVtr4SS7H3oiz qQazE5tVuGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR1lJ VEVBL3JmNXVWdHI0U1M3SDNvaXpxUWF6RTV0VnVHUS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvcmY1dVZ0cjRTUzdIM29penFRYXpFNXRWdUdRLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR1lJVEVBL25qWGlIUU0yWW9O RWZfR25qTEtKQ3EtLTJsZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABnmMowDQYJKoZIhvcNAQELBQADggEBALBO4Crla7DhQMqbqU1D6LvgzdiV ExlLg2VOUw1jgfHlExZ5QTkN4GudwOIfJx0WehY2tfg06d9i4hJVIweaJzxL4tKz 3BKb5o9xRIIEKlYf69UNwDSo3xpbhhJr8/9pnhfeqtUp75SiVaIfLA+qyFw/XYFC mZjMXfS7grQrgXg3ZV8OlqkU2gap0Vb5Uh7+o2ChNNsnS18DeIA7mYLaBQ9qVD48 TkwYOwBbdfXk32GkCVTmTrWM3D80v5r998E/UHTOnT9210K1yGCskKmHlD8RNvOG 7LxQPDC1s1dIKglwGlHKwBvpT/YxBu2S/h86LK4OfgvVZVH82wPsbl1UPEE= -----END CERTIFICATE-----Generated at Sun Aug 24 05:43:33 2025 by rpki-client