$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NETEASE/39reJrBVbfx7jwwB4eLJaNpwG9w.roa File: 39reJrBVbfx7jwwB4eLJaNpwG9w.roa (raw, json) Hash identifier: U/yZRPwwoo1ciYrHNNnwxQkeJ7ZzVTKvvJVYx34E6a4= Subject key identifier: DF:DA:DE:26:B0:55:6D:FC:7B:8F:0C:01:E1:E2:C9:68:DA:70:1B:DC Certificate issuer: /CN=DEA0948BB7791C4710993A8F1FCCE967ADA09C00 Certificate serial: 13C4 Authority key identifier: DE:A0:94:8B:B7:79:1C:47:10:99:3A:8F:1F:CC:E9:67:AD:A0:9C:00 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/3qCUi7d5HEcQmTqPH8zpZ62gnAA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NETEASE/39reJrBVbfx7jwwB4eLJaNpwG9w.roa Signing time: Fri 22 Aug 2025 09:02:08 +0000 ROA not before: Fri 22 Aug 2025 09:02:08 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131659 IP address blocks: 103.131.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NETEASE/3qCUi7d5HEcQmTqPH8zpZ62gnAA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NETEASE/3qCUi7d5HEcQmTqPH8zpZ62gnAA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/3qCUi7d5HEcQmTqPH8zpZ62gnAA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5060 (0x13c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DEA0948BB7791C4710993A8F1FCCE967ADA09C00 Validity Not Before: Aug 22 09:02:08 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=DFDADE26B0556DFC7B8F0C01E1E2C968DA701BDC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:60:73:26:54:79:0d:03:01:dc:55:06:39:ac: cb:47:9c:52:cc:e5:23:06:a9:33:1b:90:57:c6:3f: df:18:50:7b:a0:99:40:f8:4a:ce:b6:e2:5d:06:a9: 69:50:11:aa:61:0b:07:f5:29:0a:e6:13:19:e3:ba: 2d:70:ba:34:83:e2:f0:a8:bd:f2:59:7a:66:83:f8: 06:ec:cd:22:3e:88:e7:76:10:9e:58:c6:d1:26:9c: a3:55:d1:8e:4d:44:61:03:32:5d:9b:9f:3a:07:37: e3:e0:fa:5b:13:b9:e3:72:ac:a5:25:8b:7e:c0:d8: f8:6a:f8:af:06:8a:78:d0:26:a7:6a:9b:a2:80:32: af:da:f6:99:95:ba:4c:a9:a6:86:55:e0:6d:67:20: 49:10:8b:a3:ff:d1:70:c9:3d:a4:39:55:49:78:21: 91:a3:7a:34:fe:62:05:c3:78:39:b1:0d:9f:3b:89: 22:64:73:65:d6:e3:df:91:3d:68:a4:ae:a7:95:b0: 94:81:4b:22:8a:48:9c:6b:48:b3:2f:d1:ab:fe:db: 44:d8:25:98:72:fb:e8:0d:bf:08:5c:83:44:75:a5: 2a:f3:2d:a4:23:84:2c:2d:ae:fb:f0:53:71:16:05: 54:f8:8e:91:22:b6:1a:a1:2d:7a:de:29:95:51:f5: 1c:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:DA:DE:26:B0:55:6D:FC:7B:8F:0C:01:E1:E2:C9:68:DA:70:1B:DC X509v3 Authority Key Identifier: keyid:DE:A0:94:8B:B7:79:1C:47:10:99:3A:8F:1F:CC:E9:67:AD:A0:9C:00 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NETEASE/3qCUi7d5HEcQmTqPH8zpZ62gnAA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/3qCUi7d5HEcQmTqPH8zpZ62gnAA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NETEASE/39reJrBVbfx7jwwB4eLJaNpwG9w.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.131.252.0/22 Signature Algorithm: sha256WithRSAEncryption 72:fd:8f:e9:a4:d1:57:61:14:78:2d:d3:75:50:e2:a3:f9:30: 45:99:fa:0f:29:4b:d3:ba:13:d0:3e:8a:31:f1:a5:2d:82:34: 48:a4:7f:cc:cb:25:7d:81:3e:cd:29:b8:fa:16:9b:c1:85:da: bc:09:9a:f0:47:43:4d:05:71:8e:bc:b3:5d:80:27:62:7f:10: dc:91:a5:cc:30:e6:7a:bd:ff:2d:7b:19:2f:2c:8a:0c:47:26: c2:8c:c3:35:04:58:7c:53:5e:18:82:79:df:d3:5b:fd:4d:81: 49:d6:29:aa:d1:8f:e1:94:82:e8:69:3a:8e:ac:66:20:22:2d: 11:c2:a2:52:20:a1:ff:b7:4a:ea:2d:09:39:4b:78:b1:38:43: d0:7e:61:e4:2a:8d:be:1e:2a:f4:a5:da:31:95:f7:c9:dc:a7: a1:92:ab:7d:af:d5:a1:f2:04:b3:f1:1d:4d:7f:cc:3d:52:ea: 1a:50:87:c5:97:40:0c:34:9b:33:cc:61:82:89:5a:4b:aa:3b: 82:85:43:a7:0d:14:0d:69:04:46:8c:8f:c7:f6:73:d2:39:6e: 8e:f2:53:32:64:c7:b8:f4:ca:5e:eb:67:9e:45:e3:20:f3:08: da:bc:0c:5a:aa:e6:fa:ac:3c:1a:63:a2:b7:1d:20:5d:66:58: 4a:78:31:b1 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICE8QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREVB MDk0OEJCNzc5MUM0NzEwOTkzQThGMUZDQ0U5NjdBREEwOUMwMDAeFw0yNTA4MjIw OTAyMDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKERGREFERTI2QjA1NTZE RkM3QjhGMEMwMUUxRTJDOTY4REE3MDFCREMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDoYHMmVHkNAwHcVQY5rMtHnFLM5SMGqTMbkFfGP98YUHugmUD4 Ss624l0GqWlQEaphCwf1KQrmExnjui1wujSD4vCovfJZemaD+AbszSI+iOd2EJ5Y xtEmnKNV0Y5NRGEDMl2bnzoHN+Pg+lsTueNyrKUli37A2Phq+K8GinjQJqdqm6KA Mq/a9pmVukyppoZV4G1nIEkQi6P/0XDJPaQ5VUl4IZGjejT+YgXDeDmxDZ87iSJk c2XW49+RPWikrqeVsJSBSyKKSJxrSLMv0av+20TYJZhy++gNvwhcg0R1pSrzLaQj hCwtrvvwU3EWBVT4jpEithqhLXreKZVR9RwlAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU39reJrBVbfx7jwwB4eLJaNpwG9wwHwYDVR0jBBgwFoAU3qCUi7d5HEcQmTqP H8zpZ62gnAAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkVURUFT RS8zcUNVaTdkNUhFY1FtVHFQSDh6cFo2MmduQUEuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBLzNxQ1VpN2Q1SEVjUW1UcVBIOHpwWjYyZ25BQS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL05FVEVBU0UvMzlyZUpyQlZiZng3and3 QjRlTEphTnB3Rzl3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AmeD/DANBgkqhkiG9w0BAQsFAAOCAQEAcv2P6aTRV2EUeC3TdVDio/kwRZn6DylL 07oT0D6KMfGlLYI0SKR/zMslfYE+zSm4+habwYXavAma8EdDTQVxjryzXYAnYn8Q 3JGlzDDmer3/LXsZLyyKDEcmwozDNQRYfFNeGIJ539Nb/U2BSdYpqtGP4ZSC6Gk6 jqxmICItEcKiUiCh/7dK6i0JOUt4sThD0H5h5CqNvh4q9KXaMZX3ydynoZKrfa/V ofIEs/EdTX/MPVLqGlCHxZdADDSbM8xhgolaS6o7goVDpw0UDWkERoyPx/Zz0jlu jvJTMmTHuPTKXutnnkXjIPMI2rwMWqrm+qw8GmOitx0gXWZYSngxsQ== -----END CERTIFICATE-----Generated at Sun Aug 24 13:35:58 2025 by rpki-client