$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NSSIT/RQZwVt5UDoacXhiVnVyxDbmDA1o.roa File: RQZwVt5UDoacXhiVnVyxDbmDA1o.roa (raw, json) Hash identifier: nFnsKe5++1JjMk6jb6bVzMGMCTjr4bAtFSICGMsm/50= Subject key identifier: 45:06:70:56:DE:54:0E:86:9C:5E:18:95:9D:5C:B1:0D:B9:83:03:5A Certificate issuer: /CN=AA11250A67BB9825B6EA1FA9A124A1FEC96701DA Certificate serial: 0ADB Authority key identifier: AA:11:25:0A:67:BB:98:25:B6:EA:1F:A9:A1:24:A1:FE:C9:67:01:DA Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/qhElCme7mCW26h-poSSh_slnAdo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NSSIT/RQZwVt5UDoacXhiVnVyxDbmDA1o.roa Signing time: Fri 22 Aug 2025 08:58:46 +0000 ROA not before: Fri 22 Aug 2025 08:58:46 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131626 IP address blocks: 103.144.32.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NSSIT/qhElCme7mCW26h-poSSh_slnAdo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NSSIT/qhElCme7mCW26h-poSSh_slnAdo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/qhElCme7mCW26h-poSSh_slnAdo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2779 (0xadb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AA11250A67BB9825B6EA1FA9A124A1FEC96701DA Validity Not Before: Aug 22 08:58:46 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=45067056DE540E869C5E18959D5CB10DB983035A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:1e:26:97:d2:ef:b2:34:28:fc:78:23:78:a6: 42:00:84:b3:9e:d8:0b:20:b3:c0:7f:a2:7d:1f:ec: ca:7e:8a:c3:f2:ba:79:4c:d3:86:03:70:00:8f:34: 37:97:62:3e:1d:90:62:c0:a9:60:6a:31:71:59:be: 3c:cf:01:6f:ef:29:de:88:3f:29:07:7b:69:7f:17: 0a:d2:b9:a1:d9:69:c0:e9:40:71:b4:15:c6:52:27: 2f:3f:ce:4c:8c:aa:75:a3:c2:88:81:41:ec:09:a4: 1e:1c:70:7a:e4:12:cb:af:97:5a:7b:c8:e1:a1:39: 87:6d:45:73:fb:84:67:86:d2:74:91:4e:5d:d3:c0: 8b:62:f6:07:34:76:41:79:75:cd:95:b2:ca:26:a7: aa:d8:28:99:7b:dc:ab:45:73:b8:e5:dc:23:e0:f0: 97:b0:08:5d:af:94:3e:b8:ae:45:90:09:7c:3a:a9: 98:5a:a7:4f:de:92:80:54:0d:a4:b8:c2:d6:46:5e: 69:7b:f1:d4:ce:5e:0d:20:99:95:2f:1f:18:16:b9: 0a:fd:6c:39:95:39:3a:8f:c0:d2:32:b8:b5:89:2a: 48:43:d7:43:6c:39:1e:e7:47:61:86:0e:3c:d7:a1: 53:1a:ab:62:9f:fd:8e:0d:f9:13:32:ee:4b:1f:5f: 63:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:06:70:56:DE:54:0E:86:9C:5E:18:95:9D:5C:B1:0D:B9:83:03:5A X509v3 Authority Key Identifier: keyid:AA:11:25:0A:67:BB:98:25:B6:EA:1F:A9:A1:24:A1:FE:C9:67:01:DA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NSSIT/qhElCme7mCW26h-poSSh_slnAdo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/qhElCme7mCW26h-poSSh_slnAdo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NSSIT/RQZwVt5UDoacXhiVnVyxDbmDA1o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.144.32.0/23 Signature Algorithm: sha256WithRSAEncryption 16:e5:73:08:9e:37:1e:28:85:79:7e:84:5d:fd:d1:cb:7b:cb: 50:fd:63:50:b7:61:36:2c:35:2f:b1:1f:9e:87:06:78:3d:44: fa:2a:1b:22:e1:dd:b3:e6:b3:93:7b:26:dc:56:dd:78:0e:2c: a2:1d:31:b7:9d:11:3a:a0:2d:54:4b:2c:b8:f1:49:7f:44:72: e3:e2:72:64:c4:c5:a1:be:1d:db:c6:7a:70:95:fb:a8:6c:27: c2:cf:b0:4d:b8:d7:be:de:ad:a8:cb:21:f5:a1:fb:b2:ca:2d: 28:02:45:8e:78:24:70:5f:eb:0b:2f:57:41:48:86:6d:fc:90: 01:c1:f9:ff:e1:8c:b5:0d:a9:5c:ad:91:d6:55:5f:fe:7c:7d: 1b:71:37:9e:68:2b:04:cd:b0:1a:84:01:5d:cd:e1:e2:b0:72: a1:f4:7e:d0:cf:00:ca:44:77:ea:64:f0:1d:88:c0:cb:a6:cd: d0:d1:97:2d:03:68:43:d0:08:9e:c5:db:57:d7:7c:cf:98:6a: 60:57:de:6f:07:75:aa:ae:82:68:17:c4:f5:80:55:9f:84:fc: cb:03:33:fd:ce:fb:43:80:ec:e4:f3:0f:74:c3:01:f6:3e:1d: 0b:80:2c:55:42:84:40:ea:5d:24:5b:87:4e:c1:7a:f8:7c:fc: b8:de:f0:be -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICCtswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUEx MTI1MEE2N0JCOTgyNUI2RUExRkE5QTEyNEExRkVDOTY3MDFEQTAeFw0yNTA4MjIw ODU4NDZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQ1MDY3MDU2REU1NDBF ODY5QzVFMTg5NTlENUNCMTBEQjk4MzAzNUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCgHiaX0u+yNCj8eCN4pkIAhLOe2Asgs8B/on0f7Mp+isPyunlM 04YDcACPNDeXYj4dkGLAqWBqMXFZvjzPAW/vKd6IPykHe2l/FwrSuaHZacDpQHG0 FcZSJy8/zkyMqnWjwoiBQewJpB4ccHrkEsuvl1p7yOGhOYdtRXP7hGeG0nSRTl3T wIti9gc0dkF5dc2Vssomp6rYKJl73KtFc7jl3CPg8JewCF2vlD64rkWQCXw6qZha p0/ekoBUDaS4wtZGXml78dTOXg0gmZUvHxgWuQr9bDmVOTqPwNIyuLWJKkhD10Ns OR7nR2GGDjzXoVMaq2Kf/Y4N+RMy7ksfX2O7AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQURQZwVt5UDoacXhiVnVyxDbmDA1owHwYDVR0jBBgwFoAUqhElCme7mCW26h+p oSSh/slnAdowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTlNTSVQv cWhFbENtZTdtQ1cyNmgtcG9TU2hfc2xuQWRvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9xaEVsQ21lN21DVzI2aC1wb1NTaF9zbG5BZG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9OU1NJVC9SUVp3VnQ1VURvYWNYaGlWblZ5 eERibURBMW8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5Ag MA0GCSqGSIb3DQEBCwUAA4IBAQAW5XMInjceKIV5foRd/dHLe8tQ/WNQt2E2LDUv sR+ehwZ4PUT6Khsi4d2z5rOTeybcVt14DiyiHTG3nRE6oC1USyy48Ul/RHLj4nJk xMWhvh3bxnpwlfuobCfCz7BNuNe+3q2oyyH1ofuyyi0oAkWOeCRwX+sLL1dBSIZt /JABwfn/4Yy1DalcrZHWVV/+fH0bcTeeaCsEzbAahAFdzeHisHKh9H7QzwDKRHfq ZPAdiMDLps3Q0ZctA2hD0AiexdtX13zPmGpgV95vB3WqroJoF8T1gFWfhPzLAzP9 zvtDgOzk8w90wwH2Ph0LgCxVQoRA6l0kW4dOwXr4fPy43vC+ -----END CERTIFICATE-----Generated at Sun Aug 24 13:38:03 2025 by rpki-client