$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NWCATVISP/qDTkhsyZxw6vdRCpmvqbNeKzx5o.roa File: qDTkhsyZxw6vdRCpmvqbNeKzx5o.roa (raw, json) Hash identifier: NmdBFhFKOUC1C+93xlor0TvUCXgbUyiFf4/X4P3Psug= Subject key identifier: A8:34:E4:86:CC:99:C7:0E:AF:75:10:A9:9A:FA:9B:35:E2:B3:C7:9A Certificate issuer: /CN=A615237B28D4CEF8AFF942181704A1870B0F3F70 Certificate serial: 12AA Authority key identifier: A6:15:23:7B:28:D4:CE:F8:AF:F9:42:18:17:04:A1:87:0B:0F:3F:70 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/phUjeyjUzviv-UIYFwShhwsPP3A.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NWCATVISP/qDTkhsyZxw6vdRCpmvqbNeKzx5o.roa Signing time: Fri 22 Aug 2025 08:56:14 +0000 ROA not before: Fri 22 Aug 2025 08:56:14 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18046 IP address blocks: 103.126.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NWCATVISP/phUjeyjUzviv-UIYFwShhwsPP3A.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NWCATVISP/phUjeyjUzviv-UIYFwShhwsPP3A.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/phUjeyjUzviv-UIYFwShhwsPP3A.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4778 (0x12aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A615237B28D4CEF8AFF942181704A1870B0F3F70 Validity Not Before: Aug 22 08:56:14 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=A834E486CC99C70EAF7510A99AFA9B35E2B3C79A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:25:c7:2d:39:0a:88:8b:83:72:eb:38:3d:6c: 2c:e8:91:d0:33:9f:0e:0b:ae:e7:5b:cc:ec:16:94: a6:2b:bd:51:a6:40:e6:aa:8b:d2:bf:63:0b:bb:04: ad:52:8f:6e:16:ef:26:ed:e1:03:20:75:6d:c1:26: b5:19:65:48:da:00:d4:e0:f9:44:47:c8:d9:6c:ea: 15:4b:c4:63:d5:75:3f:d4:57:87:11:ab:42:6a:16: c9:89:9f:9a:ac:e9:79:b1:84:ec:aa:e0:54:19:72: a4:3f:88:45:27:3c:04:ce:2b:b1:c9:bb:f2:1a:6c: c1:c6:5d:3b:3e:b2:05:eb:a5:1b:df:94:f9:21:0f: b7:25:62:fc:c4:35:0f:59:bf:90:38:a2:01:af:dd: 5c:cd:e7:43:42:31:c0:7d:be:fa:27:c3:03:f9:f7: 1c:a8:ec:3a:95:6f:32:1e:ce:f2:72:71:d9:a7:04: fc:a9:a4:dc:7b:29:4f:22:9f:ea:f2:41:c4:81:b4: 56:76:a8:a4:49:a2:86:55:0e:be:7b:ee:be:f1:79: 3d:2b:e9:e9:f5:cb:35:15:36:69:48:c2:72:d2:1a: bb:b9:4a:0b:1b:67:84:fd:84:07:62:e0:f9:35:cf: 14:be:17:d7:fd:12:2d:e1:4d:37:8e:6a:3b:1a:95: b4:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:34:E4:86:CC:99:C7:0E:AF:75:10:A9:9A:FA:9B:35:E2:B3:C7:9A X509v3 Authority Key Identifier: keyid:A6:15:23:7B:28:D4:CE:F8:AF:F9:42:18:17:04:A1:87:0B:0F:3F:70 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NWCATVISP/phUjeyjUzviv-UIYFwShhwsPP3A.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/phUjeyjUzviv-UIYFwShhwsPP3A.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NWCATVISP/qDTkhsyZxw6vdRCpmvqbNeKzx5o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.126.252.0/22 Signature Algorithm: sha256WithRSAEncryption 40:35:60:5b:fb:22:9c:05:21:c5:07:d0:ba:5d:a7:17:b3:2d: 6b:17:07:50:98:5e:20:08:a4:4a:96:e6:f4:b3:1c:46:69:e9: 5b:2e:cd:70:cf:a8:4b:55:d0:d5:09:29:54:e7:a5:9d:ff:0d: ec:e4:4d:d3:17:3f:2f:98:d6:bc:1d:81:bf:87:d3:51:60:1e: c8:b2:2b:63:d7:f0:98:e0:91:b5:f3:4b:ec:3b:29:cb:d2:12: c2:d7:1e:98:d1:ab:31:5a:8f:a7:3a:9f:cb:5d:66:6b:40:c3: 1e:78:1e:06:d0:b8:f6:7c:a3:58:f0:78:1d:52:af:73:f9:5b: 37:d0:c2:88:06:06:6a:0d:82:4f:f0:07:65:80:fc:8a:dc:4b: ae:cf:42:5a:37:13:e2:cd:d2:23:01:b5:77:a8:05:ad:c5:83: 00:32:df:c3:50:04:f9:69:4e:19:f9:a9:a5:7e:09:31:f2:6a: f8:33:0e:49:a8:19:81:31:86:96:19:54:5a:c8:62:27:e2:6c: 33:3c:bd:80:c3:cd:86:c1:75:2b:e5:50:5c:d3:cd:e7:4e:a4: 34:2c:c9:47:f6:8e:b2:96:24:24:2b:81:26:ec:f3:e9:8e:60: c7:bb:5b:89:26:06:45:b2:ef:1a:af:bb:98:df:b8:05:9d:84: d4:91:cd:eb -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICEqowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTYx NTIzN0IyOEQ0Q0VGOEFGRjk0MjE4MTcwNEExODcwQjBGM0Y3MDAeFw0yNTA4MjIw ODU2MTRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEE4MzRFNDg2Q0M5OUM3 MEVBRjc1MTBBOTlBRkE5QjM1RTJCM0M3OUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGJcctOQqIi4Ny6zg9bCzokdAznw4LrudbzOwWlKYrvVGmQOaq i9K/Ywu7BK1Sj24W7ybt4QMgdW3BJrUZZUjaANTg+URHyNls6hVLxGPVdT/UV4cR q0JqFsmJn5qs6XmxhOyq4FQZcqQ/iEUnPATOK7HJu/IabMHGXTs+sgXrpRvflPkh D7clYvzENQ9Zv5A4ogGv3VzN50NCMcB9vvonwwP59xyo7DqVbzIezvJycdmnBPyp pNx7KU8in+ryQcSBtFZ2qKRJooZVDr577r7xeT0r6en1yzUVNmlIwnLSGru5Sgsb Z4T9hAdi4Pk1zxS+F9f9Ei3hTTeOajsalbSdAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUqDTkhsyZxw6vdRCpmvqbNeKzx5owHwYDVR0jBBgwFoAUphUjeyjUzviv+UIY FwShhwsPP3AwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTldDQVRW SVNQL3BoVWpleWpVenZpdi1VSVlGd1NoaHdzUFAzQS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvcGhVamV5alV6dml2LVVJWUZ3U2hod3NQUDNBLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTldDQVRWSVNQL3FEVGtoc3laeHc2 dmRSQ3BtdnFiTmVLeng1by5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJnfvwwDQYJKoZIhvcNAQELBQADggEBAEA1YFv7IpwFIcUH0LpdpxezLWsX B1CYXiAIpEqW5vSzHEZp6VsuzXDPqEtV0NUJKVTnpZ3/DezkTdMXPy+Y1rwdgb+H 01FgHsiyK2PX8JjgkbXzS+w7KcvSEsLXHpjRqzFaj6c6n8tdZmtAwx54HgbQuPZ8 o1jweB1Sr3P5WzfQwogGBmoNgk/wB2WA/IrcS67PQlo3E+LN0iMBtXeoBa3FgwAy 38NQBPlpThn5qaV+CTHyavgzDkmoGYExhpYZVFrIYifibDM8vYDDzYbBdSvlUFzT zedOpDQsyUf2jrKWJCQrgSbs8+mOYMe7W4kmBkWy7xqvu5jfuAWdhNSRzes= -----END CERTIFICATE-----Generated at Sun Aug 24 09:15:15 2025 by rpki-client