$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/H07fZhQO_Q3aLfPPmvyYIFeRwGw.roa File: H07fZhQO_Q3aLfPPmvyYIFeRwGw.roa (raw, json) Hash identifier: gJFfn7EGGkpzbinWsWT20Cv8c18u4ouHFdJoO33imR0= Subject key identifier: 1F:4E:DF:66:14:0E:FD:0D:DA:2D:F3:CF:9A:FC:98:20:57:91:C0:6C Certificate issuer: /CN=F5A44B5E078865BAEF9351369D961D6BA2556D47 Certificate serial: 02BF Authority key identifier: F5:A4:4B:5E:07:88:65:BA:EF:93:51:36:9D:96:1D:6B:A2:55:6D:47 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/9aRLXgeIZbrvk1E2nZYda6JVbUc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/H07fZhQO_Q3aLfPPmvyYIFeRwGw.roa Signing time: Fri 22 Aug 2025 08:59:11 +0000 ROA not before: Fri 22 Aug 2025 08:59:11 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 8075 IP address blocks: 103.131.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/9aRLXgeIZbrvk1E2nZYda6JVbUc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 703 (0x2bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F5A44B5E078865BAEF9351369D961D6BA2556D47 Validity Not Before: Aug 22 08:59:11 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1F4EDF66140EFD0DDA2DF3CF9AFC98205791C06C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:ef:d2:b7:8d:48:f4:50:ef:81:53:5a:c1:08: c7:0d:71:7a:03:18:10:c7:76:29:44:4b:dc:2c:25: 76:9e:8e:21:d8:c9:e2:34:4e:a4:ba:f1:52:72:e1: 54:d6:d5:c7:11:3e:5d:e7:dc:2a:ec:e2:0e:ce:b4: 32:8d:c8:a6:ff:dc:52:71:29:9a:e1:cf:8c:5b:eb: d3:7a:e0:21:27:18:40:2e:95:f5:ba:f2:63:8a:c5: 51:89:c9:58:c3:46:1a:ca:36:db:6d:7c:9e:72:6f: 4f:dc:2d:d6:e9:97:5f:a6:b0:1f:24:c7:1e:f3:3e: 30:65:db:a1:1b:01:9a:9e:ed:86:b1:40:09:76:dd: 71:b8:b7:fb:31:8f:14:53:fb:1c:89:f1:36:d6:95: 53:dd:be:92:04:16:4f:7f:f4:1e:50:87:ac:b6:cf: 7f:ed:5f:49:4a:94:0c:9d:2f:62:e2:53:2f:f9:c9: fc:cf:71:4b:ee:a8:f9:5f:6d:9a:f4:a8:e2:d4:6c: 1f:fc:72:a3:04:e2:c9:08:08:5c:21:6c:65:86:75: 7b:c6:41:83:9b:01:96:cf:b2:e4:3a:de:1b:f8:e1: 19:04:76:30:53:e3:9c:89:a5:a0:1e:21:f4:e3:8e: b0:dc:3e:a9:44:60:ba:2c:ab:94:92:fe:9e:db:1b: b2:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:4E:DF:66:14:0E:FD:0D:DA:2D:F3:CF:9A:FC:98:20:57:91:C0:6C X509v3 Authority Key Identifier: keyid:F5:A4:4B:5E:07:88:65:BA:EF:93:51:36:9D:96:1D:6B:A2:55:6D:47 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/9aRLXgeIZbrvk1E2nZYda6JVbUc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/H07fZhQO_Q3aLfPPmvyYIFeRwGw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.131.149.0/24 Signature Algorithm: sha256WithRSAEncryption 36:25:72:32:5f:03:76:3c:03:67:08:91:00:48:b9:38:1e:0d: f0:f0:aa:dc:72:5d:5f:9a:74:5b:b5:7b:a6:b5:0f:3e:64:87: f4:5a:2a:db:9f:66:fa:ee:3f:7d:44:14:c5:5f:45:d7:ec:a1: 32:9f:35:05:12:f9:bf:48:10:78:01:34:87:7b:9a:7a:66:55: 80:d5:bb:45:e6:b5:ed:36:14:41:92:23:2b:7f:1e:3f:d4:10: e8:c2:86:73:a5:a2:50:59:09:b6:55:36:e2:0f:58:ac:54:4e: a7:20:8c:48:eb:c8:2e:67:57:78:47:7b:dd:01:fd:5f:0f:d1: fd:37:1b:dd:02:40:40:a9:d8:f0:aa:1d:86:80:ef:d9:4d:81: f2:a3:06:51:5a:bd:91:3d:17:08:09:3e:95:90:a5:98:cc:cb: b9:ca:ee:b4:22:23:c2:e1:4d:2b:5a:c5:85:1c:b1:f5:71:28: 82:02:76:53:65:54:f5:f9:24:39:39:eb:c0:19:d6:a7:ca:12: 7c:d8:a5:0c:f6:c4:0a:68:76:cd:e0:32:91:1d:3a:4e:21:a8: 5c:72:97:39:63:9c:99:0b:3e:59:0e:eb:b7:4b:d5:df:f2:8e: 48:a4:55:61:95:3c:31:2b:d0:8b:01:79:15:92:eb:80:4f:b3: 7b:53:de:2e -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICAr8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjVB NDRCNUUwNzg4NjVCQUVGOTM1MTM2OUQ5NjFENkJBMjU1NkQ0NzAeFw0yNTA4MjIw ODU5MTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDFGNEVERjY2MTQwRUZE MEREQTJERjNDRjlBRkM5ODIwNTc5MUMwNkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDb79K3jUj0UO+BU1rBCMcNcXoDGBDHdilES9wsJXaejiHYyeI0 TqS68VJy4VTW1ccRPl3n3Crs4g7OtDKNyKb/3FJxKZrhz4xb69N64CEnGEAulfW6 8mOKxVGJyVjDRhrKNtttfJ5yb0/cLdbpl1+msB8kxx7zPjBl26EbAZqe7YaxQAl2 3XG4t/sxjxRT+xyJ8TbWlVPdvpIEFk9/9B5Qh6y2z3/tX0lKlAydL2LiUy/5yfzP cUvuqPlfbZr0qOLUbB/8cqME4skICFwhbGWGdXvGQYObAZbPsuQ63hv44RkEdjBT 45yJpaAeIfTjjrDcPqlEYLosq5SS/p7bG7K9AgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUH07fZhQO/Q3aLfPPmvyYIFeRwGwwHwYDVR0jBBgwFoAU9aRLXgeIZbrvk1E2 nZYda6JVbUcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvT05FREVH UkVFLzlhUkxYZ2VJWmJydmsxRTJuWllkYTZKVmJVYy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvOWFSTFhnZUlaYnJ2azFFMm5aWWRhNkpWYlVjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvT05FREVHUkVFL0gwN2ZaaFFPX1Ez YUxmUFBtdnlZSUZlUndHdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABng5UwDQYJKoZIhvcNAQELBQADggEBADYlcjJfA3Y8A2cIkQBIuTgeDfDw qtxyXV+adFu1e6a1Dz5kh/RaKtufZvruP31EFMVfRdfsoTKfNQUS+b9IEHgBNId7 mnpmVYDVu0Xmte02FEGSIyt/Hj/UEOjChnOlolBZCbZVNuIPWKxUTqcgjEjryC5n V3hHe90B/V8P0f03G90CQECp2PCqHYaA79lNgfKjBlFavZE9FwgJPpWQpZjMy7nK 7rQiI8LhTStaxYUcsfVxKIICdlNlVPX5JDk568AZ1qfKEnzYpQz2xApods3gMpEd Ok4hqFxylzljnJkLPlkO67dL1d/yjkikVWGVPDEr0IsBeRWS64BPs3tT3i4= -----END CERTIFICATE-----Generated at Sun Aug 24 12:34:20 2025 by rpki-client