$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/vIrTjaJghNUba_yq6tjczw9WShk.roa File: vIrTjaJghNUba_yq6tjczw9WShk.roa (raw, json) Hash identifier: /J5D/MO5UJxHznkt5OGnZ5kO6B77uiD/IojhmNsIaMs= Subject key identifier: BC:8A:D3:8D:A2:60:84:D5:1B:6B:FC:AA:EA:D8:DC:CF:0F:56:4A:19 Certificate issuer: /CN=6E398C52CC2A079DA90148210AC85328C11BBE96 Certificate serial: 0B02 Authority key identifier: 6E:39:8C:52:CC:2A:07:9D:A9:01:48:21:0A:C8:53:28:C1:1B:BE:96 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/vIrTjaJghNUba_yq6tjczw9WShk.roa Signing time: Fri 22 Aug 2025 08:57:56 +0000 ROA not before: Fri 22 Aug 2025 08:57:56 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131677 IP address blocks: 103.147.130.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/bjmMUswqB52pAUghCshTKMEbvpY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/bjmMUswqB52pAUghCshTKMEbvpY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2818 (0xb02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6E398C52CC2A079DA90148210AC85328C11BBE96 Validity Not Before: Aug 22 08:57:56 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=BC8AD38DA26084D51B6BFCAAEAD8DCCF0F564A19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:35:86:81:39:01:3f:d8:9b:5c:31:23:eb:39: 03:9c:47:cd:34:53:13:6e:25:ea:d2:59:61:2f:16: 9b:58:e6:db:77:34:88:b5:49:19:cd:17:36:d3:fc: 3b:38:e8:50:6d:23:6a:b4:68:ca:3e:72:2a:1b:de: 85:00:f1:f4:2b:ff:96:eb:80:11:12:a1:a9:ad:28: 5c:c7:49:b7:5d:7f:fd:d0:64:49:c8:a8:2f:7c:f5: 8b:86:a6:6e:75:fe:f3:72:ce:76:e2:7d:8a:c1:8a: 6c:5f:34:58:61:7c:28:44:05:a7:bd:64:d5:c9:94: 71:3e:fd:e0:3b:ee:d0:80:22:e3:bf:35:66:e7:c5: 6f:26:cb:f0:8a:0f:d9:a8:61:09:92:5c:a7:81:cf: ec:03:40:21:61:5e:90:23:41:5b:ec:e6:4b:34:6e: 79:a7:ae:65:ca:23:73:12:82:1c:85:f6:22:fe:0e: 2a:66:59:ca:0e:97:fa:6b:1c:bd:d6:41:3d:14:e6: 3a:75:8a:da:26:5b:3b:7a:1e:e7:5f:d8:24:db:a1: 14:33:93:b3:c0:1f:f9:fe:6b:ad:3d:96:ff:b8:00: cd:52:49:0d:f1:c2:db:0a:b1:e4:0a:13:39:11:fb: 54:c1:94:6b:a6:03:bd:cd:1f:dd:8e:3c:d9:36:ea: 91:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:8A:D3:8D:A2:60:84:D5:1B:6B:FC:AA:EA:D8:DC:CF:0F:56:4A:19 X509v3 Authority Key Identifier: keyid:6E:39:8C:52:CC:2A:07:9D:A9:01:48:21:0A:C8:53:28:C1:1B:BE:96 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/bjmMUswqB52pAUghCshTKMEbvpY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/vIrTjaJghNUba_yq6tjczw9WShk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.147.130.0/23 Signature Algorithm: sha256WithRSAEncryption a2:1c:5e:67:7d:52:50:be:73:21:fe:5f:2d:8b:d7:4e:0a:6f: 8a:b9:b2:c5:01:64:bb:56:6a:f4:78:0f:ab:3b:98:87:c7:d4: 9c:f1:82:ac:77:e4:d4:92:59:57:62:82:57:b6:2e:1c:30:42: b3:40:6e:8c:6a:1a:38:70:39:9e:96:a9:6b:cd:40:bf:b0:2b: b4:af:ae:46:ce:cb:43:ce:32:b2:03:84:8f:d2:0d:86:96:51: dd:db:5c:ce:0d:8b:97:8c:a5:4c:63:b9:b0:c1:32:85:4e:16: 0b:46:d2:69:12:2b:ff:0d:75:67:9a:5a:2b:7f:3b:90:97:aa: 98:7a:3f:89:9a:15:99:40:34:19:2d:e4:06:93:b1:0b:b5:c8: e1:91:f5:1a:84:0d:6e:4d:11:17:87:39:4f:0f:a9:68:68:17: 64:90:57:44:1b:ed:39:99:b3:b3:85:fb:b8:84:7f:ef:0a:36: cd:4a:d9:e0:06:54:07:62:6c:70:8b:5b:87:f6:ee:be:b0:4d: 44:69:26:2f:f8:8c:7c:a8:9f:b7:1b:6c:12:2d:ce:bb:51:21: 67:83:7e:e4:20:0c:e5:a4:0d:22:04:6d:38:1a:2c:43:32:f4: cb:26:8a:fa:6c:97:7b:e9:a4:3b:ff:31:8c:01:3e:0e:5d:0b: d3:a3:a7:03 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICCwIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkUz OThDNTJDQzJBMDc5REE5MDE0ODIxMEFDODUzMjhDMTFCQkU5NjAeFw0yNTA4MjIw ODU3NTZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEJDOEFEMzhEQTI2MDg0 RDUxQjZCRkNBQUVBRDhEQ0NGMEY1NjRBMTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWNYaBOQE/2JtcMSPrOQOcR800UxNuJerSWWEvFptY5tt3NIi1 SRnNFzbT/Ds46FBtI2q0aMo+ciob3oUA8fQr/5brgBESoamtKFzHSbddf/3QZEnI qC989YuGpm51/vNyznbifYrBimxfNFhhfChEBae9ZNXJlHE+/eA77tCAIuO/NWbn xW8my/CKD9moYQmSXKeBz+wDQCFhXpAjQVvs5ks0bnmnrmXKI3MSghyF9iL+Dipm WcoOl/prHL3WQT0U5jp1itomWzt6Hudf2CTboRQzk7PAH/n+a609lv+4AM1SSQ3x wtsKseQKEzkR+1TBlGumA73NH92OPNk26pHtAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUvIrTjaJghNUba/yq6tjczw9WShkwHwYDVR0jBBgwFoAUbjmMUswqB52pAUgh CshTKMEbvpYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvT1BFTlJJ Q0gvYmptTVVzd3FCNTJwQVVnaENzaFRLTUVidnBZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9iam1NVXN3cUI1MnBBVWdoQ3NoVEtNRWJ2cFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9PUEVOUklDSC92SXJUamFKZ2hOVWJh X3lxNnRqY3p3OVdTaGsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ5OCMA0GCSqGSIb3DQEBCwUAA4IBAQCiHF5nfVJQvnMh/l8ti9dOCm+KubLF AWS7Vmr0eA+rO5iHx9Sc8YKsd+TUkllXYoJXti4cMEKzQG6Maho4cDmelqlrzUC/ sCu0r65GzstDzjKyA4SP0g2GllHd21zODYuXjKVMY7mwwTKFThYLRtJpEiv/DXVn mlorfzuQl6qYej+JmhWZQDQZLeQGk7ELtcjhkfUahA1uTREXhzlPD6loaBdkkFdE G+05mbOzhfu4hH/vCjbNStngBlQHYmxwi1uH9u6+sE1EaSYv+Ix8qJ+3G2wSLc67 USFng37kIAzlpA0iBG04GixDMvTLJor6bJd76aQ7/zGMAT4OXQvTo6cD -----END CERTIFICATE-----Generated at Sun Aug 24 13:13:55 2025 by rpki-client