$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/22kQ8MnIvO958uXPKuyzasXiQ3k.roa File: 22kQ8MnIvO958uXPKuyzasXiQ3k.roa (raw, json) Hash identifier: Zmxde+QGybWi4Ba7JzXHmlHwOgD+xMgDtC+4ZUKYSqI= Subject key identifier: DB:69:10:F0:C9:C8:BC:EF:79:F2:E5:CF:2A:EC:B3:6A:C5:E2:43:79 Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Certificate serial: 0DC2 Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/22kQ8MnIvO958uXPKuyzasXiQ3k.roa Signing time: Fri 22 Aug 2025 08:49:50 +0000 ROA not before: Fri 22 Aug 2025 08:49:50 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4781 IP address blocks: 210.63.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3522 (0xdc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Validity Not Before: Aug 22 08:49:50 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=DB6910F0C9C8BCEF79F2E5CF2AECB36AC5E24379 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:f2:d8:ca:7c:34:80:08:ff:9e:5f:66:d2:6c: 55:2d:8a:aa:e2:77:68:48:e2:92:83:b4:06:a2:e5: e7:eb:ff:a2:ba:63:fa:76:10:0c:41:0a:96:3d:d5: b1:4d:f7:c9:8e:a1:0b:04:f9:1f:39:1d:e9:9f:b0: 0f:5c:cf:3f:d4:af:b9:03:0e:76:85:a9:4e:d2:d8: d3:4a:37:4d:48:26:01:7e:57:3b:ed:89:6c:3a:15: ef:79:56:96:63:c6:e0:65:29:c5:fd:36:d2:33:42: 0d:6c:72:16:e7:30:d1:09:0b:b9:7a:75:0d:ed:4d: 0e:6e:cb:f5:60:eb:69:56:04:44:30:2a:7b:ee:55: bb:ad:a7:8d:26:99:19:8f:5f:96:14:c3:8b:8a:f2: ea:29:89:c5:4b:67:58:7e:fa:f2:e5:97:a4:3e:be: 9b:5d:f9:9d:bb:d2:50:2d:20:30:85:2e:61:de:d9: 0d:b3:9f:2c:30:27:ba:5a:e6:e1:05:a7:44:6c:4a: fb:f6:5b:18:4c:13:50:93:e5:aa:f9:8b:c8:ac:2b: 90:21:e2:2a:29:c1:82:06:a4:29:11:e9:1b:d6:70: c6:60:fa:7e:e7:0e:a2:fc:f1:d8:a4:e0:66:79:6c: ee:f8:e0:86:12:8f:d5:3e:65:26:df:c0:2f:66:20: 6e:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:69:10:F0:C9:C8:BC:EF:79:F2:E5:CF:2A:EC:B3:6A:C5:E2:43:79 X509v3 Authority Key Identifier: keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/22kQ8MnIvO958uXPKuyzasXiQ3k.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.63.103.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:5e:55:51:88:8c:09:c1:6f:95:50:f1:35:4e:43:a2:02:34: 7c:c4:ad:53:af:6d:5f:6b:52:02:27:c7:88:4b:0b:de:33:51: 0b:e1:30:a6:e1:a5:a6:50:70:2e:30:5d:fe:6f:85:6e:b5:1a: 23:49:f0:f1:57:45:eb:db:15:86:39:d2:8b:82:ec:23:91:20: ed:6b:16:eb:32:de:60:df:a8:f8:67:bb:6b:cc:3e:cf:3e:f8: 3e:24:ca:05:0a:16:4f:a5:13:0b:61:a6:53:96:4e:0d:f3:a3: 5c:15:4d:dc:14:b9:d8:9a:e8:00:d9:b9:0e:67:0a:f2:74:08: a5:a1:b8:64:08:bb:8e:10:20:71:70:e5:92:bf:f3:5b:fe:03: f1:2a:56:9f:d8:cb:67:bf:b6:3d:a0:98:1b:11:0c:33:81:48: af:03:32:20:d6:93:be:f0:6e:93:d8:47:a2:04:9c:56:10:9c: 15:a2:fd:e1:0a:c7:5c:3e:ba:0c:bd:d4:1e:28:3a:0e:34:f5: 34:3e:98:80:12:94:ca:46:14:49:e3:cc:2c:6c:c5:5d:be:26: 4c:5e:b3:30:aa:83:79:08:7a:65:76:d5:1a:da:25:29:77:df: c3:68:a1:ec:1b:74:da:d4:8e:64:59:a5:eb:77:e6:33:33:ba: 99:56:2c:d3 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDcIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTI5 QjYwNkRCODYyODNCRDRBMDhBRjdFQjMzRUYzOEEyNTY2MzFCQjAeFw0yNTA4MjIw ODQ5NTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKERCNjkxMEYwQzlDOEJD RUY3OUYyRTVDRjJBRUNCMzZBQzVFMjQzNzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCq8tjKfDSACP+eX2bSbFUtiqrid2hI4pKDtAai5efr/6K6Y/p2 EAxBCpY91bFN98mOoQsE+R85HemfsA9czz/Ur7kDDnaFqU7S2NNKN01IJgF+Vzvt iWw6Fe95VpZjxuBlKcX9NtIzQg1schbnMNEJC7l6dQ3tTQ5uy/Vg62lWBEQwKnvu Vbutp40mmRmPX5YUw4uK8uopicVLZ1h++vLll6Q+vptd+Z270lAtIDCFLmHe2Q2z nywwJ7pa5uEFp0RsSvv2WxhME1CT5ar5i8isK5Ah4iopwYIGpCkR6RvWcMZg+n7n DqL88dik4GZ5bO744IYSj9U+ZSbfwC9mIG7pAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU22kQ8MnIvO958uXPKuyzasXiQ3kwHwYDVR0jBBgwFoAUUptgbbhig71KCK9+ sz7ziiVmMbswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEFHSUMv VXB0Z2JiaGlnNzFLQ0s5LXN6N3ppaVZtTWJzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9VcHRnYmJoaWc3MUtDSzktc3o3emlpVm1NYnMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QQUdJQy8yMmtROE1uSXZPOTU4dVhQS3V5 emFzWGlRM2sucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0j9n MA0GCSqGSIb3DQEBCwUAA4IBAQAbXlVRiIwJwW+VUPE1TkOiAjR8xK1Tr21fa1IC J8eISwveM1EL4TCm4aWmUHAuMF3+b4VutRojSfDxV0Xr2xWGOdKLguwjkSDtaxbr Mt5g36j4Z7trzD7PPvg+JMoFChZPpRMLYaZTlk4N86NcFU3cFLnYmugA2bkOZwry dAilobhkCLuOECBxcOWSv/Nb/gPxKlaf2Mtnv7Y9oJgbEQwzgUivAzIg1pO+8G6T 2EeiBJxWEJwVov3hCsdcProMvdQeKDoONPU0PpiAEpTKRhRJ48wsbMVdviZMXrMw qoN5CHpldtUa2iUpd9/DaKHsG3Ta1I5kWaXrd+YzM7qZVizT -----END CERTIFICATE-----Generated at Sun Aug 24 09:45:04 2025 by rpki-client