$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PEICHANG/CALb_YDiLkpQWdTOtIN8JQdpDu4.roa File: CALb_YDiLkpQWdTOtIN8JQdpDu4.roa (raw, json) Hash identifier: KvkI4kVWZ5hNUp+QodmvB3EYxJtM9q7r3veJIAFh4uE= Subject key identifier: 08:02:DB:FD:80:E2:2E:4A:50:59:D4:CE:B4:83:7C:25:07:69:0E:EE Certificate issuer: /CN=53AB025E558614A6AC89DCA0302DD23BD596A256 Certificate serial: 0252 Authority key identifier: 53:AB:02:5E:55:86:14:A6:AC:89:DC:A0:30:2D:D2:3B:D5:96:A2:56 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/U6sCXlWGFKasidygMC3SO9WWolY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEICHANG/CALb_YDiLkpQWdTOtIN8JQdpDu4.roa Signing time: Fri 22 Aug 2025 09:00:55 +0000 ROA not before: Fri 22 Aug 2025 09:00:55 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131642 IP address blocks: 103.99.140.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEICHANG/U6sCXlWGFKasidygMC3SO9WWolY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PEICHANG/U6sCXlWGFKasidygMC3SO9WWolY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/U6sCXlWGFKasidygMC3SO9WWolY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 594 (0x252) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53AB025E558614A6AC89DCA0302DD23BD596A256 Validity Not Before: Aug 22 09:00:55 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=0802DBFD80E22E4A5059D4CEB4837C2507690EEE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:69:7a:5b:ac:53:20:fc:44:96:14:fd:00:26: aa:35:0b:fc:0a:ed:c4:4b:5c:db:ac:7b:ef:2c:0f: 57:68:b4:b4:b1:d9:5c:80:79:b9:89:31:cc:63:73: e3:90:17:92:72:c0:1f:26:88:4d:9e:73:1b:01:45: 9b:2c:96:b0:f5:75:d1:69:6a:6e:92:4c:ec:a6:f4: 8d:21:0b:0c:eb:fb:4c:4d:95:0b:cf:09:0b:38:56: b6:61:23:2c:bb:0a:76:45:e7:04:8a:69:46:bc:48: 82:ad:d8:dc:a9:ce:cd:80:f4:5d:9e:64:d5:3a:31: 33:7d:b6:07:6a:55:0d:99:2d:8b:31:21:f5:9a:a4: 62:bd:92:ca:57:be:04:1f:d3:11:1d:c7:e8:42:5e: eb:58:78:2f:4b:bf:89:40:05:3a:64:a5:12:2a:88: 68:35:4f:a8:d9:1c:a1:4e:75:c3:15:83:44:3a:73: 55:88:f9:4e:61:3d:30:55:0a:a0:a7:a5:a5:c6:31: 1d:bf:0e:cd:88:3b:e3:d7:30:18:64:06:1f:9a:1f: 97:01:88:c1:15:17:c0:74:f8:bf:e6:fe:f1:6e:5a: 15:da:f7:88:f4:0c:04:c5:20:70:89:7e:df:16:94: 7a:8b:9d:45:cb:af:90:2e:1a:ea:ee:aa:df:00:94: 90:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:02:DB:FD:80:E2:2E:4A:50:59:D4:CE:B4:83:7C:25:07:69:0E:EE X509v3 Authority Key Identifier: keyid:53:AB:02:5E:55:86:14:A6:AC:89:DC:A0:30:2D:D2:3B:D5:96:A2:56 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEICHANG/U6sCXlWGFKasidygMC3SO9WWolY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/U6sCXlWGFKasidygMC3SO9WWolY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEICHANG/CALb_YDiLkpQWdTOtIN8JQdpDu4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.99.140.0/23 Signature Algorithm: sha256WithRSAEncryption 51:eb:f1:c1:73:2a:96:26:a9:3f:19:20:6f:a7:0b:d3:83:51: 89:70:83:01:76:8f:9b:81:c8:69:ea:d8:73:e1:48:f0:1e:de: 25:08:f3:5d:c2:54:2c:36:da:30:fd:76:40:c2:76:10:8a:a1: ea:d8:30:e6:ce:c2:7a:a7:67:38:e5:a2:40:b8:47:27:9d:06: 81:ec:06:e7:4b:5e:bc:2b:b7:6e:87:4c:2e:40:5c:ef:96:92: 0f:b3:c2:18:fe:81:eb:62:2c:b7:5e:52:4c:fa:60:97:46:bc: 49:20:19:35:b8:21:e3:5c:f4:db:cd:3e:16:e0:d5:8b:2c:d3: 96:8a:a8:cd:38:ad:76:97:dc:fd:44:89:59:50:9a:a3:ca:54: 8d:b1:f9:ea:88:08:8b:18:34:ce:5c:ae:60:74:7f:33:ae:80: 33:fe:9c:e5:41:99:24:87:3c:3b:14:19:63:69:94:a1:74:9b: f3:03:b2:93:fa:39:bc:b4:cf:ca:0c:cd:6c:31:dd:ce:fb:77: 03:5f:1b:2f:ae:e1:31:08:f8:4f:2f:64:09:a9:ee:c2:04:9e: 42:04:4a:12:79:71:94:42:54:4c:fc:0a:32:62:a8:bf:8b:0f: bc:ec:da:11:f1:d7:61:16:9d:b5:75:8a:6d:1c:76:81:a8:9c: 8e:5a:e1:ec -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICAlIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTNB QjAyNUU1NTg2MTRBNkFDODlEQ0EwMzAyREQyM0JENTk2QTI1NjAeFw0yNTA4MjIw OTAwNTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDA4MDJEQkZEODBFMjJF NEE1MDU5RDRDRUI0ODM3QzI1MDc2OTBFRUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGaXpbrFMg/ESWFP0AJqo1C/wK7cRLXNuse+8sD1dotLSx2VyA ebmJMcxjc+OQF5JywB8miE2ecxsBRZsslrD1ddFpam6STOym9I0hCwzr+0xNlQvP CQs4VrZhIyy7CnZF5wSKaUa8SIKt2Nypzs2A9F2eZNU6MTN9tgdqVQ2ZLYsxIfWa pGK9kspXvgQf0xEdx+hCXutYeC9Lv4lABTpkpRIqiGg1T6jZHKFOdcMVg0Q6c1WI +U5hPTBVCqCnpaXGMR2/Ds2IO+PXMBhkBh+aH5cBiMEVF8B0+L/m/vFuWhXa94j0 DATFIHCJft8WlHqLnUXLr5AuGuruqt8AlJCbAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUCALb/YDiLkpQWdTOtIN8JQdpDu4wHwYDVR0jBBgwFoAUU6sCXlWGFKasidyg MC3SO9WWolYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEVJQ0hB TkcvVTZzQ1hsV0dGS2FzaWR5Z01DM1NPOVdXb2xZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9VNnNDWGxXR0ZLYXNpZHlnTUMzU085V1dvbFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QRUlDSEFORy9DQUxiX1lEaUxrcFFX ZFRPdElOOEpRZHBEdTQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ2OMMA0GCSqGSIb3DQEBCwUAA4IBAQBR6/HBcyqWJqk/GSBvpwvTg1GJcIMB do+bgchp6thz4UjwHt4lCPNdwlQsNtow/XZAwnYQiqHq2DDmzsJ6p2c45aJAuEcn nQaB7AbnS168K7duh0wuQFzvlpIPs8IY/oHrYiy3XlJM+mCXRrxJIBk1uCHjXPTb zT4W4NWLLNOWiqjNOK12l9z9RIlZUJqjylSNsfnqiAiLGDTOXK5gdH8zroAz/pzl QZkkhzw7FBljaZShdJvzA7KT+jm8tM/KDM1sMd3O+3cDXxsvruExCPhPL2QJqe7C BJ5CBEoSeXGUQlRM/AoyYqi/iw+87NoR8ddhFp21dYptHHaBqJyOWuHs -----END CERTIFICATE-----Generated at Sun Aug 24 09:40:13 2025 by rpki-client