$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PIINET/1FQ1iHP0Ly5JGWqTLg3j5bwU5yA.roa File: 1FQ1iHP0Ly5JGWqTLg3j5bwU5yA.roa (raw, json) Hash identifier: QPFclKXerQnJqXhb2BIj0G4llRQMVmeSYVl4gxGTztg= Subject key identifier: D4:54:35:88:73:F4:2F:2E:49:19:6A:93:2E:0D:E3:E5:BC:14:E7:20 Certificate issuer: /CN=69797BDE8D0581FA299D8E1420ED2957C4208A07 Certificate serial: 0D6F Authority key identifier: 69:79:7B:DE:8D:05:81:FA:29:9D:8E:14:20:ED:29:57:C4:20:8A:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/aXl73o0FgfopnY4UIO0pV8Qgigc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PIINET/1FQ1iHP0Ly5JGWqTLg3j5bwU5yA.roa Signing time: Fri 22 Aug 2025 08:44:24 +0000 ROA not before: Fri 22 Aug 2025 08:44:24 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17710 IP address blocks: 103.234.80.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PIINET/aXl73o0FgfopnY4UIO0pV8Qgigc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PIINET/aXl73o0FgfopnY4UIO0pV8Qgigc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/aXl73o0FgfopnY4UIO0pV8Qgigc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3439 (0xd6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69797BDE8D0581FA299D8E1420ED2957C4208A07 Validity Not Before: Aug 22 08:44:24 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=D454358873F42F2E49196A932E0DE3E5BC14E720 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f2:0d:f7:87:f1:29:9a:5f:9a:cd:ec:f0:da: 0f:5b:dc:42:06:db:3f:bc:35:67:4f:a1:cc:83:7f: 3b:5e:ad:13:7d:ae:bb:32:bd:93:41:08:49:0d:81: 21:7f:08:17:3c:46:f2:0e:db:d3:6d:c2:08:97:16: 78:a7:b8:dc:2f:8c:f7:8c:b4:1c:49:d3:1b:3d:4d: b0:b6:f7:ed:61:38:03:a4:df:96:b7:32:92:15:53: ae:17:c7:fa:eb:a3:34:2c:13:48:ae:78:1c:d6:31: 95:03:dc:9a:5f:e6:31:0f:dd:46:e4:d4:76:a9:dd: 95:9f:da:45:ae:db:f7:93:f3:70:5d:d2:bb:1a:18: 99:99:7b:ed:3c:79:ca:03:a6:8d:b5:da:8a:88:bc: 9f:31:a0:c9:80:c7:ff:3a:eb:1f:31:2d:30:c2:f9: d2:c4:21:37:ac:f3:bf:6e:34:67:9c:42:a0:ef:08: 74:d8:06:84:9b:b6:65:5f:bd:63:a3:76:49:0d:3e: f4:a3:97:fa:a4:2e:c3:db:69:27:c4:a1:31:ea:5b: 76:55:66:c3:75:bc:53:50:10:a7:d3:94:c6:cc:b7: 10:73:b4:bb:01:f9:b2:1d:84:d0:10:16:8e:39:75: 8e:27:89:1b:16:1c:42:47:49:62:f4:a8:33:fd:d8: 90:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:54:35:88:73:F4:2F:2E:49:19:6A:93:2E:0D:E3:E5:BC:14:E7:20 X509v3 Authority Key Identifier: keyid:69:79:7B:DE:8D:05:81:FA:29:9D:8E:14:20:ED:29:57:C4:20:8A:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PIINET/aXl73o0FgfopnY4UIO0pV8Qgigc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/aXl73o0FgfopnY4UIO0pV8Qgigc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PIINET/1FQ1iHP0Ly5JGWqTLg3j5bwU5yA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.234.80.0/22 Signature Algorithm: sha256WithRSAEncryption 80:85:c8:70:bc:7a:ee:f4:de:c4:8b:60:64:35:d0:0b:50:01: 42:69:fa:e2:2a:89:43:3c:a7:2d:3c:82:ea:d1:ec:5f:2a:ec: 29:e4:8a:a5:f6:1b:ad:a2:43:f7:2e:74:36:83:ef:a7:1a:e6: e1:12:c0:9e:f9:ec:df:14:8f:29:89:10:49:3b:7d:57:c5:6e: c4:02:48:72:ee:b1:20:31:04:c1:2d:1a:d1:28:13:3d:ce:e5: 62:1c:c9:27:36:ae:bf:13:87:35:e6:37:9a:b7:45:8f:83:25: 94:68:b7:e4:ea:8e:ec:82:85:e4:08:4a:2a:eb:ad:46:b2:66: ba:25:ec:dc:b9:90:8d:b1:07:a2:a3:95:6e:09:14:74:0c:37: 50:73:ed:7a:2f:8e:cd:c6:90:30:3c:a5:d2:c5:ec:e3:a7:31: 08:66:0a:7c:f5:46:8e:ab:25:11:3e:7b:6a:b3:b0:0d:af:39: 5c:d2:92:ca:89:0b:ff:21:5c:86:72:04:98:a8:3f:33:df:ef: f6:25:6a:3b:35:36:c4:27:f5:4b:61:cd:65:9e:3d:9e:44:86: 6e:ff:b6:fa:84:8e:31:6f:e1:65:27:77:a4:90:df:8b:50:50: f3:55:e8:8e:d7:8d:b1:3d:0e:8b:1f:b7:cd:ad:6e:ae:b3:be: 40:72:95:c6 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDW8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk3 OTdCREU4RDA1ODFGQTI5OUQ4RTE0MjBFRDI5NTdDNDIwOEEwNzAeFw0yNTA4MjIw ODQ0MjRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEQ0NTQzNTg4NzNGNDJG MkU0OTE5NkE5MzJFMERFM0U1QkMxNEU3MjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC58g33h/Epml+azezw2g9b3EIG2z+8NWdPocyDfzterRN9rrsy vZNBCEkNgSF/CBc8RvIO29NtwgiXFninuNwvjPeMtBxJ0xs9TbC29+1hOAOk35a3 MpIVU64Xx/rrozQsE0iueBzWMZUD3Jpf5jEP3Ubk1Hap3ZWf2kWu2/eT83Bd0rsa GJmZe+08ecoDpo212oqIvJ8xoMmAx/866x8xLTDC+dLEITes879uNGecQqDvCHTY BoSbtmVfvWOjdkkNPvSjl/qkLsPbaSfEoTHqW3ZVZsN1vFNQEKfTlMbMtxBztLsB +bIdhNAQFo45dY4niRsWHEJHSWL0qDP92JAnAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU1FQ1iHP0Ly5JGWqTLg3j5bwU5yAwHwYDVR0jBBgwFoAUaXl73o0FgfopnY4U IO0pV8QgigcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUElJTkVU L2FYbDczbzBGZ2ZvcG5ZNFVJTzBwVjhRZ2lnYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvYVhsNzNvMEZnZm9wblk0VUlPMHBWOFFnaWdjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvUElJTkVULzFGUTFpSFAwTHk1SkdXcVRM ZzNqNWJ3VTV5QS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn 6lAwDQYJKoZIhvcNAQELBQADggEBAICFyHC8eu703sSLYGQ10AtQAUJp+uIqiUM8 py08gurR7F8q7CnkiqX2G62iQ/cudDaD76ca5uESwJ757N8UjymJEEk7fVfFbsQC SHLusSAxBMEtGtEoEz3O5WIcySc2rr8ThzXmN5q3RY+DJZRot+TqjuyCheQISirr rUayZrol7Ny5kI2xB6KjlW4JFHQMN1Bz7Xovjs3GkDA8pdLF7OOnMQhmCnz1Ro6r JRE+e2qzsA2vOVzSksqJC/8hXIZyBJioPzPf7/Ylajs1NsQn9UthzWWePZ5Ehm7/ tvqEjjFv4WUnd6SQ34tQUPNV6I7XjbE9Dosft82tbq6zvkBylcY= -----END CERTIFICATE-----Generated at Sun Aug 24 15:36:31 2025 by rpki-client