$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PNI/QZjFtdoB5l0VTrzX-othhePeAgY.roa File: QZjFtdoB5l0VTrzX-othhePeAgY.roa (raw, json) Hash identifier: BLrWyqVSE+tVmnPedxYbiaCQSa6RU71YU5xms1YpmlU= Subject key identifier: 41:98:C5:B5:DA:01:E6:5D:15:4E:BC:D7:FA:8B:61:85:E3:DE:02:06 Certificate issuer: /CN=3118C334DA58D7C0021DCAACA881DFB9DC8365FF Certificate serial: 09DB Authority key identifier: 31:18:C3:34:DA:58:D7:C0:02:1D:CA:AC:A8:81:DF:B9:DC:83:65:FF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MRjDNNpY18ACHcqsqIHfudyDZf8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/QZjFtdoB5l0VTrzX-othhePeAgY.roa Signing time: Fri 22 Aug 2025 08:55:26 +0000 ROA not before: Fri 22 Aug 2025 08:55:26 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131642 IP address blocks: 103.148.72.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/MRjDNNpY18ACHcqsqIHfudyDZf8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/MRjDNNpY18ACHcqsqIHfudyDZf8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/MRjDNNpY18ACHcqsqIHfudyDZf8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2523 (0x9db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3118C334DA58D7C0021DCAACA881DFB9DC8365FF Validity Not Before: Aug 22 08:55:26 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=4198C5B5DA01E65D154EBCD7FA8B6185E3DE0206 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:6a:b5:68:ca:77:ab:1b:a4:71:01:83:dd:6a: d6:26:5f:d4:b6:57:1a:86:00:2f:9b:9f:de:41:4e: 15:6f:37:fa:22:cb:28:df:84:45:33:e5:20:c0:f7: 6c:d0:f3:cb:5c:cf:02:84:f6:62:5a:61:7f:54:e8: a6:69:07:69:75:5e:2b:74:d2:6a:97:b8:1a:02:33: 4b:02:cc:da:66:17:f6:8e:c0:f8:76:e8:79:b0:05: 9b:e7:c4:3c:90:ae:9c:6f:bd:8e:56:40:0c:53:07: 19:0a:0f:b1:34:af:d8:c8:c8:f9:e0:5f:e3:1b:df: 8d:9c:f0:93:17:9a:b3:52:df:8f:60:c4:6c:fb:f5: 40:58:ac:d4:5f:59:2d:c1:05:6d:73:08:4e:28:e8: 23:f4:84:74:7d:ad:75:f6:2d:5b:3e:a7:f4:90:9b: 1d:88:f8:97:68:7b:f6:b4:1f:6b:9f:89:01:2b:27: f5:c6:bf:d1:52:c7:8c:3d:e1:de:04:9a:a9:f7:69: 24:93:9d:47:c5:70:c3:db:d8:74:1b:02:76:08:ac: f6:ef:d8:49:58:30:ec:2e:47:a6:46:c4:93:ec:49: 18:c4:f7:d4:e1:63:62:aa:12:c7:2b:32:02:77:af: bd:2d:f3:51:77:17:19:e9:28:03:f4:d5:c6:e6:55: 1b:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:98:C5:B5:DA:01:E6:5D:15:4E:BC:D7:FA:8B:61:85:E3:DE:02:06 X509v3 Authority Key Identifier: keyid:31:18:C3:34:DA:58:D7:C0:02:1D:CA:AC:A8:81:DF:B9:DC:83:65:FF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/MRjDNNpY18ACHcqsqIHfudyDZf8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MRjDNNpY18ACHcqsqIHfudyDZf8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/QZjFtdoB5l0VTrzX-othhePeAgY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.148.72.0/23 Signature Algorithm: sha256WithRSAEncryption a1:01:22:aa:eb:ce:f7:8c:e6:fa:39:cd:6d:34:23:25:a0:c9: a6:09:ac:ab:2e:c9:fe:1f:dd:0e:28:14:06:61:f6:a6:d1:ca: ef:64:28:d6:a5:58:34:3c:ac:8f:11:27:88:d2:7c:71:76:bd: 1c:77:9d:b7:b5:39:f6:e2:db:0a:e2:ff:e1:b5:29:c9:d3:65: a8:f1:47:01:1a:e6:30:7d:33:fd:51:10:ee:57:eb:0e:d4:2c: 63:1d:13:83:1d:1a:0b:d2:76:65:ad:66:ef:cf:a3:7e:e6:12: ab:c1:e8:e7:5d:ec:2a:15:6d:e5:6c:78:09:7e:1d:19:37:d2: 84:51:49:4b:3d:77:89:1e:fd:cf:12:86:9b:70:3d:1b:9d:76: 31:cb:a8:13:61:9e:89:7f:13:e4:5b:c8:6e:a2:bf:d6:98:7a: 88:b7:37:97:b7:99:f1:ab:f8:b2:bb:c8:bf:ac:b5:8a:c0:38: 53:08:39:e4:59:49:68:24:a0:62:38:92:76:ee:45:79:a0:af: 92:21:4e:09:15:53:5b:ab:a5:d7:2d:ac:c2:62:90:fd:74:05: fd:70:ec:d8:5a:54:d1:4d:f2:4b:c1:c3:5d:5c:e8:45:2d:9b: 67:d1:6c:1f:89:a6:d6:bf:a5:85:c9:0d:75:e8:ce:19:6f:8b: df:d4:bb:b9 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICCdswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzEx OEMzMzREQTU4RDdDMDAyMURDQUFDQTg4MURGQjlEQzgzNjVGRjAeFw0yNTA4MjIw ODU1MjZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQxOThDNUI1REEwMUU2 NUQxNTRFQkNEN0ZBOEI2MTg1RTNERTAyMDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDuarVoynerG6RxAYPdatYmX9S2VxqGAC+bn95BThVvN/oiyyjf hEUz5SDA92zQ88tczwKE9mJaYX9U6KZpB2l1Xit00mqXuBoCM0sCzNpmF/aOwPh2 6HmwBZvnxDyQrpxvvY5WQAxTBxkKD7E0r9jIyPngX+Mb342c8JMXmrNS349gxGz7 9UBYrNRfWS3BBW1zCE4o6CP0hHR9rXX2LVs+p/SQmx2I+Jdoe/a0H2ufiQErJ/XG v9FSx4w94d4Emqn3aSSTnUfFcMPb2HQbAnYIrPbv2ElYMOwuR6ZGxJPsSRjE99Th Y2KqEscrMgJ3r70t81F3FxnpKAP01cbmVRtfAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUQZjFtdoB5l0VTrzX+othhePeAgYwHwYDVR0jBBgwFoAUMRjDNNpY18ACHcqs qIHfudyDZf8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUE5JL01S akROTnBZMThBQ0hjcXNxSUhmdWR5RFpmOC5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev TVJqRE5OcFkxOEFDSGNxc3FJSGZ1ZHlEWmY4LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvUE5JL1FaakZ0ZG9CNWwwVlRyelgtb3RoaGVQ ZUFnWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnlEgwDQYJ KoZIhvcNAQELBQADggEBAKEBIqrrzveM5vo5zW00IyWgyaYJrKsuyf4f3Q4oFAZh 9qbRyu9kKNalWDQ8rI8RJ4jSfHF2vRx3nbe1Ofbi2wri/+G1KcnTZajxRwEa5jB9 M/1REO5X6w7ULGMdE4MdGgvSdmWtZu/Po37mEqvB6Odd7CoVbeVseAl+HRk30oRR SUs9d4ke/c8ShptwPRuddjHLqBNhnol/E+RbyG6iv9aYeoi3N5e3mfGr+LK7yL+s tYrAOFMIOeRZSWgkoGI4knbuRXmgr5IhTgkVU1urpdctrMJikP10Bf1w7NhaVNFN 8kvBw11c6EUtm2fRbB+Jpta/pYXJDXXozhlvi9/Uu7k= -----END CERTIFICATE-----Generated at Sun Aug 24 11:42:02 2025 by rpki-client