$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/QUEWU/SWI-tqIGu7-4o6GBzcDLrHBBeaU.roa File: SWI-tqIGu7-4o6GBzcDLrHBBeaU.roa (raw, json) Hash identifier: AB+CMkaSILmoBjprruBWo3DSElFu1bLYpEqsFmT0rfU= Subject key identifier: 49:62:3E:B6:A2:06:BB:BF:B8:A3:A1:81:CD:C0:CB:AC:70:41:79:A5 Certificate issuer: /CN=9D3F68C726F59B288631AFF37EA4ED76BC2A9EC7 Certificate serial: 025D Authority key identifier: 9D:3F:68:C7:26:F5:9B:28:86:31:AF:F3:7E:A4:ED:76:BC:2A:9E:C7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/nT9oxyb1myiGMa_zfqTtdrwqnsc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/QUEWU/SWI-tqIGu7-4o6GBzcDLrHBBeaU.roa Signing time: Fri 22 Aug 2025 09:00:49 +0000 ROA not before: Fri 22 Aug 2025 09:00:49 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131642 IP address blocks: 103.69.54.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/QUEWU/nT9oxyb1myiGMa_zfqTtdrwqnsc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/QUEWU/nT9oxyb1myiGMa_zfqTtdrwqnsc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/nT9oxyb1myiGMa_zfqTtdrwqnsc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 605 (0x25d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9D3F68C726F59B288631AFF37EA4ED76BC2A9EC7 Validity Not Before: Aug 22 09:00:49 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=49623EB6A206BBBFB8A3A181CDC0CBAC704179A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:22:41:34:74:6c:f4:d7:1e:db:48:e4:94:e0: 63:1f:aa:95:0a:df:23:97:1b:c5:94:e2:06:49:91: 82:5b:69:03:e9:b5:c2:81:8d:08:a9:7a:9c:2b:da: 4f:3b:bd:c2:fc:13:39:c0:97:3c:fd:d4:5b:6d:40: db:8e:50:ed:08:85:75:35:44:82:b4:18:fd:3a:0f: 1d:28:c3:47:8a:8f:9f:bd:80:f5:57:04:0d:36:1d: 5f:c1:e3:1a:58:39:c3:17:d0:cf:b0:31:39:4c:e4: 4c:ab:9d:bf:19:1d:ad:da:78:5a:99:7c:7e:5e:51: 14:45:dc:13:31:bf:d5:23:78:cc:89:81:10:95:9a: fc:80:b5:4c:1d:07:cb:2b:6d:16:3c:78:8d:e3:8d: 74:b0:0c:5d:c4:16:0e:76:27:3d:9c:2a:3e:89:81: 39:d1:bb:39:81:36:11:d9:85:dd:6b:8d:44:ec:7b: 47:bd:b2:87:29:24:55:7e:eb:36:e9:b8:ca:76:03: b1:7f:6c:f8:17:64:9d:79:0c:d0:09:c1:c2:06:23: 1a:54:21:ed:13:26:03:ef:4d:e3:e3:a9:50:3a:c9: f2:da:4e:e8:ab:84:31:b6:72:1b:1f:1d:2e:fd:ca: 28:39:e8:ef:f7:31:92:ea:1b:b0:9c:11:a5:d3:67: 9c:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:62:3E:B6:A2:06:BB:BF:B8:A3:A1:81:CD:C0:CB:AC:70:41:79:A5 X509v3 Authority Key Identifier: keyid:9D:3F:68:C7:26:F5:9B:28:86:31:AF:F3:7E:A4:ED:76:BC:2A:9E:C7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/QUEWU/nT9oxyb1myiGMa_zfqTtdrwqnsc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/nT9oxyb1myiGMa_zfqTtdrwqnsc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/QUEWU/SWI-tqIGu7-4o6GBzcDLrHBBeaU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.69.54.0/23 Signature Algorithm: sha256WithRSAEncryption 1a:12:f7:c3:a9:cb:ba:8b:26:31:70:55:04:d8:6c:99:0e:55: 79:c3:b1:e7:0d:71:37:a8:9e:b7:d1:23:57:0e:56:69:61:96: 8d:16:aa:0d:23:c2:cc:5a:7a:3f:15:91:52:5e:88:ac:0f:3e: f7:3b:6a:f2:21:de:53:dc:5d:eb:8c:d3:3f:5d:fd:06:9f:4d: 1d:5d:8c:82:81:69:a9:3b:a6:9a:c8:10:4d:11:34:04:e0:66: 77:09:c4:32:28:b6:fc:bd:d9:06:33:7f:66:d9:8f:34:81:36: 7c:65:34:ef:2e:d1:01:bd:1a:27:a4:97:db:ef:4d:96:17:55: 92:5d:a3:21:b5:ef:a2:c4:8d:71:17:53:53:da:0a:4d:4f:1b: 0c:08:e6:f4:c1:da:b2:99:c2:85:52:02:2e:07:90:73:90:ed: 45:14:e6:fa:3e:5f:d4:e9:15:27:f9:b1:88:05:0f:ce:ba:ec: ef:32:aa:7a:de:e7:ac:6a:90:4f:3f:cc:e1:05:f4:a8:6f:dc: 99:a9:b4:a3:84:a6:36:dc:53:b0:57:26:40:b6:62:e7:c4:65: d7:d4:b2:ac:38:99:60:10:24:1a:86:fd:ef:26:8b:9a:16:fa: da:33:da:db:2a:68:e3:b8:bc:68:b0:44:70:80:f0:bb:b7:af: e2:b4:fe:8f -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICAl0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUQz RjY4QzcyNkY1OUIyODg2MzFBRkYzN0VBNEVENzZCQzJBOUVDNzAeFw0yNTA4MjIw OTAwNDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQ5NjIzRUI2QTIwNkJC QkZCOEEzQTE4MUNEQzBDQkFDNzA0MTc5QTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWIkE0dGz01x7bSOSU4GMfqpUK3yOXG8WU4gZJkYJbaQPptcKB jQipepwr2k87vcL8EznAlzz91FttQNuOUO0IhXU1RIK0GP06Dx0ow0eKj5+9gPVX BA02HV/B4xpYOcMX0M+wMTlM5Eyrnb8ZHa3aeFqZfH5eURRF3BMxv9UjeMyJgRCV mvyAtUwdB8srbRY8eI3jjXSwDF3EFg52Jz2cKj6JgTnRuzmBNhHZhd1rjUTse0e9 socpJFV+6zbpuMp2A7F/bPgXZJ15DNAJwcIGIxpUIe0TJgPvTePjqVA6yfLaTuir hDG2chsfHS79yig56O/3MZLqG7CcEaXTZ5z1AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUSWI+tqIGu7+4o6GBzcDLrHBBeaUwHwYDVR0jBBgwFoAUnT9oxyb1myiGMa/z fqTtdrwqnscwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUVVFV1Uv blQ5b3h5YjFteWlHTWFfemZxVHRkcndxbnNjLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9uVDlveHliMW15aUdNYV96ZnFUdGRyd3Fuc2MuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9RVUVXVS9TV0ktdHFJR3U3LTRvNkdCemNE THJIQkJlYVUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ0U2 MA0GCSqGSIb3DQEBCwUAA4IBAQAaEvfDqcu6iyYxcFUE2GyZDlV5w7HnDXE3qJ63 0SNXDlZpYZaNFqoNI8LMWno/FZFSXoisDz73O2ryId5T3F3rjNM/Xf0Gn00dXYyC gWmpO6aayBBNETQE4GZ3CcQyKLb8vdkGM39m2Y80gTZ8ZTTvLtEBvRonpJfb702W F1WSXaMhte+ixI1xF1NT2gpNTxsMCOb0wdqymcKFUgIuB5BzkO1FFOb6Pl/U6RUn +bGIBQ/OuuzvMqp63uesapBPP8zhBfSob9yZqbSjhKY23FOwVyZAtmLnxGXX1LKs OJlgECQahv3vJouaFvraM9rbKmjjuLxosERwgPC7t6/itP6P -----END CERTIFICATE-----Generated at Sun Aug 24 11:45:13 2025 by rpki-client