$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SDTV/WlPAWpQZVEYKm6FUVFewkUedDPA.roa File: WlPAWpQZVEYKm6FUVFewkUedDPA.roa (raw, json) Hash identifier: Mzs7KRx6wgRO9OLjN0uGaNyYpPgIdddz0bWIqxutbn8= Subject key identifier: 5A:53:C0:5A:94:19:54:46:0A:9B:A1:54:54:57:B0:91:47:9D:0C:F0 Certificate issuer: /CN=7F5D8D54ECB7CEEB46FD8DF5467C41C002443526 Certificate serial: 0D78 Authority key identifier: 7F:5D:8D:54:EC:B7:CE:EB:46:FD:8D:F5:46:7C:41:C0:02:44:35:26 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/f12NVOy3zutG_Y31RnxBwAJENSY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDTV/WlPAWpQZVEYKm6FUVFewkUedDPA.roa Signing time: Fri 22 Aug 2025 08:56:09 +0000 ROA not before: Fri 22 Aug 2025 08:56:09 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131611 IP address blocks: 103.100.164.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDTV/f12NVOy3zutG_Y31RnxBwAJENSY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SDTV/f12NVOy3zutG_Y31RnxBwAJENSY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/f12NVOy3zutG_Y31RnxBwAJENSY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3448 (0xd78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7F5D8D54ECB7CEEB46FD8DF5467C41C002443526 Validity Not Before: Aug 22 08:56:09 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=5A53C05A941954460A9BA1545457B091479D0CF0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:67:be:7c:45:e4:35:9e:f7:5b:59:76:d4:e4: dc:1d:a6:2b:b6:1e:cf:6c:9c:57:8b:48:ed:2c:08: 66:71:f9:d1:34:c9:d1:1d:16:7a:c9:38:90:61:9f: 20:db:0d:31:54:fa:0d:15:b8:81:32:a5:b3:1a:58: ea:e0:93:9b:3a:a9:08:06:7f:ac:34:07:2c:cc:99: 50:c2:e7:b5:cb:61:28:0a:68:fe:52:0b:b2:b9:32: 7d:25:90:26:8f:94:9e:ca:8f:e7:5e:5a:92:59:ac: b2:be:b4:a2:a3:cb:34:44:ef:93:4f:68:d5:7d:43: 63:e8:4b:ea:0b:98:6d:12:90:c2:aa:01:a6:b0:cc: cb:6c:87:c6:f6:14:11:e6:dc:e0:b6:9f:6e:24:a5: f0:7a:f4:f5:d2:dc:78:a4:0b:ac:d1:54:e7:fb:94: 65:53:19:d4:ac:cc:77:eb:4e:a6:a1:a0:02:70:4f: 18:ea:4c:75:ef:b9:60:c3:70:aa:d0:88:1b:50:48: 7f:06:86:01:8a:8d:8e:90:ed:b4:92:60:de:bd:32: 42:a7:c5:a6:5d:33:c0:0e:c3:e6:91:a6:c0:16:7a: 03:16:d2:9e:68:a6:14:d5:e4:5b:f4:cb:cf:85:10: 92:26:56:c6:21:cf:64:6c:38:6c:d8:f5:b2:97:67: 28:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:53:C0:5A:94:19:54:46:0A:9B:A1:54:54:57:B0:91:47:9D:0C:F0 X509v3 Authority Key Identifier: keyid:7F:5D:8D:54:EC:B7:CE:EB:46:FD:8D:F5:46:7C:41:C0:02:44:35:26 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDTV/f12NVOy3zutG_Y31RnxBwAJENSY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/f12NVOy3zutG_Y31RnxBwAJENSY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDTV/WlPAWpQZVEYKm6FUVFewkUedDPA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.100.164.0/22 Signature Algorithm: sha256WithRSAEncryption c3:40:26:7f:09:55:33:b4:fd:b5:92:b4:5f:c1:b0:8b:70:e0: f4:7e:7b:c6:38:48:fa:b5:76:77:83:e4:1c:25:d2:cb:37:84: 1c:4f:c6:8e:b6:93:9e:99:c7:06:f5:5f:b0:13:6a:1a:c1:f1: fb:65:19:9a:f3:b9:29:e7:e3:75:cf:6d:4d:9f:b4:05:47:24: 7e:d6:b1:68:fc:e5:1a:b6:92:c9:13:f7:ee:f4:dc:e9:70:ee: c8:b8:40:eb:86:81:50:96:6a:e1:21:06:98:40:93:d7:ec:5b: 3d:f9:f7:35:63:4b:25:d8:aa:86:e6:1f:be:50:f2:99:4a:0f: 44:ef:df:79:79:8d:e1:88:af:79:d9:98:b0:02:85:55:3e:9c: 74:a8:76:0b:a0:7f:b5:a4:c8:15:ba:05:b0:db:57:a2:b7:77: f0:f6:f2:0f:a1:41:92:cc:69:ae:38:88:78:d7:d9:39:c6:ea: a6:61:c4:8c:31:12:d4:72:15:14:67:f1:fa:05:79:ea:39:f5: d3:3e:38:80:13:52:9d:d1:32:2e:0c:92:10:55:2b:7e:e5:80: 39:10:60:02:c2:20:b4:8f:92:72:47:8f:0c:ee:77:b3:0e:e8: 4f:45:7b:3b:79:2a:9e:1e:da:68:36:70:5b:f9:bc:b9:a4:b9: f4:df:05:b7 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDXgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0Y1 RDhENTRFQ0I3Q0VFQjQ2RkQ4REY1NDY3QzQxQzAwMjQ0MzUyNjAeFw0yNTA4MjIw ODU2MDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDVBNTNDMDVBOTQxOTU0 NDYwQTlCQTE1NDU0NTdCMDkxNDc5RDBDRjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCjZ758ReQ1nvdbWXbU5Nwdpiu2Hs9snFeLSO0sCGZx+dE0ydEd FnrJOJBhnyDbDTFU+g0VuIEypbMaWOrgk5s6qQgGf6w0ByzMmVDC57XLYSgKaP5S C7K5Mn0lkCaPlJ7Kj+deWpJZrLK+tKKjyzRE75NPaNV9Q2PoS+oLmG0SkMKqAaaw zMtsh8b2FBHm3OC2n24kpfB69PXS3HikC6zRVOf7lGVTGdSszHfrTqahoAJwTxjq THXvuWDDcKrQiBtQSH8GhgGKjY6Q7bSSYN69MkKnxaZdM8AOw+aRpsAWegMW0p5o phTV5Fv0y8+FEJImVsYhz2RsOGzY9bKXZyijAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUWlPAWpQZVEYKm6FUVFewkUedDPAwHwYDVR0jBBgwFoAUf12NVOy3zutG/Y31 RnxBwAJENSYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0RUVi9m MTJOVk95M3p1dEdfWTMxUm54QndBSkVOU1kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2YxMk5WT3kzenV0R19ZMzFSbnhCd0FKRU5TWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1NEVFYvV2xQQVdwUVpWRVlLbTZGVVZGZXdr VWVkRFBBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmdkpDAN BgkqhkiG9w0BAQsFAAOCAQEAw0AmfwlVM7T9tZK0X8Gwi3Dg9H57xjhI+rV2d4Pk HCXSyzeEHE/GjraTnpnHBvVfsBNqGsHx+2UZmvO5Kefjdc9tTZ+0BUckftaxaPzl GraSyRP37vTc6XDuyLhA64aBUJZq4SEGmECT1+xbPfn3NWNLJdiqhuYfvlDymUoP RO/feXmN4YivedmYsAKFVT6cdKh2C6B/taTIFboFsNtXord38PbyD6FBksxprjiI eNfZOcbqpmHEjDES1HIVFGfx+gV56jn10z44gBNSndEyLgySEFUrfuWAORBgAsIg tI+SckePDO53sw7oT0V7O3kqnh7aaDZwW/m8uaS59N8Ftw== -----END CERTIFICATE-----Generated at Sun Aug 24 13:40:24 2025 by rpki-client