$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SECUNET/7GK80XOyaI6ZZ6Gx8J2mpgUlIew.roa File: 7GK80XOyaI6ZZ6Gx8J2mpgUlIew.roa (raw, json) Hash identifier: LiH4AmuXgxqphNLRHW25tXH8VQ+KiIAFd6QEKzGfsV4= Subject key identifier: EC:62:BC:D1:73:B2:68:8E:99:67:A1:B1:F0:9D:A6:A6:05:25:21:EC Certificate issuer: /CN=3F4E063886AD351FF822805AF8D569944B8DE517 Certificate serial: 02B0 Authority key identifier: 3F:4E:06:38:86:AD:35:1F:F8:22:80:5A:F8:D5:69:94:4B:8D:E5:17 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/P04GOIatNR_4IoBa-NVplEuN5Rc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SECUNET/7GK80XOyaI6ZZ6Gx8J2mpgUlIew.roa Signing time: Sat 11 Oct 2025 05:34:46 +0000 ROA not before: Sat 11 Oct 2025 05:34:46 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 21859 IP address blocks: 103.198.152.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SECUNET/P04GOIatNR_4IoBa-NVplEuN5Rc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SECUNET/P04GOIatNR_4IoBa-NVplEuN5Rc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/P04GOIatNR_4IoBa-NVplEuN5Rc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 03:26:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 688 (0x2b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F4E063886AD351FF822805AF8D569944B8DE517 Validity Not Before: Oct 11 05:34:46 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=EC62BCD173B2688E9967A1B1F09DA6A6052521EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:22:80:ab:ef:f9:45:6a:5e:40:e6:89:48:90: f3:83:40:99:5f:69:69:90:51:3c:cb:dd:c1:5e:d4: b9:a2:99:40:1e:5c:aa:1c:6f:64:79:16:b9:88:bf: 94:e0:a0:1d:47:69:17:2b:77:d5:9f:a1:bb:3c:92: 6c:64:cd:da:5c:42:87:00:c5:3b:7b:52:62:b2:42: 34:f9:76:b4:30:5f:14:60:d5:74:47:c4:f8:8d:5f: e5:4f:96:f2:68:53:b7:e3:3f:e1:3a:91:7c:51:d5: d7:4a:5b:cc:0e:f2:9b:e0:f8:ac:5e:53:3c:36:81: 66:eb:b9:8e:0a:6f:9a:0d:e9:57:b3:1b:6d:64:b0: 38:26:c7:98:d9:f4:dc:81:6f:6f:d6:3c:a3:17:a9: 4c:9f:25:5e:68:01:f9:b5:24:b8:42:8e:bb:85:df: b1:1d:1d:e6:cf:3d:c7:b1:28:6a:94:32:3b:58:ce: 78:2a:c0:bf:2e:2d:9f:e7:75:c1:c0:ad:92:6a:85: 81:c3:69:73:de:2e:2f:4e:b4:f7:74:c1:d8:6a:41: 51:50:ac:d8:48:2c:7f:30:8f:2b:e0:df:4f:4d:6c: f5:99:9c:06:c1:1b:95:8a:eb:8c:bf:5f:92:2c:a8: 33:40:e3:10:ad:72:cf:69:5d:fd:a8:a5:47:2f:29: 7a:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:62:BC:D1:73:B2:68:8E:99:67:A1:B1:F0:9D:A6:A6:05:25:21:EC X509v3 Authority Key Identifier: keyid:3F:4E:06:38:86:AD:35:1F:F8:22:80:5A:F8:D5:69:94:4B:8D:E5:17 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SECUNET/P04GOIatNR_4IoBa-NVplEuN5Rc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/P04GOIatNR_4IoBa-NVplEuN5Rc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SECUNET/7GK80XOyaI6ZZ6Gx8J2mpgUlIew.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.198.152.0/23 Signature Algorithm: sha256WithRSAEncryption 80:4c:43:e1:d5:25:af:fc:6a:7c:2f:0e:f0:ec:ae:cc:c8:eb: 44:92:6a:9a:da:66:cf:82:e9:22:d7:72:30:f7:3a:ee:7e:47: e7:37:91:e1:dd:c9:48:57:df:73:03:20:fc:72:51:3c:42:21: 84:d1:0a:ee:85:b2:56:80:6d:1e:bb:3e:94:cc:b4:6e:33:a1: 6a:5e:84:25:45:51:97:03:20:12:b8:33:e7:17:40:40:03:ca: 5a:0e:e4:94:b6:00:54:fd:cc:4a:4d:4c:41:a2:4a:d2:69:54: 99:4b:9b:a9:74:77:68:da:1a:46:98:f3:e4:7c:b3:51:b6:ac: 45:89:da:c1:55:14:f3:1b:ba:c7:a6:f7:7a:02:82:0c:8b:40: 5d:62:36:d3:5a:d0:ac:61:73:76:c4:a7:d9:00:9c:a5:4b:95: b7:ea:2a:36:15:a1:17:d0:0a:da:fa:1e:56:7c:04:2e:f1:59: 4a:d0:9a:ab:da:8d:e3:d4:4e:a6:74:f4:81:e3:ad:9d:dd:cf: 0c:cf:17:48:95:92:53:b7:e2:52:26:1f:55:c0:c6:ad:2e:60: c0:9f:49:11:05:80:98:e5:94:35:b1:86:cf:f9:28:55:d5:97: 2e:ac:cf:fc:9b:3f:d2:95:01:7a:21:51:ea:68:5a:31:dc:5a: b1:c2:9d:36 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICArAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0Y0 RTA2Mzg4NkFEMzUxRkY4MjI4MDVBRjhENTY5OTQ0QjhERTUxNzAeFw0yNTEwMTEw NTM0NDZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEVDNjJCQ0QxNzNCMjY4 OEU5OTY3QTFCMUYwOURBNkE2MDUyNTIxRUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRIoCr7/lFal5A5olIkPODQJlfaWmQUTzL3cFe1LmimUAeXKoc b2R5FrmIv5TgoB1HaRcrd9Wfobs8kmxkzdpcQocAxTt7UmKyQjT5drQwXxRg1XRH xPiNX+VPlvJoU7fjP+E6kXxR1ddKW8wO8pvg+KxeUzw2gWbruY4Kb5oN6VezG21k sDgmx5jZ9NyBb2/WPKMXqUyfJV5oAfm1JLhCjruF37EdHebPPcexKGqUMjtYzngq wL8uLZ/ndcHArZJqhYHDaXPeLi9OtPd0wdhqQVFQrNhILH8wjyvg309NbPWZnAbB G5WK64y/X5IsqDNA4xCtcs9pXf2opUcvKXpzAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU7GK80XOyaI6ZZ6Gx8J2mpgUlIewwHwYDVR0jBBgwFoAUP04GOIatNR/4IoBa +NVplEuN5RcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0VDVU5F VC9QMDRHT0lhdE5SXzRJb0JhLU5WcGxFdU41UmMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1AwNEdPSWF0TlJfNElvQmEtTlZwbEV1TjVSYy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NFQ1VORVQvN0dLODBYT3lhSTZaWjZH eDhKMm1wZ1VsSWV3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AWfGmDANBgkqhkiG9w0BAQsFAAOCAQEAgExD4dUlr/xqfC8O8OyuzMjrRJJqmtpm z4LpItdyMPc67n5H5zeR4d3JSFffcwMg/HJRPEIhhNEK7oWyVoBtHrs+lMy0bjOh al6EJUVRlwMgErgz5xdAQAPKWg7klLYAVP3MSk1MQaJK0mlUmUubqXR3aNoaRpjz 5HyzUbasRYnawVUU8xu6x6b3egKCDItAXWI201rQrGFzdsSn2QCcpUuVt+oqNhWh F9AK2voeVnwELvFZStCaq9qN49ROpnT0geOtnd3PDM8XSJWSU7fiUiYfVcDGrS5g wJ9JEQWAmOWUNbGGz/koVdWXLqzP/Js/0pUBeiFR6mhaMdxascKdNg== -----END CERTIFICATE-----Generated at Tue Oct 21 01:27:28 2025 by rpki-client