$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SECUNET/JsAYgxSc8wz45s57f1ODWua2gcM.roa File: JsAYgxSc8wz45s57f1ODWua2gcM.roa (raw, json) Hash identifier: tRVPlTbZrwBang2sPRfphixHfY6mm7uudt97WhfWs7M= Subject key identifier: 26:C0:18:83:14:9C:F3:0C:F8:E6:CE:7B:7F:53:83:5A:E6:B6:81:C3 Certificate issuer: /CN=3F4E063886AD351FF822805AF8D569944B8DE517 Certificate serial: 028E Authority key identifier: 3F:4E:06:38:86:AD:35:1F:F8:22:80:5A:F8:D5:69:94:4B:8D:E5:17 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/P04GOIatNR_4IoBa-NVplEuN5Rc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SECUNET/JsAYgxSc8wz45s57f1ODWua2gcM.roa Signing time: Fri 22 Aug 2025 09:01:11 +0000 ROA not before: Fri 22 Aug 2025 09:01:11 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 7483 IP address blocks: 103.198.152.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SECUNET/P04GOIatNR_4IoBa-NVplEuN5Rc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SECUNET/P04GOIatNR_4IoBa-NVplEuN5Rc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/P04GOIatNR_4IoBa-NVplEuN5Rc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 654 (0x28e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F4E063886AD351FF822805AF8D569944B8DE517 Validity Not Before: Aug 22 09:01:11 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=26C01883149CF30CF8E6CE7B7F53835AE6B681C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:61:d7:88:7b:a6:0e:7d:e1:41:92:81:83:62: d7:39:7e:6a:61:6e:b8:00:29:4a:7b:95:0e:68:d2: 57:ec:a4:5a:ce:55:62:61:25:9b:89:7b:78:27:2c: f8:12:61:43:90:80:a6:c1:75:0d:7e:24:1e:7e:9d: 6d:8f:eb:83:80:59:10:d9:d2:01:4d:fb:1c:40:d1: 7f:eb:7a:6f:e0:90:1d:78:8c:c6:db:fe:ac:b2:c0: ea:b8:e7:47:43:44:46:ae:16:39:3b:d7:49:db:a3: a5:ef:a6:6c:14:ea:ff:62:af:a3:a7:a0:f2:74:0d: ea:de:98:a3:ff:d5:3c:ee:78:b1:83:d5:21:69:57: 71:76:f4:f7:42:dc:ec:95:24:96:65:be:ba:c9:a5: d9:fe:4d:24:51:00:fe:d0:97:73:02:6e:74:f6:04: 88:36:1c:c1:fd:7e:19:91:3f:af:21:3b:33:eb:fa: d4:58:5d:4d:3e:1f:ef:83:d4:7f:a5:45:01:e0:53: e4:6a:21:36:fd:e1:43:92:95:2e:f5:73:00:d1:60: 38:ef:b3:ac:17:dd:40:cc:04:52:d3:41:60:e0:dc: 75:b1:59:0d:a1:8d:2a:c1:fe:2c:cd:a6:da:89:6c: 6c:66:41:18:80:2b:d7:f1:f6:a9:84:be:8d:70:65: 28:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:C0:18:83:14:9C:F3:0C:F8:E6:CE:7B:7F:53:83:5A:E6:B6:81:C3 X509v3 Authority Key Identifier: keyid:3F:4E:06:38:86:AD:35:1F:F8:22:80:5A:F8:D5:69:94:4B:8D:E5:17 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SECUNET/P04GOIatNR_4IoBa-NVplEuN5Rc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/P04GOIatNR_4IoBa-NVplEuN5Rc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SECUNET/JsAYgxSc8wz45s57f1ODWua2gcM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.198.152.0/23 Signature Algorithm: sha256WithRSAEncryption 99:9e:c9:cf:8a:3a:7b:88:ea:3a:e2:fc:eb:4a:ca:20:6b:cd: 59:44:ba:59:0b:41:3a:7e:56:9d:5f:21:7d:22:7d:7d:94:6b: 6b:d1:88:b2:08:51:7b:19:a2:67:76:c3:33:60:27:25:2c:f1: a3:77:ea:16:15:c2:b4:18:be:3a:de:d9:ee:19:ff:ba:82:06: 8b:b3:38:91:76:65:ff:9a:22:27:fd:32:2b:e2:11:43:07:bc: 24:c1:5c:fc:73:a2:11:17:8a:36:39:80:94:93:1f:5f:d1:4d: 70:e7:ae:32:00:f2:d8:7b:eb:8d:d7:96:85:f1:9f:7a:e8:cf: da:7d:ac:c6:26:f0:f9:e6:60:b9:d3:ef:da:5b:3a:94:f7:3b: e8:aa:cc:6d:7c:f3:08:88:0d:73:09:19:e2:13:b8:36:c8:f8: 30:b3:22:c4:f5:8e:56:fb:f5:1b:d5:b8:71:33:e4:32:73:d4: ac:54:28:34:87:3e:77:4c:77:34:db:a2:5b:b8:39:dc:a5:47: 28:8c:45:0f:c1:a4:6b:5f:68:c9:09:75:81:18:7e:80:b5:f0: 46:e0:93:29:08:04:6a:f1:1e:26:14:2d:82:fa:f7:3c:30:3d: fc:3f:99:9d:31:32:a6:ed:79:56:e1:37:b8:ba:62:30:46:a1: 33:83:3d:53 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICAo4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0Y0 RTA2Mzg4NkFEMzUxRkY4MjI4MDVBRjhENTY5OTQ0QjhERTUxNzAeFw0yNTA4MjIw OTAxMTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDI2QzAxODgzMTQ5Q0Yz MENGOEU2Q0U3QjdGNTM4MzVBRTZCNjgxQzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAYdeIe6YOfeFBkoGDYtc5fmphbrgAKUp7lQ5o0lfspFrOVWJh JZuJe3gnLPgSYUOQgKbBdQ1+JB5+nW2P64OAWRDZ0gFN+xxA0X/rem/gkB14jMbb /qyywOq450dDREauFjk710nbo6XvpmwU6v9ir6OnoPJ0DeremKP/1TzueLGD1SFp V3F29PdC3OyVJJZlvrrJpdn+TSRRAP7Ql3MCbnT2BIg2HMH9fhmRP68hOzPr+tRY XU0+H++D1H+lRQHgU+RqITb94UOSlS71cwDRYDjvs6wX3UDMBFLTQWDg3HWxWQ2h jSrB/izNptqJbGxmQRiAK9fx9qmEvo1wZSinAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUJsAYgxSc8wz45s57f1ODWua2gcMwHwYDVR0jBBgwFoAUP04GOIatNR/4IoBa +NVplEuN5RcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0VDVU5F VC9QMDRHT0lhdE5SXzRJb0JhLU5WcGxFdU41UmMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1AwNEdPSWF0TlJfNElvQmEtTlZwbEV1TjVSYy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NFQ1VORVQvSnNBWWd4U2M4d3o0NXM1 N2YxT0RXdWEyZ2NNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AWfGmDANBgkqhkiG9w0BAQsFAAOCAQEAmZ7Jz4o6e4jqOuL860rKIGvNWUS6WQtB On5WnV8hfSJ9fZRra9GIsghRexmiZ3bDM2AnJSzxo3fqFhXCtBi+Ot7Z7hn/uoIG i7M4kXZl/5oiJ/0yK+IRQwe8JMFc/HOiEReKNjmAlJMfX9FNcOeuMgDy2HvrjdeW hfGfeujP2n2sxibw+eZgudPv2ls6lPc76KrMbXzzCIgNcwkZ4hO4Nsj4MLMixPWO Vvv1G9W4cTPkMnPUrFQoNIc+d0x3NNuiW7g53KVHKIxFD8Gka19oyQl1gRh+gLXw RuCTKQgEavEeJhQtgvr3PDA9/D+ZnTEypu15VuE3uLpiMEahM4M9Uw== -----END CERTIFICATE-----Generated at Sun Aug 24 15:35:55 2025 by rpki-client