$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SGU/pj2T33r2Il7ZsdZNLfCqF6upimc.roa File: pj2T33r2Il7ZsdZNLfCqF6upimc.roa (raw, json) Hash identifier: N0zo7+hm653Tky2p7PC55E87GLNVmjXLrH/y1kKtxT8= Subject key identifier: A6:3D:93:DF:7A:F6:22:5E:D9:B1:D6:4D:2D:F0:AA:17:AB:A9:8A:67 Certificate issuer: /CN=3294E71902A4A5C31B987BD67D094AF5830A816D Certificate serial: 0397 Authority key identifier: 32:94:E7:19:02:A4:A5:C3:1B:98:7B:D6:7D:09:4A:F5:83:0A:81:6D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MpTnGQKkpcMbmHvWfQlK9YMKgW0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SGU/pj2T33r2Il7ZsdZNLfCqF6upimc.roa Signing time: Fri 22 Aug 2025 08:51:51 +0000 ROA not before: Fri 22 Aug 2025 08:51:51 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 134823 IP address blocks: 103.186.186.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SGU/MpTnGQKkpcMbmHvWfQlK9YMKgW0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SGU/MpTnGQKkpcMbmHvWfQlK9YMKgW0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/MpTnGQKkpcMbmHvWfQlK9YMKgW0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 919 (0x397) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3294E71902A4A5C31B987BD67D094AF5830A816D Validity Not Before: Aug 22 08:51:51 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=A63D93DF7AF6225ED9B1D64D2DF0AA17ABA98A67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:4c:11:0b:64:ed:ab:d9:0a:1f:fa:9d:1c:ba: e3:91:e4:e5:2d:14:5b:31:3e:d7:46:b4:eb:b6:a1: 6f:ec:14:57:63:b4:39:aa:63:1f:1f:a4:5a:20:fa: bd:5e:32:3b:b6:b1:35:16:bc:72:7f:6a:b8:26:d7: e4:2a:65:f5:08:d0:7a:f0:3c:d9:fd:99:5f:f4:ff: 82:00:46:a1:5d:63:51:8a:9e:61:3e:1f:92:54:f3: d8:83:f8:e1:86:ad:cb:64:b7:20:1a:8d:55:f7:03: 36:39:09:97:f6:c8:3c:33:7e:b9:da:d8:ed:79:d6: b1:a5:4a:64:95:aa:01:f5:25:55:52:32:0d:b0:07: 99:4d:0c:c8:d9:3f:bf:ac:47:2a:9a:cb:c0:a8:10: 9d:ae:66:2f:41:9b:fd:87:39:ac:aa:22:24:ca:8f: 8a:d7:a5:6e:8b:de:74:ee:ad:e1:80:90:cb:6b:c5: 52:9d:7e:40:2f:07:2e:47:2b:2f:88:80:e2:09:81: 00:3e:2e:1b:ee:01:b8:8e:50:4a:8d:49:ba:58:ac: d8:7b:d6:19:16:ea:3b:f9:21:61:6b:aa:d3:f5:c8: fb:db:e2:9b:f5:65:0b:00:2f:bf:8d:8f:9c:51:04: 63:5d:49:67:ab:4c:58:75:53:81:36:d2:85:16:76: 23:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:3D:93:DF:7A:F6:22:5E:D9:B1:D6:4D:2D:F0:AA:17:AB:A9:8A:67 X509v3 Authority Key Identifier: keyid:32:94:E7:19:02:A4:A5:C3:1B:98:7B:D6:7D:09:4A:F5:83:0A:81:6D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SGU/MpTnGQKkpcMbmHvWfQlK9YMKgW0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MpTnGQKkpcMbmHvWfQlK9YMKgW0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SGU/pj2T33r2Il7ZsdZNLfCqF6upimc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.186.186.0/23 Signature Algorithm: sha256WithRSAEncryption 66:b6:45:9f:e6:63:66:39:54:f0:f1:53:84:07:d1:30:c0:41: a8:85:80:81:04:3a:88:d2:62:f9:1e:62:49:85:d1:54:cb:27: c3:9a:de:e2:8d:e0:42:04:5e:06:81:58:32:40:9d:d9:1e:b4: 1f:e6:ae:54:05:5a:4d:a9:94:a4:54:74:71:63:64:09:c5:05: 4d:be:f1:0c:c6:d9:a6:cc:f7:81:fc:6b:55:0d:c1:7b:f6:5b: 0a:47:cb:de:dc:b1:98:d2:0e:8f:6a:0e:d3:37:86:7f:39:18: 02:d1:4b:7c:59:a9:74:3e:1b:dd:ae:66:63:ee:6b:6b:db:58: 0c:92:b9:a7:be:34:78:84:eb:05:1f:79:0c:38:69:79:4a:2b: a9:f5:60:dd:eb:71:f0:f9:59:f6:b2:c4:00:3a:2a:6b:3e:d3: 25:ce:f3:35:ab:83:b9:e9:f1:d3:85:83:c0:2f:fd:84:6d:b7: 70:78:f7:a4:bb:9b:ec:ff:07:c7:ed:91:7f:ac:e2:a3:f9:8a: c1:be:ec:50:3a:f7:12:58:a1:f8:4e:4b:19:91:51:d8:ea:f0: 40:98:80:d0:26:0f:c0:e7:60:a6:cc:35:31:e5:0a:b2:15:5d: 48:37:f6:01:b0:2d:a5:34:b2:28:2a:97:98:11:ce:08:22:0c: 45:13:95:6d -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICA5cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzI5 NEU3MTkwMkE0QTVDMzFCOTg3QkQ2N0QwOTRBRjU4MzBBODE2RDAeFw0yNTA4MjIw ODUxNTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEE2M0Q5M0RGN0FGNjIy NUVEOUIxRDY0RDJERjBBQTE3QUJBOThBNjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTTBELZO2r2Qof+p0cuuOR5OUtFFsxPtdGtOu2oW/sFFdjtDmq Yx8fpFog+r1eMju2sTUWvHJ/argm1+QqZfUI0HrwPNn9mV/0/4IARqFdY1GKnmE+ H5JU89iD+OGGrctktyAajVX3AzY5CZf2yDwzfrna2O151rGlSmSVqgH1JVVSMg2w B5lNDMjZP7+sRyqay8CoEJ2uZi9Bm/2HOayqIiTKj4rXpW6L3nTureGAkMtrxVKd fkAvBy5HKy+IgOIJgQA+LhvuAbiOUEqNSbpYrNh71hkW6jv5IWFrqtP1yPvb4pv1 ZQsAL7+Nj5xRBGNdSWerTFh1U4E20oUWdiM3AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUpj2T33r2Il7ZsdZNLfCqF6upimcwHwYDVR0jBBgwFoAUMpTnGQKkpcMbmHvW fQlK9YMKgW0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0dVL01w VG5HUUtrcGNNYm1IdldmUWxLOVlNS2dXMC5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev TXBUbkdRS2twY01ibUh2V2ZRbEs5WU1LZ1cwLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvU0dVL3BqMlQzM3IySWw3WnNkWk5MZkNxRjZ1 cGltYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnurowDQYJ KoZIhvcNAQELBQADggEBAGa2RZ/mY2Y5VPDxU4QH0TDAQaiFgIEEOojSYvkeYkmF 0VTLJ8Oa3uKN4EIEXgaBWDJAndketB/mrlQFWk2plKRUdHFjZAnFBU2+8QzG2abM 94H8a1UNwXv2WwpHy97csZjSDo9qDtM3hn85GALRS3xZqXQ+G92uZmPua2vbWAyS uae+NHiE6wUfeQw4aXlKK6n1YN3rcfD5WfayxAA6Kms+0yXO8zWrg7np8dOFg8Av /YRtt3B496S7m+z/B8ftkX+s4qP5isG+7FA69xJYofhOSxmRUdjq8ECYgNAmD8Dn YKbMNTHlCrIVXUg39gGwLaU0sigql5gRzggiDEUTlW0= -----END CERTIFICATE-----Generated at Sun Aug 24 06:49:43 2025 by rpki-client