$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHINENET/-QkA2nKbiFqXZoUhHYWs79RiPlw.roa File: -QkA2nKbiFqXZoUhHYWs79RiPlw.roa (raw, json) Hash identifier: e4cMYF3ozGvTTun5kgXnwLgfsks2VUFM+IcT7Tlpv3Q= Subject key identifier: F9:09:00:DA:72:9B:88:5A:97:66:85:21:1D:85:AC:EF:D4:62:3E:5C Certificate issuer: /CN=45542320685E62421C114DBA65B8F5705A774845 Certificate serial: 0293 Authority key identifier: 45:54:23:20:68:5E:62:42:1C:11:4D:BA:65:B8:F5:70:5A:77:48:45 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RVQjIGheYkIcEU26Zbj1cFp3SEU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINENET/-QkA2nKbiFqXZoUhHYWs79RiPlw.roa Signing time: Fri 22 Aug 2025 09:01:02 +0000 ROA not before: Fri 22 Aug 2025 09:01:02 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 150770 IP address blocks: 103.197.158.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINENET/RVQjIGheYkIcEU26Zbj1cFp3SEU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINENET/RVQjIGheYkIcEU26Zbj1cFp3SEU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RVQjIGheYkIcEU26Zbj1cFp3SEU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 659 (0x293) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=45542320685E62421C114DBA65B8F5705A774845 Validity Not Before: Aug 22 09:01:02 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F90900DA729B885A976685211D85ACEFD4623E5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:a1:d2:95:bf:45:fd:d3:00:a7:38:13:3a:90: 94:34:a9:1e:16:aa:e5:77:66:17:6e:57:64:07:5a: 35:8b:4e:0e:e9:c5:a8:92:7e:ca:6f:50:ff:b5:26: 95:09:23:19:2f:94:2d:c4:ec:fc:9c:b4:3d:d5:d2: a6:35:6a:d0:3b:3d:67:29:13:53:0d:42:a4:21:fa: 24:57:a3:61:db:7a:b4:ba:83:fd:e8:4d:a7:74:04: be:69:f2:dd:80:07:dc:f1:26:5c:ac:03:2e:7d:9d: 35:d6:84:98:32:b7:19:1c:59:7c:88:a0:a8:33:29: d8:a8:b7:ce:cc:02:ee:cf:58:80:c6:b2:ab:35:fb: 22:53:ae:73:17:9b:46:a7:48:8e:77:2a:ee:4e:13: 0d:4a:04:1d:21:a4:c4:01:39:00:df:8c:d2:9b:a2: e3:9e:ee:18:6c:b0:4a:e2:53:07:cf:24:6b:fa:90: c9:01:11:6f:6d:af:c2:2a:3c:7d:e3:b0:58:21:3d: a0:9e:d6:46:08:c2:e3:c8:8e:61:77:c9:3b:63:ef: 93:00:86:f7:b9:1f:58:b4:dc:05:e0:8b:65:a8:a6: ad:0f:a8:4a:f5:e2:92:a5:2d:63:33:e4:53:fa:85: dd:8c:f6:df:e7:8a:d9:e0:eb:f9:9d:90:cd:0f:fe: 99:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:09:00:DA:72:9B:88:5A:97:66:85:21:1D:85:AC:EF:D4:62:3E:5C X509v3 Authority Key Identifier: keyid:45:54:23:20:68:5E:62:42:1C:11:4D:BA:65:B8:F5:70:5A:77:48:45 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINENET/RVQjIGheYkIcEU26Zbj1cFp3SEU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RVQjIGheYkIcEU26Zbj1cFp3SEU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINENET/-QkA2nKbiFqXZoUhHYWs79RiPlw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.197.158.0/23 Signature Algorithm: sha256WithRSAEncryption 01:53:b5:78:e1:ce:4e:45:54:dc:54:5a:71:56:fa:0a:7d:ac: 63:50:13:48:b7:c0:4e:98:d9:0c:52:6f:b1:db:43:f9:16:af: 01:aa:09:81:fc:c3:73:84:66:2e:bb:b9:ff:78:c4:99:72:e6: ec:fc:0b:79:a6:6f:67:ec:ea:4e:60:79:ae:75:67:ad:42:9e: af:fa:e5:59:e2:b4:49:0d:fc:78:7f:4e:db:98:97:ad:ca:ce: cd:7f:05:45:2f:43:3a:0b:5e:c8:f0:f5:46:fe:f9:11:b4:bc: 9f:b1:05:31:3b:5d:48:54:bf:9a:79:85:2c:04:a6:e9:d9:da: 5b:19:a1:f2:cb:e0:0e:35:be:04:5a:10:0e:36:6f:ca:7c:80: 9f:10:ea:c6:46:ec:fa:45:93:28:e6:a9:d4:ca:5f:7d:db:39: 40:c5:3b:34:23:30:2e:63:30:0e:a2:94:8c:f4:ec:67:cc:f4: a2:33:4e:a2:55:b2:59:07:7f:f6:0b:6c:81:b9:5a:76:b4:b8: fb:a7:bc:8d:6e:a8:91:d5:1e:fc:cb:3a:87:71:42:56:67:28: f3:ce:6a:83:f0:18:42:cb:12:e6:ba:8a:5c:3f:85:6e:40:4c: 21:7c:37:6b:c9:f0:84:1f:aa:b2:42:d6:9e:0f:ca:ce:07:05: 1f:52:80:a3 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICApMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU1 NDIzMjA2ODVFNjI0MjFDMTE0REJBNjVCOEY1NzA1QTc3NDg0NTAeFw0yNTA4MjIw OTAxMDJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEY5MDkwMERBNzI5Qjg4 NUE5NzY2ODUyMTFEODVBQ0VGRDQ2MjNFNUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtodKVv0X90wCnOBM6kJQ0qR4WquV3ZhduV2QHWjWLTg7pxaiS fspvUP+1JpUJIxkvlC3E7PyctD3V0qY1atA7PWcpE1MNQqQh+iRXo2HberS6g/3o Tad0BL5p8t2AB9zxJlysAy59nTXWhJgytxkcWXyIoKgzKdiot87MAu7PWIDGsqs1 +yJTrnMXm0anSI53Ku5OEw1KBB0hpMQBOQDfjNKbouOe7hhssEriUwfPJGv6kMkB EW9tr8IqPH3jsFghPaCe1kYIwuPIjmF3yTtj75MAhve5H1i03AXgi2Wopq0PqEr1 4pKlLWMz5FP6hd2M9t/nitng6/mdkM0P/pnLAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU+QkA2nKbiFqXZoUhHYWs79RiPlwwHwYDVR0jBBgwFoAURVQjIGheYkIcEU26 Zbj1cFp3SEUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJTkVO RVQvUlZRaklHaGVZa0ljRVUyNlpiajFjRnAzU0VVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9SVlFqSUdoZVlrSWNFVTI2WmJqMWNGcDNTRVUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSElORU5FVC8tUWtBMm5LYmlGcVha b1VoSFlXczc5UmlQbHcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ8WeMA0GCSqGSIb3DQEBCwUAA4IBAQABU7V44c5ORVTcVFpxVvoKfaxjUBNI t8BOmNkMUm+x20P5Fq8BqgmB/MNzhGYuu7n/eMSZcubs/At5pm9n7OpOYHmudWet Qp6v+uVZ4rRJDfx4f07bmJetys7NfwVFL0M6C17I8PVG/vkRtLyfsQUxO11IVL+a eYUsBKbp2dpbGaHyy+AONb4EWhAONm/KfICfEOrGRuz6RZMo5qnUyl992zlAxTs0 IzAuYzAOopSM9OxnzPSiM06iVbJZB3/2C2yBuVp2tLj7p7yNbqiR1R78yzqHcUJW ZyjzzmqD8BhCyxLmuopcP4VuQEwhfDdryfCEH6qyQtaeD8rOBwUfUoCj -----END CERTIFICATE-----Generated at Sun Aug 24 06:50:35 2025 by rpki-client