$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHINETEL/evf1DT2fjxvoH3_T_hTn6IQ9sy8.roa File: evf1DT2fjxvoH3_T_hTn6IQ9sy8.roa (raw, json) Hash identifier: W48f8vYpFHbY/x+a6n10xXrpBorWv2iBUqBGExPiJ3U= Subject key identifier: 7A:F7:F5:0D:3D:9F:8F:1B:E8:1F:7F:D3:FE:14:E7:E8:84:3D:B3:2F Certificate issuer: /CN=DDA2DA33DF9088B68EDC6F74EA8B1C0EEE2E26C1 Certificate serial: 0323 Authority key identifier: DD:A2:DA:33:DF:90:88:B6:8E:DC:6F:74:EA:8B:1C:0E:EE:2E:26:C1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/3aLaM9-QiLaO3G906oscDu4uJsE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINETEL/evf1DT2fjxvoH3_T_hTn6IQ9sy8.roa Signing time: Fri 22 Aug 2025 08:49:53 +0000 ROA not before: Fri 22 Aug 2025 08:49:53 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 63902 IP address blocks: 103.116.14.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINETEL/3aLaM9-QiLaO3G906oscDu4uJsE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINETEL/3aLaM9-QiLaO3G906oscDu4uJsE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/3aLaM9-QiLaO3G906oscDu4uJsE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 803 (0x323) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DDA2DA33DF9088B68EDC6F74EA8B1C0EEE2E26C1 Validity Not Before: Aug 22 08:49:53 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7AF7F50D3D9F8F1BE81F7FD3FE14E7E8843DB32F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c0:18:13:48:5a:86:c1:d3:c3:ff:e9:a0:2d: 52:f2:4e:e5:55:a1:0b:6b:52:20:b3:2e:39:c7:cf: fc:11:24:b3:36:7d:90:70:ba:c5:31:65:4a:e4:34: 2b:94:09:cf:4b:4f:a3:d9:e6:72:63:a0:64:3a:fb: 53:ab:94:77:15:b7:94:20:d7:66:15:a2:d1:9c:cb: ac:23:d5:c6:a2:fe:8f:d9:3e:b3:d3:41:7f:29:35: 94:de:39:63:cb:fa:26:fd:2b:a3:12:35:d7:c9:2b: 98:94:b7:0c:36:67:84:44:14:bb:79:7f:3f:de:26: 2d:c9:01:71:7b:6b:5a:a0:c5:f6:f6:32:53:a6:dd: 8d:a2:59:7d:d4:c7:01:c1:a9:e2:7e:ff:3d:d9:7a: a4:23:35:8e:a8:b6:11:9b:a4:7c:95:c3:82:a7:a2: 5a:56:c9:e2:2b:8a:52:2e:ff:50:21:eb:0e:27:4d: ce:7b:ee:ea:72:ab:9a:47:a6:50:d9:a4:4a:fb:69: d3:65:92:ec:5d:30:ae:63:db:ed:a0:67:3c:49:af: f8:a1:1b:c6:a9:eb:1a:8b:ae:00:41:2f:7e:1a:46: c4:13:48:fe:c6:f0:83:e3:55:ff:16:c3:bf:11:e5: 6e:47:00:9f:d9:84:bb:b7:7c:c2:89:79:45:f6:51: f5:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:F7:F5:0D:3D:9F:8F:1B:E8:1F:7F:D3:FE:14:E7:E8:84:3D:B3:2F X509v3 Authority Key Identifier: keyid:DD:A2:DA:33:DF:90:88:B6:8E:DC:6F:74:EA:8B:1C:0E:EE:2E:26:C1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINETEL/3aLaM9-QiLaO3G906oscDu4uJsE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/3aLaM9-QiLaO3G906oscDu4uJsE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINETEL/evf1DT2fjxvoH3_T_hTn6IQ9sy8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.116.14.0/23 Signature Algorithm: sha256WithRSAEncryption 35:ec:56:dc:46:9e:57:0e:31:15:97:51:d0:ce:ce:4b:9e:7c: 6f:f9:ea:18:49:da:f1:24:11:cf:46:bb:8c:90:94:4b:a8:8f: af:4d:73:6e:b9:24:38:e3:87:16:78:88:28:a8:9e:15:f8:9d: 3f:31:0d:23:ba:0d:20:47:a4:06:3e:85:ac:28:58:4c:bd:63: 77:09:6a:0c:38:68:49:13:4f:31:37:e5:43:98:47:fa:dc:d7: f3:a9:5b:ed:77:67:d2:80:5a:df:8b:05:7d:d4:4c:74:57:59: 75:ba:e8:65:94:ea:2a:1f:61:52:3d:1b:c0:69:b3:ef:99:9f: 38:eb:98:6c:75:b4:89:7c:6b:5c:71:d2:9f:16:3e:5e:a3:81: 24:f5:ce:6c:d4:09:d7:76:ca:41:3e:83:37:ce:72:62:19:aa: 3a:ff:06:7c:54:f6:52:65:3b:84:91:7e:9d:a9:5c:05:5a:c7: ce:46:7a:5e:99:e5:c1:58:8d:ac:89:81:e4:44:ba:d9:c1:be: d0:53:2e:43:22:1a:06:44:10:f7:a0:20:e6:00:3d:6e:3a:cb: 3a:d8:f1:e2:9a:aa:46:fb:31:62:58:86:0c:16:3b:52:29:dc: 3b:b8:84:b0:81:fc:42:65:a5:2c:59:99:fd:d8:9d:06:91:22: 2c:78:cf:4b -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICAyMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRERB MkRBMzNERjkwODhCNjhFREM2Rjc0RUE4QjFDMEVFRTJFMjZDMTAeFw0yNTA4MjIw ODQ5NTNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDdBRjdGNTBEM0Q5RjhG MUJFODFGN0ZEM0ZFMTRFN0U4ODQzREIzMkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8wBgTSFqGwdPD/+mgLVLyTuVVoQtrUiCzLjnHz/wRJLM2fZBw usUxZUrkNCuUCc9LT6PZ5nJjoGQ6+1OrlHcVt5Qg12YVotGcy6wj1cai/o/ZPrPT QX8pNZTeOWPL+ib9K6MSNdfJK5iUtww2Z4REFLt5fz/eJi3JAXF7a1qgxfb2MlOm 3Y2iWX3UxwHBqeJ+/z3ZeqQjNY6othGbpHyVw4KnolpWyeIrilIu/1Ah6w4nTc57 7upyq5pHplDZpEr7adNlkuxdMK5j2+2gZzxJr/ihG8ap6xqLrgBBL34aRsQTSP7G 8IPjVf8Ww78R5W5HAJ/ZhLu3fMKJeUX2UfXBAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUevf1DT2fjxvoH3/T/hTn6IQ9sy8wHwYDVR0jBBgwFoAU3aLaM9+QiLaO3G90 6oscDu4uJsEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJTkVU RUwvM2FMYU05LVFpTGFPM0c5MDZvc2NEdTR1SnNFLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS8zYUxhTTktUWlMYU8zRzkwNm9zY0R1NHVKc0UuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSElORVRFTC9ldmYxRFQyZmp4dm9I M19UX2hUbjZJUTlzeTgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ3QOMA0GCSqGSIb3DQEBCwUAA4IBAQA17FbcRp5XDjEVl1HQzs5Lnnxv+eoY SdrxJBHPRruMkJRLqI+vTXNuuSQ444cWeIgoqJ4V+J0/MQ0jug0gR6QGPoWsKFhM vWN3CWoMOGhJE08xN+VDmEf63NfzqVvtd2fSgFrfiwV91Ex0V1l1uuhllOoqH2FS PRvAabPvmZ8465hsdbSJfGtccdKfFj5eo4Ek9c5s1AnXdspBPoM3znJiGao6/wZ8 VPZSZTuEkX6dqVwFWsfORnpemeXBWI2siYHkRLrZwb7QUy5DIhoGRBD3oCDmAD1u Oss62PHimqpG+zFiWIYMFjtSKdw7uISwgfxCZaUsWZn92J0GkSIseM9L -----END CERTIFICATE-----Generated at Sun Aug 24 09:44:48 2025 by rpki-client