$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/NiIt-oOMJc5PomKUIc7pnTyTw2o.roa File: NiIt-oOMJc5PomKUIc7pnTyTw2o.roa (raw, json) Hash identifier: YDrjfwDkOKEnwTQoVoTa1q11bUMnL+pRlzZ9UVmKtXs= Subject key identifier: 36:22:2D:FA:83:8C:25:CE:4F:A2:62:94:21:CE:E9:9D:3C:93:C3:6A Certificate issuer: /CN=ED186F6314D7B5713EFFECFB93EBC3E82197E2EF Certificate serial: 12AD Authority key identifier: ED:18:6F:63:14:D7:B5:71:3E:FF:EC:FB:93:EB:C3:E8:21:97:E2:EF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/NiIt-oOMJc5PomKUIc7pnTyTw2o.roa Signing time: Fri 22 Aug 2025 08:59:18 +0000 ROA not before: Fri 22 Aug 2025 08:59:18 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131633 IP address blocks: 103.127.238.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4781 (0x12ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ED186F6314D7B5713EFFECFB93EBC3E82197E2EF Validity Not Before: Aug 22 08:59:18 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=36222DFA838C25CE4FA2629421CEE99D3C93C36A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:b2:b7:03:d0:fe:11:e1:25:08:7f:96:5c:cb: 13:4b:35:3c:f2:1a:ba:4c:d0:c1:02:69:bd:72:83: c5:93:60:84:92:55:7d:39:25:5f:15:78:a4:80:3d: 06:e5:d2:7d:19:9b:51:b6:a7:56:53:fa:5d:b4:b1: 0d:fc:d9:4e:f8:08:79:7e:b9:65:0c:09:98:14:3a: d1:dc:9f:73:f9:0b:e1:ce:11:ff:b3:ef:87:32:f9: 44:8f:4b:15:54:a1:69:22:ff:a8:36:a2:e3:b1:23: c2:61:42:38:43:52:cf:0e:58:71:86:57:5b:8e:11: 38:25:ad:31:01:1f:0d:cc:01:0c:45:03:50:75:f5: 26:4f:44:ba:b1:79:6e:a8:99:54:28:1e:51:c0:2d: bd:ac:fd:dc:1a:15:2d:ef:74:82:75:b3:2d:76:01: 0e:3e:08:8b:41:d9:62:e9:f5:1e:b4:44:e0:3e:6c: 98:f3:e5:e7:98:cc:b2:3e:62:3a:d8:36:9f:19:b7: fd:f1:1d:6b:81:0d:81:18:65:72:0f:4c:39:33:f7: e2:48:5c:8e:37:e0:20:e8:70:bb:c0:26:97:b2:cf: e4:8b:c8:03:9d:7c:71:04:66:37:df:fe:0e:9a:bc: 8a:00:1d:3b:3b:61:ef:ce:51:a6:c2:d4:be:8a:8a: 7c:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:22:2D:FA:83:8C:25:CE:4F:A2:62:94:21:CE:E9:9D:3C:93:C3:6A X509v3 Authority Key Identifier: keyid:ED:18:6F:63:14:D7:B5:71:3E:FF:EC:FB:93:EB:C3:E8:21:97:E2:EF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/NiIt-oOMJc5PomKUIc7pnTyTw2o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.127.238.0/23 Signature Algorithm: sha256WithRSAEncryption d9:a9:cc:37:7e:d7:dc:1b:fe:f8:96:18:6d:ea:58:e2:33:1a: 5c:a8:02:28:b2:d1:9f:eb:ed:de:55:b4:d6:76:90:82:be:11: 73:fe:77:e0:b2:82:9d:be:99:2b:e6:59:92:84:c8:be:c9:86: 7d:87:d2:4a:f9:cc:ee:b2:d7:f5:fa:6e:1a:2c:c7:5e:b1:65: d7:df:4b:ee:8d:73:28:aa:44:9f:e3:d2:0e:05:06:98:7e:91: ed:1d:29:38:c5:77:24:0c:22:bf:11:b8:63:cf:5b:c4:3d:7e: 62:59:47:88:d2:e7:7d:c5:28:fa:30:0a:fa:10:0e:81:2a:73: af:c9:c1:bc:16:c4:04:34:92:66:41:3c:89:51:42:fd:fb:e5: 20:95:f4:41:33:89:9c:20:aa:b9:c6:7f:3d:3e:d4:a6:6f:14: 4d:28:65:46:a6:0b:20:81:9c:a3:72:9e:a0:fc:ca:70:42:97: 3d:61:0f:90:f9:f8:9d:e1:aa:99:4b:1e:a5:64:62:f2:7d:ba: 98:45:31:dc:4c:71:5e:99:45:5d:a7:a1:35:af:4a:58:dd:6c: b7:03:6e:c5:ce:86:65:46:42:e3:6e:9b:31:7d:da:31:34:85: 6d:fe:a9:e6:b6:3f:c7:8b:1c:95:1c:61:7c:64:17:56:4b:b5: d9:28:b3:9a -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEq0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUQx ODZGNjMxNEQ3QjU3MTNFRkZFQ0ZCOTNFQkMzRTgyMTk3RTJFRjAeFw0yNTA4MjIw ODU5MThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDM2MjIyREZBODM4QzI1 Q0U0RkEyNjI5NDIxQ0VFOTlEM0M5M0MzNkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDlsrcD0P4R4SUIf5ZcyxNLNTzyGrpM0MECab1yg8WTYISSVX05 JV8VeKSAPQbl0n0Zm1G2p1ZT+l20sQ382U74CHl+uWUMCZgUOtHcn3P5C+HOEf+z 74cy+USPSxVUoWki/6g2ouOxI8JhQjhDUs8OWHGGV1uOETglrTEBHw3MAQxFA1B1 9SZPRLqxeW6omVQoHlHALb2s/dwaFS3vdIJ1sy12AQ4+CItB2WLp9R60ROA+bJjz 5eeYzLI+YjrYNp8Zt/3xHWuBDYEYZXIPTDkz9+JIXI434CDocLvAJpeyz+SLyAOd fHEEZjff/g6avIoAHTs7Ye/OUabC1L6KinznAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUNiIt+oOMJc5PomKUIc7pnTyTw2owHwYDVR0jBBgwFoAU7RhvYxTXtXE+/+z7 k+vD6CGX4u8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hVTllJ TkcvN1Jodll4VFh0WEUtXy16N2stdkQ2Q0dYNHU4LmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS83Umh2WXhUWHRYRS1fLXo3ay12RDZDR1g0dTguY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSFVOWUlORy9OaUl0LW9PTUpjNVBv bUtVSWM3cG5UeVR3Mm8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ3/uMA0GCSqGSIb3DQEBCwUAA4IBAQDZqcw3ftfcG/74lhht6ljiMxpcqAIo stGf6+3eVbTWdpCCvhFz/nfgsoKdvpkr5lmShMi+yYZ9h9JK+czustf1+m4aLMde sWXX30vujXMoqkSf49IOBQaYfpHtHSk4xXckDCK/Ebhjz1vEPX5iWUeI0ud9xSj6 MAr6EA6BKnOvycG8FsQENJJmQTyJUUL9++UglfRBM4mcIKq5xn89PtSmbxRNKGVG pgsggZyjcp6g/MpwQpc9YQ+Q+fid4aqZSx6lZGLyfbqYRTHcTHFemUVdp6E1r0pY 3Wy3A27FzoZlRkLjbpsxfdoxNIVt/qnmtj/HixyVHGF8ZBdWS7XZKLOa -----END CERTIFICATE-----Generated at Sun Aug 24 11:15:32 2025 by rpki-client