$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/wdXc4aYNDYALJS0z-hSRrwsOxKs.roa File: wdXc4aYNDYALJS0z-hSRrwsOxKs.roa (raw, json) Hash identifier: PtAh9D/HQ63+KDFXRSXC4p9YmrzeSBKGWwKXloQfU7g= Subject key identifier: C1:D5:DC:E1:A6:0D:0D:80:0B:25:2D:33:FA:14:91:AF:0B:0E:C4:AB Certificate issuer: /CN=ED186F6314D7B5713EFFECFB93EBC3E82197E2EF Certificate serial: 12AC Authority key identifier: ED:18:6F:63:14:D7:B5:71:3E:FF:EC:FB:93:EB:C3:E8:21:97:E2:EF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/wdXc4aYNDYALJS0z-hSRrwsOxKs.roa Signing time: Fri 22 Aug 2025 08:59:18 +0000 ROA not before: Fri 22 Aug 2025 08:59:18 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 208932 IP address blocks: 103.127.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4780 (0x12ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ED186F6314D7B5713EFFECFB93EBC3E82197E2EF Validity Not Before: Aug 22 08:59:18 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C1D5DCE1A60D0D800B252D33FA1491AF0B0EC4AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:bb:ba:87:5c:f1:75:33:4d:bd:75:3f:3d:ac: 96:d2:a9:86:53:fa:80:06:0f:94:98:85:c4:bd:b8: c2:03:fd:cb:7d:8e:38:0a:d0:0c:ea:81:e0:b6:87: 8f:dd:7c:93:39:a4:1c:32:8e:11:f2:e6:ad:6b:c5: 13:17:8d:6e:73:67:77:a6:9b:09:d9:49:f0:7d:fd: aa:4a:0a:b6:7f:3c:c5:5f:bd:81:b7:0c:43:6d:1e: 9d:28:e6:df:ed:6a:34:ad:47:93:e0:4e:85:60:a0: a6:00:fb:de:94:5b:1a:8e:fd:5d:7a:ae:a2:c3:37: a4:02:83:4f:d6:98:89:e9:4f:54:e7:23:8d:8b:8d: bd:05:c8:b1:99:87:19:4f:77:19:67:59:f8:ce:9d: df:d3:0f:be:70:7b:5c:de:19:88:4d:88:49:90:c0: 84:35:49:3c:50:f5:98:52:24:9c:14:26:0b:01:42: 27:53:5d:66:b2:7c:b8:01:ef:f3:70:48:96:fb:c9: 95:6b:43:bb:a2:bb:a8:7b:12:09:14:cd:db:37:fc: 75:ec:99:a1:94:f3:78:4e:fa:dd:9e:75:45:1c:51: d1:d8:48:22:13:19:f4:05:40:7f:d5:bc:e9:ed:31: 4e:1f:e4:bb:c6:20:ee:86:32:32:e8:9a:9a:93:75: 0d:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:D5:DC:E1:A6:0D:0D:80:0B:25:2D:33:FA:14:91:AF:0B:0E:C4:AB X509v3 Authority Key Identifier: keyid:ED:18:6F:63:14:D7:B5:71:3E:FF:EC:FB:93:EB:C3:E8:21:97:E2:EF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/wdXc4aYNDYALJS0z-hSRrwsOxKs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.127.236.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:34:b8:83:d2:17:ee:80:63:ab:08:26:22:45:65:7b:e9:33: 46:ce:12:3c:02:66:89:10:a0:fb:0c:0f:c4:17:57:9c:89:3e: 0e:9a:13:3c:58:2e:de:1f:50:4f:fd:ca:8c:12:e1:38:18:21: 29:41:be:ea:8c:f4:bb:26:09:70:b8:c4:5d:ac:83:8c:a2:2e: 2a:34:80:a9:da:87:3a:68:c2:f7:70:e3:ac:4b:59:ef:04:fc: 22:86:39:b2:b5:96:96:07:6a:9b:c6:fa:db:86:19:6b:a8:4e: 51:9c:be:64:30:f2:04:04:b7:64:a7:59:9b:53:e1:ce:05:ca: cc:f6:82:6d:eb:b2:28:1d:5e:19:d1:a2:f5:34:fc:88:15:37: 93:9e:45:e9:98:be:57:ed:89:2b:3a:eb:58:55:43:c8:d2:02: ba:9f:7e:00:f2:d6:5d:b3:f7:b8:eb:c4:32:ef:5a:3d:f8:d9: fa:15:d6:a8:b7:7f:c8:b4:30:96:5f:22:6a:14:0b:3f:64:50: b7:90:40:32:a7:df:c2:aa:37:43:69:19:22:24:ae:61:27:00: 18:f2:4c:90:da:06:0e:9c:12:42:a5:11:1b:42:7f:05:5a:99: a8:83:5c:64:3d:13:55:a3:37:f3:52:e0:ba:fd:43:bb:4f:71: d7:25:95:34 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEqwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUQx ODZGNjMxNEQ3QjU3MTNFRkZFQ0ZCOTNFQkMzRTgyMTk3RTJFRjAeFw0yNTA4MjIw ODU5MThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEMxRDVEQ0UxQTYwRDBE ODAwQjI1MkQzM0ZBMTQ5MUFGMEIwRUM0QUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFu7qHXPF1M029dT89rJbSqYZT+oAGD5SYhcS9uMID/ct9jjgK 0AzqgeC2h4/dfJM5pBwyjhHy5q1rxRMXjW5zZ3emmwnZSfB9/apKCrZ/PMVfvYG3 DENtHp0o5t/tajStR5PgToVgoKYA+96UWxqO/V16rqLDN6QCg0/WmInpT1TnI42L jb0FyLGZhxlPdxlnWfjOnd/TD75we1zeGYhNiEmQwIQ1STxQ9ZhSJJwUJgsBQidT XWayfLgB7/NwSJb7yZVrQ7uiu6h7EgkUzds3/HXsmaGU83hO+t2edUUcUdHYSCIT GfQFQH/VvOntMU4f5LvGIO6GMjLompqTdQ1fAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUwdXc4aYNDYALJS0z+hSRrwsOxKswHwYDVR0jBBgwFoAU7RhvYxTXtXE+/+z7 k+vD6CGX4u8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hVTllJ TkcvN1Jodll4VFh0WEUtXy16N2stdkQ2Q0dYNHU4LmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS83Umh2WXhUWHRYRS1fLXo3ay12RDZDR1g0dTguY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSFVOWUlORy93ZFhjNGFZTkRZQUxK UzB6LWhTUnJ3c094S3Mucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZ3/sMA0GCSqGSIb3DQEBCwUAA4IBAQBsNLiD0hfugGOrCCYiRWV76TNGzhI8 AmaJEKD7DA/EF1eciT4OmhM8WC7eH1BP/cqMEuE4GCEpQb7qjPS7JglwuMRdrIOM oi4qNICp2oc6aML3cOOsS1nvBPwihjmytZaWB2qbxvrbhhlrqE5RnL5kMPIEBLdk p1mbU+HOBcrM9oJt67IoHV4Z0aL1NPyIFTeTnkXpmL5X7YkrOutYVUPI0gK6n34A 8tZds/e468Qy71o9+Nn6Fdaot3/ItDCWXyJqFAs/ZFC3kEAyp9/CqjdDaRkiJK5h JwAY8kyQ2gYOnBJCpREbQn8FWpmog1xkPRNVozfzUuC6/UO7T3HXJZU0 -----END CERTIFICATE-----Generated at Sun Aug 24 11:15:31 2025 by rpki-client