$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIANGYU/QnYeiP_6Ur5ogI3r_rzBxb28UDk.roa File: QnYeiP_6Ur5ogI3r_rzBxb28UDk.roa (raw, json) Hash identifier: 7BrFWHe6Carm6PT3HzcyCBEifHA+N+dP+9moo3lr3m4= Subject key identifier: 42:76:1E:88:FF:FA:52:BE:68:80:8D:EB:FE:BC:C1:C5:BD:BC:50:39 Certificate issuer: /CN=040D968303B364F772A753578220D3537E16166E Certificate serial: 0409 Authority key identifier: 04:0D:96:83:03:B3:64:F7:72:A7:53:57:82:20:D3:53:7E:16:16:6E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BA2WgwOzZPdyp1NXgiDTU34WFm4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIANGYU/QnYeiP_6Ur5ogI3r_rzBxb28UDk.roa Signing time: Fri 22 Aug 2025 08:49:33 +0000 ROA not before: Fri 22 Aug 2025 08:49:33 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 63897 IP address blocks: 103.175.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIANGYU/BA2WgwOzZPdyp1NXgiDTU34WFm4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SIANGYU/BA2WgwOzZPdyp1NXgiDTU34WFm4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/BA2WgwOzZPdyp1NXgiDTU34WFm4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1033 (0x409) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=040D968303B364F772A753578220D3537E16166E Validity Not Before: Aug 22 08:49:33 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=42761E88FFFA52BE68808DEBFEBCC1C5BDBC5039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:e4:97:77:ba:67:2d:29:c7:4d:3c:b8:09:71: a4:65:f9:36:5a:e7:0c:94:8b:f5:bb:25:1d:85:08: 85:23:c5:86:15:90:95:50:4b:c5:92:f2:11:11:78: 7f:eb:f1:6c:72:bf:dc:6f:6f:08:ef:0b:8b:9f:2b: 20:f5:60:96:76:74:6f:91:2e:9e:50:d2:4b:a8:7f: 35:42:58:9b:ed:9a:a3:55:ba:56:10:38:f9:81:3e: 2d:33:96:8d:2d:8d:68:b8:d0:d4:48:75:f3:5a:9e: f0:f2:f2:a8:80:62:7b:2b:e5:9d:47:d7:16:57:f5: 27:5f:c8:61:65:88:0c:c4:8a:74:c6:af:5a:80:32: 1d:e7:3a:b5:ff:27:40:a5:b0:be:ae:fa:a0:1d:46: bc:f3:4c:58:38:0a:28:7e:58:87:7d:34:41:87:a7: b8:c4:b8:44:7a:9d:f5:4a:07:5d:8c:66:67:9d:b3: 0a:f9:5a:ec:ed:61:f1:df:d0:78:6e:b4:bc:51:53: df:17:a2:ab:1e:4b:89:91:59:67:80:bd:61:e1:7d: 7b:6a:50:50:d8:59:96:c1:07:ad:20:58:0f:03:52: 37:06:5e:09:f5:46:4b:99:ff:96:4f:50:03:c0:27: d9:4d:92:34:21:0b:49:32:35:3f:d2:7c:35:f0:de: 8a:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:76:1E:88:FF:FA:52:BE:68:80:8D:EB:FE:BC:C1:C5:BD:BC:50:39 X509v3 Authority Key Identifier: keyid:04:0D:96:83:03:B3:64:F7:72:A7:53:57:82:20:D3:53:7E:16:16:6E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIANGYU/BA2WgwOzZPdyp1NXgiDTU34WFm4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BA2WgwOzZPdyp1NXgiDTU34WFm4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIANGYU/QnYeiP_6Ur5ogI3r_rzBxb28UDk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.175.254.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:21:9c:22:95:12:bf:0c:4d:51:a1:2a:c9:84:6a:56:d9:de: 9f:2d:7b:c6:b2:04:a9:78:3a:87:6a:8f:87:ca:9d:24:93:ef: e3:cc:3f:3e:65:43:fa:cb:e5:58:1c:67:94:8b:8d:36:25:95: fb:83:20:fa:75:1c:e7:07:3d:3a:4f:65:c1:74:42:81:00:ce: dc:c2:2b:3e:2f:4e:03:ca:68:7d:ed:13:1e:df:ac:4b:62:6e: 1f:17:87:72:7f:21:6f:df:b3:46:a5:07:b6:91:c9:70:05:e5: c4:c4:a0:0a:13:4a:02:07:a2:04:5c:78:9f:32:c3:33:ae:3b: 12:9a:b6:c2:5d:ed:a3:85:c7:aa:e9:47:aa:2b:b8:45:db:36: 90:56:53:cf:1c:c8:09:08:34:88:f5:70:8f:bf:9a:3f:24:16: ac:f0:2c:6e:22:fd:3c:51:af:45:1f:bb:a0:5a:52:21:d4:6d: 8d:b2:5b:4e:55:9a:2d:6e:b2:df:08:2d:8f:85:bc:4b:54:93: a7:43:bd:43:1c:c0:05:97:71:c0:57:90:db:22:d8:4b:4b:c5: b1:dd:a7:b9:36:54:47:af:67:3e:66:0a:44:89:13:0d:be:68: 88:26:30:32:b3:90:df:f3:27:36:df:0f:be:6d:01:53:e2:8a: b4:03:ae:c6 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICBAkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDQw RDk2ODMwM0IzNjRGNzcyQTc1MzU3ODIyMEQzNTM3RTE2MTY2RTAeFw0yNTA4MjIw ODQ5MzNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQyNzYxRTg4RkZGQTUy QkU2ODgwOERFQkZFQkNDMUM1QkRCQzUwMzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDX5Jd3umctKcdNPLgJcaRl+TZa5wyUi/W7JR2FCIUjxYYVkJVQ S8WS8hEReH/r8Wxyv9xvbwjvC4ufKyD1YJZ2dG+RLp5Q0kuofzVCWJvtmqNVulYQ OPmBPi0zlo0tjWi40NRIdfNanvDy8qiAYnsr5Z1H1xZX9SdfyGFliAzEinTGr1qA Mh3nOrX/J0ClsL6u+qAdRrzzTFg4Cih+WId9NEGHp7jEuER6nfVKB12MZmedswr5 WuztYfHf0HhutLxRU98XoqseS4mRWWeAvWHhfXtqUFDYWZbBB60gWA8DUjcGXgn1 RkuZ/5ZPUAPAJ9lNkjQhC0kyNT/SfDXw3oqjAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUQnYeiP/6Ur5ogI3r/rzBxb28UDkwHwYDVR0jBBgwFoAUBA2WgwOzZPdyp1NX giDTU34WFm4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lBTkdZ VS9CQTJXZ3dPelpQZHlwMU5YZ2lEVFUzNFdGbTQuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0JBMldnd096WlBkeXAxTlhnaURUVTM0V0ZtNC5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NJQU5HWVUvUW5ZZWlQXzZVcjVvZ0kz cl9yekJ4YjI4VURrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AGev/jANBgkqhkiG9w0BAQsFAAOCAQEALyGcIpUSvwxNUaEqyYRqVtneny17xrIE qXg6h2qPh8qdJJPv48w/PmVD+svlWBxnlIuNNiWV+4Mg+nUc5wc9Ok9lwXRCgQDO 3MIrPi9OA8pofe0THt+sS2JuHxeHcn8hb9+zRqUHtpHJcAXlxMSgChNKAgeiBFx4 nzLDM647Epq2wl3to4XHqulHqiu4Rds2kFZTzxzICQg0iPVwj7+aPyQWrPAsbiL9 PFGvRR+7oFpSIdRtjbJbTlWaLW6y3wgtj4W8S1STp0O9QxzABZdxwFeQ2yLYS0vF sd2nuTZUR69nPmYKRIkTDb5oiCYwMrOQ3/MnNt8Pvm0BU+KKtAOuxg== -----END CERTIFICATE-----Generated at Sun Aug 24 07:29:35 2025 by rpki-client