$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SMCI/c2U921ILawGWu-Kvyy3i0wG5RGs.roa File: c2U921ILawGWu-Kvyy3i0wG5RGs.roa (raw, json) Hash identifier: 5OAa04y3rvKcIAsXfYVmkuGjIspg7Nn/12DvfumiQLI= Subject key identifier: 73:65:3D:DB:52:0B:6B:01:96:BB:E2:AF:CB:2D:E2:D3:01:B9:44:6B Certificate issuer: /CN=8856EA5549A2F41D847CD86A460B5026C14A6EE3 Certificate serial: 03A7 Authority key identifier: 88:56:EA:55:49:A2:F4:1D:84:7C:D8:6A:46:0B:50:26:C1:4A:6E:E3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/iFbqVUmi9B2EfNhqRgtQJsFKbuM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SMCI/c2U921ILawGWu-Kvyy3i0wG5RGs.roa Signing time: Fri 22 Aug 2025 08:48:46 +0000 ROA not before: Fri 22 Aug 2025 08:48:46 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 63894 IP address blocks: 103.162.84.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SMCI/iFbqVUmi9B2EfNhqRgtQJsFKbuM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SMCI/iFbqVUmi9B2EfNhqRgtQJsFKbuM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/iFbqVUmi9B2EfNhqRgtQJsFKbuM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 935 (0x3a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8856EA5549A2F41D847CD86A460B5026C14A6EE3 Validity Not Before: Aug 22 08:48:46 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=73653DDB520B6B0196BBE2AFCB2DE2D301B9446B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:24:f9:6b:6f:fa:9e:8c:ed:75:c2:68:7b:39: 90:da:b9:7c:b7:92:f4:55:db:bc:db:e1:4c:ef:f3: 2e:5e:ea:cc:f9:9b:49:0c:5a:31:e6:8c:bd:ab:a2: 76:bf:9d:eb:5d:23:60:2b:95:70:5f:91:23:f0:ce: 83:b0:e0:87:e9:60:8a:1b:d3:a0:07:06:16:25:e7: 36:b0:6d:7b:1e:d4:2a:d0:f5:61:fb:5c:99:b6:3a: 67:6a:5a:c7:b5:a0:9d:77:a9:f3:32:ad:29:4b:c0: 62:a0:37:ef:e0:a2:fb:9a:b2:cf:f5:93:87:ca:77: c5:94:7c:35:ee:24:31:d1:e5:f4:47:48:e6:af:d1: c3:ea:47:74:41:ab:88:73:f2:93:10:39:17:f7:24: 94:2d:1b:1b:ff:26:94:30:c0:e4:2b:f1:56:e1:31: 47:87:99:af:b8:39:c6:cd:14:62:55:3f:5c:97:6d: 98:a3:06:b8:42:44:80:84:26:f6:4d:f9:ed:21:b2: e0:e0:e9:50:ed:02:98:d0:9b:dd:af:89:29:9e:86: 27:42:a3:93:1a:4e:14:20:eb:5f:d3:51:17:ab:61: 68:01:6a:8f:ef:4e:c7:5d:1e:ae:ee:f4:74:e9:d0: 9f:82:8d:70:4e:7d:a8:0b:8a:20:bb:d8:19:91:30: d3:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:65:3D:DB:52:0B:6B:01:96:BB:E2:AF:CB:2D:E2:D3:01:B9:44:6B X509v3 Authority Key Identifier: keyid:88:56:EA:55:49:A2:F4:1D:84:7C:D8:6A:46:0B:50:26:C1:4A:6E:E3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SMCI/iFbqVUmi9B2EfNhqRgtQJsFKbuM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/iFbqVUmi9B2EfNhqRgtQJsFKbuM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SMCI/c2U921ILawGWu-Kvyy3i0wG5RGs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.162.84.0/23 Signature Algorithm: sha256WithRSAEncryption 06:78:b2:c9:56:4e:2a:7b:18:2f:80:1d:7d:38:3e:93:16:70: 1c:75:2e:7a:dd:a9:2b:3a:48:97:7a:c5:8a:e0:60:43:af:9f: 29:79:f2:7f:9b:8d:25:d7:73:e7:0e:a4:de:dd:e8:32:77:b9: 16:91:0a:38:08:c5:cf:77:af:9a:ce:de:18:ff:18:4e:b6:db: f0:11:d6:9f:58:b8:38:92:84:23:11:1a:66:df:04:7e:84:6e: 9d:c6:1e:6d:1a:2e:13:c7:a4:97:7e:31:12:2b:7f:fb:c5:39: 1c:40:e6:d9:c0:7a:92:c3:07:f7:33:c1:70:09:c2:1b:c1:0a: 88:4a:cc:ab:92:c9:1a:7d:ae:31:fd:75:56:2b:e7:ee:65:7f: 76:6d:aa:13:34:75:01:6c:7e:94:0f:95:e4:8f:3e:4f:86:09: af:25:8e:60:cf:57:3f:3f:5c:74:6c:e5:73:e4:4c:0a:e1:c8: ac:bd:60:ef:d8:80:34:9e:78:e3:2e:be:6c:97:7f:e1:30:35: 8b:0d:fa:f6:e3:64:c1:63:c1:8b:06:90:f3:72:81:e3:9e:40: 9c:15:31:21:98:08:f0:13:f5:f8:18:8c:06:a0:16:7f:36:a3: 8c:c9:45:cc:21:4b:cc:8e:59:8d:be:51:31:84:74:1d:ba:ff: 3e:2d:c8:52 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICA6cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODg1 NkVBNTU0OUEyRjQxRDg0N0NEODZBNDYwQjUwMjZDMTRBNkVFMzAeFw0yNTA4MjIw ODQ4NDZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDczNjUzRERCNTIwQjZC MDE5NkJCRTJBRkNCMkRFMkQzMDFCOTQ0NkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDJPlrb/qejO11wmh7OZDauXy3kvRV27zb4Uzv8y5e6sz5m0kM WjHmjL2rona/netdI2ArlXBfkSPwzoOw4IfpYIob06AHBhYl5zawbXse1CrQ9WH7 XJm2OmdqWse1oJ13qfMyrSlLwGKgN+/govuass/1k4fKd8WUfDXuJDHR5fRHSOav 0cPqR3RBq4hz8pMQORf3JJQtGxv/JpQwwOQr8VbhMUeHma+4OcbNFGJVP1yXbZij BrhCRICEJvZN+e0hsuDg6VDtApjQm92viSmehidCo5MaThQg61/TURerYWgBao/v TsddHq7u9HTp0J+CjXBOfagLiiC72BmRMNOzAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUc2U921ILawGWu+Kvyy3i0wG5RGswHwYDVR0jBBgwFoAUiFbqVUmi9B2EfNhq RgtQJsFKbuMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU01DSS9p RmJxVlVtaTlCMkVmTmhxUmd0UUpzRktidU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2lGYnFWVW1pOUIyRWZOaHFSZ3RRSnNGS2J1TS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1NNQ0kvYzJVOTIxSUxhd0dXdS1Ldnl5M2kw d0c1UkdzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWeiVDAN BgkqhkiG9w0BAQsFAAOCAQEABniyyVZOKnsYL4AdfTg+kxZwHHUuet2pKzpIl3rF iuBgQ6+fKXnyf5uNJddz5w6k3t3oMne5FpEKOAjFz3evms7eGP8YTrbb8BHWn1i4 OJKEIxEaZt8EfoRuncYebRouE8ekl34xEit/+8U5HEDm2cB6ksMH9zPBcAnCG8EK iErMq5LJGn2uMf11Vivn7mV/dm2qEzR1AWx+lA+V5I8+T4YJryWOYM9XPz9cdGzl c+RMCuHIrL1g79iANJ544y6+bJd/4TA1iw369uNkwWPBiwaQ83KB455AnBUxIZgI 8BP1+BiMBqAWfzajjMlFzCFLzI5Zjb5RMYR0Hbr/Pi3IUg== -----END CERTIFICATE-----Generated at Sun Aug 24 11:45:12 2025 by rpki-client