$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SMTRTCH/0plfJ2-fyoynvuRUPY0-iNeYeKQ.roa File: 0plfJ2-fyoynvuRUPY0-iNeYeKQ.roa (raw, json) Hash identifier: CBUjfXcp7wmCoFlxrDTF4dLNwvGTQXX4Xx/FISx5DCQ= Subject key identifier: D2:99:5F:27:6F:9F:CA:8C:A7:BE:E4:54:3D:8D:3E:88:D7:98:78:A4 Certificate issuer: /CN=45F30B4C5ECE6E12E6D90889D7940D8E1871072B Certificate serial: 0325 Authority key identifier: 45:F3:0B:4C:5E:CE:6E:12:E6:D9:08:89:D7:94:0D:8E:18:71:07:2B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RfMLTF7ObhLm2QiJ15QNjhhxBys.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SMTRTCH/0plfJ2-fyoynvuRUPY0-iNeYeKQ.roa Signing time: Fri 22 Aug 2025 08:42:11 +0000 ROA not before: Fri 22 Aug 2025 08:42:11 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9678 IP address blocks: 103.37.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SMTRTCH/RfMLTF7ObhLm2QiJ15QNjhhxBys.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SMTRTCH/RfMLTF7ObhLm2QiJ15QNjhhxBys.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RfMLTF7ObhLm2QiJ15QNjhhxBys.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 805 (0x325) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=45F30B4C5ECE6E12E6D90889D7940D8E1871072B Validity Not Before: Aug 22 08:42:11 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=D2995F276F9FCA8CA7BEE4543D8D3E88D79878A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:36:15:6e:20:40:bf:20:ac:dc:f5:8d:33:91: 0c:6c:cc:2c:d7:9e:12:8b:31:e8:37:76:8c:bb:e8: 55:68:a0:8d:af:09:90:fb:a7:59:16:3c:94:58:62: b8:a7:69:37:28:a7:94:1a:51:11:5e:bb:f7:61:dc: 31:fd:2f:6a:61:fe:5b:63:ef:9d:b4:1a:ef:ab:59: fe:81:77:1c:d6:b4:9e:fd:d5:61:4a:3f:a0:ea:6d: 19:6c:11:9c:fa:08:7c:6b:22:28:c9:62:b7:0d:07: 98:1b:e7:63:88:b0:52:c6:f6:7f:96:45:0b:c2:89: 01:63:f6:07:98:66:6f:6f:8c:2f:04:f5:37:b8:f7: 50:0d:aa:90:27:02:ab:da:0e:a5:e0:c4:1d:f8:a3: 22:78:ff:78:51:ac:c4:3b:7d:f0:20:d7:4c:75:12: 99:c6:20:fb:95:0c:16:c0:ca:39:d2:60:e3:ba:22: 41:9c:72:7d:b5:c8:5d:2e:59:c5:0c:b6:d7:31:ae: b8:88:18:41:c1:fe:86:0e:22:19:86:7a:43:de:62: 30:d6:75:f2:76:19:30:73:c2:5e:93:15:74:fc:79: da:eb:98:44:1e:93:58:13:59:93:6f:d4:54:34:86: 31:86:44:f7:c9:f3:05:89:ca:22:23:23:30:60:07: e1:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:99:5F:27:6F:9F:CA:8C:A7:BE:E4:54:3D:8D:3E:88:D7:98:78:A4 X509v3 Authority Key Identifier: keyid:45:F3:0B:4C:5E:CE:6E:12:E6:D9:08:89:D7:94:0D:8E:18:71:07:2B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SMTRTCH/RfMLTF7ObhLm2QiJ15QNjhhxBys.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RfMLTF7ObhLm2QiJ15QNjhhxBys.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SMTRTCH/0plfJ2-fyoynvuRUPY0-iNeYeKQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.37.4.0/24 Signature Algorithm: sha256WithRSAEncryption 85:e2:29:6c:22:24:e7:3d:6e:dd:29:d9:01:d2:ea:d0:fa:e7: d6:83:56:99:a3:48:6b:87:a7:55:f2:db:cc:97:62:59:18:d9: 1d:0e:07:7c:31:be:f5:53:1a:f3:f7:68:b1:e5:fa:73:b0:b3: ed:8a:c6:6b:24:28:f8:28:4e:1a:70:0f:e1:e5:4e:a9:ac:0b: 11:18:bc:6f:97:f4:00:f8:ab:3c:f4:0b:46:4f:31:ed:86:80: 2c:d0:70:d8:90:21:ee:9f:a6:fc:79:77:f1:c4:06:5f:fb:48: 6a:94:ba:be:c1:9a:a7:47:d4:a2:b5:82:d2:b8:5f:64:6c:eb: 00:f8:08:ab:8a:22:4a:b4:6d:82:d6:1a:cd:d3:18:72:4c:b5: 7b:4f:60:74:5c:7e:a2:3e:4b:ab:56:b3:2f:d0:13:77:ee:b3: 3f:ff:31:b9:19:4f:0a:2a:55:04:4e:84:9d:6f:c8:55:eb:49: de:32:b1:47:ea:d6:21:a2:60:02:2f:68:cf:34:e6:66:32:95: 74:d6:48:d6:c6:54:ea:fd:54:59:9a:06:3c:a2:88:3a:7d:0e: d0:02:09:e8:dd:65:72:7b:f8:05:de:19:d3:43:16:6d:6d:4e: 32:3b:48:dc:3f:d4:a5:91:16:6d:a9:f9:33:fd:9c:05:a7:ee: a1:36:8d:3b -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICAyUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDVG MzBCNEM1RUNFNkUxMkU2RDkwODg5RDc5NDBEOEUxODcxMDcyQjAeFw0yNTA4MjIw ODQyMTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEQyOTk1RjI3NkY5RkNB OENBN0JFRTQ1NDNEOEQzRTg4RDc5ODc4QTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5NhVuIEC/IKzc9Y0zkQxszCzXnhKLMeg3doy76FVooI2vCZD7 p1kWPJRYYrinaTcop5QaURFeu/dh3DH9L2ph/ltj7520Gu+rWf6BdxzWtJ791WFK P6DqbRlsEZz6CHxrIijJYrcNB5gb52OIsFLG9n+WRQvCiQFj9geYZm9vjC8E9Te4 91ANqpAnAqvaDqXgxB34oyJ4/3hRrMQ7ffAg10x1EpnGIPuVDBbAyjnSYOO6IkGc cn21yF0uWcUMttcxrriIGEHB/oYOIhmGekPeYjDWdfJ2GTBzwl6TFXT8edrrmEQe k1gTWZNv1FQ0hjGGRPfJ8wWJyiIjIzBgB+EhAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU0plfJ2+fyoynvuRUPY0+iNeYeKQwHwYDVR0jBBgwFoAURfMLTF7ObhLm2QiJ 15QNjhhxByswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU01UUlRD SC9SZk1MVEY3T2JoTG0yUWlKMTVRTmpoaHhCeXMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1JmTUxURjdPYmhMbTJRaUoxNVFOamhoeEJ5cy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NNVFJUQ0gvMHBsZkoyLWZ5b3ludnVS VVBZMC1pTmVZZUtRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AGclBDANBgkqhkiG9w0BAQsFAAOCAQEAheIpbCIk5z1u3SnZAdLq0Prn1oNWmaNI a4enVfLbzJdiWRjZHQ4HfDG+9VMa8/doseX6c7Cz7YrGayQo+ChOGnAP4eVOqawL ERi8b5f0APirPPQLRk8x7YaALNBw2JAh7p+m/Hl38cQGX/tIapS6vsGap0fUorWC 0rhfZGzrAPgIq4oiSrRtgtYazdMYcky1e09gdFx+oj5Lq1azL9ATd+6zP/8xuRlP CipVBE6EnW/IVetJ3jKxR+rWIaJgAi9ozzTmZjKVdNZI1sZU6v1UWZoGPKKIOn0O 0AIJ6N1lcnv4Bd4Z00MWbW1OMjtI3D/UpZEWban5M/2cBafuoTaNOw== -----END CERTIFICATE-----Generated at Sun Aug 24 09:44:52 2025 by rpki-client