$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/qptbKXIDgniH29W-VrxkH_CJfPU.roa File: qptbKXIDgniH29W-VrxkH_CJfPU.roa (raw, json) Hash identifier: ZY6c1Eo/cAQYh7y9rC5t1DM/IcHwpSL87cqDArNLpqc= Subject key identifier: AA:9B:5B:29:72:03:82:78:87:DB:D5:BE:56:BC:64:1F:F0:89:7C:F5 Certificate issuer: /CN=B2839BF7A6C6B17E7CFCB3734A36C0E98C37A1B7 Certificate serial: 07A3 Authority key identifier: B2:83:9B:F7:A6:C6:B1:7E:7C:FC:B3:73:4A:36:C0:E9:8C:37:A1:B7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/qptbKXIDgniH29W-VrxkH_CJfPU.roa Signing time: Fri 22 Aug 2025 08:55:16 +0000 ROA not before: Fri 22 Aug 2025 08:55:16 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9678 IP address blocks: 103.152.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/soOb96bGsX58_LNzSjbA6Yw3obc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/soOb96bGsX58_LNzSjbA6Yw3obc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1955 (0x7a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2839BF7A6C6B17E7CFCB3734A36C0E98C37A1B7 Validity Not Before: Aug 22 08:55:16 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=AA9B5B297203827887DBD5BE56BC641FF0897CF5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:16:85:b8:68:4f:f2:25:02:7d:29:e5:5a:dc: 9d:a6:ed:6a:73:0c:42:42:d2:41:35:40:08:7b:5d: 70:f1:31:bb:68:82:33:52:54:8f:f4:4f:81:8e:55: a1:b4:62:63:72:c7:8b:4f:93:d3:7a:8e:69:16:39: e6:25:31:8c:e7:4c:97:94:91:93:5e:01:c6:ae:10: 55:a5:fd:e7:e6:1a:32:66:de:f1:d5:0d:20:45:c3: d6:7b:ba:8c:b6:dc:da:16:df:20:e5:db:bd:8c:89: e1:05:96:a8:f0:2d:48:89:e6:75:cb:cf:e9:fa:fd: 64:a4:84:fb:bb:de:09:c9:8a:bb:68:f2:af:86:07: 40:db:e3:e7:bc:0e:56:fe:a1:ce:ba:70:90:5f:81: 36:b9:3e:d9:11:ca:48:67:c1:16:23:b5:b0:1a:07: 42:ef:e6:79:50:6e:35:7c:8e:61:6d:d3:09:09:b2: dd:4a:16:76:0b:cb:4b:52:88:81:8b:ce:eb:3e:49: 41:6e:e6:9e:25:0d:42:94:4a:dd:7b:13:19:80:c7: 86:7a:6d:b7:66:ce:06:7c:6c:14:ad:59:5c:9f:f9: dd:08:b6:f9:9f:6b:ea:56:b1:74:f7:be:b7:a5:fd: 0c:00:fe:94:c6:0d:ee:da:ef:b9:b9:9f:6b:fd:d3: 04:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:9B:5B:29:72:03:82:78:87:DB:D5:BE:56:BC:64:1F:F0:89:7C:F5 X509v3 Authority Key Identifier: keyid:B2:83:9B:F7:A6:C6:B1:7E:7C:FC:B3:73:4A:36:C0:E9:8C:37:A1:B7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/soOb96bGsX58_LNzSjbA6Yw3obc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/qptbKXIDgniH29W-VrxkH_CJfPU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.152.151.0/24 Signature Algorithm: sha256WithRSAEncryption 96:0c:38:75:7f:56:0e:c6:e1:4a:21:cb:71:7e:af:b8:1f:5a: d7:f6:5c:f5:1e:78:31:5c:9d:05:7f:68:e6:26:cb:15:f8:ea: 6d:7b:65:67:e8:8e:61:df:19:79:8e:4b:69:d5:a0:cd:c3:e7: 57:2d:9c:3e:49:e9:05:91:e7:e9:e4:4f:7a:e0:19:23:b6:18: 8a:8f:07:07:13:aa:d9:65:11:62:4d:85:3c:f6:3d:b3:2f:74: cf:22:6b:85:ed:3a:f1:04:c4:49:3f:3d:71:d2:53:b0:70:83: 16:3d:5b:b0:4e:b6:9d:7d:30:3c:a5:a6:55:0b:b1:a3:21:fb: af:17:d3:da:09:8a:0a:f8:6b:37:b4:86:13:40:f8:08:3a:1c: 43:1a:29:1c:12:7c:0d:11:34:37:fe:d0:00:ed:24:1b:b7:1d: c1:71:4e:f0:95:f9:a2:68:7e:4b:3a:66:e0:10:ec:dc:ac:bc: bd:a7:17:9c:33:bd:37:85:77:ec:61:9d:ed:a6:d2:2b:ac:62: 99:28:f6:60:37:5f:b1:cb:8e:0f:35:70:b6:45:34:28:17:fe: 72:56:9b:52:b1:30:e2:39:ad:6f:ab:5a:13:6a:15:7b:cf:3d: 4a:d1:53:0a:26:db:1d:32:24:92:8f:90:ef:34:ce:c4:0d:d3: 68:41:b4:69 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICB6MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjI4 MzlCRjdBNkM2QjE3RTdDRkNCMzczNEEzNkMwRTk4QzM3QTFCNzAeFw0yNTA4MjIw ODU1MTZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEFBOUI1QjI5NzIwMzgy Nzg4N0RCRDVCRTU2QkM2NDFGRjA4OTdDRjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCgFoW4aE/yJQJ9KeVa3J2m7WpzDEJC0kE1QAh7XXDxMbtogjNS VI/0T4GOVaG0YmNyx4tPk9N6jmkWOeYlMYznTJeUkZNeAcauEFWl/efmGjJm3vHV DSBFw9Z7uoy23NoW3yDl272MieEFlqjwLUiJ5nXLz+n6/WSkhPu73gnJirto8q+G B0Db4+e8Dlb+oc66cJBfgTa5PtkRykhnwRYjtbAaB0Lv5nlQbjV8jmFt0wkJst1K FnYLy0tSiIGLzus+SUFu5p4lDUKUSt17ExmAx4Z6bbdmzgZ8bBStWVyf+d0Itvmf a+pWsXT3vrel/QwA/pTGDe7a77m5n2v90wTvAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUqptbKXIDgniH29W+VrxkH/CJfPUwHwYDVR0jBBgwFoAUsoOb96bGsX58/LNz SjbA6Yw3obcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1VNQVRS QS9zb09iOTZiR3NYNThfTE56U2piQTZZdzNvYmMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL3NvT2I5NmJHc1g1OF9MTnpTamJBNll3M29iYy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NVTUFUUkEvcXB0YktYSURnbmlIMjlX LVZyeGtIX0NKZlBVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AGeYlzANBgkqhkiG9w0BAQsFAAOCAQEAlgw4dX9WDsbhSiHLcX6vuB9a1/Zc9R54 MVydBX9o5ibLFfjqbXtlZ+iOYd8ZeY5LadWgzcPnVy2cPknpBZHn6eRPeuAZI7YY io8HBxOq2WURYk2FPPY9sy90zyJrhe068QTEST89cdJTsHCDFj1bsE62nX0wPKWm VQuxoyH7rxfT2gmKCvhrN7SGE0D4CDocQxopHBJ8DRE0N/7QAO0kG7cdwXFO8JX5 omh+Szpm4BDs3Ky8vacXnDO9N4V37GGd7abSK6ximSj2YDdfscuODzVwtkU0KBf+ clabUrEw4jmtb6taE2oVe889StFTCibbHTIkko+Q7zTOxA3TaEG0aQ== -----END CERTIFICATE-----Generated at Sun Aug 24 09:42:32 2025 by rpki-client