$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/4NjTqan12me_p3c4kJ5pASqS4jM.roa File: 4NjTqan12me_p3c4kJ5pASqS4jM.roa (raw, json) Hash identifier: uibqPg6JVeqXPcRIxVkudxh5JGzOD9Rmz0K5VlzMxVQ= Subject key identifier: E0:D8:D3:A9:A9:F5:DA:67:BF:A7:77:38:90:9E:69:01:2A:92:E2:33 Certificate issuer: /CN=9BFCFAA2106742B2C099E3F4C2A50428E5CD62D3 Certificate serial: 0336 Authority key identifier: 9B:FC:FA:A2:10:67:42:B2:C0:99:E3:F4:C2:A5:04:28:E5:CD:62:D3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/m_z6ohBnQrLAmeP0wqUEKOXNYtM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/4NjTqan12me_p3c4kJ5pASqS4jM.roa Signing time: Thu 02 Oct 2025 11:42:02 +0000 ROA not before: Thu 02 Oct 2025 11:42:02 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 396982 IP address blocks: 103.51.89.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/m_z6ohBnQrLAmeP0wqUEKOXNYtM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:23:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 822 (0x336) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9BFCFAA2106742B2C099E3F4C2A50428E5CD62D3 Validity Not Before: Oct 2 11:42:02 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E0D8D3A9A9F5DA67BFA77738909E69012A92E233 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:58:53:a7:cf:6e:82:82:75:cf:b7:49:a7:4d: c7:8f:c2:4e:1f:38:df:9a:40:41:b4:e8:87:93:ef: 61:25:d5:6b:7c:c7:de:59:1f:a0:fb:ae:0d:fb:40: d6:68:79:d5:cc:9a:72:36:4e:20:b8:c1:a3:18:e6: 2a:79:ee:9d:c8:78:3c:f3:6c:37:93:56:a1:ee:ad: f0:ad:d7:93:d1:28:57:7a:46:12:d6:6e:44:6a:cd: f5:a1:23:65:93:94:3c:65:6b:58:b9:13:0d:70:4b: 96:e2:9b:64:d2:2c:18:db:10:65:53:69:b0:77:ef: be:97:fa:ed:a0:02:77:a5:fd:a3:a4:91:5d:f7:05: 22:d9:7f:c4:cb:af:33:22:96:c1:ae:56:64:4c:30: ae:8f:77:d2:42:96:03:ba:5d:54:65:4d:d6:32:c8: 28:65:d9:c7:ad:48:d5:d2:17:8f:64:77:a2:2c:b9: 06:c0:aa:44:c4:61:20:6c:95:5e:0d:80:d9:20:04: df:e6:51:46:19:a8:a1:7d:4a:a7:b8:f5:1d:d0:98: 6c:df:b1:aa:a0:63:d3:74:e3:ba:14:c9:c0:ab:f6: af:20:cf:5e:b1:08:7c:71:1d:b6:f5:b5:67:02:6c: 56:5a:2f:3e:5f:0c:0d:f0:67:60:d4:0f:14:41:67: ba:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:D8:D3:A9:A9:F5:DA:67:BF:A7:77:38:90:9E:69:01:2A:92:E2:33 X509v3 Authority Key Identifier: keyid:9B:FC:FA:A2:10:67:42:B2:C0:99:E3:F4:C2:A5:04:28:E5:CD:62:D3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/m_z6ohBnQrLAmeP0wqUEKOXNYtM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/4NjTqan12me_p3c4kJ5pASqS4jM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.51.89.0/24 Signature Algorithm: sha256WithRSAEncryption 42:7a:3e:dc:db:76:43:96:d6:db:09:dc:70:81:c5:82:7b:a1: c2:9b:c3:de:9f:fd:31:36:b0:93:23:f6:a9:82:42:67:6f:0c: 97:a4:7d:d6:f8:46:39:06:68:14:e7:e7:c0:38:ba:d7:1b:9b: a0:ff:bf:2d:d5:b1:11:74:ba:4f:fb:cf:97:b0:ed:58:47:04: b1:dd:20:a5:da:4a:4f:6a:e8:95:95:77:79:bc:b4:82:30:75: b6:30:21:4d:4b:dd:5d:4d:e1:b0:0e:79:19:2a:9d:16:82:1d: 81:03:a9:1f:61:e8:35:ce:f6:5e:82:11:17:ea:23:15:84:cf: da:2b:22:15:70:7c:5c:9d:49:d3:bf:74:04:fd:5d:34:a9:d9: ec:e4:29:48:43:a1:e6:97:81:44:e5:dc:33:70:ab:12:30:95: 0f:49:bd:9d:c7:fa:7c:7c:b6:bb:d4:b9:f4:9c:81:a5:9d:d8: 7f:96:40:b5:b2:2f:05:9e:02:a1:3e:99:22:ef:f3:ca:9c:1b: d6:33:21:4c:35:a7:4b:18:e8:34:2c:28:ae:45:f4:fd:3b:b6: 1c:63:3b:c8:ce:a5:df:a2:93:3a:b8:a2:a3:3a:cd:1e:04:e4: 89:20:0c:0d:f1:20:94:ec:80:70:c7:93:68:e7:88:35:ac:4c: bd:b2:bb:d7 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICAzYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUJG Q0ZBQTIxMDY3NDJCMkMwOTlFM0Y0QzJBNTA0MjhFNUNENjJEMzAeFw0yNTEwMDIx MTQyMDJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEUwRDhEM0E5QTlGNURB NjdCRkE3NzczODkwOUU2OTAxMkE5MkUyMzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYWFOnz26CgnXPt0mnTcePwk4fON+aQEG06IeT72El1Wt8x95Z H6D7rg37QNZoedXMmnI2TiC4waMY5ip57p3IeDzzbDeTVqHurfCt15PRKFd6RhLW bkRqzfWhI2WTlDxla1i5Ew1wS5bim2TSLBjbEGVTabB3776X+u2gAnel/aOkkV33 BSLZf8TLrzMilsGuVmRMMK6Pd9JClgO6XVRlTdYyyChl2cetSNXSF49kd6IsuQbA qkTEYSBslV4NgNkgBN/mUUYZqKF9Sqe49R3QmGzfsaqgY9N047oUycCr9q8gz16x CHxxHbb1tWcCbFZaLz5fDA3wZ2DUDxRBZ7pJAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQU4NjTqan12me/p3c4kJ5pASqS4jMwHwYDVR0jBBgwFoAUm/z6ohBnQrLAmeP0 wqUEKOXNYtMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEVDSERS SVZFTi9tX3o2b2hCblFyTEFtZVAwd3FVRUtPWE5ZdE0uY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL21fejZvaEJuUXJMQW1lUDB3cVVFS09YTll0TS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1RFQ0hEUklWRU4vNE5qVHFhbjEy bWVfcDNjNGtKNXBBU3FTNGpNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAGczWTANBgkqhkiG9w0BAQsFAAOCAQEAQno+3Nt2Q5bW2wnccIHFgnuh wpvD3p/9MTawkyP2qYJCZ28Ml6R91vhGOQZoFOfnwDi61xuboP+/LdWxEXS6T/vP l7DtWEcEsd0gpdpKT2rolZV3eby0gjB1tjAhTUvdXU3hsA55GSqdFoIdgQOpH2Ho Nc72XoIRF+ojFYTP2isiFXB8XJ1J0790BP1dNKnZ7OQpSEOh5peBROXcM3CrEjCV D0m9ncf6fHy2u9S59JyBpZ3Yf5ZAtbIvBZ4CoT6ZIu/zypwb1jMhTDWnSxjoNCwo rkX0/Tu2HGM7yM6l36KTOriiozrNHgTkiSAMDfEglOyAcMeTaOeINaxMvbK71w== -----END CERTIFICATE-----Generated at Mon Oct 20 11:19:17 2025 by rpki-client