$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TIANSIN/wBrQXP9hO8pAGIdwsp7S-WsjzOQ.roa File: wBrQXP9hO8pAGIdwsp7S-WsjzOQ.roa (raw, json) Hash identifier: Gs6TpWimAVyyjQLx3uuXixMu57Z6ZHyCko7iWLWKzAQ= Subject key identifier: C0:1A:D0:5C:FF:61:3B:CA:40:18:87:70:B2:9E:D2:F9:6B:23:CC:E4 Certificate issuer: /CN=9654330DD1FA2ED60FCD69F26F2138CA2C8BEC73 Certificate serial: 0320 Authority key identifier: 96:54:33:0D:D1:FA:2E:D6:0F:CD:69:F2:6F:21:38:CA:2C:8B:EC:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/llQzDdH6LtYPzWnybyE4yiyL7HM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TIANSIN/wBrQXP9hO8pAGIdwsp7S-WsjzOQ.roa Signing time: Fri 22 Aug 2025 08:56:22 +0000 ROA not before: Fri 22 Aug 2025 08:56:22 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 7483 IP address blocks: 103.24.52.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TIANSIN/llQzDdH6LtYPzWnybyE4yiyL7HM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TIANSIN/llQzDdH6LtYPzWnybyE4yiyL7HM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/llQzDdH6LtYPzWnybyE4yiyL7HM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 800 (0x320) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9654330DD1FA2ED60FCD69F26F2138CA2C8BEC73 Validity Not Before: Aug 22 08:56:22 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C01AD05CFF613BCA40188770B29ED2F96B23CCE4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:24:c0:b2:51:1b:61:2f:20:9d:5b:5b:cb:b9: 35:89:50:19:04:b1:58:a4:cd:c6:9e:f1:7a:80:87: b8:2d:98:e2:69:c8:8a:8a:16:04:d3:25:10:f1:81: 99:2b:11:d0:c8:04:b1:66:27:ca:0a:40:b0:c7:d2: cb:5d:45:3f:83:52:18:58:9b:21:68:0c:de:88:91: bf:e5:8b:1a:f4:48:78:85:68:f8:d2:86:c5:75:c7: 8a:36:29:02:c9:0c:4e:e3:74:7a:1d:6e:62:f2:96: a8:8c:9a:3d:e6:b9:c8:d4:41:7a:11:bd:de:5f:ff: 41:26:31:4f:72:48:0f:33:24:ad:7c:0b:a2:72:53: f0:b2:f4:4f:76:f6:cf:bf:fd:d2:3d:4b:76:0c:48: d6:fb:fd:2f:9f:70:a2:10:c1:43:ce:0a:e2:5b:7a: 20:bd:25:08:60:90:e2:2c:2f:6b:1c:5e:65:57:d4: fc:0b:67:28:ef:6b:2c:65:9f:ea:b4:a2:c1:33:36: 43:07:2a:69:da:ae:98:93:31:af:07:7f:15:e2:cd: 66:0f:b0:dc:95:db:e4:6b:71:a6:fd:a3:98:9f:ed: 9b:44:bc:de:1e:46:24:73:07:55:2d:65:67:c8:61: fc:6e:e0:5d:6b:2b:f5:3c:98:61:25:c0:2a:29:f9: ad:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:1A:D0:5C:FF:61:3B:CA:40:18:87:70:B2:9E:D2:F9:6B:23:CC:E4 X509v3 Authority Key Identifier: keyid:96:54:33:0D:D1:FA:2E:D6:0F:CD:69:F2:6F:21:38:CA:2C:8B:EC:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIANSIN/llQzDdH6LtYPzWnybyE4yiyL7HM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/llQzDdH6LtYPzWnybyE4yiyL7HM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIANSIN/wBrQXP9hO8pAGIdwsp7S-WsjzOQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.24.52.0/23 Signature Algorithm: sha256WithRSAEncryption 30:f0:d3:0a:6e:13:81:e3:bb:ad:53:8e:5f:23:db:44:f4:9d: ae:03:61:ad:03:65:63:55:31:05:fd:e5:d2:ea:b8:37:e8:7c: a3:95:bb:4d:89:3f:8f:a2:ca:20:d8:59:0c:cb:d6:04:5a:bf: a2:10:fb:8b:89:0f:0b:4b:b4:ea:fd:9f:a0:1d:78:4f:7f:3c: a4:a4:d3:3f:9e:3e:45:1e:51:99:30:fb:51:08:32:35:70:2c: 3f:a8:e2:c0:ab:61:48:c0:9a:50:0d:22:8b:08:f7:eb:2f:96: 8b:8a:21:c1:fa:c3:f6:7e:bc:68:12:8b:11:76:33:57:dd:36: 4e:be:d1:12:11:8c:05:5f:d2:49:e4:d7:80:5c:de:86:8e:bd: 43:d6:56:93:b9:d6:76:e7:7e:0e:7d:f3:99:ce:86:14:e4:a6: 94:32:b6:68:e4:87:e5:a2:36:65:a4:8f:8b:0a:58:44:7a:c3: 2b:a7:da:a1:0c:e9:53:23:2f:28:4c:59:6b:40:e6:5d:c0:c7: a8:fe:e2:01:85:f5:ce:0e:32:90:6e:2b:8b:25:73:71:d0:7b: d6:23:7f:41:e1:df:c4:c4:fe:a4:b0:52:44:24:88:1d:cb:a4: 2a:a2:c0:dd:0c:47:9a:27:c4:58:c6:0a:86:2f:80:4d:4c:fc: 2a:05:e6:db -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICAyAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTY1 NDMzMEREMUZBMkVENjBGQ0Q2OUYyNkYyMTM4Q0EyQzhCRUM3MzAeFw0yNTA4MjIw ODU2MjJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEMwMUFEMDVDRkY2MTNC Q0E0MDE4ODc3MEIyOUVEMkY5NkIyM0NDRTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCeJMCyURthLyCdW1vLuTWJUBkEsVikzcae8XqAh7gtmOJpyIqK FgTTJRDxgZkrEdDIBLFmJ8oKQLDH0stdRT+DUhhYmyFoDN6Ikb/lixr0SHiFaPjS hsV1x4o2KQLJDE7jdHodbmLylqiMmj3mucjUQXoRvd5f/0EmMU9ySA8zJK18C6Jy U/Cy9E929s+//dI9S3YMSNb7/S+fcKIQwUPOCuJbeiC9JQhgkOIsL2scXmVX1PwL Zyjvayxln+q0osEzNkMHKmnarpiTMa8HfxXizWYPsNyV2+Rrcab9o5if7ZtEvN4e RiRzB1UtZWfIYfxu4F1rK/U8mGElwCop+a2dAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUwBrQXP9hO8pAGIdwsp7S+WsjzOQwHwYDVR0jBBgwFoAUllQzDdH6LtYPzWny byE4yiyL7HMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElBTlNJ Ti9sbFF6RGRINkx0WVB6V255YnlFNHlpeUw3SE0uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL2xsUXpEZEg2THRZUHpXbnlieUU0eWl5TDdITS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1RJQU5TSU4vd0JyUVhQOWhPOHBBR0lk d3NwN1MtV3Nqek9RLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AWcYNDANBgkqhkiG9w0BAQsFAAOCAQEAMPDTCm4TgeO7rVOOXyPbRPSdrgNhrQNl Y1UxBf3l0uq4N+h8o5W7TYk/j6LKINhZDMvWBFq/ohD7i4kPC0u06v2foB14T388 pKTTP54+RR5RmTD7UQgyNXAsP6jiwKthSMCaUA0iiwj36y+Wi4ohwfrD9n68aBKL EXYzV902Tr7REhGMBV/SSeTXgFzeho69Q9ZWk7nWdud+Dn3zmc6GFOSmlDK2aOSH 5aI2ZaSPiwpYRHrDK6faoQzpUyMvKExZa0DmXcDHqP7iAYX1zg4ykG4riyVzcdB7 1iN/QeHfxMT+pLBSRCSIHcukKqLA3QxHmifEWMYKhi+ATUz8KgXm2w== -----END CERTIFICATE-----Generated at Sun Aug 24 09:21:12 2025 by rpki-client