$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/-fZckqdeOYD6d3FcTxAxReLsSBY.roa File: -fZckqdeOYD6d3FcTxAxReLsSBY.roa (raw, json) Hash identifier: M+oFbGdGlTNXQ5RNWPYUfS7gvTQajRTCug887TlWrVc= Subject key identifier: F9:F6:5C:92:A7:5E:39:80:FA:77:71:5C:4F:10:31:45:E2:EC:48:16 Certificate issuer: /CN=CAD527022C8CD07568EC9FC82A1CE0DDE5B2C4AC Certificate serial: 09DC Authority key identifier: CA:D5:27:02:2C:8C:D0:75:68:EC:9F:C8:2A:1C:E0:DD:E5:B2:C4:AC Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ytUnAiyM0HVo7J_IKhzg3eWyxKw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/-fZckqdeOYD6d3FcTxAxReLsSBY.roa Signing time: Fri 22 Aug 2025 08:50:45 +0000 ROA not before: Fri 22 Aug 2025 08:50:45 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9678 IP address blocks: 103.150.37.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/ytUnAiyM0HVo7J_IKhzg3eWyxKw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/ytUnAiyM0HVo7J_IKhzg3eWyxKw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ytUnAiyM0HVo7J_IKhzg3eWyxKw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2524 (0x9dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CAD527022C8CD07568EC9FC82A1CE0DDE5B2C4AC Validity Not Before: Aug 22 08:50:45 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F9F65C92A75E3980FA77715C4F103145E2EC4816 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:88:57:30:ec:69:c8:ec:f0:f9:5f:97:11:5c: 61:74:0e:b2:e5:27:11:80:e6:14:05:2a:cd:2d:a0: 70:95:0f:12:c7:89:a2:2d:d2:f0:99:60:52:99:fb: be:89:61:d3:06:7f:c2:54:1f:c2:3e:28:b5:61:90: 3d:b1:65:91:1b:d6:47:7f:a3:04:38:25:31:f3:37: 75:09:22:58:05:78:95:37:ef:20:f2:a4:39:92:4f: db:33:1b:a6:b1:8a:9c:00:27:fc:07:71:88:bb:e4: c1:d7:60:72:9e:be:90:dc:2b:c6:a6:b4:f3:7e:a6: 07:80:b6:f8:15:d0:cd:b0:be:55:0e:1c:3a:ff:0a: 2e:1f:a0:81:37:51:8e:5c:fd:53:e8:ff:94:04:9e: 95:38:ec:ea:19:79:35:1a:cd:24:f4:b6:ba:0b:d1: 67:37:df:1b:1f:03:1f:82:eb:3a:cf:68:ed:e5:88: 6e:f9:4d:e7:60:ba:10:ea:50:d7:02:0b:64:0c:03: a3:5d:5b:5a:7e:04:0a:da:9f:df:ff:42:d3:b7:f1: 09:cc:c0:06:90:7a:49:fe:06:9e:2b:a9:28:1c:d9: d2:bb:49:a8:af:35:3e:ca:64:01:8c:34:1e:c4:aa: e6:72:c2:77:b6:70:9e:e7:d6:9b:22:1c:d6:2d:b7: 01:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:F6:5C:92:A7:5E:39:80:FA:77:71:5C:4F:10:31:45:E2:EC:48:16 X509v3 Authority Key Identifier: keyid:CA:D5:27:02:2C:8C:D0:75:68:EC:9F:C8:2A:1C:E0:DD:E5:B2:C4:AC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/ytUnAiyM0HVo7J_IKhzg3eWyxKw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ytUnAiyM0HVo7J_IKhzg3eWyxKw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/-fZckqdeOYD6d3FcTxAxReLsSBY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.150.37.0/24 Signature Algorithm: sha256WithRSAEncryption 97:88:9b:85:70:00:70:72:36:57:19:e7:f5:80:5b:f7:2d:a9: 11:4f:40:58:a4:ea:90:be:6c:4d:98:9a:12:18:06:9c:ab:e2: 93:92:7d:fd:39:6d:72:79:5b:36:26:c7:8f:05:28:7e:c5:56: 49:94:32:78:4e:d7:20:cd:62:83:28:2f:c1:a1:96:6b:31:f0: cb:75:da:3c:27:58:37:ef:17:4f:d2:b5:41:70:f8:97:28:51: d9:44:0a:e6:68:b6:e9:85:3c:4d:b8:7e:3c:75:1d:d7:e4:eb: 9d:92:32:21:7e:80:44:fc:3f:6c:83:1b:7d:10:d4:c2:3e:1c: 02:7d:f7:66:d1:ac:df:7c:69:67:5d:66:20:b1:52:b9:7a:08: c3:13:d9:e1:b4:33:00:1c:c0:a6:3f:47:29:81:6e:f0:d2:30: b2:00:e3:a4:d9:4f:57:8c:b0:a6:79:a4:0a:54:61:3e:68:af: 7f:75:69:6d:46:f9:44:c0:2c:df:bc:19:cb:e6:7f:50:c2:b0: 1a:e3:da:16:f0:30:c3:76:b8:25:c7:03:b0:d7:4e:3b:d0:55: 08:aa:f6:44:fe:43:98:80:82:41:a4:bf:25:02:4e:0f:a8:d0: 85:c4:46:49:19:4a:cf:02:07:66:de:9d:a8:af:8e:40:11:94: 56:a5:38:ca -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICCdwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0FE NTI3MDIyQzhDRDA3NTY4RUM5RkM4MkExQ0UwRERFNUIyQzRBQzAeFw0yNTA4MjIw ODUwNDVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEY5RjY1QzkyQTc1RTM5 ODBGQTc3NzE1QzRGMTAzMTQ1RTJFQzQ4MTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCziFcw7GnI7PD5X5cRXGF0DrLlJxGA5hQFKs0toHCVDxLHiaIt 0vCZYFKZ+76JYdMGf8JUH8I+KLVhkD2xZZEb1kd/owQ4JTHzN3UJIlgFeJU37yDy pDmST9szG6axipwAJ/wHcYi75MHXYHKevpDcK8amtPN+pgeAtvgV0M2wvlUOHDr/ Ci4foIE3UY5c/VPo/5QEnpU47OoZeTUazST0troL0Wc33xsfAx+C6zrPaO3liG75 TedguhDqUNcCC2QMA6NdW1p+BAran9//QtO38QnMwAaQekn+Bp4rqSgc2dK7Saiv NT7KZAGMNB7EquZywne2cJ7n1psiHNYttwGvAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQU+fZckqdeOYD6d3FcTxAxReLsSBYwHwYDVR0jBBgwFoAUytUnAiyM0HVo7J/I Khzg3eWyxKwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdCRVNU V0FSRS95dFVuQWl5TTBIVm83Sl9JS2h6ZzNlV3l4S3cuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL3l0VW5BaXlNMEhWbzdKX0lLaHpnM2VXeXhLdy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1RXQkVTVFdBUkUvLWZaY2txZGVP WUQ2ZDNGY1R4QXhSZUxzU0JZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAGeWJTANBgkqhkiG9w0BAQsFAAOCAQEAl4ibhXAAcHI2Vxnn9YBb9y2p EU9AWKTqkL5sTZiaEhgGnKvik5J9/TltcnlbNibHjwUofsVWSZQyeE7XIM1igygv waGWazHwy3XaPCdYN+8XT9K1QXD4lyhR2UQK5mi26YU8Tbh+PHUd1+TrnZIyIX6A RPw/bIMbfRDUwj4cAn33ZtGs33xpZ11mILFSuXoIwxPZ4bQzABzApj9HKYFu8NIw sgDjpNlPV4ywpnmkClRhPmivf3VpbUb5RMAs37wZy+Z/UMKwGuPaFvAww3a4JccD sNdOO9BVCKr2RP5DmICCQaS/JQJOD6jQhcRGSRlKzwIHZt6dqK+OQBGUVqU4yg== -----END CERTIFICATE-----Generated at Sun Aug 24 09:43:12 2025 by rpki-client