$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWT/NqQxfpN73msWHso4L_kDgw-7w_g.roa File: NqQxfpN73msWHso4L_kDgw-7w_g.roa (raw, json) Hash identifier: cwTMULV7vUg49h645e7uRuJk3ionqI4S2e8+NIvHXIY= Subject key identifier: 36:A4:31:7E:93:7B:DE:6B:16:1E:CA:38:2F:F9:03:83:0F:BB:C3:F8 Certificate issuer: /CN=7EC7F1677BB492380282153BB77EC2EBE3185378 Certificate serial: 0DB2 Authority key identifier: 7E:C7:F1:67:7B:B4:92:38:02:82:15:3B:B7:7E:C2:EB:E3:18:53:78 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/NqQxfpN73msWHso4L_kDgw-7w_g.roa Signing time: Fri 22 Aug 2025 08:58:03 +0000 ROA not before: Fri 22 Aug 2025 08:58:03 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38851 IP address blocks: 103.229.102.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/fsfxZ3u0kjgCghU7t37C6-MYU3g.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/fsfxZ3u0kjgCghU7t37C6-MYU3g.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3506 (0xdb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7EC7F1677BB492380282153BB77EC2EBE3185378 Validity Not Before: Aug 22 08:58:03 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=36A4317E937BDE6B161ECA382FF903830FBBC3F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:71:60:f2:68:6e:48:44:04:c5:b4:27:94:04: 52:25:a0:60:78:f7:a8:87:7b:2e:d8:9f:d2:44:c8: 25:a9:a3:6d:d4:0d:73:f9:85:b3:74:72:96:5a:65: c7:64:6c:6b:62:b6:76:15:ef:5f:4a:ca:2a:2a:a0: fa:93:f6:3c:0b:f1:95:51:4b:9f:9d:ab:b3:7e:4f: d1:f8:b8:91:50:6a:74:f7:9f:0c:37:5e:d1:43:d4: c7:10:7c:37:dc:4b:2e:a2:67:ce:5f:a1:40:b1:a3: be:80:86:9a:64:0e:ad:07:7d:24:2c:88:6f:ab:ed: 28:0a:f9:7d:14:08:45:17:74:bd:bf:59:ac:ff:d1: aa:19:1e:f5:b8:3b:e0:48:73:00:66:17:0a:f5:00: b0:5e:1a:19:06:7d:89:78:3a:2b:7d:19:5d:a9:42: a7:46:82:68:22:20:1c:6e:a9:20:b0:a5:cc:27:4f: cf:1c:42:cb:83:41:a0:59:4d:c5:0f:e7:20:e2:7f: f6:43:57:d1:c8:86:c7:51:2a:a7:e1:d6:6c:aa:6a: 72:c7:3d:07:3a:f6:50:49:09:be:87:3d:55:5a:97: da:f6:e5:4f:b6:6f:8c:fe:2d:73:ae:b7:8e:09:df: d7:6c:1d:01:a2:76:05:07:3a:7c:48:52:60:d7:0b: 3f:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:A4:31:7E:93:7B:DE:6B:16:1E:CA:38:2F:F9:03:83:0F:BB:C3:F8 X509v3 Authority Key Identifier: keyid:7E:C7:F1:67:7B:B4:92:38:02:82:15:3B:B7:7E:C2:EB:E3:18:53:78 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/fsfxZ3u0kjgCghU7t37C6-MYU3g.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/NqQxfpN73msWHso4L_kDgw-7w_g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.229.102.0/23 Signature Algorithm: sha256WithRSAEncryption 39:9a:e2:69:9d:8d:09:2f:1d:4d:81:94:5f:1f:02:80:fd:8e: d1:09:25:ec:6d:1e:68:ed:92:b3:bc:f5:c0:bf:86:76:b2:47: 33:dd:75:60:e5:c9:b5:4a:e2:42:f3:b7:14:b1:a4:9e:2e:5d: 99:45:29:32:56:05:48:7c:5f:01:b0:2b:7e:a4:01:fe:b0:6c: 23:ac:b2:ac:0c:89:e6:d8:45:45:3a:cb:87:45:1f:bc:4d:d0: c9:84:48:93:e2:88:91:df:e8:ec:93:bd:c0:c0:ca:07:a5:8f: ad:43:f9:39:06:55:26:76:37:41:c8:6d:82:e4:2e:7f:2d:39: e8:fb:15:49:40:2a:08:11:7d:48:81:e2:2e:3d:e0:49:4b:6a: 14:41:f3:89:2d:0b:d8:df:f2:ed:a0:e0:27:23:87:b7:17:35: 3a:93:fc:1e:a4:94:bb:c8:92:ce:61:19:ec:a1:97:ef:16:0c: 3b:5b:3e:04:66:30:b8:58:ce:3d:4a:a7:b9:67:30:30:eb:d2: 1f:03:36:b3:46:41:ab:dc:19:66:41:f4:1a:8e:67:cf:23:8d: bb:e5:e5:76:f4:24:83:98:c9:dd:e1:94:bf:5e:81:bb:da:25: 40:82:c3:9e:b5:8a:ae:b3:e5:e8:ef:f7:00:bc:25:3b:8c:72: d9:b7:87:53 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDbIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0VD N0YxNjc3QkI0OTIzODAyODIxNTNCQjc3RUMyRUJFMzE4NTM3ODAeFw0yNTA4MjIw ODU4MDNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDM2QTQzMTdFOTM3QkRF NkIxNjFFQ0EzODJGRjkwMzgzMEZCQkMzRjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD1cWDyaG5IRATFtCeUBFIloGB496iHey7Yn9JEyCWpo23UDXP5 hbN0cpZaZcdkbGtitnYV719KyioqoPqT9jwL8ZVRS5+dq7N+T9H4uJFQanT3nww3 XtFD1McQfDfcSy6iZ85foUCxo76AhppkDq0HfSQsiG+r7SgK+X0UCEUXdL2/Waz/ 0aoZHvW4O+BIcwBmFwr1ALBeGhkGfYl4Oit9GV2pQqdGgmgiIBxuqSCwpcwnT88c QsuDQaBZTcUP5yDif/ZDV9HIhsdRKqfh1myqanLHPQc69lBJCb6HPVVal9r25U+2 b4z+LXOut44J39dsHQGidgUHOnxIUmDXCz/jAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUNqQxfpN73msWHso4L/kDgw+7w/gwHwYDVR0jBBgwFoAUfsfxZ3u0kjgCghU7 t37C6+MYU3gwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdUL2Zz ZnhaM3Uwa2pnQ2doVTd0MzdDNi1NWVUzZy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev ZnNmeFozdTBramdDZ2hVN3QzN0M2LU1ZVTNnLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvVFdUL05xUXhmcE43M21zV0hzbzRMX2tEZ3ct N3dfZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn5WYwDQYJ KoZIhvcNAQELBQADggEBADma4mmdjQkvHU2BlF8fAoD9jtEJJextHmjtkrO89cC/ hnayRzPddWDlybVK4kLztxSxpJ4uXZlFKTJWBUh8XwGwK36kAf6wbCOssqwMiebY RUU6y4dFH7xN0MmESJPiiJHf6OyTvcDAygelj61D+TkGVSZ2N0HIbYLkLn8tOej7 FUlAKggRfUiB4i494ElLahRB84ktC9jf8u2g4Ccjh7cXNTqT/B6klLvIks5hGeyh l+8WDDtbPgRmMLhYzj1Kp7lnMDDr0h8DNrNGQavcGWZB9BqOZ88jjbvl5Xb0JIOY yd3hlL9egbvaJUCCw561iq6z5ejv9wC8JTuMctm3h1M= -----END CERTIFICATE-----Generated at Sun Aug 24 09:06:32 2025 by rpki-client