$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWT/uQdPWXyBrFP-zbH_h3iABdWcNKE.roa File: uQdPWXyBrFP-zbH_h3iABdWcNKE.roa (raw, json) Hash identifier: rCp6T6AQoa8rILmmwyEfBZpOnc6L6BudT3Tm5PXFBQ4= Subject key identifier: B9:07:4F:59:7C:81:AC:53:FE:CD:B1:FF:87:78:80:05:D5:9C:34:A1 Certificate issuer: /CN=7EC7F1677BB492380282153BB77EC2EBE3185378 Certificate serial: 0DB7 Authority key identifier: 7E:C7:F1:67:7B:B4:92:38:02:82:15:3B:B7:7E:C2:EB:E3:18:53:78 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/uQdPWXyBrFP-zbH_h3iABdWcNKE.roa Signing time: Fri 22 Aug 2025 08:58:04 +0000 ROA not before: Fri 22 Aug 2025 08:58:04 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38851 IP address blocks: 103.229.100.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/fsfxZ3u0kjgCghU7t37C6-MYU3g.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/fsfxZ3u0kjgCghU7t37C6-MYU3g.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3511 (0xdb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7EC7F1677BB492380282153BB77EC2EBE3185378 Validity Not Before: Aug 22 08:58:04 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B9074F597C81AC53FECDB1FF87788005D59C34A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:0c:22:ec:37:58:6d:eb:1e:7b:79:65:55:52: c4:94:e8:ab:a9:73:9c:49:ba:bb:3c:e9:27:b7:df: fe:ff:78:f7:74:61:3f:d5:bc:7a:6d:be:58:eb:9e: 1c:cf:39:d6:3b:40:4e:8a:32:df:c2:c2:cd:72:ae: b4:53:cb:cd:d7:5b:7b:f8:92:b8:93:1b:2d:a7:1b: 05:52:55:59:b3:8d:d5:0c:ed:4d:a4:09:98:72:e0: 24:cd:95:e8:9d:3b:31:46:a7:ff:89:1d:7e:85:17: 98:fb:53:0e:89:5d:c2:02:ac:d7:05:c5:6d:1a:3d: 67:26:12:d5:2b:6c:4a:f1:d4:00:a3:4a:77:f3:b5: 87:01:b1:06:4b:79:d1:29:68:98:a1:cb:ad:54:44: ed:76:59:20:68:59:47:4d:16:eb:91:68:a5:01:7c: 9a:f7:0a:26:35:8f:c8:e1:ad:c5:7c:1a:1b:ff:1b: 39:d7:e8:4d:69:0e:41:bb:c2:76:ba:4e:23:57:2d: de:51:87:2d:75:d2:5a:9e:c5:17:7e:7b:1b:b8:fd: d0:ec:7c:88:e1:c5:88:8c:65:3c:f3:e1:72:dc:44: 6a:9d:52:8b:67:24:2b:9f:78:6c:4a:14:fc:ca:79: 8b:90:3c:d9:d4:c8:b5:a3:a1:35:4d:a0:8e:bf:05: 94:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:07:4F:59:7C:81:AC:53:FE:CD:B1:FF:87:78:80:05:D5:9C:34:A1 X509v3 Authority Key Identifier: keyid:7E:C7:F1:67:7B:B4:92:38:02:82:15:3B:B7:7E:C2:EB:E3:18:53:78 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/fsfxZ3u0kjgCghU7t37C6-MYU3g.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/uQdPWXyBrFP-zbH_h3iABdWcNKE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.229.100.0/23 Signature Algorithm: sha256WithRSAEncryption 2d:b1:79:ba:4b:a5:3f:81:fd:0b:aa:90:8c:ae:04:b3:7e:2e: a3:6b:d9:cf:18:6e:d4:a9:07:84:e6:53:3c:b2:72:17:92:4e: b1:48:f7:17:86:0e:a3:2a:a8:97:19:80:32:94:65:0b:e2:fe: f9:08:23:6a:85:73:76:0e:33:67:bb:04:f5:26:47:c6:c8:f3: fd:fa:e7:1e:1b:dd:c4:72:e7:df:8b:f6:1b:cb:55:a3:80:b3: 80:42:73:4d:29:26:53:ee:9c:99:17:c5:52:2b:08:24:49:0a: 7a:18:75:bc:48:9a:cf:55:1c:56:fa:f9:1b:7b:58:49:46:98: 8b:cf:7c:db:0f:01:d3:2a:93:91:26:3c:56:cb:22:71:bb:21: 14:9e:3c:3f:4d:d3:a8:81:b1:cc:6d:6b:38:07:00:36:05:b6: 8f:c0:52:3f:fc:ec:d4:59:9e:f2:13:42:41:50:3f:59:4d:8c: ce:92:3d:7b:64:10:21:cd:fb:4c:04:86:fd:c7:58:f4:69:82: 59:14:7f:49:71:ec:0a:cf:19:73:02:ce:52:7b:50:dc:e0:21: 7a:8d:38:52:68:07:13:e1:38:25:44:2d:d5:0b:c9:72:0c:4b: 88:2f:46:6a:70:13:f0:73:67:30:0a:7a:38:7e:37:bb:a3:54: a3:22:6f:d9 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDbcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0VD N0YxNjc3QkI0OTIzODAyODIxNTNCQjc3RUMyRUJFMzE4NTM3ODAeFw0yNTA4MjIw ODU4MDRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEI5MDc0RjU5N0M4MUFD NTNGRUNEQjFGRjg3Nzg4MDA1RDU5QzM0QTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzDCLsN1ht6x57eWVVUsSU6Kupc5xJurs86Se33/7/ePd0YT/V vHptvljrnhzPOdY7QE6KMt/Cws1yrrRTy83XW3v4kriTGy2nGwVSVVmzjdUM7U2k CZhy4CTNleidOzFGp/+JHX6FF5j7Uw6JXcICrNcFxW0aPWcmEtUrbErx1ACjSnfz tYcBsQZLedEpaJihy61URO12WSBoWUdNFuuRaKUBfJr3CiY1j8jhrcV8Ghv/GznX 6E1pDkG7wna6TiNXLd5Rhy110lqexRd+exu4/dDsfIjhxYiMZTzz4XLcRGqdUotn JCufeGxKFPzKeYuQPNnUyLWjoTVNoI6/BZRfAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUuQdPWXyBrFP+zbH/h3iABdWcNKEwHwYDVR0jBBgwFoAUfsfxZ3u0kjgCghU7 t37C6+MYU3gwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdUL2Zz ZnhaM3Uwa2pnQ2doVTd0MzdDNi1NWVUzZy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev ZnNmeFozdTBramdDZ2hVN3QzN0M2LU1ZVTNnLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvVFdUL3VRZFBXWHlCckZQLXpiSF9oM2lBQmRX Y05LRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn5WQwDQYJ KoZIhvcNAQELBQADggEBAC2xebpLpT+B/QuqkIyuBLN+LqNr2c8YbtSpB4TmUzyy cheSTrFI9xeGDqMqqJcZgDKUZQvi/vkII2qFc3YOM2e7BPUmR8bI8/365x4b3cRy 59+L9hvLVaOAs4BCc00pJlPunJkXxVIrCCRJCnoYdbxIms9VHFb6+Rt7WElGmIvP fNsPAdMqk5EmPFbLInG7IRSePD9N06iBscxtazgHADYFto/AUj/87NRZnvITQkFQ P1lNjM6SPXtkECHN+0wEhv3HWPRpglkUf0lx7ArPGXMCzlJ7UNzgIXqNOFJoBxPh OCVELdULyXIMS4gvRmpwE/BzZzAKejh+N7ujVKMib9k= -----END CERTIFICATE-----Generated at Sun Aug 24 07:05:15 2025 by rpki-client