$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VOCOM/3E0AcOlj4_6FO8JeXsU5JvqbxAo.roa File: 3E0AcOlj4_6FO8JeXsU5JvqbxAo.roa (raw, json) Hash identifier: uBCCzwt+PCrvWJg4xR07ZS13omu3ZDYci6LWvT04z2c= Subject key identifier: DC:4D:00:70:E9:63:E3:FE:85:3B:C2:5E:5E:C5:39:26:FA:9B:C4:0A Certificate issuer: /CN=9E847108EBA0B550BC020FD9B1DC6DEB29E0DBEF Certificate serial: 02B6 Authority key identifier: 9E:84:71:08:EB:A0:B5:50:BC:02:0F:D9:B1:DC:6D:EB:29:E0:DB:EF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/noRxCOugtVC8Ag_Zsdxt6yng2-8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VOCOM/3E0AcOlj4_6FO8JeXsU5JvqbxAo.roa Signing time: Fri 22 Aug 2025 08:56:31 +0000 ROA not before: Fri 22 Aug 2025 08:56:31 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 63897 IP address blocks: 103.178.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/VOCOM/noRxCOugtVC8Ag_Zsdxt6yng2-8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/VOCOM/noRxCOugtVC8Ag_Zsdxt6yng2-8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/noRxCOugtVC8Ag_Zsdxt6yng2-8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 694 (0x2b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E847108EBA0B550BC020FD9B1DC6DEB29E0DBEF Validity Not Before: Aug 22 08:56:31 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=DC4D0070E963E3FE853BC25E5EC53926FA9BC40A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:46:d6:72:5b:1d:c0:cc:6e:e4:f0:92:78:aa: a8:fd:25:c3:31:6a:72:39:85:34:bd:07:94:99:b8: 05:c6:58:70:6c:b4:64:2c:d6:af:8e:cb:f9:cc:0a: e5:5e:63:36:0c:76:49:2b:f2:3d:83:c4:84:1c:7f: 86:a1:ab:5a:cc:6d:68:e9:6e:08:70:8e:ed:46:66: 48:2c:3d:f3:ab:ee:0a:89:4d:7e:9a:3d:7f:bc:db: b8:a1:38:69:e7:91:60:43:48:38:79:7d:b7:40:1e: c1:61:43:7e:92:21:4d:6c:93:09:a1:d7:f0:3b:8b: 2b:8a:c6:6b:83:91:f6:64:b7:bf:eb:68:11:18:45: ed:ea:47:e7:f9:37:32:d2:19:32:a6:58:16:f0:19: 5e:6a:b6:b2:7e:f0:3d:1a:a3:6e:89:ea:6f:6c:61: a7:0e:50:58:55:5d:f5:87:74:d4:8a:de:fa:68:9c: d1:7e:da:72:94:62:b9:a7:ec:2d:57:15:de:cc:79: 3e:f6:f3:a2:d6:ec:16:c2:09:4e:ab:e7:70:c2:99: 3c:fe:66:c7:90:7d:58:a8:e3:3e:d7:4e:b5:66:fc: 93:39:17:f2:e3:05:18:2a:47:57:1d:e7:09:4c:b5: 30:d2:38:5b:0b:40:b6:f2:8c:e7:34:d1:2a:e3:38: 88:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:4D:00:70:E9:63:E3:FE:85:3B:C2:5E:5E:C5:39:26:FA:9B:C4:0A X509v3 Authority Key Identifier: keyid:9E:84:71:08:EB:A0:B5:50:BC:02:0F:D9:B1:DC:6D:EB:29:E0:DB:EF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VOCOM/noRxCOugtVC8Ag_Zsdxt6yng2-8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/noRxCOugtVC8Ag_Zsdxt6yng2-8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VOCOM/3E0AcOlj4_6FO8JeXsU5JvqbxAo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.178.36.0/24 Signature Algorithm: sha256WithRSAEncryption 97:be:b7:47:78:96:59:4a:21:7f:c3:0f:66:64:86:51:77:8f: 0c:57:ee:37:f3:92:2a:68:65:e8:d5:15:e3:29:16:3a:ae:77: 9d:89:a6:40:7d:63:7a:1e:68:8b:7c:fc:55:9f:05:03:45:28: 61:08:2d:5a:33:d1:29:7f:ac:e5:7a:3d:8f:11:ef:12:98:8a: ac:a5:25:ae:e5:ae:2c:8e:9b:61:3d:71:92:c6:55:5a:b9:19: 94:7a:f4:bf:eb:29:c4:98:ee:dc:5e:91:f1:99:46:5d:f8:60: fb:be:f6:ed:32:15:e7:8d:49:0d:3c:10:c6:58:29:fa:5a:83: 6f:0b:70:ae:f0:6d:38:5f:f9:36:76:0d:42:19:42:8d:d7:11: 60:0b:30:0d:d7:15:7e:d7:8c:7d:5c:2d:85:ed:bc:10:e2:f5: 4f:2c:f2:d3:f2:c2:4c:ce:20:e1:f2:87:3c:8a:b1:56:b0:f2: 4a:93:52:14:e4:c2:15:27:77:86:87:e8:ed:e2:64:5e:24:83: bb:94:5a:17:f2:75:49:2d:08:7b:dc:59:e5:55:e8:a3:e8:e6: 19:22:e6:6b:48:de:14:12:25:a3:30:27:75:1e:31:f3:ea:c8: 66:b7:1d:d9:4f:08:93:60:3a:95:49:a0:46:8b:35:2a:b3:b8: d7:bb:1c:60 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICArYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUU4 NDcxMDhFQkEwQjU1MEJDMDIwRkQ5QjFEQzZERUIyOUUwREJFRjAeFw0yNTA4MjIw ODU2MzFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKERDNEQwMDcwRTk2M0Uz RkU4NTNCQzI1RTVFQzUzOTI2RkE5QkM0MEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3RtZyWx3AzG7k8JJ4qqj9JcMxanI5hTS9B5SZuAXGWHBstGQs 1q+Oy/nMCuVeYzYMdkkr8j2DxIQcf4ahq1rMbWjpbghwju1GZkgsPfOr7gqJTX6a PX+827ihOGnnkWBDSDh5fbdAHsFhQ36SIU1skwmh1/A7iyuKxmuDkfZkt7/raBEY Re3qR+f5NzLSGTKmWBbwGV5qtrJ+8D0ao26J6m9sYacOUFhVXfWHdNSK3vponNF+ 2nKUYrmn7C1XFd7MeT7286LW7BbCCU6r53DCmTz+ZseQfVio4z7XTrVm/JM5F/Lj BRgqR1cd5wlMtTDSOFsLQLbyjOc00SrjOIiTAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU3E0AcOlj4/6FO8JeXsU5JvqbxAowHwYDVR0jBBgwFoAUnoRxCOugtVC8Ag/Z sdxt6yng2+8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVk9DT00v bm9SeENPdWd0VkM4QWdfWnNkeHQ2eW5nMi04LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9ub1J4Q091Z3RWQzhBZ19ac2R4dDZ5bmcyLTguY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9WT0NPTS8zRTBBY09sajRfNkZPOEplWHNV NUp2cWJ4QW8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7Ik MA0GCSqGSIb3DQEBCwUAA4IBAQCXvrdHeJZZSiF/ww9mZIZRd48MV+4385IqaGXo 1RXjKRY6rnediaZAfWN6HmiLfPxVnwUDRShhCC1aM9Epf6zlej2PEe8SmIqspSWu 5a4sjpthPXGSxlVauRmUevS/6ynEmO7cXpHxmUZd+GD7vvbtMhXnjUkNPBDGWCn6 WoNvC3Cu8G04X/k2dg1CGUKN1xFgCzAN1xV+14x9XC2F7bwQ4vVPLPLT8sJMziDh 8oc8irFWsPJKk1IU5MIVJ3eGh+jt4mReJIO7lFoX8nVJLQh73FnlVeij6OYZIuZr SN4UEiWjMCd1HjHz6shmtx3ZTwiTYDqVSaBGizUqs7jXuxxg -----END CERTIFICATE-----Generated at Sun Aug 24 05:34:02 2025 by rpki-client