$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VOCOM/LH9LDqEU9eWR7-PxqoW7rIkUZ_s.roa File: LH9LDqEU9eWR7-PxqoW7rIkUZ_s.roa (raw, json) Hash identifier: FM6aQV+Ph4Gexo/FReHYg0noMAiGoFdzMmYi65mIJ4A= Subject key identifier: 2C:7F:4B:0E:A1:14:F5:E5:91:EF:E3:F1:AA:85:BB:AC:89:14:67:FB Certificate issuer: /CN=9E847108EBA0B550BC020FD9B1DC6DEB29E0DBEF Certificate serial: 02B3 Authority key identifier: 9E:84:71:08:EB:A0:B5:50:BC:02:0F:D9:B1:DC:6D:EB:29:E0:DB:EF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/noRxCOugtVC8Ag_Zsdxt6yng2-8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VOCOM/LH9LDqEU9eWR7-PxqoW7rIkUZ_s.roa Signing time: Fri 22 Aug 2025 08:56:31 +0000 ROA not before: Fri 22 Aug 2025 08:56:31 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 63897 IP address blocks: 103.178.37.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/VOCOM/noRxCOugtVC8Ag_Zsdxt6yng2-8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/VOCOM/noRxCOugtVC8Ag_Zsdxt6yng2-8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/noRxCOugtVC8Ag_Zsdxt6yng2-8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 691 (0x2b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E847108EBA0B550BC020FD9B1DC6DEB29E0DBEF Validity Not Before: Aug 22 08:56:31 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2C7F4B0EA114F5E591EFE3F1AA85BBAC891467FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c6:a7:6e:56:f8:f9:78:7c:1f:09:82:44:34: e7:d0:3a:b3:2c:57:2d:4c:fa:19:1e:81:9e:02:db: c0:58:69:b9:18:b5:ff:38:28:31:d2:3a:3e:a6:9f: 42:40:0d:12:8f:98:47:be:df:41:2b:ab:a5:33:a1: a2:b4:54:24:12:36:ec:3e:6d:ec:16:c9:16:3c:54: cd:fc:5d:38:e2:0d:34:24:57:4a:7e:19:b5:95:f0: f7:47:5e:b0:fa:39:f9:99:d0:88:c6:54:71:1f:b2: b4:99:35:9e:02:5d:cc:63:71:e5:0a:61:3c:3b:75: 75:82:0f:a2:4f:52:20:12:90:dd:f6:d5:fa:18:cd: 1f:af:2d:88:dd:75:ad:da:2e:84:43:ae:bd:f0:a6: f5:7a:2c:dc:90:20:7f:c4:9a:58:75:bc:97:68:2a: 45:e0:5e:98:b3:72:79:38:33:c9:21:74:c0:48:a6: ca:4e:d6:6c:bf:fe:f8:c9:91:e9:0b:32:ad:ed:f6: aa:d7:3e:01:62:c7:b3:bb:58:6c:52:fa:ac:4b:6c: a0:0a:4d:dd:c7:70:ba:bf:5b:7f:49:a0:7f:3e:9f: 8c:29:7b:74:82:80:7f:e3:11:2e:f4:e2:5a:be:c3: 87:43:b2:93:f3:bd:8d:ad:d3:1c:50:c5:ca:a7:8a: ae:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:7F:4B:0E:A1:14:F5:E5:91:EF:E3:F1:AA:85:BB:AC:89:14:67:FB X509v3 Authority Key Identifier: keyid:9E:84:71:08:EB:A0:B5:50:BC:02:0F:D9:B1:DC:6D:EB:29:E0:DB:EF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VOCOM/noRxCOugtVC8Ag_Zsdxt6yng2-8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/noRxCOugtVC8Ag_Zsdxt6yng2-8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VOCOM/LH9LDqEU9eWR7-PxqoW7rIkUZ_s.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.178.37.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:8e:e6:28:d8:cc:12:48:3a:f1:b1:90:06:15:e8:6c:b5:f5: 86:07:dd:2d:43:c5:51:6b:58:7f:83:8b:b4:75:90:2b:c8:e2: 19:40:7c:81:dd:bc:41:42:9c:44:51:4b:1d:4f:a2:29:98:7c: ff:43:91:94:e5:2a:b0:4e:fc:5c:0d:2a:8a:5e:b6:2b:45:bb: 7f:67:94:51:b9:24:96:4a:56:1c:ee:02:f5:34:ad:0e:64:8f: ea:1b:30:48:4f:08:b5:ed:b4:bf:2b:8a:8e:bb:11:46:1c:c1: ea:0c:e8:43:8d:ac:86:6e:70:f7:26:16:6c:dc:05:bc:43:c1: d4:0f:8f:ab:47:71:fc:4b:bf:a0:0e:f3:95:27:ba:01:d2:50: bb:8f:6f:55:8e:3c:fa:97:70:c2:8d:24:a3:ba:f6:9d:21:f6: 2a:16:e9:6b:d5:3d:29:e3:be:c4:61:0f:49:da:6f:0d:3b:94: 0e:db:0e:f2:94:f7:22:5f:e7:30:08:00:1a:e6:0a:3a:be:70: 67:44:de:01:34:35:04:2a:8b:f9:b4:56:c8:fa:39:c2:40:7c: f0:5f:63:2c:71:b2:17:09:48:9b:05:bf:aa:b9:58:7c:d4:2c: 8d:01:11:09:0a:af:73:55:bf:53:42:9a:3f:b2:f2:fa:65:c2: 8d:fa:e0:56 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICArMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUU4 NDcxMDhFQkEwQjU1MEJDMDIwRkQ5QjFEQzZERUIyOUUwREJFRjAeFw0yNTA4MjIw ODU2MzFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDJDN0Y0QjBFQTExNEY1 RTU5MUVGRTNGMUFBODVCQkFDODkxNDY3RkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCoxqduVvj5eHwfCYJENOfQOrMsVy1M+hkegZ4C28BYabkYtf84 KDHSOj6mn0JADRKPmEe+30Erq6UzoaK0VCQSNuw+bewWyRY8VM38XTjiDTQkV0p+ GbWV8PdHXrD6OfmZ0IjGVHEfsrSZNZ4CXcxjceUKYTw7dXWCD6JPUiASkN321foY zR+vLYjdda3aLoRDrr3wpvV6LNyQIH/Emlh1vJdoKkXgXpizcnk4M8khdMBIpspO 1my//vjJkekLMq3t9qrXPgFix7O7WGxS+qxLbKAKTd3HcLq/W39JoH8+n4wpe3SC gH/jES704lq+w4dDspPzvY2t0xxQxcqniq69AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQULH9LDqEU9eWR7+PxqoW7rIkUZ/swHwYDVR0jBBgwFoAUnoRxCOugtVC8Ag/Z sdxt6yng2+8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVk9DT00v bm9SeENPdWd0VkM4QWdfWnNkeHQ2eW5nMi04LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9ub1J4Q091Z3RWQzhBZ19ac2R4dDZ5bmcyLTguY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9WT0NPTS9MSDlMRHFFVTllV1I3LVB4cW9X N3JJa1VaX3Mucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7Il MA0GCSqGSIb3DQEBCwUAA4IBAQCbjuYo2MwSSDrxsZAGFehstfWGB90tQ8VRa1h/ g4u0dZAryOIZQHyB3bxBQpxEUUsdT6IpmHz/Q5GU5SqwTvxcDSqKXrYrRbt/Z5RR uSSWSlYc7gL1NK0OZI/qGzBITwi17bS/K4qOuxFGHMHqDOhDjayGbnD3JhZs3AW8 Q8HUD4+rR3H8S7+gDvOVJ7oB0lC7j29Vjjz6l3DCjSSjuvadIfYqFulr1T0p477E YQ9J2m8NO5QO2w7ylPciX+cwCAAa5go6vnBnRN4BNDUEKov5tFbI+jnCQHzwX2Ms cbIXCUibBb+quVh81CyNAREJCq9zVb9TQpo/svL6ZcKN+uBW -----END CERTIFICATE-----Generated at Sun Aug 24 07:29:30 2025 by rpki-client