$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WANIN/LC_aFhBz7fd7C6FebQLwmHV3t9I.roa File: LC_aFhBz7fd7C6FebQLwmHV3t9I.roa (raw, json) Hash identifier: 8QLVAAyFdZwfuwuj45MZA7t9fieWo6P6SMjDJo6pGeM= Subject key identifier: 2C:2F:DA:16:10:73:ED:F7:7B:0B:A1:5E:6D:02:F0:98:75:77:B7:D2 Certificate issuer: /CN=C0D2C8C3D4C2FBBA24D3D83508AB142F2D49427D Certificate serial: 1413 Authority key identifier: C0:D2:C8:C3:D4:C2:FB:BA:24:D3:D8:35:08:AB:14:2F:2D:49:42:7D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/LC_aFhBz7fd7C6FebQLwmHV3t9I.roa Signing time: Fri 22 Aug 2025 08:58:55 +0000 ROA not before: Fri 22 Aug 2025 08:58:55 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131636 IP address blocks: 103.130.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5139 (0x1413) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0D2C8C3D4C2FBBA24D3D83508AB142F2D49427D Validity Not Before: Aug 22 08:58:55 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2C2FDA161073EDF77B0BA15E6D02F0987577B7D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:eb:74:c5:82:f9:aa:82:aa:33:64:7c:70:a1: a1:7c:7d:ea:f6:e0:07:97:3d:1e:d3:fe:9d:63:3b: 31:c4:9b:c3:04:ef:10:f1:34:4e:6e:5b:fc:45:65: 2b:27:14:6c:17:ac:eb:7a:2a:f2:c7:da:59:30:fe: 5f:f4:8c:20:24:dc:cd:39:a5:69:80:b1:29:09:63: f5:f2:15:d4:9e:2e:c9:66:28:90:7c:68:7f:9b:47: e7:38:18:96:be:c3:1d:7e:97:94:3b:48:07:ef:9a: 67:67:7d:c0:b7:79:e9:31:b0:c2:ce:74:d2:71:fe: 44:5e:06:4d:5e:83:4b:cf:1d:49:54:5e:e5:45:e2: 4f:9c:a3:5b:c4:6c:e7:cb:49:6e:f5:51:e7:bc:36: 8b:ae:52:81:38:1b:99:91:8f:fa:7d:63:a1:43:e6: ab:4a:e0:ef:ad:56:82:7c:b0:62:f2:01:50:03:fd: 2b:ae:4f:e3:15:97:57:d6:c4:1a:a0:dc:c7:b3:82: 0b:b2:21:c2:a0:4b:82:a1:42:0e:0f:9e:24:1f:ca: 2e:91:79:a1:33:3a:72:5e:12:9a:1e:2c:f4:ae:7d: ff:ca:f4:ad:56:51:77:54:64:db:ad:e7:60:a9:c4: 23:63:b6:3e:de:1d:ff:91:ee:c4:47:71:f6:f5:8a: a0:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:2F:DA:16:10:73:ED:F7:7B:0B:A1:5E:6D:02:F0:98:75:77:B7:D2 X509v3 Authority Key Identifier: keyid:C0:D2:C8:C3:D4:C2:FB:BA:24:D3:D8:35:08:AB:14:2F:2D:49:42:7D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/LC_aFhBz7fd7C6FebQLwmHV3t9I.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.130.125.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:58:a3:a3:ca:c9:f5:9e:2e:31:ac:39:41:08:26:66:e5:f8: 18:81:e9:80:99:7b:99:87:76:0e:c6:26:ad:9b:20:ae:5b:65: c5:64:f5:1f:1b:61:eb:38:70:2a:59:b4:fb:58:05:7c:71:1e: 33:60:13:93:36:99:5d:8b:ff:72:27:0f:19:e7:be:6f:bd:93: 85:4a:3d:73:d3:eb:44:81:fc:54:3d:48:d9:11:94:4b:9d:2b: 36:5e:6d:28:54:55:3d:90:b0:2a:ef:a4:53:70:77:4b:83:ca: ff:f0:32:67:3f:7c:30:2d:c6:6e:e3:7a:72:28:42:99:62:a4: 7d:94:6a:c5:f7:a8:ad:fe:87:09:be:a6:c7:55:26:1f:25:93: 60:8f:66:83:e4:44:6e:98:60:bd:01:a0:c2:87:36:79:0d:01: 97:21:36:b3:f9:93:a7:fb:e2:06:b8:35:1b:bd:70:ad:e8:e8: 6d:63:a0:dd:f6:b1:d7:83:b2:58:0f:35:03:9d:58:18:58:5f: c9:3d:ae:00:32:cb:ba:ab:f9:68:c4:aa:91:0e:2f:d1:71:75: ea:95:93:f4:c4:87:81:15:d2:b2:2a:d5:32:34:39:04:e6:ba: 1c:29:bd:27:0d:cb:bd:94:ec:2f:4f:fa:e8:27:cf:76:98:e8: ff:0b:a9:15 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICFBMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzBE MkM4QzNENEMyRkJCQTI0RDNEODM1MDhBQjE0MkYyRDQ5NDI3RDAeFw0yNTA4MjIw ODU4NTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDJDMkZEQTE2MTA3M0VE Rjc3QjBCQTE1RTZEMDJGMDk4NzU3N0I3RDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC563TFgvmqgqozZHxwoaF8fer24AeXPR7T/p1jOzHEm8ME7xDx NE5uW/xFZSsnFGwXrOt6KvLH2lkw/l/0jCAk3M05pWmAsSkJY/XyFdSeLslmKJB8 aH+bR+c4GJa+wx1+l5Q7SAfvmmdnfcC3eekxsMLOdNJx/kReBk1eg0vPHUlUXuVF 4k+co1vEbOfLSW71Uee8NouuUoE4G5mRj/p9Y6FD5qtK4O+tVoJ8sGLyAVAD/Suu T+MVl1fWxBqg3MezgguyIcKgS4KhQg4PniQfyi6ReaEzOnJeEpoeLPSuff/K9K1W UXdUZNut52CpxCNjtj7eHf+R7sRHcfb1iqC5AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQULC/aFhBz7fd7C6FebQLwmHV3t9IwHwYDVR0jBBgwFoAUwNLIw9TC+7ok09g1 CKsULy1JQn0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0FOSU4v d05MSXc5VEMtN29rMDlnMUNLc1VMeTFKUW4wLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS93TkxJdzlUQy03b2swOWcxQ0tzVUx5MUpRbjAuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9XQU5JTi9MQ19hRmhCejdmZDdDNkZlYlFM d21IVjN0OUkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4J9 MA0GCSqGSIb3DQEBCwUAA4IBAQA9WKOjysn1ni4xrDlBCCZm5fgYgemAmXuZh3YO xiatmyCuW2XFZPUfG2HrOHAqWbT7WAV8cR4zYBOTNpldi/9yJw8Z575vvZOFSj1z 0+tEgfxUPUjZEZRLnSs2Xm0oVFU9kLAq76RTcHdLg8r/8DJnP3wwLcZu43pyKEKZ YqR9lGrF96it/ocJvqbHVSYfJZNgj2aD5ERumGC9AaDChzZ5DQGXITaz+ZOn++IG uDUbvXCt6OhtY6Dd9rHXg7JYDzUDnVgYWF/JPa4AMsu6q/loxKqRDi/RcXXqlZP0 xIeBFdKyKtUyNDkE5rocKb0nDcu9lOwvT/roJ892mOj/C6kV -----END CERTIFICATE-----Generated at Sun Aug 24 09:08:01 2025 by rpki-client