$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WANIN/LgggCVwPbNdcnrCqVMduXlIqpsw.roa File: LgggCVwPbNdcnrCqVMduXlIqpsw.roa (raw, json) Hash identifier: 4ju6mocONKVH9JpMBsRARsenKxMgM5gKSyN495Ilqg0= Subject key identifier: 2E:08:20:09:5C:0F:6C:D7:5C:9E:B0:AA:54:C7:6E:5E:52:2A:A6:CC Certificate issuer: /CN=C0D2C8C3D4C2FBBA24D3D83508AB142F2D49427D Certificate serial: 1414 Authority key identifier: C0:D2:C8:C3:D4:C2:FB:BA:24:D3:D8:35:08:AB:14:2F:2D:49:42:7D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/LgggCVwPbNdcnrCqVMduXlIqpsw.roa Signing time: Fri 22 Aug 2025 08:58:55 +0000 ROA not before: Fri 22 Aug 2025 08:58:55 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131636 IP address blocks: 103.130.124.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5140 (0x1414) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0D2C8C3D4C2FBBA24D3D83508AB142F2D49427D Validity Not Before: Aug 22 08:58:55 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2E0820095C0F6CD75C9EB0AA54C76E5E522AA6CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:59:17:36:8f:c7:a5:be:eb:c8:6e:af:a5:f8: eb:2f:d9:4f:11:91:5a:c1:1a:65:5d:d2:98:ce:4b: ee:bb:74:01:75:ef:12:e1:11:71:7c:72:1a:b7:5b: e0:55:37:75:31:af:0b:04:7d:30:5a:7a:a7:7d:38: 1a:e7:47:48:91:2d:cf:28:c1:de:32:59:ed:3d:fa: af:d4:81:1d:9c:81:ce:5c:41:48:2d:b3:ad:14:17: af:7d:16:39:ec:2d:39:a3:6a:8c:e1:17:64:07:62: 47:79:45:56:23:e0:f6:8b:db:b3:23:d4:d9:ff:1e: 92:a7:46:a0:7d:d5:ca:44:90:dc:d7:b2:28:7b:06: 38:63:a3:70:c6:88:f9:4e:68:3d:89:16:35:0d:02: f6:c6:6c:86:a5:40:d2:c4:44:53:78:52:9e:6c:96: b5:5f:59:b3:08:0f:e9:55:37:2b:d0:5d:f8:f5:5c: 8a:16:c3:9c:ee:17:74:67:0d:26:4e:c2:ff:28:e7: 5d:12:3b:69:99:15:40:56:26:bc:45:e3:c3:40:aa: 22:91:0b:11:b5:64:c9:72:01:73:63:30:9e:ba:7a: 22:f5:4a:d8:59:a3:b7:5d:f2:99:da:f9:54:3d:63: 3d:6b:14:76:d2:33:00:ba:25:97:3c:ce:0d:3b:ec: d0:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:08:20:09:5C:0F:6C:D7:5C:9E:B0:AA:54:C7:6E:5E:52:2A:A6:CC X509v3 Authority Key Identifier: keyid:C0:D2:C8:C3:D4:C2:FB:BA:24:D3:D8:35:08:AB:14:2F:2D:49:42:7D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/LgggCVwPbNdcnrCqVMduXlIqpsw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.130.124.0/24 Signature Algorithm: sha256WithRSAEncryption 52:29:fb:03:ec:27:44:5b:a0:7a:e8:1b:ae:ff:b7:86:5f:ab: 85:ee:1c:24:32:6a:e0:e6:97:95:5e:e8:89:53:8d:ad:10:d1: a2:67:ab:18:ca:8d:a6:0e:fd:4e:04:c9:7f:c3:66:41:e0:99: f7:94:04:39:08:bc:3a:55:75:9a:a0:ee:05:0d:b8:5e:1f:55: 65:52:15:75:1d:f4:0b:28:28:24:d7:52:06:fc:52:7e:3f:88: e6:13:e9:32:41:b2:12:bc:b3:52:7c:8a:65:de:41:af:e8:09: 35:d0:ca:a0:ee:6b:52:a3:c8:c8:2e:6f:60:9d:07:3f:f6:83: c0:99:f6:fe:e7:41:62:22:db:07:63:25:3f:1f:13:2e:73:51: c6:08:bb:99:04:8f:77:7c:37:a4:dc:bb:5c:89:33:0c:40:96: e3:2d:31:6f:dc:fe:42:f8:93:53:4a:32:9b:8e:ff:3a:e5:aa: 20:cc:2c:d6:a5:d4:89:92:cd:40:2d:c7:06:af:3f:55:0f:fd: ca:8b:b9:92:b5:96:51:22:10:68:0d:06:55:5a:9a:3a:16:57: e7:cc:56:30:e0:16:37:46:31:7e:40:1c:af:f1:fc:22:90:f7: ae:5d:ab:01:ac:97:e6:0e:36:12:f2:b1:04:b5:0a:ca:f8:a4: 20:9c:30:8f -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICFBQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzBE MkM4QzNENEMyRkJCQTI0RDNEODM1MDhBQjE0MkYyRDQ5NDI3RDAeFw0yNTA4MjIw ODU4NTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDJFMDgyMDA5NUMwRjZD RDc1QzlFQjBBQTU0Qzc2RTVFNTIyQUE2Q0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmWRc2j8elvuvIbq+l+Osv2U8RkVrBGmVd0pjOS+67dAF17xLh EXF8chq3W+BVN3UxrwsEfTBaeqd9OBrnR0iRLc8owd4yWe09+q/UgR2cgc5cQUgt s60UF699FjnsLTmjaozhF2QHYkd5RVYj4PaL27Mj1Nn/HpKnRqB91cpEkNzXsih7 Bjhjo3DGiPlOaD2JFjUNAvbGbIalQNLERFN4Up5slrVfWbMID+lVNyvQXfj1XIoW w5zuF3RnDSZOwv8o510SO2mZFUBWJrxF48NAqiKRCxG1ZMlyAXNjMJ66eiL1SthZ o7dd8pna+VQ9Yz1rFHbSMwC6JZc8zg077NCRAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQULgggCVwPbNdcnrCqVMduXlIqpswwHwYDVR0jBBgwFoAUwNLIw9TC+7ok09g1 CKsULy1JQn0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0FOSU4v d05MSXc5VEMtN29rMDlnMUNLc1VMeTFKUW4wLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS93TkxJdzlUQy03b2swOWcxQ0tzVUx5MUpRbjAuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9XQU5JTi9MZ2dnQ1Z3UGJOZGNuckNxVk1k dVhsSXFwc3cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4J8 MA0GCSqGSIb3DQEBCwUAA4IBAQBSKfsD7CdEW6B66Buu/7eGX6uF7hwkMmrg5peV XuiJU42tENGiZ6sYyo2mDv1OBMl/w2ZB4Jn3lAQ5CLw6VXWaoO4FDbheH1VlUhV1 HfQLKCgk11IG/FJ+P4jmE+kyQbISvLNSfIpl3kGv6Ak10Mqg7mtSo8jILm9gnQc/ 9oPAmfb+50FiItsHYyU/HxMuc1HGCLuZBI93fDek3LtciTMMQJbjLTFv3P5C+JNT SjKbjv865aogzCzWpdSJks1ALccGrz9VD/3Ki7mStZZRIhBoDQZVWpo6FlfnzFYw 4BY3RjF+QByv8fwikPeuXasBrJfmDjYS8rEEtQrK+KQgnDCP -----END CERTIFICATE-----Generated at Sun Aug 24 09:08:01 2025 by rpki-client