$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WANIN/VunfuzJ7FKNptif6Q8gzb0wR95E.roa File: VunfuzJ7FKNptif6Q8gzb0wR95E.roa (raw, json) Hash identifier: OTzSlzlxAlVbWUDG/GkIkODkIAkRsiSwSYY13w3XFEM= Subject key identifier: 56:E9:DF:BB:32:7B:14:A3:69:B6:27:FA:43:C8:33:6F:4C:11:F7:91 Certificate issuer: /CN=C0D2C8C3D4C2FBBA24D3D83508AB142F2D49427D Certificate serial: 1411 Authority key identifier: C0:D2:C8:C3:D4:C2:FB:BA:24:D3:D8:35:08:AB:14:2F:2D:49:42:7D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/VunfuzJ7FKNptif6Q8gzb0wR95E.roa Signing time: Fri 22 Aug 2025 08:58:55 +0000 ROA not before: Fri 22 Aug 2025 08:58:55 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131636 IP address blocks: 103.130.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5137 (0x1411) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0D2C8C3D4C2FBBA24D3D83508AB142F2D49427D Validity Not Before: Aug 22 08:58:55 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=56E9DFBB327B14A369B627FA43C8336F4C11F791 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d8:d8:9f:14:0e:f2:d6:fe:82:b9:e2:9a:1b: fd:2b:b0:a0:ec:79:4e:12:13:1d:ae:64:71:33:b7: f9:87:13:36:aa:94:12:f9:d8:36:27:50:33:3f:43: 8c:1c:4d:dc:dd:a4:bb:de:46:24:cd:91:58:04:67: 2f:9c:a4:44:57:1f:97:e8:0b:cd:48:e3:51:cd:76: 44:3e:03:ea:fa:70:4d:00:b1:dc:c1:ab:b3:9e:26: 87:31:d7:76:df:b7:b3:55:0b:cd:30:ee:38:ac:18: 24:53:c7:fc:33:52:43:50:d9:af:77:d2:66:ed:e0: 0c:2e:ce:b1:58:9f:48:b6:90:f4:54:c4:04:82:86: 38:a6:29:b7:ee:67:b4:79:23:e8:ac:82:49:85:26: 04:2c:ef:e4:be:10:0e:21:ce:c6:3b:84:87:39:50: 24:d2:c7:f1:58:80:a3:02:6b:f5:36:ad:d8:ee:fc: 2b:a6:ce:d4:15:db:32:97:74:21:5e:38:0d:9a:6a: 70:cd:3a:1a:86:c4:71:ca:ca:1a:cd:92:a2:b4:8d: 7f:36:6b:48:3d:62:2c:1c:1c:8f:aa:f3:61:c9:98: 8f:81:e0:a5:1c:93:fb:df:0e:3a:7a:b5:7a:29:5e: a1:2d:17:31:49:76:1b:88:43:39:a0:0f:5c:ca:e6: e0:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:E9:DF:BB:32:7B:14:A3:69:B6:27:FA:43:C8:33:6F:4C:11:F7:91 X509v3 Authority Key Identifier: keyid:C0:D2:C8:C3:D4:C2:FB:BA:24:D3:D8:35:08:AB:14:2F:2D:49:42:7D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/VunfuzJ7FKNptif6Q8gzb0wR95E.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.130.126.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:42:19:17:74:ae:4a:34:db:4e:55:c3:58:7e:ec:59:df:23: e7:c6:54:d0:96:0b:33:2c:ad:7c:b2:8d:84:04:53:0c:05:47: 36:f3:34:e8:ed:77:05:50:3d:e3:fd:ab:03:5b:43:cd:fe:49: 09:b7:39:e4:41:3a:e4:db:28:58:36:70:6b:ef:fc:36:ba:1c: 37:48:bf:15:7c:b4:8d:88:e3:06:4b:02:3b:80:da:0d:42:b9: 70:29:7b:52:d9:25:3c:a1:28:32:16:9d:dc:cd:d4:87:e7:1f: 74:dc:02:ba:80:b8:71:ed:b8:39:9c:3c:d2:15:cd:94:7d:e2: 8b:19:aa:4e:2d:55:10:51:fb:7e:f8:f2:1d:26:13:7a:89:bb: 67:00:d5:0b:88:97:b1:4f:80:f0:2b:12:93:9c:a8:e8:73:a3: e4:96:de:b9:c3:0b:9e:52:35:f3:a3:60:1f:51:01:3f:f3:07: c5:fe:29:a0:7a:b0:d2:0e:18:b6:6e:c3:ec:ef:18:ac:15:c4: b8:ad:42:fa:d6:9f:b3:2a:d2:82:e2:59:e1:ac:76:1b:29:d4: 50:cb:9d:cf:51:8f:93:38:77:f6:f8:82:00:5c:bc:25:71:e0: fd:cb:27:52:b0:87:cc:ba:26:99:15:71:54:9d:9d:38:86:fa: 7b:ac:5d:9f -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICFBEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzBE MkM4QzNENEMyRkJCQTI0RDNEODM1MDhBQjE0MkYyRDQ5NDI3RDAeFw0yNTA4MjIw ODU4NTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDU2RTlERkJCMzI3QjE0 QTM2OUI2MjdGQTQzQzgzMzZGNEMxMUY3OTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC02NifFA7y1v6CueKaG/0rsKDseU4SEx2uZHEzt/mHEzaqlBL5 2DYnUDM/Q4wcTdzdpLveRiTNkVgEZy+cpERXH5foC81I41HNdkQ+A+r6cE0AsdzB q7OeJocx13bft7NVC80w7jisGCRTx/wzUkNQ2a930mbt4AwuzrFYn0i2kPRUxASC hjimKbfuZ7R5I+isgkmFJgQs7+S+EA4hzsY7hIc5UCTSx/FYgKMCa/U2rdju/Cum ztQV2zKXdCFeOA2aanDNOhqGxHHKyhrNkqK0jX82a0g9YiwcHI+q82HJmI+B4KUc k/vfDjp6tXopXqEtFzFJdhuIQzmgD1zK5uBbAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUVunfuzJ7FKNptif6Q8gzb0wR95EwHwYDVR0jBBgwFoAUwNLIw9TC+7ok09g1 CKsULy1JQn0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0FOSU4v d05MSXc5VEMtN29rMDlnMUNLc1VMeTFKUW4wLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS93TkxJdzlUQy03b2swOWcxQ0tzVUx5MUpRbjAuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9XQU5JTi9WdW5mdXpKN0ZLTnB0aWY2UThn emIwd1I5NUUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4J+ MA0GCSqGSIb3DQEBCwUAA4IBAQArQhkXdK5KNNtOVcNYfuxZ3yPnxlTQlgszLK18 so2EBFMMBUc28zTo7XcFUD3j/asDW0PN/kkJtznkQTrk2yhYNnBr7/w2uhw3SL8V fLSNiOMGSwI7gNoNQrlwKXtS2SU8oSgyFp3czdSH5x903AK6gLhx7bg5nDzSFc2U feKLGapOLVUQUft++PIdJhN6ibtnANULiJexT4DwKxKTnKjoc6Pklt65wwueUjXz o2AfUQE/8wfF/imgerDSDhi2bsPs7xisFcS4rUL61p+zKtKC4lnhrHYbKdRQy53P UY+TOHf2+IIAXLwlceD9yydSsIfMuiaZFXFUnZ04hvp7rF2f -----END CERTIFICATE-----Generated at Sun Aug 24 07:05:08 2025 by rpki-client