$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WANIN/aN1MRs9ky_ae4kbv2Ws0Wicbi94.roa File: aN1MRs9ky_ae4kbv2Ws0Wicbi94.roa (raw, json) Hash identifier: sFRpEdz/RLn0u4unDaARJlbqPIW1CDZKiuTdFbZiM/M= Subject key identifier: 68:DD:4C:46:CF:64:CB:F6:9E:E2:46:EF:D9:6B:34:5A:27:1B:8B:DE Certificate issuer: /CN=C0D2C8C3D4C2FBBA24D3D83508AB142F2D49427D Certificate serial: 1412 Authority key identifier: C0:D2:C8:C3:D4:C2:FB:BA:24:D3:D8:35:08:AB:14:2F:2D:49:42:7D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/aN1MRs9ky_ae4kbv2Ws0Wicbi94.roa Signing time: Fri 22 Aug 2025 08:58:55 +0000 ROA not before: Fri 22 Aug 2025 08:58:55 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131636 IP address blocks: 103.130.124.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5138 (0x1412) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0D2C8C3D4C2FBBA24D3D83508AB142F2D49427D Validity Not Before: Aug 22 08:58:55 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=68DD4C46CF64CBF69EE246EFD96B345A271B8BDE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:96:60:6d:70:1d:49:04:47:2a:5a:4b:b5:52: b9:39:f3:4b:a8:c0:38:fe:9f:25:6a:98:f1:fa:09: 0d:a9:01:db:ef:52:12:02:9e:74:91:48:f9:8f:0a: 87:61:b3:83:3a:4c:35:30:44:7a:dc:4f:c9:23:5b: 06:47:64:25:25:a7:48:7b:29:66:a2:25:52:ba:46: 7d:aa:e7:ca:de:c5:ae:bd:4a:75:a8:6b:9b:15:bb: 1a:96:a8:64:8a:3e:cf:75:ca:fa:c2:1e:bf:87:6f: 2a:ee:dc:fb:79:c7:d1:3c:0a:6a:a9:30:23:22:b2: 34:7f:b2:74:17:88:ac:8b:c5:03:2d:bd:56:ae:57: ee:91:66:e2:86:2a:ea:89:3e:8d:06:26:bf:c7:fa: 5a:7d:52:f9:a6:4c:13:8a:3f:8e:76:0e:5e:15:6b: 28:8f:3d:66:1c:d6:4a:cf:0a:0d:21:98:a0:e0:12: 26:50:9e:7c:98:30:30:c3:8c:4d:51:ed:32:7e:29: b6:08:f9:c0:c1:ba:e0:27:5f:53:80:61:ee:61:e9: 46:8b:32:74:76:fb:e7:8b:27:68:0e:40:e9:e4:15: db:36:b9:2c:1c:b4:bb:82:fe:40:d9:eb:50:63:57: a5:6a:85:6c:a9:0e:b6:85:d6:b6:7d:57:dc:dc:a2: 60:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:DD:4C:46:CF:64:CB:F6:9E:E2:46:EF:D9:6B:34:5A:27:1B:8B:DE X509v3 Authority Key Identifier: keyid:C0:D2:C8:C3:D4:C2:FB:BA:24:D3:D8:35:08:AB:14:2F:2D:49:42:7D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/aN1MRs9ky_ae4kbv2Ws0Wicbi94.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.130.124.0/22 Signature Algorithm: sha256WithRSAEncryption 2c:80:2d:f4:b8:93:52:12:a3:e3:6b:38:38:59:5f:01:80:c0: 69:3f:30:a9:f2:45:6d:15:44:5b:9d:14:60:4b:8d:09:3c:32: 5b:3c:fd:9a:eb:08:b6:f2:72:98:27:ba:f3:98:9f:a1:a1:48: de:9b:16:b3:2c:a1:08:b5:49:2a:d0:69:44:c7:f5:08:5e:83: 77:1d:37:f4:a5:58:c5:f6:c4:b9:62:9f:ca:ca:2c:ac:8c:c8: 98:51:8c:0e:13:72:f5:bd:81:6e:9e:b6:85:ea:68:b1:2b:eb: 02:9c:15:bc:5b:83:56:0c:b5:45:bf:90:2a:0c:0e:d4:07:d3: 99:c1:07:b8:0e:f3:aa:7f:78:ad:72:64:f0:81:03:8f:4e:6c: 80:3b:28:58:4c:b5:5b:ae:bc:ca:41:19:eb:f1:b1:cd:42:93: d3:08:7e:f3:25:e8:12:77:2d:12:f1:69:43:4f:8c:81:a4:76: 77:b0:35:21:be:f3:7d:6c:1c:b5:91:58:b7:33:fe:31:4b:63: 93:3c:c7:78:a9:5a:31:96:e9:c0:da:99:c7:60:ae:5f:5e:4d: 6b:47:f0:c6:4a:ae:90:4a:1f:da:7e:a5:94:c9:2d:1b:14:23: 0c:84:85:d5:f8:e1:5f:7f:b8:e5:ef:cb:67:ae:93:74:47:90: 6f:76:b2:82 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICFBIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzBE MkM4QzNENEMyRkJCQTI0RDNEODM1MDhBQjE0MkYyRDQ5NDI3RDAeFw0yNTA4MjIw ODU4NTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDY4REQ0QzQ2Q0Y2NENC RjY5RUUyNDZFRkQ5NkIzNDVBMjcxQjhCREUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAlmBtcB1JBEcqWku1Urk580uowDj+nyVqmPH6CQ2pAdvvUhIC nnSRSPmPCodhs4M6TDUwRHrcT8kjWwZHZCUlp0h7KWaiJVK6Rn2q58rexa69SnWo a5sVuxqWqGSKPs91yvrCHr+Hbyru3Pt5x9E8CmqpMCMisjR/snQXiKyLxQMtvVau V+6RZuKGKuqJPo0GJr/H+lp9UvmmTBOKP452Dl4VayiPPWYc1krPCg0hmKDgEiZQ nnyYMDDDjE1R7TJ+KbYI+cDBuuAnX1OAYe5h6UaLMnR2++eLJ2gOQOnkFds2uSwc tLuC/kDZ61BjV6VqhWypDraF1rZ9V9zcomCdAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUaN1MRs9ky/ae4kbv2Ws0Wicbi94wHwYDVR0jBBgwFoAUwNLIw9TC+7ok09g1 CKsULy1JQn0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0FOSU4v d05MSXc5VEMtN29rMDlnMUNLc1VMeTFKUW4wLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS93TkxJdzlUQy03b2swOWcxQ0tzVUx5MUpRbjAuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9XQU5JTi9hTjFNUnM5a3lfYWU0a2J2Mldz MFdpY2JpOTQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ4J8 MA0GCSqGSIb3DQEBCwUAA4IBAQAsgC30uJNSEqPjazg4WV8BgMBpPzCp8kVtFURb nRRgS40JPDJbPP2a6wi28nKYJ7rzmJ+hoUjemxazLKEItUkq0GlEx/UIXoN3HTf0 pVjF9sS5Yp/KyiysjMiYUYwOE3L1vYFunraF6mixK+sCnBW8W4NWDLVFv5AqDA7U B9OZwQe4DvOqf3itcmTwgQOPTmyAOyhYTLVbrrzKQRnr8bHNQpPTCH7zJegSdy0S 8WlDT4yBpHZ3sDUhvvN9bBy1kVi3M/4xS2OTPMd4qVoxlunA2pnHYK5fXk1rR/DG Sq6QSh/afqWUyS0bFCMMhIXV+OFff7jl78tnrpN0R5BvdrKC -----END CERTIFICATE-----Generated at Sun Aug 24 09:08:06 2025 by rpki-client