$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WANIN/aytBevsakWW2oNPJfb9kF-YHitU.roa File: aytBevsakWW2oNPJfb9kF-YHitU.roa (raw, json) Hash identifier: Lps8rcvk2vL+W/b6q00wg4AJ2PHp3UoZgX8QZBHYtBY= Subject key identifier: 6B:2B:41:7A:FB:1A:91:65:B6:A0:D3:C9:7D:BF:64:17:E6:07:8A:D5 Certificate issuer: /CN=C0D2C8C3D4C2FBBA24D3D83508AB142F2D49427D Certificate serial: 1416 Authority key identifier: C0:D2:C8:C3:D4:C2:FB:BA:24:D3:D8:35:08:AB:14:2F:2D:49:42:7D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/aytBevsakWW2oNPJfb9kF-YHitU.roa Signing time: Fri 22 Aug 2025 08:58:56 +0000 ROA not before: Fri 22 Aug 2025 08:58:56 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131636 IP address blocks: 103.130.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5142 (0x1416) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0D2C8C3D4C2FBBA24D3D83508AB142F2D49427D Validity Not Before: Aug 22 08:58:56 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=6B2B417AFB1A9165B6A0D3C97DBF6417E6078AD5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b4:64:ea:66:3a:ac:26:e8:ec:8c:77:dd:41: cd:41:53:d1:c0:a4:af:70:fb:41:61:25:ec:e5:55: 2d:95:7c:a8:1f:69:84:31:b2:f7:52:9e:80:64:01: a4:01:6a:a2:94:6b:d3:bc:d7:13:a1:67:bf:45:d1: 65:a8:ab:5d:65:78:91:c8:d4:2a:50:70:b1:dc:62: 9e:40:ca:68:89:44:ff:c4:91:d1:ef:f8:ba:76:9a: 8a:0f:dc:db:b6:b2:a1:b8:cc:0d:33:9e:02:a1:73: 74:f5:b3:e4:46:5b:ed:0b:55:36:37:b0:ce:ad:ef: a1:04:32:ee:b6:1e:62:b0:c1:7d:81:52:72:70:f2: 94:72:f2:77:b9:be:9f:1c:9f:de:40:f6:35:1c:b0: 96:35:bc:bc:0a:9c:32:22:c0:7f:69:64:d3:2d:e0: 1c:cc:89:f0:83:2a:95:13:47:45:88:e9:61:59:16: 55:a6:1c:44:3c:ab:a5:75:90:ab:c9:7d:ef:af:71: 21:26:80:ef:70:b1:3f:5a:c0:e9:99:8a:13:63:ba: 37:7d:57:bf:d9:61:b9:b1:8c:9e:e7:78:fb:b1:61: 0d:6b:4d:74:6c:23:7c:54:d0:8f:27:37:d8:27:4e: c7:88:9c:e8:5d:64:dd:1a:59:5a:91:90:fb:cd:c6: 4e:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:2B:41:7A:FB:1A:91:65:B6:A0:D3:C9:7D:BF:64:17:E6:07:8A:D5 X509v3 Authority Key Identifier: keyid:C0:D2:C8:C3:D4:C2:FB:BA:24:D3:D8:35:08:AB:14:2F:2D:49:42:7D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/aytBevsakWW2oNPJfb9kF-YHitU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.130.127.0/24 Signature Algorithm: sha256WithRSAEncryption 74:a0:dd:c1:3d:b9:54:c7:c7:a4:da:e1:cc:44:53:a9:90:c8: 89:50:06:61:22:5e:91:29:4a:20:35:b9:a2:be:32:86:77:8a: 11:79:bd:a0:ff:c2:1a:94:a9:08:1f:d7:58:e7:a4:be:57:5a: b2:25:03:85:c7:32:ed:23:ec:d2:9b:69:32:c5:13:b2:25:f2: c1:df:dc:63:89:ce:24:5f:a4:34:89:bd:98:0b:5d:15:1e:bf: 10:43:b3:8f:b3:24:0c:f2:e1:03:ab:5c:cd:e7:42:20:61:04: b7:4a:fc:22:46:5d:8b:4d:50:ae:f6:0e:15:22:66:9b:bc:4b: df:6b:8d:f8:f7:28:d0:ef:55:71:aa:04:e4:ff:aa:ac:85:3e: df:b7:76:cb:b6:48:ef:da:75:83:e6:b8:08:cc:6c:d8:80:ad: c5:d9:0d:cb:74:fc:cd:7d:99:bd:c0:71:c2:d5:52:23:f9:9e: 07:13:99:89:93:9a:3c:99:08:b9:ba:5c:e4:27:4d:db:89:c3: f2:9d:7c:c0:82:ee:29:ed:db:22:1d:53:11:cb:89:93:19:34: 6d:37:1c:36:42:25:94:0d:ed:d8:42:3e:ab:b1:bd:d3:4a:b5: da:0c:a5:94:64:7d:59:ad:c8:a3:89:ff:79:8e:f3:a1:da:90: c8:ea:eb:90 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICFBYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzBE MkM4QzNENEMyRkJCQTI0RDNEODM1MDhBQjE0MkYyRDQ5NDI3RDAeFw0yNTA4MjIw ODU4NTZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDZCMkI0MTdBRkIxQTkx NjVCNkEwRDNDOTdEQkY2NDE3RTYwNzhBRDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEtGTqZjqsJujsjHfdQc1BU9HApK9w+0FhJezlVS2VfKgfaYQx svdSnoBkAaQBaqKUa9O81xOhZ79F0WWoq11leJHI1CpQcLHcYp5AymiJRP/EkdHv +Lp2mooP3Nu2sqG4zA0zngKhc3T1s+RGW+0LVTY3sM6t76EEMu62HmKwwX2BUnJw 8pRy8ne5vp8cn95A9jUcsJY1vLwKnDIiwH9pZNMt4BzMifCDKpUTR0WI6WFZFlWm HEQ8q6V1kKvJfe+vcSEmgO9wsT9awOmZihNjujd9V7/ZYbmxjJ7nePuxYQ1rTXRs I3xU0I8nN9gnTseInOhdZN0aWVqRkPvNxk5FAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUaytBevsakWW2oNPJfb9kF+YHitUwHwYDVR0jBBgwFoAUwNLIw9TC+7ok09g1 CKsULy1JQn0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0FOSU4v d05MSXc5VEMtN29rMDlnMUNLc1VMeTFKUW4wLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS93TkxJdzlUQy03b2swOWcxQ0tzVUx5MUpRbjAuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9XQU5JTi9heXRCZXZzYWtXVzJvTlBKZmI5 a0YtWUhpdFUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4J/ MA0GCSqGSIb3DQEBCwUAA4IBAQB0oN3BPblUx8ek2uHMRFOpkMiJUAZhIl6RKUog NbmivjKGd4oReb2g/8IalKkIH9dY56S+V1qyJQOFxzLtI+zSm2kyxROyJfLB39xj ic4kX6Q0ib2YC10VHr8QQ7OPsyQM8uEDq1zN50IgYQS3SvwiRl2LTVCu9g4VImab vEvfa4349yjQ71VxqgTk/6qshT7ft3bLtkjv2nWD5rgIzGzYgK3F2Q3LdPzNfZm9 wHHC1VIj+Z4HE5mJk5o8mQi5ulzkJ03bicPynXzAgu4p7dsiHVMRy4mTGTRtNxw2 QiWUDe3YQj6rsb3TSrXaDKWUZH1Zrcijif95jvOh2pDI6uuQ -----END CERTIFICATE-----Generated at Sun Aug 24 07:03:49 2025 by rpki-client