$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WANTEASY/VX3cOf6GUsJYxVQdo75ONkZrPuY.roa File: VX3cOf6GUsJYxVQdo75ONkZrPuY.roa (raw, json) Hash identifier: XUGYDvnHIAleabGqSO8GDzgLM+2ecJuh/OLfCB1KAi8= Subject key identifier: 55:7D:DC:39:FE:86:52:C2:58:C5:54:1D:A3:BE:4E:36:46:6B:3E:E6 Certificate issuer: /CN=CA1B71EFAC6F6AA43027609C18A734982764554B Certificate serial: 0F63 Authority key identifier: CA:1B:71:EF:AC:6F:6A:A4:30:27:60:9C:18:A7:34:98:27:64:55:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/yhtx76xvaqQwJ2CcGKc0mCdkVUs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANTEASY/VX3cOf6GUsJYxVQdo75ONkZrPuY.roa Signing time: Fri 22 Aug 2025 08:56:57 +0000 ROA not before: Fri 22 Aug 2025 08:56:57 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17408 IP address blocks: 103.138.106.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANTEASY/yhtx76xvaqQwJ2CcGKc0mCdkVUs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WANTEASY/yhtx76xvaqQwJ2CcGKc0mCdkVUs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/yhtx76xvaqQwJ2CcGKc0mCdkVUs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3939 (0xf63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA1B71EFAC6F6AA43027609C18A734982764554B Validity Not Before: Aug 22 08:56:57 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=557DDC39FE8652C258C5541DA3BE4E36466B3EE6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:5b:b9:3e:7d:83:6a:88:6f:b1:b2:9e:48:a6: 62:c3:96:0d:4f:83:0e:eb:85:e0:4d:74:ad:af:f6: c5:d6:65:29:f6:04:2d:01:bf:cc:b6:6e:c1:4e:88: 17:67:f8:e9:bf:97:48:b9:b0:6c:80:9f:72:23:9b: 06:3d:99:b0:17:fb:cc:ec:44:86:06:4c:a9:af:8c: 7d:ea:7e:85:3a:de:c2:c8:a0:05:d0:85:94:84:dd: 91:a5:00:ca:2e:55:d3:8f:f8:7e:59:a6:2a:ee:54: b9:5e:6b:d2:0c:3a:15:24:7a:1a:39:a7:bd:05:50: 08:c9:d7:e1:53:2a:3a:3a:95:fa:94:83:67:a1:fa: 6f:b2:4b:8a:b0:43:66:22:1d:2e:5e:38:22:cc:92: b6:09:26:fc:37:bf:2f:a6:d5:16:e5:00:4e:b2:93: e9:b2:87:28:87:5f:40:f5:ab:a2:43:d2:36:c7:76: 29:48:78:0a:02:54:53:7a:e3:a0:2a:37:48:78:d2: 5b:f5:8c:b9:72:f5:c4:23:26:92:1a:da:51:40:d3: c4:2f:fc:c9:91:50:fb:b3:ae:33:11:9d:18:63:5a: 95:35:9f:21:57:37:6c:7a:45:16:dd:9e:30:bb:2d: d6:fb:43:e5:c0:ef:6e:7c:50:ad:e0:a2:06:02:bd: b9:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:7D:DC:39:FE:86:52:C2:58:C5:54:1D:A3:BE:4E:36:46:6B:3E:E6 X509v3 Authority Key Identifier: keyid:CA:1B:71:EF:AC:6F:6A:A4:30:27:60:9C:18:A7:34:98:27:64:55:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANTEASY/yhtx76xvaqQwJ2CcGKc0mCdkVUs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/yhtx76xvaqQwJ2CcGKc0mCdkVUs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANTEASY/VX3cOf6GUsJYxVQdo75ONkZrPuY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.138.106.0/23 Signature Algorithm: sha256WithRSAEncryption 45:6f:f8:9d:00:32:9d:ce:b8:90:5e:c2:77:b2:80:90:23:c4: 78:75:7c:0a:12:b4:7b:88:65:06:41:80:dc:db:a4:09:fc:e8: be:a8:f2:2a:a0:b4:08:b9:94:49:50:89:99:44:64:c8:49:fd: 5b:ff:fd:dc:96:52:e8:3d:1f:08:1d:f3:74:40:8a:6a:ea:f2: 56:2d:47:a0:c5:2a:8b:bd:f3:30:1d:ea:68:98:b4:f8:6d:f3: e7:d3:9e:f9:27:1d:bc:3a:5d:92:9c:34:f4:aa:73:54:34:a9: af:e2:30:33:09:12:66:44:24:91:31:77:7d:e6:7b:14:03:bc: 34:44:6a:af:cb:dd:67:83:09:d4:37:3d:bf:e0:c8:13:53:cd: 6c:f4:fa:d6:28:ac:e0:fc:ce:43:dc:59:99:0c:25:6f:73:e4: d8:66:b2:db:fa:85:71:99:73:b9:4c:f7:60:71:93:7c:ad:97: 6d:3c:28:d7:3d:69:d0:8f:e3:ea:8e:6d:a5:bb:cb:8c:43:3c: 0f:fa:f7:f0:bc:95:a6:2a:53:bd:3c:3e:bf:cf:83:ff:24:da: 75:28:fa:26:5e:a6:f4:47:92:8d:ee:f9:d0:1c:5a:de:07:7a: 57:73:28:90:09:b6:be:46:0b:b9:af:3b:df:47:80:d4:60:45: 86:bf:ab:cb -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICD2MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0Ex QjcxRUZBQzZGNkFBNDMwMjc2MDlDMThBNzM0OTgyNzY0NTU0QjAeFw0yNTA4MjIw ODU2NTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDU1N0REQzM5RkU4NjUy QzI1OEM1NTQxREEzQkU0RTM2NDY2QjNFRTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQClW7k+fYNqiG+xsp5IpmLDlg1Pgw7rheBNdK2v9sXWZSn2BC0B v8y2bsFOiBdn+Om/l0i5sGyAn3IjmwY9mbAX+8zsRIYGTKmvjH3qfoU63sLIoAXQ hZSE3ZGlAMouVdOP+H5ZpiruVLlea9IMOhUkeho5p70FUAjJ1+FTKjo6lfqUg2eh +m+yS4qwQ2YiHS5eOCLMkrYJJvw3vy+m1RblAE6yk+myhyiHX0D1q6JD0jbHdilI eAoCVFN646AqN0h40lv1jLly9cQjJpIa2lFA08Qv/MmRUPuzrjMRnRhjWpU1nyFX N2x6RRbdnjC7Ldb7Q+XA7258UK3gogYCvbm5AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUVX3cOf6GUsJYxVQdo75ONkZrPuYwHwYDVR0jBBgwFoAUyhtx76xvaqQwJ2Cc GKc0mCdkVUswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0FOVEVB U1kveWh0eDc2eHZhcVF3SjJDY0dLYzBtQ2RrVlVzLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS95aHR4NzZ4dmFxUXdKMkNjR0tjMG1DZGtWVXMuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9XQU5URUFTWS9WWDNjT2Y2R1VzSll4 VlFkbzc1T05rWnJQdVkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ4pqMA0GCSqGSIb3DQEBCwUAA4IBAQBFb/idADKdzriQXsJ3soCQI8R4dXwK ErR7iGUGQYDc26QJ/Oi+qPIqoLQIuZRJUImZRGTISf1b//3cllLoPR8IHfN0QIpq 6vJWLUegxSqLvfMwHepomLT4bfPn0575Jx28Ol2SnDT0qnNUNKmv4jAzCRJmRCSR MXd95nsUA7w0RGqvy91ngwnUNz2/4MgTU81s9PrWKKzg/M5D3FmZDCVvc+TYZrLb +oVxmXO5TPdgcZN8rZdtPCjXPWnQj+Pqjm2lu8uMQzwP+vfwvJWmKlO9PD6/z4P/ JNp1KPomXqb0R5KN7vnQHFreB3pXcyiQCba+Rgu5rzvfR4DUYEWGv6vL -----END CERTIFICATE-----Generated at Sun Aug 24 11:42:09 2025 by rpki-client