$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WANTEASY/ZDC6zM1xKWCaJVZw0QC6GOuB1W0.roa File: ZDC6zM1xKWCaJVZw0QC6GOuB1W0.roa (raw, json) Hash identifier: s8jNOh8rOpDSjX/BeBSzQ9SzlJwgCxKSOgI3y33J+tQ= Subject key identifier: 64:30:BA:CC:CD:71:29:60:9A:25:56:70:D1:00:BA:18:EB:81:D5:6D Certificate issuer: /CN=CA1B71EFAC6F6AA43027609C18A734982764554B Certificate serial: 0F62 Authority key identifier: CA:1B:71:EF:AC:6F:6A:A4:30:27:60:9C:18:A7:34:98:27:64:55:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/yhtx76xvaqQwJ2CcGKc0mCdkVUs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANTEASY/ZDC6zM1xKWCaJVZw0QC6GOuB1W0.roa Signing time: Fri 22 Aug 2025 08:56:57 +0000 ROA not before: Fri 22 Aug 2025 08:56:57 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17408 IP address blocks: 103.138.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANTEASY/yhtx76xvaqQwJ2CcGKc0mCdkVUs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WANTEASY/yhtx76xvaqQwJ2CcGKc0mCdkVUs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/yhtx76xvaqQwJ2CcGKc0mCdkVUs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3938 (0xf62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA1B71EFAC6F6AA43027609C18A734982764554B Validity Not Before: Aug 22 08:56:57 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=6430BACCCD7129609A255670D100BA18EB81D56D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:53:6f:eb:00:ea:b4:77:24:e6:5d:f9:ba:09: f4:03:87:59:db:ea:65:c4:ab:eb:29:44:50:b8:34: d8:8c:90:c0:3b:c1:e7:cd:3a:84:a0:ff:f0:fa:6e: 2e:7b:a2:eb:5f:b5:dc:35:c8:c1:82:0d:6a:6e:b7: 81:19:43:a5:8d:f0:82:de:5a:63:99:20:0b:e6:6c: 59:47:b7:4e:91:67:2d:2d:44:84:e9:26:51:13:9d: 5d:8a:a2:2e:31:ad:7b:6d:a2:6d:53:31:4d:1b:d8: 72:70:b0:dd:76:b1:d5:32:3f:42:3b:ae:c1:68:79: 5a:9f:26:c9:1b:d5:78:aa:6d:ce:a9:20:6f:6f:0d: 00:81:92:06:c3:96:a7:d2:1a:58:32:9f:09:3d:91: e3:8e:ba:28:55:9c:f3:0c:cc:04:ea:3f:07:b3:af: cd:8a:df:5b:78:e7:a1:8e:52:92:f3:33:87:a5:53: 0a:76:e2:ab:20:b4:0f:8b:79:68:f1:37:e8:fa:7c: 9f:47:49:51:66:0a:78:55:a6:49:f4:d5:3e:34:99: a2:99:ed:c2:3e:b0:ea:4b:c7:46:d0:b6:37:47:f2: d1:27:74:ca:62:d3:c0:25:9d:a4:5d:cd:1d:a6:63: 19:c2:35:c2:44:57:11:62:99:09:23:c7:ea:d1:37: 2b:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:30:BA:CC:CD:71:29:60:9A:25:56:70:D1:00:BA:18:EB:81:D5:6D X509v3 Authority Key Identifier: keyid:CA:1B:71:EF:AC:6F:6A:A4:30:27:60:9C:18:A7:34:98:27:64:55:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANTEASY/yhtx76xvaqQwJ2CcGKc0mCdkVUs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/yhtx76xvaqQwJ2CcGKc0mCdkVUs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANTEASY/ZDC6zM1xKWCaJVZw0QC6GOuB1W0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.138.106.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:45:df:fa:7b:fa:d3:f6:6b:c0:44:a0:68:42:89:f8:25:35: 3c:46:41:15:e7:fa:29:1c:a7:d9:42:4e:a3:87:89:bb:aa:ae: 8b:b5:41:2b:c6:2f:ba:93:10:a1:42:24:26:d0:86:a3:c3:93: 19:a9:3a:f1:e5:dc:10:04:94:94:2f:6c:75:5e:92:74:a4:60: c9:43:d1:c5:dd:60:6b:1b:b2:49:77:ea:fe:93:f7:5d:08:e2: 25:a6:54:ee:69:dd:b2:29:e5:0f:c1:2e:26:fa:f8:f4:36:aa: 90:f9:37:0b:8a:07:e9:2b:bc:0c:38:21:d2:a0:65:43:b7:aa: 4b:6c:3c:58:e2:64:e5:02:7b:85:08:62:8d:3b:1e:20:77:48: 76:09:ff:68:0d:42:6b:70:59:1c:d5:18:17:8f:04:5d:f4:1f: 39:04:a2:9e:45:61:b0:38:e0:b4:6f:c9:59:6c:54:79:ad:7f: 8f:37:cd:9c:59:13:0f:9f:c1:b4:0b:ea:97:05:6c:5f:d6:e7: 9b:cd:54:3f:6b:fd:ef:bc:2b:b2:3d:18:e6:d6:6d:82:bc:83: df:e6:34:e1:ea:f9:3f:7e:e6:32:00:65:44:5b:46:a5:dd:8e: 3a:bb:fe:4f:d5:c3:6e:f2:4d:f7:90:6e:e8:7e:95:20:39:b0: 38:c3:bd:de -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICD2IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0Ex QjcxRUZBQzZGNkFBNDMwMjc2MDlDMThBNzM0OTgyNzY0NTU0QjAeFw0yNTA4MjIw ODU2NTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDY0MzBCQUNDQ0Q3MTI5 NjA5QTI1NTY3MEQxMDBCQTE4RUI4MUQ1NkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqU2/rAOq0dyTmXfm6CfQDh1nb6mXEq+spRFC4NNiMkMA7wefN OoSg//D6bi57outftdw1yMGCDWput4EZQ6WN8ILeWmOZIAvmbFlHt06RZy0tRITp JlETnV2Koi4xrXttom1TMU0b2HJwsN12sdUyP0I7rsFoeVqfJskb1Xiqbc6pIG9v DQCBkgbDlqfSGlgynwk9keOOuihVnPMMzATqPwezr82K31t456GOUpLzM4elUwp2 4qsgtA+LeWjxN+j6fJ9HSVFmCnhVpkn01T40maKZ7cI+sOpLx0bQtjdH8tEndMpi 08AlnaRdzR2mYxnCNcJEVxFimQkjx+rRNys3AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUZDC6zM1xKWCaJVZw0QC6GOuB1W0wHwYDVR0jBBgwFoAUyhtx76xvaqQwJ2Cc GKc0mCdkVUswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0FOVEVB U1kveWh0eDc2eHZhcVF3SjJDY0dLYzBtQ2RrVlVzLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS95aHR4NzZ4dmFxUXdKMkNjR0tjMG1DZGtWVXMuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9XQU5URUFTWS9aREM2ek0xeEtXQ2FK Vlp3MFFDNkdPdUIxVzAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZ4pqMA0GCSqGSIb3DQEBCwUAA4IBAQB7Rd/6e/rT9mvARKBoQon4JTU8RkEV 5/opHKfZQk6jh4m7qq6LtUErxi+6kxChQiQm0Iajw5MZqTrx5dwQBJSUL2x1XpJ0 pGDJQ9HF3WBrG7JJd+r+k/ddCOIlplTuad2yKeUPwS4m+vj0NqqQ+TcLigfpK7wM OCHSoGVDt6pLbDxY4mTlAnuFCGKNOx4gd0h2Cf9oDUJrcFkc1RgXjwRd9B85BKKe RWGwOOC0b8lZbFR5rX+PN82cWRMPn8G0C+qXBWxf1uebzVQ/a/3vvCuyPRjm1m2C vIPf5jTh6vk/fuYyAGVEW0al3Y46u/5P1cNu8k33kG7ofpUgObA4w73e -----END CERTIFICATE-----Generated at Sun Aug 24 09:45:18 2025 by rpki-client