$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/K40AYh1-KwXazcpnlrUntKPYyk8.roa File: K40AYh1-KwXazcpnlrUntKPYyk8.roa (raw, json) Hash identifier: DiJWfSmmLhxjlz3ql+W4QPKNtIJVfL0096JW0O5R0tU= Subject key identifier: 2B:8D:00:62:1D:7E:2B:05:DA:CD:CA:67:96:B5:27:B4:A3:D8:CA:4F Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Certificate serial: 0F0F Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/K40AYh1-KwXazcpnlrUntKPYyk8.roa Signing time: Fri 22 Aug 2025 08:50:06 +0000 ROA not before: Fri 22 Aug 2025 08:50:06 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18424 IP address blocks: 103.30.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3855 (0xf0f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Validity Not Before: Aug 22 08:50:06 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2B8D00621D7E2B05DACDCA6796B527B4A3D8CA4F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:e2:fe:60:bc:13:2f:6e:14:32:93:58:eb:b4: fe:70:29:ac:4d:34:8f:05:1d:02:a4:b4:ad:f9:c7: 99:db:83:ab:9c:8c:64:8b:7e:d8:0b:c5:1e:31:01: e9:56:d4:3e:72:81:53:b9:35:18:b1:51:d1:7a:6a: 67:fb:4e:5a:08:f5:91:08:4e:bb:a5:89:96:f9:f2: e7:32:72:20:d8:df:3d:ed:63:84:b1:c6:a7:84:08: 6a:b7:f2:a4:38:cb:dd:85:94:66:d6:0c:b9:33:cf: 06:1f:31:bd:5d:e5:52:48:7a:9e:16:46:bf:fb:f6: 57:ae:7e:9f:ec:7a:5f:0e:e2:11:44:d7:2d:39:67: a7:6f:9a:89:6b:07:14:ef:57:5d:fc:31:68:70:8c: ce:00:fe:71:46:f1:94:88:c8:ea:7e:2d:cb:bb:64: 62:87:a7:bd:c8:7c:bc:ef:2a:7c:8f:91:1b:80:28: a6:60:9b:a7:be:84:c7:1c:20:c4:c1:b5:41:de:a3: 1e:7a:7b:1c:78:42:3d:eb:1f:05:28:e6:f3:6c:8e: 43:f6:65:cd:b2:dd:f1:4f:95:35:7f:c7:a6:13:cc: 0a:68:a3:67:8b:b2:cb:b2:8d:70:ff:8d:a6:ea:6c: 08:e8:81:8e:de:e1:d5:09:a9:d5:1f:c8:36:70:b9: 92:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:8D:00:62:1D:7E:2B:05:DA:CD:CA:67:96:B5:27:B4:A3:D8:CA:4F X509v3 Authority Key Identifier: keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/K40AYh1-KwXazcpnlrUntKPYyk8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.30.44.0/24 Signature Algorithm: sha256WithRSAEncryption 36:10:5d:88:8e:0f:74:13:2f:d7:31:5b:c9:23:65:a9:8b:9d: d9:69:4d:c4:af:7a:0f:ee:fa:6b:a0:42:4e:4c:14:52:3d:82: 67:b0:5b:08:c4:6d:20:10:0f:43:72:85:ef:f0:be:cb:2b:e0: fc:18:34:d6:3a:d5:a0:66:da:22:d9:2a:dd:05:56:91:4d:43: c4:7f:7a:4c:c6:c3:c9:42:c5:a0:ee:c2:8f:2d:0d:77:ba:05: d8:78:8f:65:f3:c4:07:97:1a:fc:6b:b1:d7:e3:03:54:4b:f1: ea:f6:4b:25:36:61:f8:6f:bb:ce:cc:63:1f:45:9b:b2:69:af: 73:f7:32:fa:52:fd:e0:e8:25:7e:d0:a8:8d:36:a1:52:1e:73: 6e:2d:78:47:69:32:73:9a:a2:19:7e:c8:b7:52:1f:d5:30:d5: 58:cd:39:13:1e:b2:f9:2c:7a:10:d5:b7:1f:ea:fe:81:08:22: eb:d4:98:d2:c1:d2:62:58:d1:46:84:ec:f5:7e:d1:92:b4:d8: 7b:2b:0b:76:94:ea:77:6d:c5:2f:18:bf:b3:70:63:ed:81:c7: 32:2b:04:b4:93:43:a8:c6:e6:66:d6:fe:48:fe:25:43:3d:d1: 28:da:9f:7e:76:5c:a8:e0:53:73:61:e0:a7:74:d9:34:ff:50: dc:4b:91:37 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICDw8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkY3 RUNEQjYyMDJGRkMyQzM0REY3QkNENzFBMUMwODg4NTM4MkZCNzAeFw0yNTA4MjIw ODUwMDZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDJCOEQwMDYyMUQ3RTJC MDVEQUNEQ0E2Nzk2QjUyN0I0QTNEOENBNEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDg4v5gvBMvbhQyk1jrtP5wKaxNNI8FHQKktK35x5nbg6ucjGSL ftgLxR4xAelW1D5ygVO5NRixUdF6amf7TloI9ZEITruliZb58ucyciDY3z3tY4Sx xqeECGq38qQ4y92FlGbWDLkzzwYfMb1d5VJIep4WRr/79leufp/sel8O4hFE1y05 Z6dvmolrBxTvV138MWhwjM4A/nFG8ZSIyOp+Lcu7ZGKHp73IfLzvKnyPkRuAKKZg m6e+hMccIMTBtUHeox56exx4Qj3rHwUo5vNsjkP2Zc2y3fFPlTV/x6YTzApoo2eL ssuyjXD/jabqbAjogY7e4dUJqdUfyDZwuZLrAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUK40AYh1+KwXazcpnlrUntKPYyk8wHwYDVR0jBBgwFoAU/37NtiAv/Cw033vN caHAiIU4L7cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJ V0FOL18zN050aUF2X0N3MDMzdk5jYUhBaUlVNEw3Yy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvXzM3TnRpQXZfQ3cwMzN2TmNhSEFpSVU0TDdjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJV0FOL0s0MEFZaDEtS3dY YXpjcG5sclVudEtQWXlrOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABnHiwwDQYJKoZIhvcNAQELBQADggEBADYQXYiOD3QTL9cxW8kjZamLndlp TcSveg/u+mugQk5MFFI9gmewWwjEbSAQD0Nyhe/wvssr4PwYNNY61aBm2iLZKt0F VpFNQ8R/ekzGw8lCxaDuwo8tDXe6Bdh4j2XzxAeXGvxrsdfjA1RL8er2SyU2Yfhv u87MYx9Fm7Jpr3P3MvpS/eDoJX7QqI02oVIec24teEdpMnOaohl+yLdSH9Uw1VjN ORMesvksehDVtx/q/oEIIuvUmNLB0mJY0UaE7PV+0ZK02HsrC3aU6ndtxS8Yv7Nw Y+2BxzIrBLSTQ6jG5mbW/kj+JUM90Sjan352XKjgU3Nh4Kd02TT/UNxLkTc= -----END CERTIFICATE-----Generated at Sun Aug 24 11:45:19 2025 by rpki-client