$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/KkfML82h5AZgduT1VQ5B2YQoeHw.roa File: KkfML82h5AZgduT1VQ5B2YQoeHw.roa (raw, json) Hash identifier: 6tHkn4sOdYS+Yom1gRcYfH/JffOgB7bV/jNvZD6H2/s= Subject key identifier: 2A:47:CC:2F:CD:A1:E4:06:60:76:E4:F5:55:0E:41:D9:84:28:78:7C Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Certificate serial: 0F0A Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/KkfML82h5AZgduT1VQ5B2YQoeHw.roa Signing time: Fri 22 Aug 2025 08:50:04 +0000 ROA not before: Fri 22 Aug 2025 08:50:04 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24168 IP address blocks: 103.30.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3850 (0xf0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Validity Not Before: Aug 22 08:50:04 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2A47CC2FCDA1E4066076E4F5550E41D98428787C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c1:36:25:b1:37:0d:6e:65:16:20:07:9e:5e: 34:98:97:05:6d:a1:ee:f5:f6:28:ce:88:0f:14:bb: 5e:29:04:d7:95:60:1b:92:7d:70:bb:d1:89:75:ed: b0:ce:62:87:70:3f:f2:28:33:c7:37:db:bc:24:29: f7:7c:53:31:c0:70:00:c0:50:06:ba:6c:dc:ea:20: 85:28:a8:7c:28:c8:4e:ad:95:a9:95:cd:23:df:95: e3:0e:54:53:a3:33:21:b3:46:20:71:23:a6:b3:71: bc:0c:23:15:f6:aa:53:69:fc:4d:d4:c7:e4:37:87: 4f:57:c0:5d:06:9e:55:e9:6a:ab:78:b7:c5:e0:5d: 97:7e:30:8a:65:35:9f:15:50:61:d2:5d:73:96:47: bd:9c:28:39:20:b1:12:cb:b4:44:9a:12:be:e8:94: 21:99:21:c7:a4:e3:f5:e3:fa:23:0d:75:c0:c3:bd: 58:5c:6f:a2:4a:9b:ea:a8:fd:1d:ea:9c:65:a5:75: 42:99:c2:29:75:0e:d8:3c:6c:55:13:f1:89:b7:55: 7d:60:91:7c:96:4c:ad:61:a1:79:6b:80:46:92:0a: 0e:00:3d:15:6a:a2:65:75:bc:bb:e5:85:b0:09:a9: f1:18:22:0e:68:32:e4:28:26:96:56:67:2c:f6:54: 28:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:47:CC:2F:CD:A1:E4:06:60:76:E4:F5:55:0E:41:D9:84:28:78:7C X509v3 Authority Key Identifier: keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/KkfML82h5AZgduT1VQ5B2YQoeHw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.30.45.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:db:ee:51:ed:39:cf:b2:b9:3a:0f:69:aa:53:95:34:fb:fe: 40:c9:3a:58:de:9b:88:db:3e:9f:fb:dc:7f:46:5c:ae:c8:81: 71:cd:52:db:3a:f8:15:b9:4d:93:64:ba:e2:3c:78:8a:f6:a7: a3:76:da:db:a0:47:8f:31:4e:5c:14:4d:76:1b:a9:89:b9:2a: c9:15:be:2f:b4:18:78:96:9b:c9:87:7b:97:94:39:2c:de:35: 9c:4e:72:1c:1e:98:62:8a:9d:5b:7a:15:90:b4:08:00:db:34: 60:d5:9c:0d:2e:ee:ed:f6:f5:5f:6b:47:e9:5a:8b:5c:ad:55: ea:ef:19:ad:2f:49:a1:c0:9d:ce:2b:61:74:0e:59:e2:95:c4: b4:28:28:8b:a9:9d:6a:97:4f:34:f4:8c:ba:3d:43:c8:f2:80: 22:f2:83:a9:ac:fb:48:39:c9:89:dc:64:df:3b:6b:3a:d3:fb: fd:03:6a:43:fb:97:2c:81:91:dd:62:54:96:7e:bf:aa:56:4d: 05:2e:45:4e:85:9f:ba:4e:c4:38:c3:a9:8d:d2:b4:52:24:df: c2:c4:23:a5:5f:b1:a8:98:fd:4a:32:c7:b3:a1:3a:72:c7:d0: ab:e7:50:57:1f:b8:b8:4f:f5:68:98:6d:c7:1d:7b:a8:ea:90: b4:df:39:ef -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICDwowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkY3 RUNEQjYyMDJGRkMyQzM0REY3QkNENzFBMUMwODg4NTM4MkZCNzAeFw0yNTA4MjIw ODUwMDRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDJBNDdDQzJGQ0RBMUU0 MDY2MDc2RTRGNTU1MEU0MUQ5ODQyODc4N0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3wTYlsTcNbmUWIAeeXjSYlwVtoe719ijOiA8Uu14pBNeVYBuS fXC70Yl17bDOYodwP/IoM8c327wkKfd8UzHAcADAUAa6bNzqIIUoqHwoyE6tlamV zSPfleMOVFOjMyGzRiBxI6azcbwMIxX2qlNp/E3Ux+Q3h09XwF0GnlXpaqt4t8Xg XZd+MIplNZ8VUGHSXXOWR72cKDkgsRLLtESaEr7olCGZIcek4/Xj+iMNdcDDvVhc b6JKm+qo/R3qnGWldUKZwil1Dtg8bFUT8Ym3VX1gkXyWTK1hoXlrgEaSCg4APRVq omV1vLvlhbAJqfEYIg5oMuQoJpZWZyz2VCiZAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUKkfML82h5AZgduT1VQ5B2YQoeHwwHwYDVR0jBBgwFoAU/37NtiAv/Cw033vN caHAiIU4L7cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJ V0FOL18zN050aUF2X0N3MDMzdk5jYUhBaUlVNEw3Yy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvXzM3TnRpQXZfQ3cwMzN2TmNhSEFpSVU0TDdjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJV0FOL0trZk1MODJoNUFa Z2R1VDFWUTVCMllRb2VIdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABnHi0wDQYJKoZIhvcNAQELBQADggEBAJvb7lHtOc+yuToPaapTlTT7/kDJ Oljem4jbPp/73H9GXK7IgXHNUts6+BW5TZNkuuI8eIr2p6N22tugR48xTlwUTXYb qYm5KskVvi+0GHiWm8mHe5eUOSzeNZxOchwemGKKnVt6FZC0CADbNGDVnA0u7u32 9V9rR+lai1ytVervGa0vSaHAnc4rYXQOWeKVxLQoKIupnWqXTzT0jLo9Q8jygCLy g6ms+0g5yYncZN87azrT+/0DakP7lyyBkd1iVJZ+v6pWTQUuRU6Fn7pOxDjDqY3S tFIk38LEI6VfsaiY/Uoyx7OhOnLH0KvnUFcfuLhP9WiYbccde6jqkLTfOe8= -----END CERTIFICATE-----Generated at Sun Aug 24 07:41:00 2025 by rpki-client