$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/hALSr4qVlwBbIRJxDtLiSO3F_IU.roa File: hALSr4qVlwBbIRJxDtLiSO3F_IU.roa (raw, json) Hash identifier: /AW3UuQ08OCECBfBNvEvF8Z+pY+ByR4Eie0D5kfoUM8= Subject key identifier: 84:02:D2:AF:8A:95:97:00:5B:21:12:71:0E:D2:E2:48:ED:C5:FC:85 Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Certificate serial: 0F0C Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/hALSr4qVlwBbIRJxDtLiSO3F_IU.roa Signing time: Fri 22 Aug 2025 08:50:05 +0000 ROA not before: Fri 22 Aug 2025 08:50:05 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18424 IP address blocks: 121.50.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3852 (0xf0c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Validity Not Before: Aug 22 08:50:05 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8402D2AF8A9597005B2112710ED2E248EDC5FC85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a7:d7:f1:ec:86:7a:cd:0b:b3:30:94:64:6d: bf:ba:0c:aa:d2:a4:18:00:9e:63:79:0a:82:6b:d3: 16:f8:74:f1:e9:4c:19:2d:fc:1d:3c:59:f9:19:f4: e3:4a:59:bf:ec:6b:c5:f5:a2:c1:81:58:24:36:70: 06:c1:fc:3b:31:3a:3f:f5:12:9b:d4:62:50:0c:9d: f9:c1:a7:95:80:c9:ec:c5:15:24:20:6b:40:35:96: 39:dd:10:ac:72:cb:5a:6c:c1:ba:b2:94:37:24:23: 81:b0:b8:f8:5c:0f:c3:2f:96:18:d7:d0:a0:89:0a: a8:12:1c:69:9d:2c:68:85:1c:e8:c7:36:26:8e:39: 8d:fe:09:95:d1:26:f9:e8:78:0a:aa:e7:36:b5:ad: 2e:2b:0e:aa:78:39:0c:0c:d2:c8:db:19:26:c0:02: 6e:fa:76:9f:56:25:7f:08:44:93:83:77:9f:17:6c: b6:03:78:65:98:ce:2e:7e:66:dc:8f:ee:ab:b6:d1: 1f:69:5f:e8:fe:ee:f5:e9:97:9b:85:5f:c1:dd:9f: ef:e7:5b:93:71:e5:50:cb:bc:88:38:47:6c:43:9f: b7:6f:20:ed:89:a1:77:11:9e:18:a0:97:f6:cc:09: d8:b4:23:11:04:4a:c2:c3:ab:58:d0:82:82:21:5d: 30:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:02:D2:AF:8A:95:97:00:5B:21:12:71:0E:D2:E2:48:ED:C5:FC:85 X509v3 Authority Key Identifier: keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/hALSr4qVlwBbIRJxDtLiSO3F_IU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 121.50.150.0/24 Signature Algorithm: sha256WithRSAEncryption 66:da:f5:9c:14:a6:ab:fa:66:03:02:24:a3:9f:94:a8:bf:a6: 22:98:3c:df:c9:0a:3a:1f:99:cd:9f:53:48:3b:86:e9:6b:a5: 70:9d:36:1c:ac:56:56:23:31:3b:b0:5b:b8:ac:13:78:b5:0e: c3:b5:d9:44:40:29:c1:68:68:9b:56:5b:18:9b:fe:0a:1f:fd: 16:49:21:f2:7c:80:a7:8b:97:c1:60:00:86:04:70:8f:ba:9c: 30:78:93:d1:92:c6:3c:5d:a4:05:e2:31:94:d8:f8:aa:91:54: ca:d7:97:74:e9:75:04:3e:38:cc:e5:8d:a4:ca:1d:50:12:0c: 86:4e:8a:62:63:73:f6:43:b1:8d:8e:a6:41:f1:16:12:88:ff: 11:5c:c8:5f:67:a9:fd:a4:8a:ec:42:39:0d:41:a8:3b:5a:af: 66:04:87:cb:64:fa:60:64:5c:d9:ab:10:62:22:1f:46:7f:bb: b9:9c:92:d4:a9:9a:01:01:71:a3:81:8e:2c:cf:dc:00:65:d3: ed:9e:24:e8:93:a1:9f:41:b9:28:e6:82:ed:76:5a:59:e8:22: d7:85:c5:22:75:fd:de:2e:c0:e7:85:db:0b:bb:76:dc:46:71: ed:cf:09:52:4d:96:1c:f9:2c:4b:01:9e:0e:1a:5f:52:41:05: 86:2a:c6:98 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICDwwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkY3 RUNEQjYyMDJGRkMyQzM0REY3QkNENzFBMUMwODg4NTM4MkZCNzAeFw0yNTA4MjIw ODUwMDVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDg0MDJEMkFGOEE5NTk3 MDA1QjIxMTI3MTBFRDJFMjQ4RURDNUZDODUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCp9fx7IZ6zQuzMJRkbb+6DKrSpBgAnmN5CoJr0xb4dPHpTBkt /B08WfkZ9ONKWb/sa8X1osGBWCQ2cAbB/DsxOj/1EpvUYlAMnfnBp5WAyezFFSQg a0A1ljndEKxyy1pswbqylDckI4GwuPhcD8MvlhjX0KCJCqgSHGmdLGiFHOjHNiaO OY3+CZXRJvnoeAqq5za1rS4rDqp4OQwM0sjbGSbAAm76dp9WJX8IRJODd58XbLYD eGWYzi5+ZtyP7qu20R9pX+j+7vXpl5uFX8Hdn+/nW5Nx5VDLvIg4R2xDn7dvIO2J oXcRnhigl/bMCdi0IxEESsLDq1jQgoIhXTAHAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUhALSr4qVlwBbIRJxDtLiSO3F/IUwHwYDVR0jBBgwFoAU/37NtiAv/Cw033vN caHAiIU4L7cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJ V0FOL18zN050aUF2X0N3MDMzdk5jYUhBaUlVNEw3Yy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvXzM3TnRpQXZfQ3cwMzN2TmNhSEFpSVU0TDdjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJV0FOL2hBTFNyNHFWbHdC YklSSnhEdExpU08zRl9JVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAB5MpYwDQYJKoZIhvcNAQELBQADggEBAGba9ZwUpqv6ZgMCJKOflKi/piKY PN/JCjofmc2fU0g7hulrpXCdNhysVlYjMTuwW7isE3i1DsO12URAKcFoaJtWWxib /gof/RZJIfJ8gKeLl8FgAIYEcI+6nDB4k9GSxjxdpAXiMZTY+KqRVMrXl3TpdQQ+ OMzljaTKHVASDIZOimJjc/ZDsY2OpkHxFhKI/xFcyF9nqf2kiuxCOQ1BqDtar2YE h8tk+mBkXNmrEGIiH0Z/u7mcktSpmgEBcaOBjizP3ABl0+2eJOiToZ9BuSjmgu12 WlnoIteFxSJ1/d4uwOeF2wu7dtxGce3PCVJNlhz5LEsBng4aX1JBBYYqxpg= -----END CERTIFICATE-----Generated at Sun Aug 24 07:44:02 2025 by rpki-client