$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/3rkN4QtVRk7Go8TY9xNJKGA61Mo.roa File: 3rkN4QtVRk7Go8TY9xNJKGA61Mo.roa (raw, json) Hash identifier: 1qrknS+K4FBqRE/5/X0VR55zvjBnmIx57i4BHUrWFBY= Subject key identifier: DE:B9:0D:E1:0B:55:46:4E:C6:A3:C4:D8:F7:13:49:28:60:3A:D4:CA Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05 Certificate serial: 0DED Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/3rkN4QtVRk7Go8TY9xNJKGA61Mo.roa Signing time: Fri 22 Aug 2025 09:03:57 +0000 ROA not before: Fri 22 Aug 2025 09:03:57 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131149 IP address blocks: 103.129.168.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3565 (0xded) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05 Validity Not Before: Aug 22 09:03:57 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=DEB90DE10B55464EC6A3C4D8F7134928603AD4CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f4:49:96:68:09:1d:74:f7:7d:7e:2e:ee:f6: 82:88:77:a4:2c:d8:cf:6b:40:c4:c0:84:18:05:3c: 3c:a2:ca:c7:bd:87:a5:43:86:c6:47:78:8a:c9:51: b6:46:8d:12:21:9e:8a:85:cf:c0:07:f7:78:9b:27: 84:d8:50:9a:8b:7f:b9:64:36:9a:91:d0:22:0a:77: 8a:c6:b3:0a:5b:97:9a:4e:c3:8e:87:ba:56:f1:0b: 01:e5:b5:ca:c6:79:ab:4e:a6:83:c7:dd:1c:0d:f6: 97:48:42:66:12:76:55:af:44:c6:be:f3:79:59:f0: ed:2e:df:4e:72:e6:2e:4d:c5:9a:d2:81:fc:b2:76: 3f:eb:91:14:86:2a:c6:96:73:d0:c1:18:95:2f:5f: 80:ca:68:46:10:eb:41:5c:49:29:a3:53:0d:94:6e: 59:47:87:e1:52:5c:8e:5c:2d:ec:07:9e:5b:2c:0e: cf:f6:cb:ed:46:4a:92:3a:db:bb:46:20:76:6e:af: 26:df:21:9f:ac:97:42:55:03:55:df:d2:52:7b:d4: 5a:39:3d:47:5b:d6:c1:65:04:24:78:6c:b2:eb:5e: d8:64:6c:c2:f3:21:33:c1:ab:16:be:bc:2e:4a:bb: d6:73:c7:5e:4e:61:80:1e:92:90:5e:87:2b:a2:05: df:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:B9:0D:E1:0B:55:46:4E:C6:A3:C4:D8:F7:13:49:28:60:3A:D4:CA X509v3 Authority Key Identifier: keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/3rkN4QtVRk7Go8TY9xNJKGA61Mo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.129.168.0/22 Signature Algorithm: sha256WithRSAEncryption 2c:16:1d:a1:4a:20:62:56:71:0c:1e:65:5a:cd:80:14:96:aa: 4a:79:65:99:0e:99:96:6c:dc:6d:f5:c2:ae:9c:5e:b2:60:6a: 2b:52:b3:94:27:dd:8d:a3:e2:cc:7e:20:30:15:08:52:5a:77: 34:2d:59:83:6f:4b:da:74:bf:a7:cc:eb:0b:03:2f:ac:31:a1: a4:95:07:9d:04:44:57:d4:f1:7f:4c:90:c9:3c:8e:99:c9:19: ce:4d:c0:ca:07:1c:b5:ef:65:80:65:ff:36:d7:84:e7:c7:81: 1e:6b:42:97:f4:29:5e:ca:c4:00:d3:d9:0c:fc:0c:f6:54:f3: 0f:6b:22:02:f6:52:a7:22:8d:f1:d2:eb:d7:c5:05:17:ac:0d: 2e:de:93:b5:50:89:16:ac:24:24:9a:ed:38:d8:1f:f6:17:0b: d9:15:e9:a3:5c:26:95:08:72:81:b2:2b:bc:c0:59:fe:68:ac: 87:7e:1d:4a:f4:80:ce:86:75:fe:8a:7a:3c:c1:32:2f:62:87: 0a:5b:f1:5d:92:ec:5c:0c:be:d3:40:cd:92:16:a8:5b:3d:f4: 92:e1:6c:5c:d2:3f:44:69:4a:61:0f:4d:f5:f4:b4:47:c2:54: 54:51:17:af:ef:14:6d:a4:f3:b7:56:fc:ed:39:ab:0d:b9:20: 04:3d:db:cc -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDe0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODdB NEFGRDlFN0ZDMUZFRDRGOTU0NURFNDFDRTQ0MTNEQUNCMEUwNTAeFw0yNTA4MjIw OTAzNTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKERFQjkwREUxMEI1NTQ2 NEVDNkEzQzREOEY3MTM0OTI4NjAzQUQ0Q0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDM9EmWaAkddPd9fi7u9oKId6Qs2M9rQMTAhBgFPDyiyse9h6VD hsZHeIrJUbZGjRIhnoqFz8AH93ibJ4TYUJqLf7lkNpqR0CIKd4rGswpbl5pOw46H ulbxCwHltcrGeatOpoPH3RwN9pdIQmYSdlWvRMa+83lZ8O0u305y5i5NxZrSgfyy dj/rkRSGKsaWc9DBGJUvX4DKaEYQ60FcSSmjUw2UbllHh+FSXI5cLewHnlssDs/2 y+1GSpI627tGIHZurybfIZ+sl0JVA1Xf0lJ71Fo5PUdb1sFlBCR4bLLrXthkbMLz ITPBqxa+vC5Ku9Zzx15OYYAekpBehyuiBd9VAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU3rkN4QtVRk7Go8TY9xNJKGA61MowHwYDVR0jBBgwFoAUh6Sv2ef8H+1PlUXe Qc5EE9rLDgUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWVVBTkpI RU4vaDZTdjJlZjhILTFQbFVYZVFjNUVFOXJMRGdVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9oNlN2MmVmOEgtMVBsVVhlUWM1RUU5ckxEZ1UuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ZVUFOSkhFTi8zcmtONFF0VlJrN0dv OFRZOXhOSktHQTYxTW8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCZ4GoMA0GCSqGSIb3DQEBCwUAA4IBAQAsFh2hSiBiVnEMHmVazYAUlqpKeWWZ DpmWbNxt9cKunF6yYGorUrOUJ92No+LMfiAwFQhSWnc0LVmDb0vadL+nzOsLAy+s MaGklQedBERX1PF/TJDJPI6ZyRnOTcDKBxy172WAZf8214Tnx4Eea0KX9CleysQA 09kM/Az2VPMPayIC9lKnIo3x0uvXxQUXrA0u3pO1UIkWrCQkmu042B/2FwvZFemj XCaVCHKBsiu8wFn+aKyHfh1K9IDOhnX+ino8wTIvYocKW/FdkuxcDL7TQM2SFqhb PfSS4Wxc0j9EaUphD0319LRHwlRUURev7xRtpPO3VvztOasNuSAEPdvM -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:52 2025 by rpki-client