$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/P7m86jyEF2VzvShWSvCu6WADdkw.roa File: P7m86jyEF2VzvShWSvCu6WADdkw.roa (raw, json) Hash identifier: oGvnEqypBEBRt2kWwLrfIRZ+6rLBP3D41B3DjGwxvVk= Subject key identifier: 3F:B9:BC:EA:3C:84:17:65:73:BD:28:56:4A:F0:AE:E9:60:03:76:4C Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05 Certificate serial: 0DE7 Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/P7m86jyEF2VzvShWSvCu6WADdkw.roa Signing time: Fri 22 Aug 2025 09:03:56 +0000 ROA not before: Fri 22 Aug 2025 09:03:56 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 21859 IP address blocks: 103.123.242.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3559 (0xde7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05 Validity Not Before: Aug 22 09:03:56 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=3FB9BCEA3C84176573BD28564AF0AEE96003764C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:96:33:d2:b9:ce:b0:32:2e:1c:b0:60:10:ea: c8:cc:c5:1c:39:4b:41:be:26:ed:f1:69:01:0f:d8: 5f:79:32:7b:ec:5c:53:11:54:0e:13:5b:79:2e:03: 26:e1:ca:82:7c:30:6b:84:56:46:a7:5f:fb:d6:b8: 1f:d0:16:05:5f:16:36:49:31:87:cd:60:c0:ac:a2: 03:61:fb:50:cc:84:24:7a:fb:e3:19:cb:a2:14:85: d7:3e:59:89:c9:10:67:da:ca:c1:01:39:9b:f9:32: 3c:a5:3e:81:da:ca:c2:e6:98:0c:a0:1f:6c:cd:97: c2:0c:25:e5:6f:30:34:4c:30:2a:8f:89:b1:d2:17: e7:68:0c:39:81:c3:1f:74:a9:62:9d:04:bc:15:8a: d0:f6:a8:82:db:0b:f0:04:06:e2:4a:2d:a8:8e:e3: e6:27:4a:5b:97:e8:1e:c9:20:b3:6e:21:5c:74:96: 9f:e6:1b:2d:31:7a:95:73:96:45:52:44:92:f1:40: 61:fc:26:98:b0:de:88:65:fc:c1:a8:44:53:20:2d: 17:fe:5d:2e:83:9c:84:50:f9:40:01:4a:98:8b:39: 8c:0b:65:9f:ce:1b:48:06:9e:b0:58:c8:13:3e:70: db:bc:07:a2:15:31:97:30:e1:29:d4:92:37:b4:e5: 5d:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:B9:BC:EA:3C:84:17:65:73:BD:28:56:4A:F0:AE:E9:60:03:76:4C X509v3 Authority Key Identifier: keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/P7m86jyEF2VzvShWSvCu6WADdkw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.123.242.0/23 Signature Algorithm: sha256WithRSAEncryption 27:82:83:62:2c:3b:ae:12:e5:23:75:8b:da:f2:08:e5:69:dc: 64:d0:23:b3:8c:62:6a:4f:54:25:30:06:bc:43:c6:ff:e7:52: bb:eb:6d:4b:50:9e:19:49:81:1d:ff:b6:db:e2:ab:6f:fe:8a: 81:f6:cf:e2:b7:a7:de:64:ea:ba:13:8a:87:6c:83:82:67:25: e1:51:86:55:6d:53:be:ef:ed:c4:44:50:b8:4e:8b:6c:34:56: d2:32:52:8b:cf:6c:5f:54:8b:bb:a7:38:57:7b:ad:e9:37:c2: 25:4e:40:12:df:47:3c:26:fc:19:d1:62:00:d2:2c:7e:0c:4f: 2c:11:bc:3b:b7:32:81:12:4d:66:a8:d3:6f:19:cb:eb:1e:19: 96:b9:2b:0d:81:d8:9f:c7:79:20:4a:4f:26:2a:7c:77:2f:de: dc:0e:60:ba:4f:d9:b8:14:7a:41:d5:e9:93:7e:b0:ce:dd:c1: 03:89:1f:cf:28:b8:c6:16:1d:5a:f7:8c:de:05:1f:13:40:11: 7f:f4:52:d8:bf:93:84:4c:31:a0:da:f2:b6:dc:ef:f7:05:cf: 27:ee:8f:45:0b:9d:1f:9c:e6:b9:01:2d:e7:67:38:1a:d2:84: 6d:8b:ea:46:bb:50:fc:bc:03:01:28:a9:6d:87:45:eb:18:04: d4:26:e4:fe -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDecwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODdB NEFGRDlFN0ZDMUZFRDRGOTU0NURFNDFDRTQ0MTNEQUNCMEUwNTAeFw0yNTA4MjIw OTAzNTZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDNGQjlCQ0VBM0M4NDE3 NjU3M0JEMjg1NjRBRjBBRUU5NjAwMzc2NEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDvljPSuc6wMi4csGAQ6sjMxRw5S0G+Ju3xaQEP2F95MnvsXFMR VA4TW3kuAybhyoJ8MGuEVkanX/vWuB/QFgVfFjZJMYfNYMCsogNh+1DMhCR6++MZ y6IUhdc+WYnJEGfaysEBOZv5MjylPoHaysLmmAygH2zNl8IMJeVvMDRMMCqPibHS F+doDDmBwx90qWKdBLwVitD2qILbC/AEBuJKLaiO4+YnSluX6B7JILNuIVx0lp/m Gy0xepVzlkVSRJLxQGH8Jpiw3ohl/MGoRFMgLRf+XS6DnIRQ+UABSpiLOYwLZZ/O G0gGnrBYyBM+cNu8B6IVMZcw4SnUkje05V3bAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUP7m86jyEF2VzvShWSvCu6WADdkwwHwYDVR0jBBgwFoAUh6Sv2ef8H+1PlUXe Qc5EE9rLDgUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWVVBTkpI RU4vaDZTdjJlZjhILTFQbFVYZVFjNUVFOXJMRGdVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9oNlN2MmVmOEgtMVBsVVhlUWM1RUU5ckxEZ1UuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ZVUFOSkhFTi9QN204Nmp5RUYyVnp2 U2hXU3ZDdTZXQURka3cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ3vyMA0GCSqGSIb3DQEBCwUAA4IBAQAngoNiLDuuEuUjdYva8gjladxk0COz jGJqT1QlMAa8Q8b/51K7621LUJ4ZSYEd/7bb4qtv/oqB9s/it6feZOq6E4qHbIOC ZyXhUYZVbVO+7+3ERFC4TotsNFbSMlKLz2xfVIu7pzhXe63pN8IlTkAS30c8JvwZ 0WIA0ix+DE8sEbw7tzKBEk1mqNNvGcvrHhmWuSsNgdifx3kgSk8mKnx3L97cDmC6 T9m4FHpB1emTfrDO3cEDiR/PKLjGFh1a94zeBR8TQBF/9FLYv5OETDGg2vK23O/3 Bc8n7o9FC50fnOa5AS3nZzga0oRti+pGu1D8vAMBKKlth0XrGATUJuT+ -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:25 2025 by rpki-client