$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/Px7aP9Pnq-n_CAnjAj1CDsinrzQ.roa File: Px7aP9Pnq-n_CAnjAj1CDsinrzQ.roa (raw, json) Hash identifier: 1VVdTYOiYVyZK9bHx2rD8awnRtszqX3o+655EReBBL0= Subject key identifier: 3F:1E:DA:3F:D3:E7:AB:E9:FF:08:09:E3:02:3D:42:0E:C8:A7:AF:34 Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05 Certificate serial: 0DEB Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/Px7aP9Pnq-n_CAnjAj1CDsinrzQ.roa Signing time: Fri 22 Aug 2025 09:03:57 +0000 ROA not before: Fri 22 Aug 2025 09:03:57 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131149 IP address blocks: 103.17.8.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3563 (0xdeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05 Validity Not Before: Aug 22 09:03:57 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=3F1EDA3FD3E7ABE9FF0809E3023D420EC8A7AF34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a7:46:de:a6:91:ab:5a:50:70:7e:df:7d:20: 58:dd:e7:23:a0:0e:6f:53:0d:1c:b3:e3:ca:87:83: c7:fc:cb:99:cf:eb:e3:09:01:d7:76:a3:9b:ae:c3: b8:c8:d8:72:04:e4:a8:b9:0d:64:29:26:51:4d:76: d0:7d:be:ad:7b:a8:7b:7b:4b:77:34:37:4b:02:5b: f8:58:93:53:e4:db:64:b5:25:0f:12:01:c8:a1:74: e6:46:96:ba:d2:8c:89:59:2b:7e:6f:bf:5f:cc:e7: 04:4c:a1:01:7b:9f:a9:c3:ce:66:10:09:d5:8f:52: 95:15:4b:7f:1d:f8:d1:4c:49:01:18:ab:fc:a2:37: d5:ae:97:80:14:d3:08:70:15:62:10:7e:80:29:08: c4:94:01:f0:9b:56:55:8c:6e:c4:44:51:9a:15:98: 14:09:2c:63:b9:d9:74:a0:a6:7e:89:0b:8e:24:c8: 31:c3:75:ca:5e:0a:e7:5f:0c:0f:e6:47:e0:79:79: 46:54:3a:51:c4:22:3d:46:6f:78:a7:15:0e:3b:90: 08:22:49:f3:32:31:24:d5:8b:42:6e:86:71:e7:eb: 78:ad:9f:9f:dc:17:60:85:a9:60:54:12:7f:9f:83: c3:cd:b1:be:c7:95:8a:54:6a:23:d0:9b:ce:8c:ef: 26:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:1E:DA:3F:D3:E7:AB:E9:FF:08:09:E3:02:3D:42:0E:C8:A7:AF:34 X509v3 Authority Key Identifier: keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/Px7aP9Pnq-n_CAnjAj1CDsinrzQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.17.8.0/22 Signature Algorithm: sha256WithRSAEncryption 34:8d:7a:07:3b:6b:10:d1:72:8d:b3:12:ff:ef:5a:42:4a:75: 78:9b:f7:16:4e:95:08:7a:11:f3:de:35:63:b8:8e:3e:fc:37: 8f:84:96:7b:1f:f8:bf:c1:e8:f1:44:72:2f:f7:99:75:9b:35: 75:83:26:3d:ee:24:32:84:9b:ce:14:3a:bd:c2:ed:a9:ba:5d: 32:ca:20:b7:29:61:d0:dc:98:1d:ce:9b:e8:22:2a:b8:5a:c6: ed:59:37:5e:0b:50:62:18:56:57:15:6a:58:32:09:de:ca:c5: 38:38:ff:6f:ed:85:86:f1:3a:d5:82:0a:05:9a:43:3d:e1:4e: 9b:9a:ea:a2:5a:8d:76:84:dc:d3:27:79:37:e2:89:25:dc:f0: 11:df:1f:96:73:72:7c:86:7b:12:7b:94:5f:6c:0a:96:b0:d6: 14:00:ce:7f:fa:43:5e:83:cd:73:8e:1a:2e:c8:0e:8a:43:bf: 26:4b:f5:5a:6c:07:ca:95:3d:2f:5a:0b:fa:3a:0c:d8:16:a0: 59:e5:8e:f4:e4:5c:3b:08:89:36:b0:19:63:85:15:6c:f6:37: 15:25:c0:c3:d6:8b:50:27:e1:16:3b:40:4a:a1:7a:02:2f:c9: 39:f7:bb:c9:a8:dc:79:56:b6:9b:0a:a0:27:2c:d3:da:cd:1a: 5b:16:ee:36 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDeswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODdB NEFGRDlFN0ZDMUZFRDRGOTU0NURFNDFDRTQ0MTNEQUNCMEUwNTAeFw0yNTA4MjIw OTAzNTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDNGMUVEQTNGRDNFN0FC RTlGRjA4MDlFMzAyM0Q0MjBFQzhBN0FGMzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwp0beppGrWlBwft99IFjd5yOgDm9TDRyz48qHg8f8y5nP6+MJ Add2o5uuw7jI2HIE5Ki5DWQpJlFNdtB9vq17qHt7S3c0N0sCW/hYk1Pk22S1JQ8S AcihdOZGlrrSjIlZK35vv1/M5wRMoQF7n6nDzmYQCdWPUpUVS38d+NFMSQEYq/yi N9Wul4AU0whwFWIQfoApCMSUAfCbVlWMbsREUZoVmBQJLGO52XSgpn6JC44kyDHD dcpeCudfDA/mR+B5eUZUOlHEIj1Gb3inFQ47kAgiSfMyMSTVi0JuhnHn63itn5/c F2CFqWBUEn+fg8PNsb7HlYpUaiPQm86M7yZ1AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUPx7aP9Pnq+n/CAnjAj1CDsinrzQwHwYDVR0jBBgwFoAUh6Sv2ef8H+1PlUXe Qc5EE9rLDgUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWVVBTkpI RU4vaDZTdjJlZjhILTFQbFVYZVFjNUVFOXJMRGdVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9oNlN2MmVmOEgtMVBsVVhlUWM1RUU5ckxEZ1UuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ZVUFOSkhFTi9QeDdhUDlQbnEtbl9D QW5qQWoxQ0RzaW5yelEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCZxEIMA0GCSqGSIb3DQEBCwUAA4IBAQA0jXoHO2sQ0XKNsxL/71pCSnV4m/cW TpUIehHz3jVjuI4+/DePhJZ7H/i/wejxRHIv95l1mzV1gyY97iQyhJvOFDq9wu2p ul0yyiC3KWHQ3JgdzpvoIiq4WsbtWTdeC1BiGFZXFWpYMgneysU4OP9v7YWG8TrV ggoFmkM94U6bmuqiWo12hNzTJ3k34okl3PAR3x+Wc3J8hnsSe5RfbAqWsNYUAM5/ +kNeg81zjhouyA6KQ78mS/VabAfKlT0vWgv6OgzYFqBZ5Y705Fw7CIk2sBljhRVs 9jcVJcDD1otQJ+EWO0BKoXoCL8k597vJqNx5VrabCqAnLNPazRpbFu42 -----END CERTIFICATE-----Generated at Sun Aug 24 05:32:09 2025 by rpki-client