$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/jKGOGVu-VgPMh5yxoUKC_5C3G4c.roa File: jKGOGVu-VgPMh5yxoUKC_5C3G4c.roa (raw, json) Hash identifier: LoiZHBwTDrYW+ZW69wIMjJ2rgYb1O5nxJY7B/tH59oA= Subject key identifier: 8C:A1:8E:19:5B:BE:56:03:CC:87:9C:B1:A1:42:82:FF:90:B7:1B:87 Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05 Certificate serial: 0DEE Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/jKGOGVu-VgPMh5yxoUKC_5C3G4c.roa Signing time: Fri 22 Aug 2025 09:03:58 +0000 ROA not before: Fri 22 Aug 2025 09:03:58 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131149 IP address blocks: 103.123.242.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3566 (0xdee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05 Validity Not Before: Aug 22 09:03:58 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8CA18E195BBE5603CC879CB1A14282FF90B71B87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:30:99:c4:02:bc:40:de:04:28:ec:f5:94:86: 35:5c:ec:78:eb:ae:0b:e0:fe:e9:0f:49:72:b7:5b: 44:e0:7b:f1:0f:13:5e:a4:5d:c8:b8:a1:4d:eb:57: 5c:e1:ca:4a:9b:0b:84:ed:31:c2:ad:36:32:2d:8e: fa:74:31:b2:03:e4:48:eb:48:f1:6e:fc:eb:01:03: 83:3a:c6:c9:7b:d3:31:66:98:a1:7e:1f:ca:71:a3: c9:00:8b:37:2a:58:78:bf:aa:e8:27:51:d8:0b:fe: d7:fb:5c:82:e4:a0:2f:25:4d:df:4a:e4:67:9a:62: 6c:7c:67:e7:37:92:18:fb:e8:c0:71:8e:6d:ce:df: f8:c4:7d:a5:70:38:4a:57:78:46:da:0c:37:46:ee: d9:de:13:2c:aa:1b:3e:02:0b:97:03:70:9e:5c:46: 37:cc:33:3e:ef:ff:26:77:d3:ef:9c:55:56:7e:72: 85:68:c0:2e:8a:ca:42:2f:ba:ce:d4:b4:6d:7d:86: 6d:27:11:4c:ed:e7:31:1d:6f:b4:52:67:2a:b3:eb: 9f:16:9b:a2:d4:e4:4b:27:87:f1:7d:61:3c:26:65: b1:40:72:27:c9:ec:0a:83:ae:87:df:dc:80:8a:3f: a3:31:02:3a:13:cf:81:15:9e:39:c0:3d:09:a0:26: 3e:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:A1:8E:19:5B:BE:56:03:CC:87:9C:B1:A1:42:82:FF:90:B7:1B:87 X509v3 Authority Key Identifier: keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/jKGOGVu-VgPMh5yxoUKC_5C3G4c.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.123.242.0/23 Signature Algorithm: sha256WithRSAEncryption 40:ed:9b:5c:ff:df:7f:8f:40:ad:06:fa:e5:fe:3e:5e:69:55: 98:96:0b:9d:93:85:7f:94:5d:ac:aa:81:df:28:c0:80:44:bc: 19:77:3c:ed:0d:da:74:b6:8c:44:7c:af:6b:ee:1b:3e:b3:cf: 02:75:46:23:47:01:4b:29:c4:54:55:27:99:31:7b:65:29:ff: bd:82:2b:19:30:31:92:ee:82:31:d4:38:94:a5:45:98:d9:72: 97:73:11:73:6b:06:5c:80:47:f2:7c:ec:2f:90:6f:fa:46:db: 38:3d:29:b2:0b:06:f3:a0:95:87:bf:7e:0e:e4:74:c0:21:3e: 81:9e:74:1a:9a:bb:9f:45:39:5b:57:e8:1a:7d:f4:ba:87:3a: ed:e2:74:9f:32:99:c1:a0:3c:1e:b5:45:b2:ca:0e:04:f9:3c: 1a:b1:a4:fa:81:1b:84:7d:1e:94:be:7e:4f:f4:1d:aa:36:20: c8:3e:c0:e6:88:84:09:1f:e2:9e:4b:03:1f:96:8d:61:b3:e2: b8:35:95:dd:be:5d:78:d4:ea:0d:b8:a2:23:20:c7:12:c4:73: 4e:20:49:79:32:36:cd:02:63:f9:03:e4:14:99:19:46:9c:0d: 6a:d8:09:fa:0f:41:c7:0f:73:fa:7d:b5:30:06:61:5e:8b:fd: 80:68:70:0d -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDe4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODdB NEFGRDlFN0ZDMUZFRDRGOTU0NURFNDFDRTQ0MTNEQUNCMEUwNTAeFw0yNTA4MjIw OTAzNThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDhDQTE4RTE5NUJCRTU2 MDNDQzg3OUNCMUExNDI4MkZGOTBCNzFCODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpMJnEArxA3gQo7PWUhjVc7Hjrrgvg/ukPSXK3W0Tge/EPE16k Xci4oU3rV1zhykqbC4TtMcKtNjItjvp0MbID5EjrSPFu/OsBA4M6xsl70zFmmKF+ H8pxo8kAizcqWHi/qugnUdgL/tf7XILkoC8lTd9K5GeaYmx8Z+c3khj76MBxjm3O 3/jEfaVwOEpXeEbaDDdG7tneEyyqGz4CC5cDcJ5cRjfMMz7v/yZ30++cVVZ+coVo wC6KykIvus7UtG19hm0nEUzt5zEdb7RSZyqz658Wm6LU5Esnh/F9YTwmZbFAcifJ 7AqDroff3ICKP6MxAjoTz4EVnjnAPQmgJj5rAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUjKGOGVu+VgPMh5yxoUKC/5C3G4cwHwYDVR0jBBgwFoAUh6Sv2ef8H+1PlUXe Qc5EE9rLDgUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWVVBTkpI RU4vaDZTdjJlZjhILTFQbFVYZVFjNUVFOXJMRGdVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9oNlN2MmVmOEgtMVBsVVhlUWM1RUU5ckxEZ1UuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ZVUFOSkhFTi9qS0dPR1Z1LVZnUE1o NXl4b1VLQ181QzNHNGMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ3vyMA0GCSqGSIb3DQEBCwUAA4IBAQBA7Ztc/99/j0CtBvrl/j5eaVWYlgud k4V/lF2sqoHfKMCARLwZdzztDdp0toxEfK9r7hs+s88CdUYjRwFLKcRUVSeZMXtl Kf+9gisZMDGS7oIx1DiUpUWY2XKXcxFzawZcgEfyfOwvkG/6Rts4PSmyCwbzoJWH v34O5HTAIT6BnnQamrufRTlbV+gaffS6hzrt4nSfMpnBoDwetUWyyg4E+TwasaT6 gRuEfR6Uvn5P9B2qNiDIPsDmiIQJH+KeSwMflo1hs+K4NZXdvl141OoNuKIjIMcS xHNOIEl5MjbNAmP5A+QUmRlGnA1q2An6D0HHD3P6fbUwBmFei/2AaHAN -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:38 2025 by rpki-client