$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/kt7eLetQiPuVtADs2c3--v-XsQs.roa File: kt7eLetQiPuVtADs2c3--v-XsQs.roa (raw, json) Hash identifier: 52Nl/h5HmfHGhSHokaYQWMakklftj0mCfohu6Yg+McU= Subject key identifier: 92:DE:DE:2D:EB:50:88:FB:95:B4:00:EC:D9:CD:FE:FA:FF:97:B1:0B Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05 Certificate serial: 0DEC Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/kt7eLetQiPuVtADs2c3--v-XsQs.roa Signing time: Fri 22 Aug 2025 09:03:57 +0000 ROA not before: Fri 22 Aug 2025 09:03:57 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131149 IP address blocks: 103.123.196.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3564 (0xdec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05 Validity Not Before: Aug 22 09:03:57 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=92DEDE2DEB5088FB95B400ECD9CDFEFAFF97B10B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:36:19:3e:5e:7f:1c:a6:48:5f:b6:6b:42:96: 26:20:c4:92:95:ea:b3:e7:00:08:f4:5f:d5:6d:88: dd:b2:f9:6b:73:18:24:2d:95:df:1d:9d:d5:9d:de: 98:52:00:1b:ba:69:2d:7c:d5:26:fb:2c:13:b5:67: d4:f1:1b:8d:7b:93:83:ed:78:58:e7:53:09:b0:f9: 0f:7b:76:4f:a3:60:81:48:53:8b:62:08:bb:54:17: bb:11:e7:cb:22:90:d4:5e:45:7d:36:f0:56:da:66: 38:32:d2:8f:25:8e:1f:07:0b:f5:ce:5e:fc:fd:9e: fb:07:79:8d:71:88:69:96:8e:1e:e7:09:1f:04:22: ce:74:f7:41:b5:2e:37:6f:1a:89:09:8e:b2:b9:85: 92:47:75:6e:8f:4e:fc:fc:2c:06:2e:20:86:fa:77: af:e1:b4:5a:ce:06:47:e2:4f:4f:ef:7b:ef:1c:60: dc:73:68:48:b9:1c:de:91:91:d0:e5:fc:7b:0e:d1: 14:05:00:f0:db:56:7c:94:a8:bb:eb:90:bd:f6:49: a4:26:38:14:c4:26:03:de:c1:6a:19:8a:93:12:42: 61:44:05:3e:2e:45:4a:d3:b2:fb:b6:c1:2f:bf:6b: 70:04:8e:bf:2f:d2:af:e7:dc:be:c0:77:16:52:86: 72:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:DE:DE:2D:EB:50:88:FB:95:B4:00:EC:D9:CD:FE:FA:FF:97:B1:0B X509v3 Authority Key Identifier: keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/kt7eLetQiPuVtADs2c3--v-XsQs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.123.196.0/22 Signature Algorithm: sha256WithRSAEncryption a5:cb:96:68:06:2d:56:71:4d:8f:a6:10:c0:5d:16:d1:68:e1: 11:82:63:71:41:71:7a:a4:9b:14:98:a1:1a:fc:98:86:3b:71: f9:b0:85:ba:97:3d:fc:62:a8:89:a5:46:99:92:ac:89:08:43: d5:19:46:e3:ca:e8:e9:d3:0e:c8:20:6a:97:76:0b:b2:08:ba: d4:ff:50:fd:21:6f:e6:2a:08:36:fc:e7:a2:26:45:e7:fd:c6: 78:7e:58:f0:51:d0:b6:80:97:af:7d:8d:25:96:d0:45:2d:ce: 1f:04:e1:92:87:cc:b0:c0:32:1a:bb:a9:e5:e6:25:6a:e9:4a: a3:4a:d0:39:db:08:64:0a:d9:af:5d:7d:95:d5:76:3e:0a:e5: 8b:68:cf:76:e7:bf:a5:1b:1b:e5:1d:f3:85:d7:03:d4:be:ca: 72:50:5c:45:38:4a:bb:fd:c5:75:97:93:17:97:61:3c:f0:d0: dd:af:66:5c:21:62:37:78:e7:c8:c0:a8:35:ff:77:85:f5:26: 07:6c:26:99:9d:a6:12:35:87:8f:8f:b0:51:ea:5f:13:82:5c: 2c:a5:95:aa:9a:4a:e9:67:ea:34:ae:d5:03:cf:ec:29:24:0a: 7a:a3:14:25:21:0c:ff:f1:f4:1a:c1:cd:23:6b:03:a5:4f:5f: 53:fb:74:50 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDewwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODdB NEFGRDlFN0ZDMUZFRDRGOTU0NURFNDFDRTQ0MTNEQUNCMEUwNTAeFw0yNTA4MjIw OTAzNTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDkyREVERTJERUI1MDg4 RkI5NUI0MDBFQ0Q5Q0RGRUZBRkY5N0IxMEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRNhk+Xn8cpkhftmtCliYgxJKV6rPnAAj0X9VtiN2y+WtzGCQt ld8dndWd3phSABu6aS181Sb7LBO1Z9TxG417k4PteFjnUwmw+Q97dk+jYIFIU4ti CLtUF7sR58sikNReRX028FbaZjgy0o8ljh8HC/XOXvz9nvsHeY1xiGmWjh7nCR8E Is5090G1LjdvGokJjrK5hZJHdW6PTvz8LAYuIIb6d6/htFrOBkfiT0/ve+8cYNxz aEi5HN6RkdDl/HsO0RQFAPDbVnyUqLvrkL32SaQmOBTEJgPewWoZipMSQmFEBT4u RUrTsvu2wS+/a3AEjr8v0q/n3L7AdxZShnJ3AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUkt7eLetQiPuVtADs2c3++v+XsQswHwYDVR0jBBgwFoAUh6Sv2ef8H+1PlUXe Qc5EE9rLDgUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWVVBTkpI RU4vaDZTdjJlZjhILTFQbFVYZVFjNUVFOXJMRGdVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9oNlN2MmVmOEgtMVBsVVhlUWM1RUU5ckxEZ1UuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ZVUFOSkhFTi9rdDdlTGV0UWlQdVZ0 QURzMmMzLS12LVhzUXMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCZ3vEMA0GCSqGSIb3DQEBCwUAA4IBAQCly5ZoBi1WcU2PphDAXRbRaOERgmNx QXF6pJsUmKEa/JiGO3H5sIW6lz38YqiJpUaZkqyJCEPVGUbjyujp0w7IIGqXdguy CLrU/1D9IW/mKgg2/OeiJkXn/cZ4fljwUdC2gJevfY0lltBFLc4fBOGSh8ywwDIa u6nl5iVq6UqjStA52whkCtmvXX2V1XY+CuWLaM9257+lGxvlHfOF1wPUvspyUFxF OEq7/cV1l5MXl2E88NDdr2ZcIWI3eOfIwKg1/3eF9SYHbCaZnaYSNYePj7BR6l8T glwspZWqmkrpZ+o0rtUDz+wpJAp6oxQlIQz/8fQawc0jawOlT19T+3RQ -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:22 2025 by rpki-client