$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASNET/db9yaVJSl1lOYeTn0PZiAYCGsWY.roa File: db9yaVJSl1lOYeTn0PZiAYCGsWY.roa (raw, json) Hash identifier: 5CWWsS3UmcTyC4bIwmHjQ8YVzavwuAT5O5zIdHnbrxw= Subject key identifier: 75:BF:72:69:52:52:97:59:4E:61:E4:E7:D0:F6:62:01:80:86:B1:66 Certificate issuer: /CN=70984F008CA28F6475DB426353BFD1C433D8BC1A Certificate serial: 0DAF Authority key identifier: 70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/db9yaVJSl1lOYeTn0PZiAYCGsWY.roa Signing time: Fri 22 Aug 2025 09:00:56 +0000 ROA not before: Fri 22 Aug 2025 09:00:56 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9264 IP address blocks: 103.130.252.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 09:28:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3503 (0xdaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70984F008CA28F6475DB426353BFD1C433D8BC1A Validity Not Before: Aug 22 09:00:56 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=75BF7269525297594E61E4E7D0F662018086B166 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:de:34:e5:8b:5e:aa:08:19:20:00:06:3f:89: b7:d3:d3:ab:2b:01:9d:ba:f4:d2:34:ae:cb:05:82: 47:56:f7:96:34:f2:8e:aa:2b:e9:50:af:19:6d:ca: 17:47:80:95:ce:8d:f9:e4:38:e5:7a:c1:b2:39:0b: 39:57:45:bb:cf:e5:6b:d2:f1:cd:c4:2d:44:49:09: fa:bb:90:62:6e:1b:77:f5:bb:91:18:f2:56:8b:23: 1a:ab:e1:0a:7c:6b:fa:35:95:4d:03:37:f2:5e:b7: 1d:ef:b0:cd:9e:b0:25:fc:12:7d:e0:a3:2e:9d:9f: d6:f0:62:47:37:f9:8a:9f:d8:1f:c1:61:7d:aa:73: 7a:81:d8:fa:eb:94:7b:cf:3a:e3:47:76:12:1f:ab: 4a:22:30:e4:94:9c:e0:02:79:4a:9d:0e:69:c5:96: ca:7d:1c:b5:57:52:f2:3f:a5:f0:13:7d:68:0a:db: d6:91:4d:90:79:d1:bc:42:5f:f1:03:2e:c7:88:eb: 9e:3a:2f:c9:fd:f9:b0:b5:2c:12:e6:d9:1a:8c:09: 79:69:13:5b:2f:5d:37:98:62:af:28:3c:70:77:88: 75:ee:ca:e9:bd:45:ad:39:fb:c4:2a:ec:3c:91:7a: 37:73:33:e9:25:ce:11:5d:51:6e:cd:e6:5c:a4:62: 3e:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:BF:72:69:52:52:97:59:4E:61:E4:E7:D0:F6:62:01:80:86:B1:66 X509v3 Authority Key Identifier: keyid:70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/db9yaVJSl1lOYeTn0PZiAYCGsWY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.130.252.0/22 Signature Algorithm: sha256WithRSAEncryption 4e:8a:3b:8c:e8:83:54:bc:01:65:05:f2:38:8d:49:7e:ea:ae: f7:9b:29:f3:80:a2:cb:eb:2e:67:b4:71:b3:fa:f6:4f:69:a2: 35:38:3f:73:31:2a:84:e7:c9:65:23:9f:05:86:0b:7a:a7:00: a0:b4:6d:96:cf:de:54:3e:b1:e4:82:c9:ca:e2:ee:a8:bd:d9: 28:80:83:8d:7e:bc:34:81:38:c4:be:d5:71:07:86:38:2c:db: c3:db:0f:60:cb:e2:d2:4f:88:57:f8:74:57:8d:73:e1:7c:a1: ab:b7:4a:d0:05:5a:21:c5:ce:16:ad:25:f4:1a:b2:27:77:ac: be:bb:07:04:36:a8:31:81:79:aa:cf:e2:57:75:4a:ce:50:33: 56:38:6d:f3:5f:16:39:47:9d:26:70:c0:4d:ca:94:9a:32:3e: d2:7a:d2:04:b0:5d:7e:e7:48:29:70:11:fc:50:4e:45:af:a8: 8a:79:1b:d6:a0:10:ef:10:e9:c7:c7:a3:bf:b2:f9:c0:40:92: 72:16:7f:22:06:9d:1e:7e:8b:8a:01:85:d3:6b:e9:ff:e9:60: 2c:0e:52:7f:ca:09:0d:ad:86:45:98:1e:74:c1:a8:be:ed:2f: 71:7c:95:ca:a2:c1:fd:cc:dc:bc:d7:8e:3f:20:7a:62:54:14: f6:83:67:b2 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDa8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzA5 ODRGMDA4Q0EyOEY2NDc1REI0MjYzNTNCRkQxQzQzM0Q4QkMxQTAeFw0yNTA4MjIw OTAwNTZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDc1QkY3MjY5NTI1Mjk3 NTk0RTYxRTRFN0QwRjY2MjAxODA4NkIxNjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC13jTli16qCBkgAAY/ibfT06srAZ269NI0rssFgkdW95Y08o6q K+lQrxltyhdHgJXOjfnkOOV6wbI5CzlXRbvP5WvS8c3ELURJCfq7kGJuG3f1u5EY 8laLIxqr4Qp8a/o1lU0DN/Jetx3vsM2esCX8En3goy6dn9bwYkc3+Yqf2B/BYX2q c3qB2PrrlHvPOuNHdhIfq0oiMOSUnOACeUqdDmnFlsp9HLVXUvI/pfATfWgK29aR TZB50bxCX/EDLseI6546L8n9+bC1LBLm2RqMCXlpE1svXTeYYq8oPHB3iHXuyum9 Ra05+8Qq7DyRejdzM+klzhFdUW7N5lykYj4XAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUdb9yaVJSl1lOYeTn0PZiAYCGsWYwHwYDVR0jBBgwFoAUcJhPAIyij2R120Jj U7/RxDPYvBowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNORVQv Y0poUEFJeWlqMlIxMjBKalU3X1J4RFBZdkJvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9jSmhQQUl5aWoyUjEyMEpqVTdfUnhEUFl2Qm8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BU05FVC9kYjl5YVZKU2wxbE9ZZVRuMFBa aUFZQ0dzV1kucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ4L8 MA0GCSqGSIb3DQEBCwUAA4IBAQBOijuM6INUvAFlBfI4jUl+6q73mynzgKLL6y5n tHGz+vZPaaI1OD9zMSqE58llI58Fhgt6pwCgtG2Wz95UPrHkgsnK4u6ovdkogION frw0gTjEvtVxB4Y4LNvD2w9gy+LST4hX+HRXjXPhfKGrt0rQBVohxc4WrSX0GrIn d6y+uwcENqgxgXmqz+JXdUrOUDNWOG3zXxY5R50mcMBNypSaMj7SetIEsF1+50gp cBH8UE5Fr6iKeRvWoBDvEOnHx6O/svnAQJJyFn8iBp0efouKAYXTa+n/6WAsDlJ/ ygkNrYZFmB50wai+7S9xfJXKosH9zNy8144/IHpiVBT2g2ey -----END CERTIFICATE-----Generated at Wed Oct 29 08:37:14 2025 by rpki-client