$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/MJoHky24GRPngHlsaI-xq-8pF-Y.roa File: MJoHky24GRPngHlsaI-xq-8pF-Y.roa (raw, json) Hash identifier: i/TXmubVTVKk1izJZNHndU4LeNZxVR5qzOhKX+KW0Os= Subject key identifier: 30:9A:07:93:2D:B8:19:13:E7:80:79:6C:68:8F:B1:AB:EF:29:17:E6 Certificate issuer: /CN=44F8DCF66B25B719056D1ED65C16EA9257E5553D Certificate serial: 04DB Authority key identifier: 44:F8:DC:F6:6B:25:B7:19:05:6D:1E:D6:5C:16:EA:92:57:E5:55:3D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RPjc9msltxkFbR7WXBbqklflVT0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/MJoHky24GRPngHlsaI-xq-8pF-Y.roa Signing time: Fri 22 Aug 2025 08:50:41 +0000 ROA not before: Fri 22 Aug 2025 08:50:41 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 174 IP address blocks: 160.30.78.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/RPjc9msltxkFbR7WXBbqklflVT0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/RPjc9msltxkFbR7WXBbqklflVT0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RPjc9msltxkFbR7WXBbqklflVT0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 14:17:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1243 (0x4db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44F8DCF66B25B719056D1ED65C16EA9257E5553D Validity Not Before: Aug 22 08:50:41 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=309A07932DB81913E780796C688FB1ABEF2917E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:6e:f4:83:aa:cd:3d:c2:f0:6f:e0:f2:e0:01: e7:cb:a2:c3:4e:37:67:ed:c0:6b:00:bb:0b:15:85: 24:8d:35:1b:3a:14:9f:fc:17:55:c8:37:95:29:a4: fe:61:c4:83:bd:95:c4:33:70:99:16:88:ff:7a:e6: fb:48:06:f5:d5:a4:d4:90:f3:c3:0b:da:79:e7:2e: a3:33:3f:f7:77:73:f3:0e:d0:e4:e3:b3:e6:b1:b7: 1a:32:9f:0f:59:af:5d:4d:3a:72:a0:57:76:28:4c: 37:9e:2b:5e:66:f6:b5:22:79:20:74:04:57:df:ef: 2d:a7:34:11:e0:8f:70:db:11:fc:59:b6:e4:c9:e3: 8c:0d:90:0f:23:46:d3:9b:c7:b5:66:f5:d9:d1:52: ab:3d:97:42:ab:30:9a:b0:40:40:ab:5c:fa:88:fd: ce:b5:63:29:db:ee:09:00:85:4e:25:34:10:7b:04: ec:af:6f:98:56:c1:7e:54:b5:16:c7:d6:db:5f:76: 1d:39:7b:91:c2:d0:d5:a4:03:f6:91:d6:33:1f:7c: f7:9b:d0:8c:3c:af:50:73:dc:91:f6:71:e3:68:41: 60:51:ea:cf:ad:cd:bd:fd:a7:fc:1e:66:9a:b0:b5: 8d:ec:b6:39:d9:e3:ab:c0:ba:43:7a:9f:ab:6b:35: b9:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:9A:07:93:2D:B8:19:13:E7:80:79:6C:68:8F:B1:AB:EF:29:17:E6 X509v3 Authority Key Identifier: keyid:44:F8:DC:F6:6B:25:B7:19:05:6D:1E:D6:5C:16:EA:92:57:E5:55:3D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/RPjc9msltxkFbR7WXBbqklflVT0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RPjc9msltxkFbR7WXBbqklflVT0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/MJoHky24GRPngHlsaI-xq-8pF-Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.30.78.0/23 Signature Algorithm: sha256WithRSAEncryption 4b:5b:fe:77:cb:a7:ee:5f:77:a0:0d:ea:d4:2e:ac:2d:92:1e: 57:0a:e4:25:86:58:8d:e9:ad:b0:c6:b1:b2:92:32:ac:84:b7: 29:11:79:b4:7d:eb:f4:00:ee:f0:fb:35:e3:fd:97:28:4f:e4: 0d:eb:24:30:73:eb:36:53:9d:a1:75:4c:2b:77:0d:9a:9a:6c: 4c:cf:49:21:73:cd:ce:54:7c:2c:82:34:02:a7:58:84:1f:c1: 3a:6d:a1:76:ce:cc:2b:fa:1c:29:2a:56:61:92:64:a1:23:be: 31:f3:71:d8:b8:2a:52:51:ed:5d:e8:0a:0c:54:c7:b4:a7:a5: f9:3f:52:da:ef:ba:1a:aa:aa:81:28:f6:7e:70:b8:bb:13:2d: 2b:f3:3e:df:f5:c8:b7:85:04:ab:94:94:3d:7e:66:8b:ea:7b: 53:44:e2:6e:1f:e6:09:bb:54:ff:f6:9e:1a:9a:eb:b7:f2:f7: 6f:b0:e4:67:f2:7b:34:29:b2:c9:8f:e4:03:d2:9a:53:8c:b3: 9a:38:c4:fc:bb:63:35:c7:b3:43:a9:2a:ff:ad:6b:e3:ba:ec: 35:13:42:81:0c:fd:e2:7d:03:3d:5d:48:2c:48:13:7b:be:42: 3d:82:b1:96:ce:e6:78:bc:73:55:c0:48:56:1d:38:74:dc:93: d0:29:24:f7 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICBNswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDRG OERDRjY2QjI1QjcxOTA1NkQxRUQ2NUMxNkVBOTI1N0U1NTUzRDAeFw0yNTA4MjIw ODUwNDFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDMwOUEwNzkzMkRCODE5 MTNFNzgwNzk2QzY4OEZCMUFCRUYyOTE3RTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLbvSDqs09wvBv4PLgAefLosNON2ftwGsAuwsVhSSNNRs6FJ/8 F1XIN5UppP5hxIO9lcQzcJkWiP965vtIBvXVpNSQ88ML2nnnLqMzP/d3c/MO0OTj s+axtxoynw9Zr11NOnKgV3YoTDeeK15m9rUieSB0BFff7y2nNBHgj3DbEfxZtuTJ 44wNkA8jRtObx7Vm9dnRUqs9l0KrMJqwQECrXPqI/c61Yynb7gkAhU4lNBB7BOyv b5hWwX5UtRbH1ttfdh05e5HC0NWkA/aR1jMffPeb0Iw8r1Bz3JH2ceNoQWBR6s+t zb39p/weZpqwtY3stjnZ46vAukN6n6trNblnAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUMJoHky24GRPngHlsaI+xq+8pF+YwHwYDVR0jBBgwFoAURPjc9msltxkFbR7W XBbqklflVT0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQkVJRE9V L1JQamM5bXNsdHhrRmJSN1dYQmJxa2xmbFZUMC5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvUlBqYzltc2x0eGtGYlI3V1hCYnFrbGZsVlQwLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvQkVJRE9VL01Kb0hreTI0R1JQbmdIbHNh SS14cS04cEYtWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGg Hk4wDQYJKoZIhvcNAQELBQADggEBAEtb/nfLp+5fd6AN6tQurC2SHlcK5CWGWI3p rbDGsbKSMqyEtykRebR96/QA7vD7NeP9lyhP5A3rJDBz6zZTnaF1TCt3DZqabEzP SSFzzc5UfCyCNAKnWIQfwTptoXbOzCv6HCkqVmGSZKEjvjHzcdi4KlJR7V3oCgxU x7Snpfk/UtrvuhqqqoEo9n5wuLsTLSvzPt/1yLeFBKuUlD1+Zovqe1NE4m4f5gm7 VP/2nhqa67fy92+w5GfyezQpssmP5APSmlOMs5o4xPy7YzXHs0OpKv+ta+O67DUT QoEM/eJ9Az1dSCxIE3u+Qj2CsZbO5ni8c1XASFYdOHTck9ApJPc= -----END CERTIFICATE-----Generated at Mon Sep 8 11:22:44 2025 by rpki-client