$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/iOQRTOW94B-UFGZIs_PrZtuNmZ8.roa File: iOQRTOW94B-UFGZIs_PrZtuNmZ8.roa (raw, json) Hash identifier: 8yE0wvs5bk5aETxomeYl31mO0eVT4gtLV1kMu1NkYic= Subject key identifier: 88:E4:11:4C:E5:BD:E0:1F:94:14:66:48:B3:F3:EB:66:DB:8D:99:9F Certificate issuer: /CN=8BD645278FC4A2A200BCD8072F3B3DC79312536C Certificate serial: 0D70 Authority key identifier: 8B:D6:45:27:8F:C4:A2:A2:00:BC:D8:07:2F:3B:3D:C7:93:12:53:6C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/iOQRTOW94B-UFGZIs_PrZtuNmZ8.roa Signing time: Mon 27 Oct 2025 03:20:48 +0000 ROA not before: Mon 27 Oct 2025 03:20:48 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 7536 IP address blocks: 103.103.80.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Nov 2025 20:59:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3440 (0xd70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8BD645278FC4A2A200BCD8072F3B3DC79312536C Validity Not Before: Oct 27 03:20:48 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=88E4114CE5BDE01F94146648B3F3EB66DB8D999F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:a1:11:b3:de:03:63:0d:45:07:b4:e8:39:48: d6:12:0d:0c:e9:c6:cd:17:ab:e9:23:a8:de:2c:61: 5f:a1:87:69:fa:e6:1a:a3:5b:6a:3a:0b:0d:a7:d8: a7:91:d0:f5:0e:b8:47:6e:bc:b4:11:05:d8:46:63: b4:be:fd:e1:cb:13:16:e0:42:27:10:92:77:49:b1: e7:bf:50:2d:fc:53:5c:81:17:01:a5:55:ac:ad:03: 37:07:96:6e:ec:38:82:9a:a4:02:3f:21:44:71:c2: 90:32:46:d6:71:ae:49:49:e8:b8:3b:64:dc:8e:5c: cd:51:a1:5f:4c:38:2d:48:82:92:a8:e7:63:e8:e1: 1b:e9:83:5b:3d:e2:e2:45:0e:de:d3:e4:82:92:2f: 0e:b2:5a:87:7e:3d:22:aa:0d:ba:6b:62:1d:c0:ad: 2a:3c:24:6c:75:0e:b5:42:64:26:91:d9:23:15:7c: 44:29:2a:4e:a0:c7:2c:44:e5:08:ae:91:3c:b1:f5: 35:d9:e6:41:ad:f5:28:ab:17:74:ed:9e:b4:52:aa: 8d:d4:8e:ec:17:ef:3b:de:80:41:21:f6:65:4f:b8: d7:3f:23:fa:71:d9:b1:ae:ef:c4:d1:26:a0:9e:22: 61:62:e5:c9:29:e8:a2:a2:1b:85:c0:29:4c:1f:64: 8c:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:E4:11:4C:E5:BD:E0:1F:94:14:66:48:B3:F3:EB:66:DB:8D:99:9F X509v3 Authority Key Identifier: keyid:8B:D6:45:27:8F:C4:A2:A2:00:BC:D8:07:2F:3B:3D:C7:93:12:53:6C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/iOQRTOW94B-UFGZIs_PrZtuNmZ8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.103.80.0/22 Signature Algorithm: sha256WithRSAEncryption 34:06:e1:b5:03:99:37:09:8f:74:27:e2:79:0c:a5:a1:cc:b9: 20:c2:e6:f3:48:36:d0:bb:85:5d:32:0d:22:d4:ad:ac:82:b3: 14:72:86:32:2f:8b:89:6a:40:82:5f:90:f3:80:9e:a9:91:f5: b4:9d:42:7f:16:c0:52:6a:75:d9:ce:76:48:a1:06:f2:72:ad: 13:b8:30:06:ea:4f:9f:58:9e:95:38:a0:13:bb:83:d6:7d:73: 1b:36:5b:41:f8:32:24:fc:18:5d:45:ab:e4:51:42:2a:e4:a6: ba:a8:0a:7b:79:23:a4:6d:d8:a3:67:ec:4b:be:dc:6a:3b:f5: e1:7d:e9:ce:4e:98:37:43:08:4d:e9:1d:2e:0f:01:92:ec:72: 97:5a:22:3a:59:68:3c:e5:ca:3a:8e:7c:6a:0c:c5:89:91:ad: 6d:16:34:9a:b2:b6:b8:19:c9:fe:b6:ce:37:b7:26:ab:73:f6: 32:18:48:3f:67:3e:48:89:c8:b7:89:c8:9f:a9:96:3f:25:81: d7:78:9c:60:4b:98:0d:0e:89:ec:c5:e7:42:43:5d:fd:d9:03: 06:2c:c1:fa:60:9b:2e:bd:d1:03:5e:55:aa:1a:58:a1:a8:da: dc:7f:92:98:a9:91:47:91:41:fe:a2:bc:15:5f:bc:f8:07:6e: cb:52:a7:42 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDXAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEJE NjQ1Mjc4RkM0QTJBMjAwQkNEODA3MkYzQjNEQzc5MzEyNTM2QzAeFw0yNTEwMjcw MzIwNDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDg4RTQxMTRDRTVCREUw MUY5NDE0NjY0OEIzRjNFQjY2REI4RDk5OUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDboRGz3gNjDUUHtOg5SNYSDQzpxs0Xq+kjqN4sYV+hh2n65hqj W2o6Cw2n2KeR0PUOuEduvLQRBdhGY7S+/eHLExbgQicQkndJsee/UC38U1yBFwGl VaytAzcHlm7sOIKapAI/IURxwpAyRtZxrklJ6Lg7ZNyOXM1RoV9MOC1IgpKo52Po 4Rvpg1s94uJFDt7T5IKSLw6yWod+PSKqDbprYh3ArSo8JGx1DrVCZCaR2SMVfEQp Kk6gxyxE5QiukTyx9TXZ5kGt9SirF3TtnrRSqo3UjuwX7zvegEEh9mVPuNc/I/px 2bGu78TRJqCeImFi5ckp6KKiG4XAKUwfZIxfAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUiOQRTOW94B+UFGZIs/PrZtuNmZ8wHwYDVR0jBBgwFoAUi9ZFJ4/EoqIAvNgH Lzs9x5MSU2wwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0FSTC1O RVQvaTlaRko0X0VvcUlBdk5nSEx6czl4NU1TVTJ3LmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9pOVpGSjRfRW9xSUF2TmdITHpzOXg1TVNVMncuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DQVJMLU5FVC9pT1FSVE9XOTRCLVVG R1pJc19Qclp0dU5tWjgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCZ2dQMA0GCSqGSIb3DQEBCwUAA4IBAQA0BuG1A5k3CY90J+J5DKWhzLkgwubz SDbQu4VdMg0i1K2sgrMUcoYyL4uJakCCX5DzgJ6pkfW0nUJ/FsBSanXZznZIoQby cq0TuDAG6k+fWJ6VOKATu4PWfXMbNltB+DIk/BhdRavkUUIq5Ka6qAp7eSOkbdij Z+xLvtxqO/XhfenOTpg3QwhN6R0uDwGS7HKXWiI6WWg85co6jnxqDMWJka1tFjSa sra4Gcn+ts43tyarc/YyGEg/Zz5Iici3icifqZY/JYHXeJxgS5gNDonsxedCQ139 2QMGLMH6YJsuvdEDXlWqGlihqNrcf5KYqZFHkUH+orwVX7z4B27LUqdC -----END CERTIFICATE-----Generated at Tue Nov 4 18:03:59 2025 by rpki-client