$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CPSYS/hOPcBiZH-Xxa2ZkMj3xYYtkN3jY.roa File: hOPcBiZH-Xxa2ZkMj3xYYtkN3jY.roa (raw, json) Hash identifier: +6aW6GMUeZt3K5PvZTf8p40PBEfp2BfYhg71iTnq3Tk= Subject key identifier: 84:E3:DC:06:26:47:F9:7C:5A:D9:99:0C:8F:7C:58:62:D9:0D:DE:36 Certificate issuer: /CN=1F877983527470E200D5AE06A01588213555FEE6 Certificate serial: 0346 Authority key identifier: 1F:87:79:83:52:74:70:E2:00:D5:AE:06:A0:15:88:21:35:55:FE:E6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/H4d5g1J0cOIA1a4GoBWIITVV_uY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/hOPcBiZH-Xxa2ZkMj3xYYtkN3jY.roa Signing time: Fri 22 Aug 2025 08:50:49 +0000 ROA not before: Fri 22 Aug 2025 08:50:49 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 152179 IP address blocks: 103.14.170.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/H4d5g1J0cOIA1a4GoBWIITVV_uY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/H4d5g1J0cOIA1a4GoBWIITVV_uY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/H4d5g1J0cOIA1a4GoBWIITVV_uY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 13:17:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 838 (0x346) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F877983527470E200D5AE06A01588213555FEE6 Validity Not Before: Aug 22 08:50:49 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=84E3DC062647F97C5AD9990C8F7C5862D90DDE36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:29:d2:19:e3:d4:2e:6f:08:c3:21:3e:96:6e: d4:e5:a5:e5:fa:25:95:3d:d9:3c:e4:7d:88:81:2d: bb:5e:01:82:84:4a:b4:20:32:c1:5b:c7:7a:78:4d: 8c:40:5f:15:b2:e8:7a:12:94:dc:34:45:1e:ae:81: 37:7e:3e:30:25:1f:39:71:87:23:0a:4e:a9:da:aa: d2:a5:37:ef:2d:41:d8:f8:c6:ce:fb:c3:c5:6b:8b: 37:8b:b4:73:9a:d4:26:44:8e:85:84:02:ec:b4:44: 7d:0b:b9:5a:09:81:ab:e9:f6:b9:66:3d:da:c4:3d: 1f:49:96:b8:43:75:c5:78:8e:5a:d4:aa:94:79:d9: b7:c1:88:b0:48:50:9e:a3:a4:32:d1:e0:b9:48:ba: f8:af:92:e8:ad:ee:00:cd:ba:e8:00:6e:41:19:ef: f2:88:8b:95:be:39:7a:b7:7b:bd:d7:19:a0:e1:3d: dc:f6:eb:8a:b7:af:12:4e:89:a5:eb:2f:38:e9:97: 4d:47:02:44:68:01:07:ff:ee:54:ff:c6:42:0a:df: f4:4c:d6:c5:dc:5b:91:70:40:65:f9:22:7e:25:d8: d5:56:ba:64:b7:b8:56:f4:ee:38:0d:c5:07:81:77: 7d:8d:9f:a4:5c:31:93:42:b2:8c:b1:5f:d1:10:07: 78:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:E3:DC:06:26:47:F9:7C:5A:D9:99:0C:8F:7C:58:62:D9:0D:DE:36 X509v3 Authority Key Identifier: keyid:1F:87:79:83:52:74:70:E2:00:D5:AE:06:A0:15:88:21:35:55:FE:E6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/H4d5g1J0cOIA1a4GoBWIITVV_uY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/H4d5g1J0cOIA1a4GoBWIITVV_uY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/hOPcBiZH-Xxa2ZkMj3xYYtkN3jY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.14.170.0/23 Signature Algorithm: sha256WithRSAEncryption 65:81:55:68:e0:27:59:b2:24:7b:31:8e:65:b5:c8:e3:1a:c2: 37:a5:b9:cd:88:eb:02:b4:4f:3b:b3:2e:46:9d:e9:5a:62:36: 3d:33:bc:ac:6f:b3:36:9e:17:cc:95:6b:17:5b:34:7e:92:41: 46:3a:ef:7f:4f:3e:76:16:c8:e8:8e:53:bd:cc:45:8b:0f:03: 9f:05:47:47:58:73:07:8f:3f:4e:55:9d:c2:d9:2a:d9:a4:a7: 88:9b:de:58:7b:ee:8c:c7:86:a0:81:24:93:47:0b:93:fc:41: dd:bd:b8:93:50:96:23:84:d7:6f:f0:75:bb:32:00:43:26:f9: 6a:95:1b:d2:d5:e5:32:41:af:36:6b:34:61:23:2e:c5:f0:2a: b8:f9:c4:e6:4f:6a:ab:09:91:8c:ce:02:5b:ce:01:17:76:93: 35:08:c0:fc:78:36:eb:8e:c4:00:13:53:ed:17:2b:5a:cf:a2: f9:aa:33:aa:66:c3:28:6b:8c:a9:ba:32:cd:cd:6d:de:01:29: 76:09:ec:6e:0a:48:3e:6d:cb:1e:2f:d5:9d:42:d1:63:dc:1c: 2d:2b:b1:09:18:9c:9b:6e:7f:ec:2e:13:43:ba:d8:d4:26:03: 27:c8:47:65:77:54:2c:b5:83:c0:f3:f3:74:33:19:0c:be:fa: 2a:47:1c:84 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICA0YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUY4 Nzc5ODM1Mjc0NzBFMjAwRDVBRTA2QTAxNTg4MjEzNTU1RkVFNjAeFw0yNTA4MjIw ODUwNDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDg0RTNEQzA2MjY0N0Y5 N0M1QUQ5OTkwQzhGN0M1ODYyRDkwRERFMzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRKdIZ49QubwjDIT6WbtTlpeX6JZU92TzkfYiBLbteAYKESrQg MsFbx3p4TYxAXxWy6HoSlNw0RR6ugTd+PjAlHzlxhyMKTqnaqtKlN+8tQdj4xs77 w8VrizeLtHOa1CZEjoWEAuy0RH0LuVoJgavp9rlmPdrEPR9JlrhDdcV4jlrUqpR5 2bfBiLBIUJ6jpDLR4LlIuvivkuit7gDNuugAbkEZ7/KIi5W+OXq3e73XGaDhPdz2 64q3rxJOiaXrLzjpl01HAkRoAQf/7lT/xkIK3/RM1sXcW5FwQGX5In4l2NVWumS3 uFb07jgNxQeBd32Nn6RcMZNCsoyxX9EQB3glAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUhOPcBiZH+Xxa2ZkMj3xYYtkN3jYwHwYDVR0jBBgwFoAUH4d5g1J0cOIA1a4G oBWIITVV/uYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1BTWVMv SDRkNWcxSjBjT0lBMWE0R29CV0lJVFZWX3VZLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9INGQ1ZzFKMGNPSUExYTRHb0JXSUlUVlZfdVkuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DUFNZUy9oT1BjQmlaSC1YeGEyWmtNajN4 WVl0a04zalkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZw6q MA0GCSqGSIb3DQEBCwUAA4IBAQBlgVVo4CdZsiR7MY5ltcjjGsI3pbnNiOsCtE87 sy5GnelaYjY9M7ysb7M2nhfMlWsXWzR+kkFGOu9/Tz52FsjojlO9zEWLDwOfBUdH WHMHjz9OVZ3C2SrZpKeIm95Ye+6Mx4aggSSTRwuT/EHdvbiTUJYjhNdv8HW7MgBD JvlqlRvS1eUyQa82azRhIy7F8Cq4+cTmT2qrCZGMzgJbzgEXdpM1CMD8eDbrjsQA E1PtFytaz6L5qjOqZsMoa4ypujLNzW3eASl2CexuCkg+bcseL9WdQtFj3BwtK7EJ GJybbn/sLhNDutjUJgMnyEdld1QstYPA8/N0MxkMvvoqRxyE -----END CERTIFICATE-----Generated at Sun Sep 7 12:45:13 2025 by rpki-client