$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ETIME/Rt3GXbGZA_lGVnUcEx_rehJB_FU.roa File: Rt3GXbGZA_lGVnUcEx_rehJB_FU.roa (raw, json) Hash identifier: 1zbyxogDKIVyks/xRbD7mFKHumhKu1QHcVIm7Ixvl6c= Subject key identifier: 46:DD:C6:5D:B1:99:03:F9:46:56:75:1C:13:1F:EB:7A:12:41:FC:55 Certificate issuer: /CN=E0EA885A7E6971C99342777E7DDDBA65D0EB131F Certificate serial: 053B Authority key identifier: E0:EA:88:5A:7E:69:71:C9:93:42:77:7E:7D:DD:BA:65:D0:EB:13:1F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4OqIWn5pccmTQnd-fd26ZdDrEx8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ETIME/Rt3GXbGZA_lGVnUcEx_rehJB_FU.roa Signing time: Thu 23 Oct 2025 10:01:23 +0000 ROA not before: Thu 23 Oct 2025 10:01:23 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 148996 IP address blocks: 103.227.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ETIME/4OqIWn5pccmTQnd-fd26ZdDrEx8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ETIME/4OqIWn5pccmTQnd-fd26ZdDrEx8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4OqIWn5pccmTQnd-fd26ZdDrEx8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 02:57:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1339 (0x53b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E0EA885A7E6971C99342777E7DDDBA65D0EB131F Validity Not Before: Oct 23 10:01:23 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=46DDC65DB19903F94656751C131FEB7A1241FC55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:84:bd:f2:cc:6f:1c:33:0c:7c:2d:ec:2c:df: 97:bd:38:99:d6:28:06:96:15:37:cc:8b:de:74:a2: f0:88:a8:98:98:b8:54:71:d7:91:10:de:63:bd:be: 0e:2a:04:87:74:0a:a2:a9:d2:a0:d0:bc:e2:a1:81: 02:9b:b3:4a:4f:99:d7:7d:7b:69:a6:68:ea:6f:2f: 00:9e:dd:d3:62:87:0d:0b:ed:2b:53:5f:bb:b7:b2: da:c2:7e:5f:fa:12:f0:7f:01:c2:81:fc:5c:ca:a1: e5:83:27:09:82:b5:e8:f8:ca:28:47:90:10:39:fd: 5f:89:c4:58:74:dd:10:15:b5:70:3e:89:bf:8b:65: 26:fe:a1:15:08:2d:1d:15:cb:e7:f1:ae:13:b8:92: 25:8b:ce:f5:94:b1:55:ec:53:7b:28:67:00:90:54: 61:ac:4d:5e:db:e4:e3:27:d8:9c:de:c7:16:16:c4: 21:cc:6c:1a:37:d4:e3:ff:a4:48:3a:34:c8:bd:07: 3c:ec:61:52:0a:64:a5:09:e8:a5:21:67:09:cf:d7: 5e:8b:e4:34:d2:c9:ad:d0:1c:47:c3:76:66:76:4b: 13:10:0b:61:01:e6:8c:a6:e5:4f:ea:84:b1:90:e0: 71:93:ee:e1:fa:94:f9:c4:90:80:05:cf:e9:4f:6f: 70:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:DD:C6:5D:B1:99:03:F9:46:56:75:1C:13:1F:EB:7A:12:41:FC:55 X509v3 Authority Key Identifier: keyid:E0:EA:88:5A:7E:69:71:C9:93:42:77:7E:7D:DD:BA:65:D0:EB:13:1F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ETIME/4OqIWn5pccmTQnd-fd26ZdDrEx8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4OqIWn5pccmTQnd-fd26ZdDrEx8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ETIME/Rt3GXbGZA_lGVnUcEx_rehJB_FU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.227.226.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:47:af:4d:c1:2a:5d:46:15:7d:1f:80:37:7a:8a:d8:93:0b: 8a:fd:d9:26:f6:28:78:fc:9b:10:31:e2:56:c3:f7:78:8b:9d: 86:db:bb:6e:1d:e5:24:ea:4e:23:e3:d0:76:8a:c9:23:a3:57: 9d:1a:cf:08:f0:c6:18:5f:b3:0a:3c:f7:07:f8:b2:2b:23:f0: 5f:68:51:26:35:66:51:7e:f1:f9:3a:41:29:d2:2b:89:57:66: fd:cd:0d:e0:d7:c1:ec:93:a1:56:1c:15:17:c8:54:bb:45:56: 34:12:e6:05:89:aa:42:aa:74:53:49:a1:89:f2:42:39:8e:20: 6f:78:89:b3:9e:de:b9:bc:a5:11:ba:f8:9a:b5:e5:17:c8:d6: f6:5d:e6:34:73:51:bf:be:23:6a:36:b4:92:c5:90:b5:92:cc: 8a:a7:5f:47:71:f8:ba:4e:2f:2a:5e:25:8c:43:00:65:41:2c: 2a:f8:64:4b:9d:0c:22:a4:2b:d8:79:84:4c:ed:f0:98:25:c6: 03:9d:35:5a:b9:d7:d3:08:23:3d:3c:5d:1a:cd:93:f8:db:57: 1d:d9:cc:e4:23:1d:92:1d:6e:d2:0c:6c:78:66:db:0b:2e:b4: b5:09:c3:55:0c:fd:51:81:8a:50:2e:36:c9:45:cf:59:3f:0e: d6:83:94:89 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICBTswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTBF QTg4NUE3RTY5NzFDOTkzNDI3NzdFN0REREJBNjVEMEVCMTMxRjAeFw0yNTEwMjMx MDAxMjNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQ2RERDNjVEQjE5OTAz Rjk0NjU2NzUxQzEzMUZFQjdBMTI0MUZDNTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCihL3yzG8cMwx8Lews35e9OJnWKAaWFTfMi950ovCIqJiYuFRx 15EQ3mO9vg4qBId0CqKp0qDQvOKhgQKbs0pPmdd9e2mmaOpvLwCe3dNihw0L7StT X7u3strCfl/6EvB/AcKB/FzKoeWDJwmCtej4yihHkBA5/V+JxFh03RAVtXA+ib+L ZSb+oRUILR0Vy+fxrhO4kiWLzvWUsVXsU3soZwCQVGGsTV7b5OMn2JzexxYWxCHM bBo31OP/pEg6NMi9BzzsYVIKZKUJ6KUhZwnP116L5DTSya3QHEfDdmZ2SxMQC2EB 5oym5U/qhLGQ4HGT7uH6lPnEkIAFz+lPb3AVAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQURt3GXbGZA/lGVnUcEx/rehJB/FUwHwYDVR0jBBgwFoAU4OqIWn5pccmTQnd+ fd26ZdDrEx8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRVRJTUUv NE9xSVduNXBjY21UUW5kLWZkMjZaZERyRXg4LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80T3FJV241cGNjbVRRbmQtZmQyNlpkRHJFeDguY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9FVElNRS9SdDNHWGJHWkFfbEdWblVjRXhf cmVoSkJfRlUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+Pi MA0GCSqGSIb3DQEBCwUAA4IBAQBKR69NwSpdRhV9H4A3eorYkwuK/dkm9ih4/JsQ MeJWw/d4i52G27tuHeUk6k4j49B2iskjo1edGs8I8MYYX7MKPPcH+LIrI/BfaFEm NWZRfvH5OkEp0iuJV2b9zQ3g18Hsk6FWHBUXyFS7RVY0EuYFiapCqnRTSaGJ8kI5 jiBveImznt65vKURuviateUXyNb2XeY0c1G/viNqNrSSxZC1ksyKp19Hcfi6Ti8q XiWMQwBlQSwq+GRLnQwipCvYeYRM7fCYJcYDnTVaudfTCCM9PF0azZP421cd2czk Ix2SHW7SDGx4ZtsLLrS1CcNVDP1RgYpQLjbJRc9ZPw7Wg5SJ -----END CERTIFICATE-----Generated at Tue Oct 28 00:10:57 2025 by rpki-client