$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IMCRS/0c7mhw6wAI4CpRn1Hkyr3qb_5A8.roa File: 0c7mhw6wAI4CpRn1Hkyr3qb_5A8.roa (raw, json) Hash identifier: vvB1FnDct6Ng/cIwpuOjmo9jsB5UGapjKebxfGVwDMM= Subject key identifier: D1:CE:E6:87:0E:B0:00:8E:02:A5:19:F5:1E:4C:AB:DE:A6:FF:E4:0F Certificate issuer: /CN=22C51298D97A102902731FDC49BDFAB39D52AB2B Certificate serial: 0441 Authority key identifier: 22:C5:12:98:D9:7A:10:29:02:73:1F:DC:49:BD:FA:B3:9D:52:AB:2B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IsUSmNl6ECkCcx_cSb36s51Sqys.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/0c7mhw6wAI4CpRn1Hkyr3qb_5A8.roa Signing time: Thu 23 Oct 2025 10:00:10 +0000 ROA not before: Thu 23 Oct 2025 10:00:10 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 148996 IP address blocks: 103.227.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/IsUSmNl6ECkCcx_cSb36s51Sqys.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/IsUSmNl6ECkCcx_cSb36s51Sqys.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/IsUSmNl6ECkCcx_cSb36s51Sqys.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:57:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1089 (0x441) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22C51298D97A102902731FDC49BDFAB39D52AB2B Validity Not Before: Oct 23 10:00:10 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=D1CEE6870EB0008E02A519F51E4CABDEA6FFE40F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:56:07:b0:84:7e:5d:2c:f4:cc:89:d1:e6:ea: 25:d2:d8:74:bf:94:58:33:5c:24:e0:f6:78:33:28: a3:31:4e:e2:8b:7f:84:a0:83:fb:35:29:a0:45:cb: 77:a0:e1:24:46:7b:d0:1e:98:a2:c4:87:49:c6:14: 0b:26:46:26:49:64:a3:50:92:a6:a3:9d:1c:5f:ca: 4c:83:48:be:3f:09:1f:16:79:d7:45:b1:2e:bb:45: 6d:ff:e3:02:fb:6e:80:68:d4:4c:e7:e1:43:87:ad: 2b:4d:7b:b0:14:44:30:48:eb:81:2c:7e:f7:95:f8: 84:6c:eb:01:7e:14:22:cd:90:31:78:8c:59:d4:d1: c3:a4:c6:3b:eb:10:19:98:74:fc:70:a7:2d:0d:7a: 70:3b:50:50:5c:14:61:23:f7:07:3c:6e:1d:37:66: 73:69:b9:57:28:0c:1c:e1:91:32:16:13:6e:84:25: 05:a9:27:2b:ff:ea:f9:d4:47:b7:0a:18:32:ae:13: bb:92:d4:6e:5d:0f:5b:ed:a5:da:17:6d:26:ba:97: ba:30:4b:a3:96:e3:e0:71:52:b1:fb:bb:3b:db:a6: 20:03:18:27:84:44:9c:ff:3a:dd:8e:1d:90:39:96: da:1e:ef:dc:17:1d:ab:ff:d8:dc:a1:93:f3:bc:75: be:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:CE:E6:87:0E:B0:00:8E:02:A5:19:F5:1E:4C:AB:DE:A6:FF:E4:0F X509v3 Authority Key Identifier: keyid:22:C5:12:98:D9:7A:10:29:02:73:1F:DC:49:BD:FA:B3:9D:52:AB:2B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/IsUSmNl6ECkCcx_cSb36s51Sqys.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IsUSmNl6ECkCcx_cSb36s51Sqys.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/0c7mhw6wAI4CpRn1Hkyr3qb_5A8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.227.224.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:63:ac:61:16:63:ee:d5:15:ce:a2:07:1b:39:e0:74:73:df: 94:17:6b:ef:ce:3e:08:a5:57:eb:7a:88:f9:ac:08:b6:3d:b6: 54:71:7a:b8:6c:2c:89:a3:91:05:4a:cb:15:84:e2:71:d9:09: 5c:4a:db:38:8a:41:6b:02:b2:89:84:02:46:6d:28:0f:b2:d1: 03:d6:bb:ca:0d:5d:17:f1:d0:a8:82:40:96:5a:34:d1:19:00: 9a:d5:55:9c:a8:5a:0e:59:12:4e:b0:56:86:67:2e:b7:74:6a: fe:9b:ce:66:9d:c0:99:98:61:e8:12:8b:ee:4f:a0:c6:81:96: 30:f5:70:80:c7:41:fd:31:96:be:64:9a:6e:49:93:7d:a6:22: 16:d9:1b:f6:1c:69:98:f1:b8:4e:58:df:90:b1:26:22:2c:47: 7d:12:9c:c3:ab:0c:bd:f5:fd:be:94:d3:d8:f1:1b:fc:4c:17: b1:5a:cc:9e:ce:45:01:38:40:cf:11:1d:b2:0c:e7:e5:ab:17: aa:ee:f1:6f:8e:85:37:0b:73:7b:5c:fa:f4:f5:95:a2:96:d8: 8f:b2:3f:8d:5c:17:75:11:f6:17:4d:71:0c:95:a1:a1:0e:71: 5a:6a:8e:f8:70:17:45:9f:cf:fb:fb:b8:30:12:46:a9:57:10: e0:e2:71:1c -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICBEEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjJD NTEyOThEOTdBMTAyOTAyNzMxRkRDNDlCREZBQjM5RDUyQUIyQjAeFw0yNTEwMjMx MDAwMTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEQxQ0VFNjg3MEVCMDAw OEUwMkE1MTlGNTFFNENBQkRFQTZGRkU0MEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCfVgewhH5dLPTMidHm6iXS2HS/lFgzXCTg9ngzKKMxTuKLf4Sg g/s1KaBFy3eg4SRGe9AemKLEh0nGFAsmRiZJZKNQkqajnRxfykyDSL4/CR8WeddF sS67RW3/4wL7boBo1Ezn4UOHrStNe7AURDBI64EsfveV+IRs6wF+FCLNkDF4jFnU 0cOkxjvrEBmYdPxwpy0NenA7UFBcFGEj9wc8bh03ZnNpuVcoDBzhkTIWE26EJQWp Jyv/6vnUR7cKGDKuE7uS1G5dD1vtpdoXbSa6l7owS6OW4+BxUrH7uzvbpiADGCeE RJz/Ot2OHZA5ltoe79wXHav/2Nyhk/O8db6jAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU0c7mhw6wAI4CpRn1Hkyr3qb/5A8wHwYDVR0jBBgwFoAUIsUSmNl6ECkCcx/c Sb36s51SqyswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSU1DUlMv SXNVU21ObDZFQ2tDY3hfY1NiMzZzNTFTcXlzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9Jc1VTbU5sNkVDa0NjeF9jU2IzNnM1MVNxeXMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9JTUNSUy8wYzdtaHc2d0FJNENwUm4xSGt5 cjNxYl81QTgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+Pg MA0GCSqGSIb3DQEBCwUAA4IBAQBKY6xhFmPu1RXOogcbOeB0c9+UF2vvzj4IpVfr eoj5rAi2PbZUcXq4bCyJo5EFSssVhOJx2QlcSts4ikFrArKJhAJGbSgPstED1rvK DV0X8dCogkCWWjTRGQCa1VWcqFoOWRJOsFaGZy63dGr+m85mncCZmGHoEovuT6DG gZYw9XCAx0H9MZa+ZJpuSZN9piIW2Rv2HGmY8bhOWN+QsSYiLEd9EpzDqwy99f2+ lNPY8Rv8TBexWsyezkUBOEDPER2yDOflqxeq7vFvjoU3C3N7XPr09ZWiltiPsj+N XBd1EfYXTXEMlaGhDnFaao74cBdFn8/7+7gwEkapVxDg4nEc -----END CERTIFICATE-----Generated at Sat Oct 25 21:46:54 2025 by rpki-client