$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IMCRS/0mcwIl3xugeY7yYklmRRDrXtqUE.roa File: 0mcwIl3xugeY7yYklmRRDrXtqUE.roa (raw, json) Hash identifier: 4w4MyvoJOOzT6ryqc4UxEV1YPPBO4mkDDZbpp5saUsk= Subject key identifier: D2:67:30:22:5D:F1:BA:07:98:EF:26:24:96:64:51:0E:B5:ED:A9:41 Certificate issuer: /CN=22C51298D97A102902731FDC49BDFAB39D52AB2B Certificate serial: 0443 Authority key identifier: 22:C5:12:98:D9:7A:10:29:02:73:1F:DC:49:BD:FA:B3:9D:52:AB:2B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IsUSmNl6ECkCcx_cSb36s51Sqys.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/0mcwIl3xugeY7yYklmRRDrXtqUE.roa Signing time: Thu 23 Oct 2025 10:00:21 +0000 ROA not before: Thu 23 Oct 2025 10:00:21 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 148996 IP address blocks: 103.227.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/IsUSmNl6ECkCcx_cSb36s51Sqys.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/IsUSmNl6ECkCcx_cSb36s51Sqys.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/IsUSmNl6ECkCcx_cSb36s51Sqys.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:57:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1091 (0x443) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22C51298D97A102902731FDC49BDFAB39D52AB2B Validity Not Before: Oct 23 10:00:21 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=D26730225DF1BA0798EF26249664510EB5EDA941 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b3:de:77:38:14:3e:22:a3:d3:c6:3d:6a:9b: 10:e4:83:e4:68:d0:9a:13:55:99:aa:7a:d0:ba:ad: bc:1b:8b:0e:52:94:e9:d9:8d:a3:67:d6:c0:a0:93: 74:05:89:26:3b:11:25:c9:d7:e6:bf:49:af:a4:73: 78:19:1d:4a:d2:73:2d:64:73:a9:ca:61:c9:65:aa: ff:b4:97:4b:69:b2:59:4e:8e:95:7a:ae:a6:cc:15: 41:10:db:9e:a1:af:33:56:b9:2e:83:14:cd:9c:78: f9:58:f4:6c:6f:84:99:ea:b9:77:f1:67:89:31:4d: 26:2f:be:55:12:72:e4:7a:38:50:6c:d6:9d:ff:4d: 1e:59:42:3d:0f:86:74:31:5d:86:4b:d1:e2:5a:dc: 33:a1:c0:82:80:57:da:0e:bc:36:52:00:07:9f:f2: e2:eb:c1:2f:e3:c3:55:f9:91:b9:9c:cc:ce:cf:ea: 58:0c:0e:f0:41:86:ec:12:90:2b:1d:89:56:7c:ee: 5c:e0:e0:b5:84:7c:42:ae:4a:8e:01:a9:22:5b:9e: 05:00:81:69:4a:5b:0b:ae:c4:44:0b:60:41:a8:c1: 28:5b:e8:e2:e6:2d:a5:4f:a1:d5:e8:ce:ce:35:eb: 9c:69:90:8a:ca:f7:2a:27:77:6d:6d:d4:38:32:2e: 68:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:67:30:22:5D:F1:BA:07:98:EF:26:24:96:64:51:0E:B5:ED:A9:41 X509v3 Authority Key Identifier: keyid:22:C5:12:98:D9:7A:10:29:02:73:1F:DC:49:BD:FA:B3:9D:52:AB:2B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/IsUSmNl6ECkCcx_cSb36s51Sqys.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IsUSmNl6ECkCcx_cSb36s51Sqys.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/0mcwIl3xugeY7yYklmRRDrXtqUE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.227.225.0/24 Signature Algorithm: sha256WithRSAEncryption e6:2f:0f:60:9e:ed:4b:af:90:79:2e:3a:db:65:6a:67:c7:3e: 0c:93:c5:f7:de:57:61:e9:11:2f:b0:c4:69:bf:72:9d:75:34: 69:32:2d:7c:f7:61:5e:fd:ac:81:e2:bd:06:30:a3:81:86:c1: 5f:5f:be:a2:60:e3:63:a1:18:ce:8d:74:f6:00:a5:ec:30:8f: 36:a0:b1:78:51:7a:f6:2a:58:2f:0c:3b:be:d5:b5:f0:d7:a6: f1:69:ab:a6:57:4d:5e:dc:0a:58:8a:c5:1f:64:68:88:4c:85: bb:f1:1a:e6:9f:54:13:20:f0:bb:b8:a7:60:36:66:75:f9:e8: e7:4d:66:8c:e7:7c:32:48:2d:be:40:71:c2:b3:19:74:6a:f1: 3f:06:2d:79:2d:ab:94:02:05:d3:6b:a2:1c:ee:87:87:22:f8: ae:15:d0:76:ba:5e:a5:86:bb:73:de:26:c6:60:25:d9:05:85: 07:07:12:cd:6f:37:c9:d0:1a:d4:d9:e2:5d:28:ce:10:e1:cd: af:78:0f:cd:27:1f:bd:9b:b2:38:d3:53:cc:b8:b6:3b:67:ab: 5e:ed:e3:b0:35:b3:7b:0f:af:a8:20:d9:b2:1c:c5:cb:db:24: 17:97:ef:db:80:b3:3b:ed:99:8b:c1:6e:5a:72:8e:f7:d8:57: a9:7e:5b:53 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICBEMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjJD NTEyOThEOTdBMTAyOTAyNzMxRkRDNDlCREZBQjM5RDUyQUIyQjAeFw0yNTEwMjMx MDAwMjFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEQyNjczMDIyNURGMUJB MDc5OEVGMjYyNDk2NjQ1MTBFQjVFREE5NDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6s953OBQ+IqPTxj1qmxDkg+Ro0JoTVZmqetC6rbwbiw5SlOnZ jaNn1sCgk3QFiSY7ESXJ1+a/Sa+kc3gZHUrScy1kc6nKYcllqv+0l0tpsllOjpV6 rqbMFUEQ256hrzNWuS6DFM2cePlY9GxvhJnquXfxZ4kxTSYvvlUScuR6OFBs1p3/ TR5ZQj0PhnQxXYZL0eJa3DOhwIKAV9oOvDZSAAef8uLrwS/jw1X5kbmczM7P6lgM DvBBhuwSkCsdiVZ87lzg4LWEfEKuSo4BqSJbngUAgWlKWwuuxEQLYEGowShb6OLm LaVPodXozs4165xpkIrK9yond21t1DgyLmjlAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU0mcwIl3xugeY7yYklmRRDrXtqUEwHwYDVR0jBBgwFoAUIsUSmNl6ECkCcx/c Sb36s51SqyswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSU1DUlMv SXNVU21ObDZFQ2tDY3hfY1NiMzZzNTFTcXlzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9Jc1VTbU5sNkVDa0NjeF9jU2IzNnM1MVNxeXMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9JTUNSUy8wbWN3SWwzeHVnZVk3eVlrbG1S UkRyWHRxVUUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+Ph MA0GCSqGSIb3DQEBCwUAA4IBAQDmLw9gnu1Lr5B5LjrbZWpnxz4Mk8X33ldh6REv sMRpv3KddTRpMi1892Fe/ayB4r0GMKOBhsFfX76iYONjoRjOjXT2AKXsMI82oLF4 UXr2KlgvDDu+1bXw16bxaaumV01e3ApYisUfZGiITIW78Rrmn1QTIPC7uKdgNmZ1 +ejnTWaM53wySC2+QHHCsxl0avE/Bi15LauUAgXTa6Ic7oeHIviuFdB2ul6lhrtz 3ibGYCXZBYUHBxLNbzfJ0BrU2eJdKM4Q4c2veA/NJx+9m7I401PMuLY7Z6te7eOw NbN7D6+oINmyHMXL2yQXl+/bgLM77ZmLwW5aco732FepfltT -----END CERTIFICATE-----Generated at Sat Oct 25 21:46:54 2025 by rpki-client