$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/8RuLXrhyjUmCBqEjo58C0xTMT7A.roa File: 8RuLXrhyjUmCBqEjo58C0xTMT7A.roa (raw, json) Hash identifier: qcguX6NHOgZLhRsRUg1Sc13qEaVC9akNnwzad8XLi7I= Subject key identifier: F1:1B:8B:5E:B8:72:8D:49:82:06:A1:23:A3:9F:02:D3:14:CC:4F:B0 Certificate issuer: /CN=A18EB377DD0318AE465D8F3F7D6E0AD0A4E9ED1E Certificate serial: 0F8D Authority key identifier: A1:8E:B3:77:DD:03:18:AE:46:5D:8F:3F:7D:6E:0A:D0:A4:E9:ED:1E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/8RuLXrhyjUmCBqEjo58C0xTMT7A.roa Signing time: Mon 19 May 2025 03:08:05 +0000 ROA not before: Mon 19 May 2025 03:08:05 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 63897 IP address blocks: 103.135.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 03:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3981 (0xf8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A18EB377DD0318AE465D8F3F7D6E0AD0A4E9ED1E Validity Not Before: May 19 03:08:05 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F11B8B5EB8728D498206A123A39F02D314CC4FB0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:b9:35:48:73:33:62:c7:61:c8:09:6b:f8:65: fb:97:8f:28:ea:16:ff:ad:f3:5d:80:98:fc:21:69: 5b:ef:d3:ee:d0:62:cb:27:f0:8d:db:b5:29:5d:00: a1:d1:f2:76:51:55:d0:ae:39:63:5a:9e:ba:41:8a: e9:05:5c:37:60:4c:1c:0c:b5:34:e6:26:67:de:4e: 75:d2:54:d7:6d:6e:b8:65:8c:93:40:c0:c7:e1:e6: 06:f1:c2:fd:6a:86:4c:53:d8:af:05:33:12:c1:4d: 5f:4b:83:62:43:cb:93:92:da:8b:d2:5f:a0:c2:d3: a0:3d:81:9a:97:20:7e:b7:49:9e:64:1d:3a:87:d7: db:9b:5d:e6:ce:ea:5c:ef:68:e3:1f:80:d1:72:e1: 53:5f:b5:0f:d8:18:68:ca:8f:1c:90:a2:66:18:fc: 30:01:12:d3:0d:59:ee:c8:f0:b7:eb:f6:27:97:80: 11:31:e9:d9:26:67:ee:39:97:2a:a1:54:79:7a:9d: b1:e6:e8:56:56:7b:07:d8:7f:44:1c:aa:b4:fb:b0: dc:2a:16:bd:42:51:88:55:57:35:37:85:d2:4c:ab: f1:bc:30:0c:16:5c:17:19:8a:93:8c:4c:eb:98:47: 17:d4:4b:60:48:41:bc:83:3a:32:9d:14:dc:6c:4e: 88:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:1B:8B:5E:B8:72:8D:49:82:06:A1:23:A3:9F:02:D3:14:CC:4F:B0 X509v3 Authority Key Identifier: keyid:A1:8E:B3:77:DD:03:18:AE:46:5D:8F:3F:7D:6E:0A:D0:A4:E9:ED:1E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/8RuLXrhyjUmCBqEjo58C0xTMT7A.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.135.21.0/24 Signature Algorithm: sha256WithRSAEncryption b8:d8:99:db:48:a4:d9:91:5c:43:c9:a4:15:d9:0e:df:d8:13: e6:5c:50:06:81:4b:e7:12:c7:c0:64:f6:12:86:d5:2c:19:f6: 9c:cf:14:c2:2d:17:b9:b7:09:23:61:d3:23:97:4b:1b:8d:73: 92:8d:26:e8:85:98:5a:34:2c:08:23:96:5c:d9:f7:f9:93:42: 50:58:56:33:03:8d:a7:6b:7b:9a:23:00:cc:5c:6c:41:35:a5: 7f:24:ed:fd:12:e1:8d:36:8e:53:cd:5c:17:ca:79:d1:b4:4a: e1:eb:40:85:c4:f3:b8:84:52:92:7f:f7:98:29:99:7e:9d:f4: 20:e9:9d:df:ad:96:cc:b2:5c:9b:70:22:5f:c9:ec:38:ff:8a: 21:59:7b:fd:f2:d9:0f:b0:31:4c:96:6e:b6:54:0d:6c:40:86: d7:d4:0a:31:48:de:4c:0c:cd:3f:82:ea:c0:71:af:5c:18:4d: 7b:58:17:70:4a:85:57:92:de:32:00:65:c4:e0:09:ab:c1:bd: 20:e1:1b:61:24:0c:68:2d:0a:71:e6:58:91:7a:50:9f:ef:5a: 9b:aa:a4:3d:89:9f:5c:a5:c5:bb:3a:48:96:0a:fc:bc:72:7c: 9e:33:e1:63:eb:b0:f4:b3:77:21:89:79:89:7e:5b:bc:7d:c2: 6e:2e:b7:86 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICD40wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTE4 RUIzNzdERDAzMThBRTQ2NUQ4RjNGN0Q2RTBBRDBBNEU5RUQxRTAeFw0yNTA1MTkw MzA4MDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEYxMUI4QjVFQjg3MjhE NDk4MjA2QTEyM0EzOUYwMkQzMTRDQzRGQjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXuTVIczNix2HICWv4ZfuXjyjqFv+t812AmPwhaVvv0+7QYssn 8I3btSldAKHR8nZRVdCuOWNanrpBiukFXDdgTBwMtTTmJmfeTnXSVNdtbrhljJNA wMfh5gbxwv1qhkxT2K8FMxLBTV9Lg2JDy5OS2ovSX6DC06A9gZqXIH63SZ5kHTqH 19ubXebO6lzvaOMfgNFy4VNftQ/YGGjKjxyQomYY/DABEtMNWe7I8Lfr9ieXgBEx 6dkmZ+45lyqhVHl6nbHm6FZWewfYf0QcqrT7sNwqFr1CUYhVVzU3hdJMq/G8MAwW XBcZipOMTOuYRxfUS2BIQbyDOjKdFNxsToiPAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQU8RuLXrhyjUmCBqEjo58C0xTMT7AwHwYDVR0jBBgwFoAUoY6zd90DGK5GXY8/ fW4K0KTp7R4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR0pJ TkdFTi9vWTZ6ZDkwREdLNUdYWThfZlc0SzBLVHA3UjQuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL29ZNnpkOTBER0s1R1hZOF9mVzRLMEtUcDdSNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL01JTkdKSU5HRU4vOFJ1TFhyaHlq VW1DQnFFam81OEMweFRNVDdBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAGeHFTANBgkqhkiG9w0BAQsFAAOCAQEAuNiZ20ik2ZFcQ8mkFdkO39gT 5lxQBoFL5xLHwGT2EobVLBn2nM8Uwi0XubcJI2HTI5dLG41zko0m6IWYWjQsCCOW XNn3+ZNCUFhWMwONp2t7miMAzFxsQTWlfyTt/RLhjTaOU81cF8p50bRK4etAhcTz uIRSkn/3mCmZfp30IOmd362WzLJcm3AiX8nsOP+KIVl7/fLZD7AxTJZutlQNbECG 19QKMUjeTAzNP4LqwHGvXBhNe1gXcEqFV5LeMgBlxOAJq8G9IOEbYSQMaC0KceZY kXpQn+9am6qkPYmfXKXFuzpIlgr8vHJ8njPhY+uw9LN3IYl5iX5bvH3Cbi63hg== -----END CERTIFICATE-----Generated at Wed Jun 4 01:00:17 2025 by rpki-client