$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MLYTICS/AK9p5YIH8YLhM6vaiV3XnhaivNQ.roa File: AK9p5YIH8YLhM6vaiV3XnhaivNQ.roa (raw, json) Hash identifier: aa8xeEV7PUBwcwzmVCWKVwjI28vs8eeJ3UivBbt9E4Y= Subject key identifier: 00:AF:69:E5:82:07:F1:82:E1:33:AB:DA:89:5D:D7:9E:16:A2:BC:D4 Certificate issuer: /CN=6E181085902F896294602D8B121C1E2E22B58CE7 Certificate serial: 1270 Authority key identifier: 6E:18:10:85:90:2F:89:62:94:60:2D:8B:12:1C:1E:2E:22:B5:8C:E7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bhgQhZAviWKUYC2LEhweLiK1jOc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MLYTICS/AK9p5YIH8YLhM6vaiV3XnhaivNQ.roa Signing time: Fri 22 Aug 2025 09:03:35 +0000 ROA not before: Fri 22 Aug 2025 09:03:35 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 396982 IP address blocks: 103.125.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MLYTICS/bhgQhZAviWKUYC2LEhweLiK1jOc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MLYTICS/bhgQhZAviWKUYC2LEhweLiK1jOc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/bhgQhZAviWKUYC2LEhweLiK1jOc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Sep 2025 04:19:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4720 (0x1270) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6E181085902F896294602D8B121C1E2E22B58CE7 Validity Not Before: Aug 22 09:03:35 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=00AF69E58207F182E133ABDA895DD79E16A2BCD4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:cc:6f:de:88:2b:ed:05:c2:53:2c:91:c5:9c: c6:80:a8:14:02:3d:bc:c4:68:36:f8:41:cb:d2:c5: c1:a6:3d:7a:48:9c:34:76:60:44:b3:b8:66:a2:e1: 95:df:31:05:3a:69:4a:00:9a:e2:e0:f5:e4:e5:27: 0d:b3:22:b6:e0:15:7e:67:f3:81:18:5b:f9:72:6a: 58:62:5b:e1:e0:b5:eb:70:41:eb:40:81:0d:a3:ca: d8:58:0c:10:8c:7f:40:f6:79:16:84:8b:d7:05:9a: 65:49:03:df:04:cc:71:e9:a3:54:0d:93:e1:46:fe: d4:f0:08:bc:fe:17:a6:52:62:0c:16:72:c4:47:b3: 39:ab:a7:db:db:d1:1a:c0:c9:f7:ac:66:91:80:2e: 93:c8:0d:24:3d:84:c8:b7:eb:da:0b:36:54:03:27: 78:24:1c:e8:7d:b9:31:b1:b5:df:50:dc:ef:85:05: 64:fa:3d:68:62:5d:f0:c1:11:ff:6b:26:03:fa:98: c6:2e:4c:e7:13:52:f0:10:b4:de:e5:29:bc:9d:a8: 4e:0e:33:c9:31:0e:0c:70:27:46:03:6a:cb:aa:04: f4:b0:ec:71:4a:1f:aa:2b:a1:16:20:9e:ba:99:6c: fb:e8:4c:74:fb:0f:19:e8:0b:1c:a4:b8:63:c1:74: 0d:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:AF:69:E5:82:07:F1:82:E1:33:AB:DA:89:5D:D7:9E:16:A2:BC:D4 X509v3 Authority Key Identifier: keyid:6E:18:10:85:90:2F:89:62:94:60:2D:8B:12:1C:1E:2E:22:B5:8C:E7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MLYTICS/bhgQhZAviWKUYC2LEhweLiK1jOc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bhgQhZAviWKUYC2LEhweLiK1jOc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MLYTICS/AK9p5YIH8YLhM6vaiV3XnhaivNQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.125.224.0/24 Signature Algorithm: sha256WithRSAEncryption 60:60:bc:76:e4:8e:bc:a8:64:30:3b:c5:f4:8c:d2:76:0c:cd: 52:bb:ac:63:0c:17:1f:d9:1e:b9:8d:db:5a:f8:3b:02:7a:a6: a1:02:76:9e:68:07:a5:66:80:31:33:be:cb:1f:65:2c:d7:ee: ac:e9:72:2f:b8:16:e5:1c:a7:48:d1:d4:0a:fb:f8:d5:a9:85: 00:48:0b:37:e2:fd:32:a5:30:d9:f0:be:b7:15:89:df:bd:8a: c3:d2:42:af:e4:88:d2:ce:8d:d4:24:27:58:b7:59:26:85:c8: ea:67:5b:4c:56:2f:9b:8a:e1:95:27:58:67:09:ae:85:e9:5e: e6:77:d8:d7:02:0e:d3:18:a8:5b:09:e0:94:67:e3:71:99:a1: dc:bc:f9:3f:d2:ca:c1:25:4e:73:35:04:62:5f:a7:4c:c2:4c: d9:d0:49:d3:69:d2:6b:37:ca:15:43:23:c7:eb:07:1d:31:32: f9:b6:43:5b:b4:dc:0b:67:40:96:b0:22:9a:cb:d3:18:7a:af: ef:d0:bb:f0:89:86:e3:8e:98:d2:f3:4e:b7:99:1e:27:89:da: 57:55:e3:84:9a:04:75:5c:29:b7:aa:08:3e:a2:bb:a1:ff:8b: e6:05:d2:67:4f:d1:a2:3a:be:f1:3c:87:3b:03:3c:80:e2:6c: 85:ac:4a:52 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEnAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkUx ODEwODU5MDJGODk2Mjk0NjAyRDhCMTIxQzFFMkUyMkI1OENFNzAeFw0yNTA4MjIw OTAzMzVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDAwQUY2OUU1ODIwN0Yx ODJFMTMzQUJEQTg5NURENzlFMTZBMkJDRDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9zG/eiCvtBcJTLJHFnMaAqBQCPbzEaDb4QcvSxcGmPXpInDR2 YESzuGai4ZXfMQU6aUoAmuLg9eTlJw2zIrbgFX5n84EYW/lyalhiW+HgtetwQetA gQ2jythYDBCMf0D2eRaEi9cFmmVJA98EzHHpo1QNk+FG/tTwCLz+F6ZSYgwWcsRH szmrp9vb0RrAyfesZpGALpPIDSQ9hMi369oLNlQDJ3gkHOh9uTGxtd9Q3O+FBWT6 PWhiXfDBEf9rJgP6mMYuTOcTUvAQtN7lKbydqE4OM8kxDgxwJ0YDasuqBPSw7HFK H6oroRYgnrqZbPvoTHT7DxnoCxykuGPBdA2JAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUAK9p5YIH8YLhM6vaiV3XnhaivNQwHwYDVR0jBBgwFoAUbhgQhZAviWKUYC2L EhweLiK1jOcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUxZVElD Uy9iaGdRaFpBdmlXS1VZQzJMRWh3ZUxpSzFqT2MuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL2JoZ1FoWkF2aVdLVVlDMkxFaHdlTGlLMWpPYy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL01MWVRJQ1MvQUs5cDVZSUg4WUxoTTZ2 YWlWM1huaGFpdk5RLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AGd94DANBgkqhkiG9w0BAQsFAAOCAQEAYGC8duSOvKhkMDvF9IzSdgzNUrusYwwX H9keuY3bWvg7AnqmoQJ2nmgHpWaAMTO+yx9lLNfurOlyL7gW5RynSNHUCvv41amF AEgLN+L9MqUw2fC+txWJ372Kw9JCr+SI0s6N1CQnWLdZJoXI6mdbTFYvm4rhlSdY Zwmuhele5nfY1wIO0xioWwnglGfjcZmh3Lz5P9LKwSVOczUEYl+nTMJM2dBJ02nS azfKFUMjx+sHHTEy+bZDW7TcC2dAlrAimsvTGHqv79C78ImG446Y0vNOt5keJ4na V1XjhJoEdVwpt6oIPqK7of+L5gXSZ0/Rojq+8TyHOwM8gOJshaxKUg== -----END CERTIFICATE-----Generated at Thu Sep 18 02:10:04 2025 by rpki-client