$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/1gOlj1jAJtWV7ia-P3Z7dIXDBS0.roa File: 1gOlj1jAJtWV7ia-P3Z7dIXDBS0.roa (raw, json) Hash identifier: GIdrcYwMqpWX3+sC+2A22t8Hgd6RNl16qth/WLYHhmU= Subject key identifier: D6:03:A5:8F:58:C0:26:D5:95:EE:26:BE:3F:76:7B:74:85:C3:05:2D Certificate issuer: /CN=ED186F6314D7B5713EFFECFB93EBC3E82197E2EF Certificate serial: 12E7 Authority key identifier: ED:18:6F:63:14:D7:B5:71:3E:FF:EC:FB:93:EB:C3:E8:21:97:E2:EF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/1gOlj1jAJtWV7ia-P3Z7dIXDBS0.roa Signing time: Tue 04 Nov 2025 23:50:49 +0000 ROA not before: Tue 04 Nov 2025 23:50:49 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 63897 IP address blocks: 103.127.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 01:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4839 (0x12e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ED186F6314D7B5713EFFECFB93EBC3E82197E2EF Validity Not Before: Nov 4 23:50:49 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=D603A58F58C026D595EE26BE3F767B7485C3052D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:42:34:3f:5e:b5:83:8e:c7:f6:04:2b:58:4e: 62:6a:6e:e7:65:72:0f:be:a7:70:89:d4:74:5a:0b: 1e:b4:b8:9b:25:4b:94:5a:c6:1e:6f:24:30:34:d3: 05:21:a2:7a:f7:b3:a3:fa:f8:ad:d2:31:29:93:65: 2b:3e:be:c2:e5:bb:b7:d0:42:9e:b5:c0:ea:01:97: 7a:fc:10:77:2d:38:eb:89:5b:5f:2c:0c:38:03:0f: 69:12:6a:94:5d:f5:d2:12:23:e0:83:89:14:6f:32: 53:45:e6:ef:e4:c3:be:ee:74:0e:87:3e:b3:d5:57: 10:dd:26:42:e3:98:f6:7c:93:b7:d4:e2:b7:46:e5: e9:eb:84:97:9b:37:21:06:e2:b7:5f:7f:ef:e3:ee: 97:61:1f:bc:76:8c:5a:99:97:0c:60:4c:7a:33:03: 61:5c:ed:82:b5:12:5d:fa:13:dd:a4:30:8e:0d:e3: 67:c6:cd:39:43:9e:09:dd:01:b5:ce:0c:45:b5:f6: 68:48:06:77:2b:3d:bf:24:76:dc:d5:19:a7:30:da: 0e:bb:d1:49:c5:54:65:8c:82:2d:e8:b9:91:3c:36: 24:4b:1d:5a:00:77:7e:8b:23:cc:01:da:39:7f:bd: 46:c5:68:b4:a2:a2:9c:c4:71:f3:8e:ab:fb:8d:32: a9:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:03:A5:8F:58:C0:26:D5:95:EE:26:BE:3F:76:7B:74:85:C3:05:2D X509v3 Authority Key Identifier: keyid:ED:18:6F:63:14:D7:B5:71:3E:FF:EC:FB:93:EB:C3:E8:21:97:E2:EF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/1gOlj1jAJtWV7ia-P3Z7dIXDBS0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.127.237.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:69:0d:06:78:a5:d6:74:d0:9a:36:5b:36:50:f0:43:39:7a: 82:03:3c:d0:f5:13:59:20:7c:c9:15:65:6c:a2:40:07:92:17: 48:f7:8e:ce:92:9f:50:bf:89:8c:35:b3:5e:d7:b8:0e:41:0d: fe:96:66:be:1d:bb:b2:30:98:03:64:52:66:0f:67:e3:18:ec: 0b:5e:53:84:ad:e1:d7:f7:a8:22:08:c6:47:af:ba:11:ce:1d: ad:8f:8f:69:51:59:25:1c:cc:fa:18:bb:5a:a8:12:33:2a:fb: d2:e4:a1:2f:76:02:43:3f:37:2d:d0:28:ba:1f:1f:ce:c0:07: 17:46:93:13:fd:af:76:0e:c9:c5:9d:bf:4d:24:9d:32:5d:39: 9b:7c:90:42:ae:62:e5:0a:62:48:96:7f:c5:c5:42:85:75:4b: aa:3f:06:50:bf:ac:56:23:fa:09:e3:85:b7:ec:4e:f1:e9:58: 83:64:88:b8:77:3b:73:50:8c:84:32:ca:e3:e1:fc:a2:38:c8: 03:ba:1b:15:87:9c:ae:4e:90:e2:d8:e8:b9:73:77:d9:42:c2: e7:d2:06:2a:5f:81:71:7f:b4:6c:15:d8:48:2b:f5:de:75:2e: e6:d7:1f:e3:0c:12:82:cd:5e:a4:9b:f4:4b:38:cb:d4:ea:dc: 6e:7e:7a:13 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEucwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUQx ODZGNjMxNEQ3QjU3MTNFRkZFQ0ZCOTNFQkMzRTgyMTk3RTJFRjAeFw0yNTExMDQy MzUwNDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEQ2MDNBNThGNThDMDI2 RDU5NUVFMjZCRTNGNzY3Qjc0ODVDMzA1MkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQQjQ/XrWDjsf2BCtYTmJqbudlcg++p3CJ1HRaCx60uJslS5Ra xh5vJDA00wUhonr3s6P6+K3SMSmTZSs+vsLlu7fQQp61wOoBl3r8EHctOOuJW18s DDgDD2kSapRd9dISI+CDiRRvMlNF5u/kw77udA6HPrPVVxDdJkLjmPZ8k7fU4rdG 5enrhJebNyEG4rdff+/j7pdhH7x2jFqZlwxgTHozA2Fc7YK1El36E92kMI4N42fG zTlDngndAbXODEW19mhIBncrPb8kdtzVGacw2g670UnFVGWMgi3ouZE8NiRLHVoA d36LI8wB2jl/vUbFaLSiopzEcfOOq/uNMqk7AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU1gOlj1jAJtWV7ia+P3Z7dIXDBS0wHwYDVR0jBBgwFoAU7RhvYxTXtXE+/+z7 k+vD6CGX4u8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hVTllJ TkcvN1Jodll4VFh0WEUtXy16N2stdkQ2Q0dYNHU4LmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS83Umh2WXhUWHRYRS1fLXo3ay12RDZDR1g0dTguY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSFVOWUlORy8xZ09sajFqQUp0V1Y3 aWEtUDNaN2RJWERCUzAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZ3/tMA0GCSqGSIb3DQEBCwUAA4IBAQA6aQ0GeKXWdNCaNls2UPBDOXqCAzzQ 9RNZIHzJFWVsokAHkhdI947Okp9Qv4mMNbNe17gOQQ3+lma+HbuyMJgDZFJmD2fj GOwLXlOEreHX96giCMZHr7oRzh2tj49pUVklHMz6GLtaqBIzKvvS5KEvdgJDPzct 0Ci6Hx/OwAcXRpMT/a92DsnFnb9NJJ0yXTmbfJBCrmLlCmJIln/FxUKFdUuqPwZQ v6xWI/oJ44W37E7x6ViDZIi4dztzUIyEMsrj4fyiOMgDuhsVh5yuTpDi2Oi5c3fZ QsLn0gYqX4Fxf7RsFdhIK/XedS7m1x/jDBKCzV6km/RLOMvU6txufnoT -----END CERTIFICATE-----Generated at Wed Nov 5 22:10:37 2025 by rpki-client