$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/fqbH7UyMHQixCehc5FDezdRwvx0.roa File: fqbH7UyMHQixCehc5FDezdRwvx0.roa (raw, json) Hash identifier: u6AyZfGAeWSRk/Qw5OiynYlLBC33KbkbDJ+uDHw1Y8Y= Subject key identifier: 7E:A6:C7:ED:4C:8C:1D:08:B1:09:E8:5C:E4:50:DE:CD:D4:70:BF:1D Certificate issuer: /CN=422E7C95D87DE9AEEB212A0C4CCB0174E65CA5D0 Certificate serial: 054E Authority key identifier: 42:2E:7C:95:D8:7D:E9:AE:EB:21:2A:0C:4C:CB:01:74:E6:5C:A5:D0 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Qi58ldh96a7rISoMTMsBdOZcpdA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/fqbH7UyMHQixCehc5FDezdRwvx0.roa Signing time: Fri 22 Aug 2025 08:49:39 +0000 ROA not before: Fri 22 Aug 2025 08:49:39 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 134518 IP address blocks: 160.25.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/Qi58ldh96a7rISoMTMsBdOZcpdA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/Qi58ldh96a7rISoMTMsBdOZcpdA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Qi58ldh96a7rISoMTMsBdOZcpdA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 20:57:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1358 (0x54e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=422E7C95D87DE9AEEB212A0C4CCB0174E65CA5D0 Validity Not Before: Aug 22 08:49:39 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7EA6C7ED4C8C1D08B109E85CE450DECDD470BF1D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:42:fd:22:a2:d9:20:45:56:42:af:eb:7b:b8: f7:2d:ac:15:59:7d:ac:6f:a8:93:19:35:0f:5e:58: 43:04:66:29:c3:c4:30:48:ef:25:ce:7a:62:cb:c9: 3d:2d:58:73:d1:3f:57:62:da:79:c1:38:dc:12:f2: 3e:29:df:ac:49:65:90:ce:56:14:bf:be:f4:7d:c8: dd:d3:6b:d6:07:fe:98:d9:d9:70:33:b4:dd:ae:c0: 66:d3:90:56:df:b7:f5:73:a7:d8:fc:dd:d5:ef:dd: 86:56:3d:48:34:0b:e2:15:5a:25:de:39:8f:f2:36: 54:a5:55:44:61:1d:0b:99:20:9c:19:32:a8:8c:c1: c8:a2:da:fc:5a:03:88:20:4f:7b:b8:d5:2b:79:78: 38:01:ac:53:46:ef:24:23:db:fb:81:81:fb:a7:52: 5b:ce:e4:56:a7:3d:b3:b3:ce:ef:5a:7c:15:68:1e: c2:6a:91:26:ed:a4:35:9b:5d:0f:32:54:22:47:f8: a2:f1:70:f3:b9:b1:47:50:d5:b9:d5:11:c9:ae:89: 34:cf:bb:b7:60:a3:dd:a7:5f:3c:25:ee:95:1b:6e: 2c:6f:49:3c:93:3f:9c:c3:47:b5:e7:f1:17:10:f0: ea:6d:1a:7b:1e:66:3e:23:e6:45:9b:fe:3b:ea:28: a4:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:A6:C7:ED:4C:8C:1D:08:B1:09:E8:5C:E4:50:DE:CD:D4:70:BF:1D X509v3 Authority Key Identifier: keyid:42:2E:7C:95:D8:7D:E9:AE:EB:21:2A:0C:4C:CB:01:74:E6:5C:A5:D0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/Qi58ldh96a7rISoMTMsBdOZcpdA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Qi58ldh96a7rISoMTMsBdOZcpdA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/fqbH7UyMHQixCehc5FDezdRwvx0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.25.221.0/24 Signature Algorithm: sha256WithRSAEncryption aa:00:ae:78:53:c9:46:0f:62:3b:16:b6:0c:75:c4:f4:05:10: 64:3e:16:0d:01:9a:31:a8:44:87:68:ba:1c:4a:e3:74:29:5b: e0:6b:d4:63:22:98:9b:04:2b:f5:70:03:37:ae:35:a4:73:27: 19:d5:e1:38:fc:9d:e7:41:52:ae:16:47:91:83:1d:90:d3:8a: 95:48:cd:08:21:6f:e9:13:99:0e:46:cd:53:a6:9a:2f:42:06: 0a:3d:85:55:41:83:33:dd:27:0d:5d:17:1d:ef:73:7c:47:36: ce:31:eb:58:a2:1a:59:c0:34:22:9f:b9:a8:f2:b9:77:e5:43: a1:df:a9:7a:5f:3f:cd:25:f2:30:6e:cf:b6:2b:7a:d8:29:3d: cf:af:e9:37:90:5a:f1:3a:97:81:2c:9e:68:51:62:d2:84:0f: 7d:d9:ab:f1:f2:b2:cd:53:9d:07:d1:5a:d2:87:75:04:bb:31: 04:ca:c7:fb:9a:36:12:a1:17:3d:84:c5:6c:72:b0:1c:bc:95: 47:c5:45:b7:55:3f:6c:a1:83:88:87:d2:7c:61:58:ef:e3:e2: f7:c8:98:cf:36:b7:4e:d7:13:a9:8d:5c:c5:ae:1d:b5:4e:e1: ad:e0:b1:e0:d7:43:0e:8b:4e:bb:00:a5:22:fb:4b:89:fa:7a: 59:0e:01:b1 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICBU4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDIy RTdDOTVEODdERTlBRUVCMjEyQTBDNENDQjAxNzRFNjVDQTVEMDAeFw0yNTA4MjIw ODQ5MzlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDdFQTZDN0VENEM4QzFE MDhCMTA5RTg1Q0U0NTBERUNERDQ3MEJGMUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFQv0iotkgRVZCr+t7uPctrBVZfaxvqJMZNQ9eWEMEZinDxDBI 7yXOemLLyT0tWHPRP1di2nnBONwS8j4p36xJZZDOVhS/vvR9yN3Ta9YH/pjZ2XAz tN2uwGbTkFbft/Vzp9j83dXv3YZWPUg0C+IVWiXeOY/yNlSlVURhHQuZIJwZMqiM wcii2vxaA4ggT3u41St5eDgBrFNG7yQj2/uBgfunUlvO5FanPbOzzu9afBVoHsJq kSbtpDWbXQ8yVCJH+KLxcPO5sUdQ1bnVEcmuiTTPu7dgo92nXzwl7pUbbixvSTyT P5zDR7Xn8RcQ8OptGnseZj4j5kWb/jvqKKQ3AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUfqbH7UyMHQixCehc5FDezdRwvx0wHwYDVR0jBBgwFoAUQi58ldh96a7rISoM TMsBdOZcpdAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0tJUFRF Q0gvUWk1OGxkaDk2YTdySVNvTVRNc0JkT1pjcGRBLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9RaTU4bGRoOTZhN3JJU29NVE1zQmRPWmNwZEEuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TS0lQVEVDSC9mcWJIN1V5TUhRaXhD ZWhjNUZEZXpkUnd2eDAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAoBndMA0GCSqGSIb3DQEBCwUAA4IBAQCqAK54U8lGD2I7FrYMdcT0BRBkPhYN AZoxqESHaLocSuN0KVvga9RjIpibBCv1cAM3rjWkcycZ1eE4/J3nQVKuFkeRgx2Q 04qVSM0IIW/pE5kORs1TppovQgYKPYVVQYMz3ScNXRcd73N8RzbOMetYohpZwDQi n7mo8rl35UOh36l6Xz/NJfIwbs+2K3rYKT3Pr+k3kFrxOpeBLJ5oUWLShA992avx 8rLNU50H0VrSh3UEuzEEysf7mjYSoRc9hMVscrAcvJVHxUW3VT9soYOIh9J8YVjv 4+L3yJjPNrdO1xOpjVzFrh21TuGt4LHg10MOi067AKUi+0uJ+npZDgGx -----END CERTIFICATE-----Generated at Tue Oct 28 17:02:39 2025 by rpki-client