$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/0eq5ltG4QFyiFGvlJsSWu6CKG08.roa File: 0eq5ltG4QFyiFGvlJsSWu6CKG08.roa (raw, json) Hash identifier: 7SmWYxECbaF+I0saCdRQJnKFec+4JIBsbkhAjDAOsJI= Subject key identifier: D1:EA:B9:96:D1:B8:40:5C:A2:14:6B:E5:26:C4:96:BB:A0:8A:1B:4F Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Certificate serial: 1469 Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/0eq5ltG4QFyiFGvlJsSWu6CKG08.roa Signing time: Fri 22 Aug 2025 08:51:29 +0000 ROA not before: Fri 22 Aug 2025 08:51:29 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 396982 IP address blocks: 101.102.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 10:16:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5225 (0x1469) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Validity Not Before: Aug 22 08:51:29 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=D1EAB996D1B8405CA2146BE526C496BBA08A1B4F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:dd:71:45:5e:1e:21:0e:7f:01:6f:3b:e7:4b: 6e:00:5a:46:7c:94:32:9f:4a:71:1d:2a:52:65:ac: d6:e6:9d:fc:95:40:79:3d:4d:3f:b1:8f:b9:fb:01: d1:c8:59:8a:fd:b3:bd:d6:66:e6:8d:f3:13:4b:31: 5b:1b:1b:f1:ae:05:db:c9:3c:7b:5b:6e:63:66:e9: ff:ed:f9:ee:bd:93:80:d9:12:24:12:00:4c:54:bc: 8b:31:ab:c4:3f:a4:8c:03:d0:06:bc:85:1f:7f:29: ae:0d:06:97:63:29:29:f9:67:33:7c:f8:2b:df:46: 38:56:ca:bb:25:c3:2a:ba:68:e0:6d:d7:e1:b2:93: 2b:e6:c7:8d:13:d6:35:53:ae:05:84:52:ea:50:60: 2f:8e:f8:4f:94:3f:5a:ea:e6:f3:12:6b:2b:f5:14: 64:7b:9a:5b:2b:34:84:90:24:1b:00:52:54:4e:10: e7:59:32:0f:e4:a6:d4:da:52:0e:f0:bd:f3:81:3d: 7b:d8:bd:6b:67:40:27:3c:f4:b4:0a:d5:51:b4:93: f5:ea:ac:93:f2:8e:e2:85:6f:13:36:5e:e9:2d:c8: fd:e2:b6:0f:9f:df:dc:62:bf:ec:6e:19:1b:3c:3f: 04:5d:80:ad:39:d7:1d:41:e2:c4:db:69:cf:5c:6b: e5:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:EA:B9:96:D1:B8:40:5C:A2:14:6B:E5:26:C4:96:BB:A0:8A:1B:4F X509v3 Authority Key Identifier: keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/0eq5ltG4QFyiFGvlJsSWu6CKG08.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.102.103.0/24 Signature Algorithm: sha256WithRSAEncryption 62:b1:72:ae:cc:dd:c6:ed:94:3a:c6:9f:3f:2f:cf:ef:a2:de: 7a:98:a6:9f:61:54:b2:24:eb:7a:b5:eb:9c:cb:46:9e:0f:93: 57:91:5e:97:5a:b4:dd:ca:6b:b3:91:64:9a:b1:43:10:3a:14: 3a:8f:49:b9:83:ce:cd:79:9c:25:b5:bc:25:bc:ee:d8:b6:f2: 86:d2:f3:8c:41:46:08:91:97:25:c3:bf:93:7b:fc:e8:df:62: 14:d8:bd:0a:51:6b:c6:3e:d1:60:6c:77:93:01:88:85:f8:a2: 58:45:b5:5b:ce:35:82:70:32:2a:67:50:9f:32:4d:7e:e8:a6: 4a:9d:30:ba:be:77:c4:99:68:70:00:52:2d:ca:95:cd:00:2c: b8:8e:46:57:e0:bf:35:79:5c:ac:15:b1:f6:05:81:77:4b:19: bd:dc:a9:a3:82:95:d3:0d:e6:5a:ff:67:66:11:8d:99:ed:93: 32:b7:72:81:1c:10:df:0c:16:b7:f1:b9:1c:9f:40:8d:67:30: 86:6e:7d:92:fd:99:1c:b5:ac:00:38:05:c5:a2:99:9c:5b:dc: 0c:b7:d6:c2:59:45:24:6e:ec:76:69:8a:5b:39:39:f8:28:65: 3e:83:58:27:4e:66:5b:5b:1b:d5:97:f0:9f:20:65:96:50:98: a7:88:89:d5 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICFGkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yNTA4MjIw ODUxMjlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEQxRUFCOTk2RDFCODQw NUNBMjE0NkJFNTI2QzQ5NkJCQTA4QTFCNEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCh3XFFXh4hDn8BbzvnS24AWkZ8lDKfSnEdKlJlrNbmnfyVQHk9 TT+xj7n7AdHIWYr9s73WZuaN8xNLMVsbG/GuBdvJPHtbbmNm6f/t+e69k4DZEiQS AExUvIsxq8Q/pIwD0Aa8hR9/Ka4NBpdjKSn5ZzN8+CvfRjhWyrslwyq6aOBt1+Gy kyvmx40T1jVTrgWEUupQYC+O+E+UP1rq5vMSayv1FGR7mlsrNISQJBsAUlROEOdZ Mg/kptTaUg7wvfOBPXvYvWtnQCc89LQK1VG0k/XqrJPyjuKFbxM2XuktyP3itg+f 39xiv+xuGRs8PwRdgK051x1B4sTbac9ca+V/AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU0eq5ltG4QFyiFGvlJsSWu6CKG08wHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0 p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy8wZXE1bHRHNFFGeWlGR3ZsSnNT V3U2Q0tHMDgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZWZn MA0GCSqGSIb3DQEBCwUAA4IBAQBisXKuzN3G7ZQ6xp8/L8/vot56mKafYVSyJOt6 teucy0aeD5NXkV6XWrTdymuzkWSasUMQOhQ6j0m5g87NeZwltbwlvO7YtvKG0vOM QUYIkZclw7+Te/zo32IU2L0KUWvGPtFgbHeTAYiF+KJYRbVbzjWCcDIqZ1CfMk1+ 6KZKnTC6vnfEmWhwAFItypXNACy4jkZX4L81eVysFbH2BYF3Sxm93KmjgpXTDeZa /2dmEY2Z7ZMyt3KBHBDfDBa38bkcn0CNZzCGbn2S/ZkctawAOAXFopmcW9wMt9bC WUUkbux2aYpbOTn4KGU+g1gnTmZbWxvVl/CfIGWWUJiniInV -----END CERTIFICATE-----Generated at Sat Sep 6 07:05:22 2025 by rpki-client