$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/45QmnsqdWOqNKxUfS08P7N5eAaw.roa File: 45QmnsqdWOqNKxUfS08P7N5eAaw.roa (raw, json) Hash identifier: FLKv90LqqAqfzW4ka4s7u8EQzLV4bNEoQgjjXQI2gvk= Subject key identifier: E3:94:26:9E:CA:9D:58:EA:8D:2B:15:1F:4B:4F:0F:EC:DE:5E:01:AC Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Certificate serial: 147A Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/45QmnsqdWOqNKxUfS08P7N5eAaw.roa Signing time: Fri 22 Aug 2025 08:51:33 +0000 ROA not before: Fri 22 Aug 2025 08:51:33 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 16509 IP address blocks: 103.235.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 10:16:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5242 (0x147a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Validity Not Before: Aug 22 08:51:33 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E394269ECA9D58EA8D2B151F4B4F0FECDE5E01AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:a2:85:55:cb:bb:cd:c8:f7:21:1c:72:1a:e4: 4a:a6:65:18:a4:de:dc:2f:7b:78:bc:df:d2:44:27: 1f:aa:89:40:a9:05:c3:82:f0:d5:6f:14:a3:e8:0d: 51:35:0e:04:af:fd:e8:b2:46:6e:40:23:de:b6:4d: 18:a3:e2:5d:7a:ab:d6:9f:79:60:65:04:4f:8b:18: 6c:f4:41:5d:39:5f:21:ec:07:ad:84:b4:d5:7c:08: 96:1f:a1:80:69:28:73:a1:92:5c:36:0a:c3:0b:10: be:83:4f:57:5b:5a:71:b5:02:23:58:63:13:2f:7a: f4:7c:33:ae:a8:11:00:8a:13:0f:ef:26:1c:2a:68: cb:bd:a0:93:4e:9f:bd:bc:2b:92:9b:0f:37:a2:f5: 98:5d:5f:f2:6e:c9:a3:b8:74:ad:90:dd:e2:06:88: be:30:54:9c:37:31:dc:23:9c:4f:d3:52:f0:31:e0: 73:84:a0:92:fe:96:c7:8b:4a:c4:22:e6:80:0d:ac: 2c:80:26:00:c5:ca:0f:7e:e8:5c:6d:9f:e5:69:f0: 5f:0e:4f:be:53:83:fd:31:b7:8b:31:8a:00:19:76: 53:d9:c0:6d:09:e3:22:63:bf:3e:b8:77:89:a6:1d: a4:68:8b:69:d1:fc:c8:1c:57:e0:18:7b:c0:e4:cf: 61:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:94:26:9E:CA:9D:58:EA:8D:2B:15:1F:4B:4F:0F:EC:DE:5E:01:AC X509v3 Authority Key Identifier: keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/45QmnsqdWOqNKxUfS08P7N5eAaw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.235.88.0/24 Signature Algorithm: sha256WithRSAEncryption 42:ec:01:ae:66:8b:74:81:39:3d:3d:45:55:6d:9c:ec:71:d4: cc:e9:0c:83:05:ef:7e:5f:a6:fc:a6:ae:2d:d3:16:dd:c6:b3: f6:a9:c2:2d:69:28:86:ed:f3:33:27:b7:03:ce:cc:8b:54:a0: 5c:d0:8b:4b:2b:34:1a:a7:5d:f8:85:e3:03:c5:e1:84:a8:71: 76:31:0f:62:f3:41:b0:1b:4f:66:a3:ef:a0:4f:5c:2c:a5:ce: 21:9e:68:c2:ca:21:3e:43:a8:58:af:88:b8:c2:26:cc:a5:2f: 8c:33:c4:41:6b:cd:ca:3d:4b:d6:fc:49:92:c3:04:d3:ad:b8: 8c:2d:58:57:d1:2f:a2:62:b5:12:9c:cb:48:2a:99:06:ea:0e: 5b:be:7b:06:22:91:3a:0a:dd:ce:d4:81:aa:41:f4:16:68:f3: 6a:e3:c8:72:7d:24:d2:44:1c:f9:d7:86:fd:50:24:06:9c:99: 34:5d:56:6e:4c:d5:28:d0:3e:61:25:3b:47:a7:8a:ee:24:c2: 57:bb:3c:e1:2e:ef:6d:71:1f:00:eb:39:b6:08:c4:1c:3c:2c: e9:13:a6:0f:90:5d:27:20:e1:39:2b:88:fa:cd:ef:ac:cb:9d: 8b:36:f4:63:e9:d7:30:c1:4b:90:4d:09:85:2d:cc:00:5e:5c: 26:10:17:68 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICFHowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yNTA4MjIw ODUxMzNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEUzOTQyNjlFQ0E5RDU4 RUE4RDJCMTUxRjRCNEYwRkVDREU1RTAxQUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNooVVy7vNyPchHHIa5EqmZRik3twve3i839JEJx+qiUCpBcOC 8NVvFKPoDVE1DgSv/eiyRm5AI962TRij4l16q9afeWBlBE+LGGz0QV05XyHsB62E tNV8CJYfoYBpKHOhklw2CsMLEL6DT1dbWnG1AiNYYxMvevR8M66oEQCKEw/vJhwq aMu9oJNOn728K5KbDzei9ZhdX/JuyaO4dK2Q3eIGiL4wVJw3MdwjnE/TUvAx4HOE oJL+lseLSsQi5oANrCyAJgDFyg9+6Fxtn+Vp8F8OT75Tg/0xt4sxigAZdlPZwG0J 4yJjvz64d4mmHaRoi2nR/MgcV+AYe8Dkz2EDAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU45QmnsqdWOqNKxUfS08P7N5eAawwHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0 p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy80NVFtbnNxZFdPcU5LeFVmUzA4 UDdONWVBYXcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+tY MA0GCSqGSIb3DQEBCwUAA4IBAQBC7AGuZot0gTk9PUVVbZzscdTM6QyDBe9+X6b8 pq4t0xbdxrP2qcItaSiG7fMzJ7cDzsyLVKBc0ItLKzQap134heMDxeGEqHF2MQ9i 80GwG09mo++gT1wspc4hnmjCyiE+Q6hYr4i4wibMpS+MM8RBa83KPUvW/EmSwwTT rbiMLVhX0S+iYrUSnMtIKpkG6g5bvnsGIpE6Ct3O1IGqQfQWaPNq48hyfSTSRBz5 14b9UCQGnJk0XVZuTNUo0D5hJTtHp4ruJMJXuzzhLu9tcR8A6zm2CMQcPCzpE6YP kF0nIOE5K4j6ze+sy52LNvRj6dcwwUuQTQmFLcwAXlwmEBdo -----END CERTIFICATE-----Generated at Sat Sep 6 07:08:21 2025 by rpki-client