$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/Rx8zvbFGLrGur8Gy4KZLlAznqp0.roa File: Rx8zvbFGLrGur8Gy4KZLlAznqp0.roa (raw, json) Hash identifier: /tf7wNAL+N8/TsGRBXDcy1Mn09p1ozQafu/RKLppQkg= Subject key identifier: 47:1F:33:BD:B1:46:2E:B1:AE:AF:C1:B2:E0:A6:4B:94:0C:E7:AA:9D Certificate issuer: /CN=44F8DCF66B25B719056D1ED65C16EA9257E5553D Certificate serial: 04C0 Authority key identifier: 44:F8:DC:F6:6B:25:B7:19:05:6D:1E:D6:5C:16:EA:92:57:E5:55:3D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RPjc9msltxkFbR7WXBbqklflVT0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/Rx8zvbFGLrGur8Gy4KZLlAznqp0.roa Signing time: Tue 22 Jul 2025 06:11:23 +0000 ROA not before: Tue 22 Jul 2025 06:11:23 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17408 IP address blocks: 160.30.78.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/RPjc9msltxkFbR7WXBbqklflVT0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/RPjc9msltxkFbR7WXBbqklflVT0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RPjc9msltxkFbR7WXBbqklflVT0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 Aug 2025 06:40:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1216 (0x4c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44F8DCF66B25B719056D1ED65C16EA9257E5553D Validity Not Before: Jul 22 06:11:23 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=471F33BDB1462EB1AEAFC1B2E0A64B940CE7AA9D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:8d:95:de:19:8c:d6:2a:60:46:8f:a8:82:6a: c4:f3:59:ed:c7:64:89:9f:38:5e:3d:f4:a7:a0:dc: c1:25:d1:0c:c3:d3:ec:5b:c1:67:a5:07:eb:70:a6: f0:17:82:e2:cc:54:74:d7:41:4f:6c:16:16:c6:a1: 6f:db:47:c6:29:28:7d:94:4a:57:19:66:31:bc:06: 3e:f6:b0:e7:f4:92:af:7b:e6:ce:9b:14:8e:7d:9f: f0:ea:e6:06:7d:a9:06:81:48:d0:a2:3c:8b:68:63: 72:c5:24:2d:88:42:c3:8c:bd:10:59:77:e0:05:cb: eb:fd:3f:c9:8a:87:d5:3e:50:f3:af:e3:38:61:99: 17:5a:bc:a9:55:96:dd:1a:fb:c4:35:e3:a4:3f:c1: 07:b3:14:eb:05:12:c9:79:d6:ab:28:2b:2d:b9:3a: b9:41:fa:24:7d:39:79:b2:c7:f8:92:02:b3:bd:4f: 54:a3:64:8f:f3:4c:ca:f1:f8:49:a9:24:03:7e:60: e0:d6:e7:d1:9a:a2:79:5f:3a:1c:94:aa:65:89:0e: bd:b1:97:bb:51:f5:88:ff:b0:0b:10:1d:58:c4:fb: 35:9d:59:e5:0a:ea:1e:26:5e:ec:db:f9:b9:4d:db: 9c:73:e5:88:49:27:8a:a6:86:ba:c0:51:91:fa:f5: 67:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:1F:33:BD:B1:46:2E:B1:AE:AF:C1:B2:E0:A6:4B:94:0C:E7:AA:9D X509v3 Authority Key Identifier: keyid:44:F8:DC:F6:6B:25:B7:19:05:6D:1E:D6:5C:16:EA:92:57:E5:55:3D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/RPjc9msltxkFbR7WXBbqklflVT0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RPjc9msltxkFbR7WXBbqklflVT0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/Rx8zvbFGLrGur8Gy4KZLlAznqp0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.30.78.0/23 Signature Algorithm: sha256WithRSAEncryption b2:27:74:79:80:23:2d:f1:10:39:55:7e:f3:eb:27:94:7b:d2: e6:a3:27:67:18:b4:f8:1e:0e:e2:8e:3a:ff:3c:46:69:5e:65: ab:c2:9d:d4:12:b2:31:e2:fa:6e:68:6a:e3:c5:b0:25:77:1f: a9:39:e5:cb:fd:f1:f4:48:70:92:c8:f9:9a:5e:80:31:9c:b4: 72:f7:e3:41:cb:98:b9:43:c8:bd:66:46:27:8d:c0:a9:01:dc: 4f:3c:85:55:fb:79:9d:eb:14:c6:ca:e7:52:8a:4a:d4:50:10: 9f:8f:e0:aa:b7:72:33:0d:b4:79:ab:d5:d7:4b:77:1f:96:89: 64:79:ef:5a:63:88:0f:82:15:20:f4:e0:b4:c7:af:74:e8:df: 9f:46:a0:fa:c8:ea:30:98:bc:c0:98:78:18:23:a1:3d:d0:5d: 52:ca:4f:e2:99:f5:bb:f8:ca:1c:8f:d6:a9:80:6a:8f:14:aa: db:6f:0f:f0:8f:e6:11:cb:54:0e:03:7f:59:3e:81:1a:4c:43: 41:b8:b1:66:66:99:a2:ef:19:5d:e4:d9:ed:eb:9c:06:99:ee: 59:ab:b4:2a:4b:7e:53:1b:88:01:02:3e:fb:2f:2e:a1:c9:7b: a9:1f:db:12:af:74:5c:f5:7c:b8:f4:7e:ee:90:69:e8:a9:90: 6e:14:a1:e9 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICBMAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDRG OERDRjY2QjI1QjcxOTA1NkQxRUQ2NUMxNkVBOTI1N0U1NTUzRDAeFw0yNTA3MjIw NjExMjNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ3MUYzM0JEQjE0NjJF QjFBRUFGQzFCMkUwQTY0Qjk0MENFN0FBOUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDmjZXeGYzWKmBGj6iCasTzWe3HZImfOF499Keg3MEl0QzD0+xb wWelB+twpvAXguLMVHTXQU9sFhbGoW/bR8YpKH2USlcZZjG8Bj72sOf0kq975s6b FI59n/Dq5gZ9qQaBSNCiPItoY3LFJC2IQsOMvRBZd+AFy+v9P8mKh9U+UPOv4zhh mRdavKlVlt0a+8Q146Q/wQezFOsFEsl51qsoKy25OrlB+iR9OXmyx/iSArO9T1Sj ZI/zTMrx+EmpJAN+YODW59GaonlfOhyUqmWJDr2xl7tR9Yj/sAsQHVjE+zWdWeUK 6h4mXuzb+blN25xz5YhJJ4qmhrrAUZH69We/AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQURx8zvbFGLrGur8Gy4KZLlAznqp0wHwYDVR0jBBgwFoAURPjc9msltxkFbR7W XBbqklflVT0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQkVJRE9V L1JQamM5bXNsdHhrRmJSN1dYQmJxa2xmbFZUMC5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvUlBqYzltc2x0eGtGYlI3V1hCYnFrbGZsVlQwLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvQkVJRE9VL1J4OHp2YkZHTHJHdXI4R3k0 S1pMbEF6bnFwMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGg Hk4wDQYJKoZIhvcNAQELBQADggEBALIndHmAIy3xEDlVfvPrJ5R70uajJ2cYtPge DuKOOv88RmleZavCndQSsjHi+m5oauPFsCV3H6k55cv98fRIcJLI+ZpegDGctHL3 40HLmLlDyL1mRieNwKkB3E88hVX7eZ3rFMbK51KKStRQEJ+P4Kq3cjMNtHmr1ddL dx+WiWR571pjiA+CFSD04LTHr3To359GoPrI6jCYvMCYeBgjoT3QXVLKT+KZ9bv4 yhyP1qmAao8UqttvD/CP5hHLVA4Df1k+gRpMQ0G4sWZmmaLvGV3k2e3rnAaZ7lmr tCpLflMbiAECPvsvLqHJe6kf2xKvdFz1fLj0fu6QaeipkG4Uoek= -----END CERTIFICATE-----Generated at Thu Aug 7 04:31:06 2025 by rpki-client