$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/aI7BZ4tSzs-QOBnswY0DcMtHXP8.roa File: aI7BZ4tSzs-QOBnswY0DcMtHXP8.roa (raw, json) Hash identifier: qZs/HfjHmnvP0ibdfHEo1ywcVn5O4OBRxmdPmmvrzx8= Subject key identifier: 68:8E:C1:67:8B:52:CE:CF:90:38:19:EC:C1:8D:03:70:CB:47:5C:FF Certificate issuer: /CN=0B67C78E35D23632A25532AEFE8B4A9FCABE3B4D Certificate serial: 0449 Authority key identifier: 0B:67:C7:8E:35:D2:36:32:A2:55:32:AE:FE:8B:4A:9F:CA:BE:3B:4D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/C2fHjjXSNjKiVTKu_otKn8q-O00.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/aI7BZ4tSzs-QOBnswY0DcMtHXP8.roa Signing time: Tue 12 Aug 2025 09:18:47 +0000 ROA not before: Tue 12 Aug 2025 09:18:47 +0000 ROA not after: Thu 28 Aug 2025 15:30:19 +0000 asID: 152613 IP address blocks: 160.30.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/C2fHjjXSNjKiVTKu_otKn8q-O00.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/C2fHjjXSNjKiVTKu_otKn8q-O00.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/C2fHjjXSNjKiVTKu_otKn8q-O00.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 15 Aug 2025 04:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1097 (0x449) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0B67C78E35D23632A25532AEFE8B4A9FCABE3B4D Validity Not Before: Aug 12 09:18:47 2025 GMT Not After : Aug 28 15:30:19 2025 GMT Subject: CN=688EC1678B52CECF903819ECC18D0370CB475CFF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:7e:f8:87:df:b8:c9:e4:13:0a:5f:94:29:76: 9f:22:61:2a:77:b9:3e:68:56:0f:ec:f8:6f:72:da: 60:c8:9b:9e:0b:45:26:11:85:15:fb:e2:5c:80:80: 66:af:39:fa:df:48:10:73:41:7b:ff:af:17:94:04: 3d:59:24:d2:97:96:15:83:f4:fe:78:61:cd:cd:f1: cd:a7:62:ec:b8:72:53:c3:4e:46:96:9f:4c:31:81: 9b:29:2e:b7:03:88:01:16:60:4e:7e:76:c0:f7:65: c0:a3:1c:23:73:e2:4d:24:0c:5a:a5:f5:5f:61:cf: 59:a2:3b:d5:a8:25:7c:f1:8a:61:cf:13:13:3f:62: a3:92:11:f3:2f:0e:35:4b:a4:21:90:3d:ca:98:0e: f5:b6:23:90:31:b8:cb:7c:b3:13:e7:d9:ee:4f:e4: 74:4b:8f:59:87:bd:6d:17:93:8d:77:5c:71:c5:37: d3:ed:be:45:b9:f6:27:fa:0e:d4:84:f3:f8:f6:b0: 1d:0a:cd:0d:ef:bb:f0:ea:15:85:09:27:ed:8f:b5: 1a:2b:8a:1c:12:a6:14:78:6e:d1:5a:0a:f7:3b:9d: 99:89:ab:14:a0:dd:14:49:71:95:fe:b5:09:b4:5c: d9:cc:60:12:6d:92:a3:e3:8b:c9:98:61:08:f3:e6: 76:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:8E:C1:67:8B:52:CE:CF:90:38:19:EC:C1:8D:03:70:CB:47:5C:FF X509v3 Authority Key Identifier: keyid:0B:67:C7:8E:35:D2:36:32:A2:55:32:AE:FE:8B:4A:9F:CA:BE:3B:4D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/C2fHjjXSNjKiVTKu_otKn8q-O00.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/C2fHjjXSNjKiVTKu_otKn8q-O00.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/aI7BZ4tSzs-QOBnswY0DcMtHXP8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.30.210.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:4f:09:3c:f9:f2:20:11:0c:82:22:14:c9:97:76:d2:70:2d: 22:f8:10:56:cf:97:67:1f:e1:66:56:4f:c6:1c:c0:a2:25:97: 11:c1:4a:40:ce:30:63:c6:62:80:60:c6:a3:15:a0:6b:e8:3e: 93:d1:41:da:31:dd:75:8f:22:c3:37:e0:b2:d9:4f:62:da:20: d8:32:99:bf:3b:11:12:5b:37:fb:f2:c0:bf:d2:74:50:a8:64: 8c:aa:46:cf:9f:79:93:e3:0a:fa:bd:b4:06:c7:67:09:22:c5: 2c:36:5c:eb:e7:69:1c:a6:d2:6d:6c:30:78:af:cc:d7:f5:39: 1b:e9:90:f0:f5:c0:a8:6f:7f:ee:97:9b:97:92:aa:71:2d:08: da:80:c8:66:04:9e:74:bc:0c:d5:d7:eb:39:68:b2:b6:d9:25: 53:e8:66:1c:47:91:5e:7e:87:be:02:6d:bc:39:4c:93:26:0b: 8e:a6:58:11:ef:36:ad:ba:43:3a:ad:ae:c3:3b:d4:fc:89:bd: d6:eb:2f:c1:50:f7:25:a1:2c:68:85:f3:8f:3a:cd:14:a0:59: 91:b5:32:49:e4:44:ab:b6:1a:f5:58:8b:18:c1:84:de:08:a9: 58:ea:2a:ba:bf:6d:f5:d8:1d:f4:5d:b1:35:cc:db:1f:73:49: d1:b1:cc:f1 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICBEkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEI2 N0M3OEUzNUQyMzYzMkEyNTUzMkFFRkU4QjRBOUZDQUJFM0I0RDAeFw0yNTA4MTIw OTE4NDdaFw0yNTA4MjgxNTMwMTlaMDMxMTAvBgNVBAMTKDY4OEVDMTY3OEI1MkNF Q0Y5MDM4MTlFQ0MxOEQwMzcwQ0I0NzVDRkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDdfviH37jJ5BMKX5Qpdp8iYSp3uT5oVg/s+G9y2mDIm54LRSYR hRX74lyAgGavOfrfSBBzQXv/rxeUBD1ZJNKXlhWD9P54Yc3N8c2nYuy4clPDTkaW n0wxgZspLrcDiAEWYE5+dsD3ZcCjHCNz4k0kDFql9V9hz1miO9WoJXzximHPExM/ YqOSEfMvDjVLpCGQPcqYDvW2I5AxuMt8sxPn2e5P5HRLj1mHvW0Xk413XHHFN9Pt vkW59if6DtSE8/j2sB0KzQ3vu/DqFYUJJ+2PtRorihwSphR4btFaCvc7nZmJqxSg 3RRJcZX+tQm0XNnMYBJtkqPji8mYYQjz5nZRAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUaI7BZ4tSzs+QOBnswY0DcMtHXP8wHwYDVR0jBBgwFoAUC2fHjjXSNjKiVTKu /otKn8q+O00wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ09ERVVQ VEVDSC9DMmZIampYU05qS2lWVEt1X290S244cS1PMDAuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL0MyZkhqalhTTmpLaVZUS3Vfb3RLbjhxLU8wMC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NPREVVUFRFQ0gvYUk3Qlo0dFN6 cy1RT0Juc3dZMERjTXRIWFA4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAKAe0jANBgkqhkiG9w0BAQsFAAOCAQEADE8JPPnyIBEMgiIUyZd20nAt IvgQVs+XZx/hZlZPxhzAoiWXEcFKQM4wY8ZigGDGoxWga+g+k9FB2jHddY8iwzfg stlPYtog2DKZvzsREls3+/LAv9J0UKhkjKpGz595k+MK+r20BsdnCSLFLDZc6+dp HKbSbWwweK/M1/U5G+mQ8PXAqG9/7pebl5KqcS0I2oDIZgSedLwM1dfrOWiyttkl U+hmHEeRXn6HvgJtvDlMkyYLjqZYEe82rbpDOq2uwzvU/Im91usvwVD3JaEsaIXz jzrNFKBZkbUySeREq7Ya9ViLGMGE3gipWOoqur9t9dgd9F2xNczbH3NJ0bHM8Q== -----END CERTIFICATE-----Generated at Fri Aug 15 00:21:50 2025 by rpki-client