$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LEEMON/N7Q7IFypIENBYArJTXcGKJKRBbs.roa File: N7Q7IFypIENBYArJTXcGKJKRBbs.roa (raw, json) Hash identifier: /OW24I5ONNUa95QnDOy+7MQGDseGU42JsNc0PkCLjM8= Subject key identifier: 37:B4:3B:20:5C:A9:20:43:41:60:0A:C9:4D:77:06:28:92:91:05:BB Certificate issuer: /CN=0486F1D511D2C22EC95994B123B3A24962C1E327 Certificate serial: 02FC Authority key identifier: 04:86:F1:D5:11:D2:C2:2E:C9:59:94:B1:23:B3:A2:49:62:C1:E3:27 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BIbx1RHSwi7JWZSxI7OiSWLB4yc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LEEMON/N7Q7IFypIENBYArJTXcGKJKRBbs.roa Signing time: Fri 22 Aug 2025 08:51:11 +0000 ROA not before: Fri 22 Aug 2025 08:51:11 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9915 IP address blocks: 103.67.160.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LEEMON/BIbx1RHSwi7JWZSxI7OiSWLB4yc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LEEMON/BIbx1RHSwi7JWZSxI7OiSWLB4yc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/BIbx1RHSwi7JWZSxI7OiSWLB4yc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 20:59:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 764 (0x2fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0486F1D511D2C22EC95994B123B3A24962C1E327 Validity Not Before: Aug 22 08:51:11 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=37B43B205CA9204341600AC94D770628929105BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:1f:bf:1d:bf:78:7f:cd:fe:45:14:e8:98:bb: df:ab:38:51:af:2b:b0:9d:db:68:cb:28:d7:32:24: b6:98:f6:36:b6:11:91:97:09:c5:47:db:62:9a:05: c2:64:94:9b:f4:9a:d9:03:b8:cb:12:d8:b6:44:c1: 94:9b:88:9a:a6:c8:b9:cf:a8:7d:55:64:bc:7e:06: 7e:fd:2c:92:6f:fb:93:9e:46:0f:4e:cc:4b:44:29: d4:6c:9b:84:75:c9:05:f3:0f:93:fc:af:58:f4:9f: bd:bf:79:9c:8b:71:cc:3a:2a:c0:08:b5:76:c1:e8: 1f:3e:1d:5d:83:52:b1:8f:15:63:7b:fd:12:57:d2: 4e:11:9b:c4:76:57:8d:3b:43:e7:58:bf:34:29:b5: bd:6c:69:1e:ca:8a:44:b2:fb:16:fb:d2:a4:6c:0e: db:87:76:53:68:d4:c0:82:1c:31:f0:ff:a1:33:00: 21:56:59:4e:31:56:e1:7e:60:f1:78:93:eb:39:d0: 42:c0:34:cf:af:e9:8d:73:e3:1d:e6:65:d4:eb:ee: f6:34:e0:5e:a3:b3:49:e7:08:c0:aa:d5:a0:cd:5b: 9a:86:a5:a2:07:09:a1:45:75:2f:5d:8e:a1:13:73: d0:4c:55:ab:59:09:95:b5:68:3a:37:76:00:4f:ad: 81:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:B4:3B:20:5C:A9:20:43:41:60:0A:C9:4D:77:06:28:92:91:05:BB X509v3 Authority Key Identifier: keyid:04:86:F1:D5:11:D2:C2:2E:C9:59:94:B1:23:B3:A2:49:62:C1:E3:27 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEEMON/BIbx1RHSwi7JWZSxI7OiSWLB4yc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BIbx1RHSwi7JWZSxI7OiSWLB4yc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEEMON/N7Q7IFypIENBYArJTXcGKJKRBbs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.67.160.0/23 Signature Algorithm: sha256WithRSAEncryption 5f:90:f8:53:cd:bf:23:f3:fd:eb:70:76:07:9e:fd:d0:b0:08: b3:b1:49:7d:ce:dc:0c:d3:e3:78:82:9a:f0:17:4c:d3:54:8d: d9:86:f2:27:0e:ec:73:c2:47:1c:b0:80:3c:53:71:04:88:d2: ea:a9:2a:50:cf:72:3e:2b:90:59:86:8c:a4:c7:65:34:a7:20: b7:f5:96:d7:c7:de:6e:58:f7:7d:9f:b2:cd:84:ef:ab:34:4f: e0:70:d6:91:cb:15:53:f9:a9:f6:28:92:a9:0a:da:03:db:ac: b6:47:e9:fd:43:0f:74:18:8d:e9:2c:53:51:8e:78:81:df:f4: e5:97:0e:3d:df:df:0b:82:81:13:84:f7:d2:b3:1a:cb:48:e4: 90:16:57:da:49:16:6b:72:4f:9d:34:04:f8:b1:82:72:b2:e0: e8:b3:d2:9f:48:4d:98:25:2b:c1:ba:ff:ee:1a:f3:72:a1:8c: 5d:38:b2:31:01:f8:3f:9c:b1:b1:ec:aa:8e:24:cb:b1:18:40: ca:06:1e:a8:bc:0e:22:e3:e2:a1:bc:1a:c1:7e:08:c3:4f:06: 6f:65:70:f9:e1:b6:cd:75:72:a9:e1:2d:75:5b:b5:73:cd:f7: 52:c9:d6:04:ff:2d:39:c7:22:dd:ce:77:52:9c:b4:a6:8d:ad: 02:85:1e:3f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICAvwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDQ4 NkYxRDUxMUQyQzIyRUM5NTk5NEIxMjNCM0EyNDk2MkMxRTMyNzAeFw0yNTA4MjIw ODUxMTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDM3QjQzQjIwNUNBOTIw NDM0MTYwMEFDOTRENzcwNjI4OTI5MTA1QkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBH78dv3h/zf5FFOiYu9+rOFGvK7Cd22jLKNcyJLaY9ja2EZGX CcVH22KaBcJklJv0mtkDuMsS2LZEwZSbiJqmyLnPqH1VZLx+Bn79LJJv+5OeRg9O zEtEKdRsm4R1yQXzD5P8r1j0n72/eZyLccw6KsAItXbB6B8+HV2DUrGPFWN7/RJX 0k4Rm8R2V407Q+dYvzQptb1saR7KikSy+xb70qRsDtuHdlNo1MCCHDHw/6EzACFW WU4xVuF+YPF4k+s50ELANM+v6Y1z4x3mZdTr7vY04F6js0nnCMCq1aDNW5qGpaIH CaFFdS9djqETc9BMVatZCZW1aDo3dgBPrYHHAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUN7Q7IFypIENBYArJTXcGKJKRBbswHwYDVR0jBBgwFoAUBIbx1RHSwi7JWZSx I7OiSWLB4ycwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTEVFTU9O L0JJYngxUkhTd2k3SldaU3hJN09pU1dMQjR5Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQklieDFSSFN3aTdKV1pTeEk3T2lTV0xCNHljLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvTEVFTU9OL043UTdJRnlwSUVOQllBckpU WGNHS0pLUkJicy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn Q6AwDQYJKoZIhvcNAQELBQADggEBAF+Q+FPNvyPz/etwdgee/dCwCLOxSX3O3AzT 43iCmvAXTNNUjdmG8icO7HPCRxywgDxTcQSI0uqpKlDPcj4rkFmGjKTHZTSnILf1 ltfH3m5Y932fss2E76s0T+Bw1pHLFVP5qfYokqkK2gPbrLZH6f1DD3QYjeksU1GO eIHf9OWXDj3f3wuCgROE99KzGstI5JAWV9pJFmtyT500BPixgnKy4Oiz0p9ITZgl K8G6/+4a83KhjF04sjEB+D+csbHsqo4ky7EYQMoGHqi8DiLj4qG8GsF+CMNPBm9l cPnhts11cqnhLXVbtXPN91LJ1gT/LTnHIt3Od1KctKaNrQKFHj8= -----END CERTIFICATE-----Generated at Wed Nov 5 19:57:02 2025 by rpki-client