$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/iJ5Iy1HGMmcWFkl7fInCiNOmGsQ.roa File: iJ5Iy1HGMmcWFkl7fInCiNOmGsQ.roa (raw, json) Hash identifier: 7mSqSZdLtwW72cuh8a2HEPdv6nNb2H8oN0sreRoGlvE= Subject key identifier: 88:9E:48:CB:51:C6:32:67:16:16:49:7B:7C:89:C2:88:D3:A6:1A:C4 Certificate issuer: /CN=ED186F6314D7B5713EFFECFB93EBC3E82197E2EF Certificate serial: 12E9 Authority key identifier: ED:18:6F:63:14:D7:B5:71:3E:FF:EC:FB:93:EB:C3:E8:21:97:E2:EF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/iJ5Iy1HGMmcWFkl7fInCiNOmGsQ.roa Signing time: Tue 04 Nov 2025 23:51:15 +0000 ROA not before: Tue 04 Nov 2025 23:51:15 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 208932 IP address blocks: 103.127.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 20:59:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4841 (0x12e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ED186F6314D7B5713EFFECFB93EBC3E82197E2EF Validity Not Before: Nov 4 23:51:15 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=889E48CB51C632671616497B7C89C288D3A61AC4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:72:47:6f:4f:94:29:f1:ed:29:45:36:f0:29: 44:4b:06:44:7f:6b:dd:78:6f:8f:cd:d5:5e:1a:ab: c6:26:5b:06:99:0d:30:65:02:fa:cc:3e:f8:ad:a8: ff:bd:40:94:ba:a7:39:76:9d:11:52:1f:dd:d7:8b: a7:62:5b:24:5c:fe:26:bb:e4:82:18:6f:2a:da:54: 66:2d:58:c2:d2:1e:79:c2:8e:0c:92:bc:be:39:fe: 04:f2:54:34:97:c0:74:b6:fb:55:97:51:8a:f0:cd: e4:3c:36:24:3c:3b:2a:9d:07:22:37:4b:35:b0:ca: 56:e9:c3:5c:7a:37:58:80:0c:28:5f:89:98:2c:e7: bb:b4:b6:48:7d:93:56:e8:1c:99:e5:70:2e:c6:be: 9e:16:0c:5f:f1:28:e3:cf:40:bf:7e:9b:9b:0b:a9: b0:54:ae:79:7d:75:75:4b:46:fe:b6:6a:c4:05:f0: 38:af:aa:d2:cf:12:31:ad:11:89:e8:b6:9f:f0:dd: 76:6d:cd:25:67:8e:e6:a7:da:91:23:af:e2:83:f7: 98:c0:bf:da:c8:d2:c9:b8:03:e8:a0:9f:31:49:92: c9:8f:b3:20:52:df:02:86:d1:04:f2:6a:c4:11:3a: 59:e9:30:49:0b:29:3c:4f:c6:1b:b4:42:cb:8f:19: e9:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:9E:48:CB:51:C6:32:67:16:16:49:7B:7C:89:C2:88:D3:A6:1A:C4 X509v3 Authority Key Identifier: keyid:ED:18:6F:63:14:D7:B5:71:3E:FF:EC:FB:93:EB:C3:E8:21:97:E2:EF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/iJ5Iy1HGMmcWFkl7fInCiNOmGsQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.127.236.0/24 Signature Algorithm: sha256WithRSAEncryption eb:fe:35:93:52:da:49:20:cf:48:f4:d7:ce:48:af:aa:b2:c6: 39:0a:e2:19:f4:1c:da:f7:ab:c8:b2:6c:22:d6:7e:08:60:f8: 9e:45:d1:c1:b6:2e:eb:34:58:2f:05:b2:2b:e0:fd:9c:a7:c6: 71:11:ff:05:40:25:33:a7:47:bd:4e:26:64:5e:89:38:16:be: be:c8:cd:ac:b6:1a:08:19:17:92:1c:45:f8:51:c8:b8:38:65: ec:e6:74:d6:5e:1a:0a:9f:2c:a7:f2:be:9e:b5:55:55:9e:49: 2b:66:cc:93:07:31:49:27:f8:3d:75:03:00:07:86:95:7f:13: 4a:89:2b:b3:8f:be:7f:cd:bf:c2:ad:ea:63:5e:c0:c0:7d:67: 2d:34:ad:bb:b6:c4:8c:53:d4:ea:0c:ec:85:62:bd:10:28:8e: cf:10:1c:3b:ec:c1:4d:a6:4f:30:6b:30:62:21:2d:5e:a8:4d: e7:19:54:1e:d3:97:ad:30:48:7f:1b:3e:cf:32:4c:72:50:3c: 20:87:18:33:88:b8:fd:e8:0d:96:4f:a5:17:e2:3f:5c:fe:df: e8:b7:8a:9d:9b:95:7b:f8:86:8c:04:7a:b2:7c:b5:0b:d8:d2: 35:4d:1c:84:ff:3f:d6:38:6c:58:b2:a7:ba:f1:67:fb:0f:80: b9:b0:c0:ba -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEukwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUQx ODZGNjMxNEQ3QjU3MTNFRkZFQ0ZCOTNFQkMzRTgyMTk3RTJFRjAeFw0yNTExMDQy MzUxMTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDg4OUU0OENCNTFDNjMy NjcxNjE2NDk3QjdDODlDMjg4RDNBNjFBQzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCeckdvT5Qp8e0pRTbwKURLBkR/a914b4/N1V4aq8YmWwaZDTBl AvrMPvitqP+9QJS6pzl2nRFSH93Xi6diWyRc/ia75IIYbyraVGYtWMLSHnnCjgyS vL45/gTyVDSXwHS2+1WXUYrwzeQ8NiQ8OyqdByI3SzWwylbpw1x6N1iADChfiZgs 57u0tkh9k1boHJnlcC7Gvp4WDF/xKOPPQL9+m5sLqbBUrnl9dXVLRv62asQF8Div qtLPEjGtEYnotp/w3XZtzSVnjuan2pEjr+KD95jAv9rI0sm4A+ignzFJksmPsyBS 3wKG0QTyasQROlnpMEkLKTxPxhu0QsuPGemdAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUiJ5Iy1HGMmcWFkl7fInCiNOmGsQwHwYDVR0jBBgwFoAU7RhvYxTXtXE+/+z7 k+vD6CGX4u8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hVTllJ TkcvN1Jodll4VFh0WEUtXy16N2stdkQ2Q0dYNHU4LmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS83Umh2WXhUWHRYRS1fLXo3ay12RDZDR1g0dTguY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSFVOWUlORy9pSjVJeTFIR01tY1dG a2w3ZkluQ2lOT21Hc1Eucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZ3/sMA0GCSqGSIb3DQEBCwUAA4IBAQDr/jWTUtpJIM9I9NfOSK+qssY5CuIZ 9Bza96vIsmwi1n4IYPieRdHBti7rNFgvBbIr4P2cp8ZxEf8FQCUzp0e9TiZkXok4 Fr6+yM2sthoIGReSHEX4Uci4OGXs5nTWXhoKnyyn8r6etVVVnkkrZsyTBzFJJ/g9 dQMAB4aVfxNKiSuzj75/zb/CrepjXsDAfWctNK27tsSMU9TqDOyFYr0QKI7PEBw7 7MFNpk8wazBiIS1eqE3nGVQe05etMEh/Gz7PMkxyUDwghxgziLj96A2WT6UX4j9c /t/ot4qdm5V7+IaMBHqyfLUL2NI1TRyE/z/WOGxYsqe68Wf7D4C5sMC6 -----END CERTIFICATE-----Generated at Wed Nov 5 18:01:44 2025 by rpki-client