$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/73adt7vzmBw9-SND6DrzoKpFC50.roa File: 73adt7vzmBw9-SND6DrzoKpFC50.roa (raw, json) Hash identifier: gPcms/VC5ygb+QV+/9/DJvUcmFcit5leIfzVE09qLTI= Subject key identifier: EF:76:9D:B7:BB:F3:98:1C:3D:F9:23:43:E8:3A:F3:A0:AA:45:0B:9D Certificate issuer: /CN=422E7C95D87DE9AEEB212A0C4CCB0174E65CA5D0 Certificate serial: 0537 Authority key identifier: 42:2E:7C:95:D8:7D:E9:AE:EB:21:2A:0C:4C:CB:01:74:E6:5C:A5:D0 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Qi58ldh96a7rISoMTMsBdOZcpdA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/73adt7vzmBw9-SND6DrzoKpFC50.roa Signing time: Thu 24 Jul 2025 08:37:50 +0000 ROA not before: Thu 24 Jul 2025 08:37:50 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9002 IP address blocks: 160.25.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/Qi58ldh96a7rISoMTMsBdOZcpdA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/Qi58ldh96a7rISoMTMsBdOZcpdA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Qi58ldh96a7rISoMTMsBdOZcpdA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 07:41:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1335 (0x537) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=422E7C95D87DE9AEEB212A0C4CCB0174E65CA5D0 Validity Not Before: Jul 24 08:37:50 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=EF769DB7BBF3981C3DF92343E83AF3A0AA450B9D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:2a:c2:67:89:f8:70:73:1d:56:07:49:93:7f: 1d:36:ba:55:29:09:04:63:07:1c:6e:5a:f4:57:88: 40:6d:5a:0f:02:75:f4:a6:4c:58:4b:da:21:ad:5c: a9:c0:86:01:5e:4f:38:2b:16:47:3c:a1:0b:1e:db: 91:2a:90:cf:80:1c:41:ef:0b:01:fa:0a:db:53:3b: a1:71:d6:d3:10:cd:92:e7:f4:8e:ac:65:0c:53:2f: 9d:dc:13:f1:4f:70:e4:5b:2f:fe:e7:d7:25:82:55: 6c:30:91:60:2e:a4:33:75:d4:63:f4:34:d8:53:de: 10:db:cf:b4:c3:af:d1:5e:42:76:3f:63:3a:c1:e4: b5:85:5f:ee:10:14:16:f0:92:a7:ed:e7:0f:5e:08: 39:fc:f1:5b:4b:7d:32:5e:4c:63:bd:18:48:e3:66: 5a:80:1a:f8:43:95:32:0b:d5:69:c8:ed:9c:ef:2c: fe:f1:ff:91:1f:09:9d:7d:56:83:1b:a9:24:f5:37: db:ba:d3:a2:11:92:fb:bf:a9:d8:cc:db:9a:0e:37: ca:d5:5d:66:7a:b5:18:72:7d:e0:eb:e0:7d:3b:48: ed:fd:8c:58:5e:1c:af:b6:23:1a:43:bd:64:7d:e6: 6f:54:e1:4c:f3:b1:51:e8:23:17:c6:a6:00:35:75: 83:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:76:9D:B7:BB:F3:98:1C:3D:F9:23:43:E8:3A:F3:A0:AA:45:0B:9D X509v3 Authority Key Identifier: keyid:42:2E:7C:95:D8:7D:E9:AE:EB:21:2A:0C:4C:CB:01:74:E6:5C:A5:D0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/Qi58ldh96a7rISoMTMsBdOZcpdA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Qi58ldh96a7rISoMTMsBdOZcpdA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/73adt7vzmBw9-SND6DrzoKpFC50.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.25.221.0/24 Signature Algorithm: sha256WithRSAEncryption 08:99:79:18:7c:ca:e4:c0:ff:e0:c4:a0:0d:7c:d1:dd:ef:66: de:db:d5:9e:27:4c:41:49:d9:a7:61:c3:e0:09:6f:0f:9d:15: 94:a7:f5:b4:64:97:aa:cf:20:79:a2:5a:05:37:13:5c:6e:9d: 92:92:65:f5:a7:a4:50:f2:34:4f:44:8a:8d:c9:ae:81:56:4f: 16:74:2e:76:50:c0:9a:65:ca:81:e8:f7:4e:e6:9d:28:83:39: 07:b3:3f:e4:8d:99:b2:6a:2b:79:b2:2e:cf:eb:79:f2:db:53: ca:e3:1a:c3:31:76:03:75:9e:21:58:07:dc:13:93:d8:69:c2: 0e:d9:af:82:66:ad:43:2a:1e:89:73:3c:e0:e3:9d:47:e5:6d: a4:01:8a:12:bc:b0:f5:38:3a:b8:84:cc:e3:49:e2:29:f2:d4: f3:be:28:ef:6a:f3:e3:ca:7e:4f:b5:6b:bc:96:f4:7d:4e:71: b4:ad:92:78:7a:3c:62:60:83:62:c1:59:4c:35:43:c2:d0:5a: 1c:41:40:78:37:d2:1e:af:3a:c3:c0:d1:75:16:0f:a5:ac:ee: e8:26:3c:71:07:74:d8:e3:87:3c:70:a2:02:d4:27:7f:9d:3b: d6:e3:f9:04:d8:6b:3a:62:f5:51:03:2d:b4:62:ed:44:70:0a: cd:71:42:38 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICBTcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDIy RTdDOTVEODdERTlBRUVCMjEyQTBDNENDQjAxNzRFNjVDQTVEMDAeFw0yNTA3MjQw ODM3NTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVGNzY5REI3QkJGMzk4 MUMzREY5MjM0M0U4M0FGM0EwQUE0NTBCOUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2KsJnifhwcx1WB0mTfx02ulUpCQRjBxxuWvRXiEBtWg8CdfSm TFhL2iGtXKnAhgFeTzgrFkc8oQse25EqkM+AHEHvCwH6CttTO6Fx1tMQzZLn9I6s ZQxTL53cE/FPcORbL/7n1yWCVWwwkWAupDN11GP0NNhT3hDbz7TDr9FeQnY/YzrB 5LWFX+4QFBbwkqft5w9eCDn88VtLfTJeTGO9GEjjZlqAGvhDlTIL1WnI7ZzvLP7x /5EfCZ19VoMbqST1N9u606IRkvu/qdjM25oON8rVXWZ6tRhyfeDr4H07SO39jFhe HK+2IxpDvWR95m9U4UzzsVHoIxfGpgA1dYMDAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU73adt7vzmBw9+SND6DrzoKpFC50wHwYDVR0jBBgwFoAUQi58ldh96a7rISoM TMsBdOZcpdAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0tJUFRF Q0gvUWk1OGxkaDk2YTdySVNvTVRNc0JkT1pjcGRBLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9RaTU4bGRoOTZhN3JJU29NVE1zQmRPWmNwZEEuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TS0lQVEVDSC83M2FkdDd2em1Cdzkt U05ENkRyem9LcEZDNTAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAoBndMA0GCSqGSIb3DQEBCwUAA4IBAQAImXkYfMrkwP/gxKANfNHd72be29We J0xBSdmnYcPgCW8PnRWUp/W0ZJeqzyB5oloFNxNcbp2SkmX1p6RQ8jRPRIqNya6B Vk8WdC52UMCaZcqB6PdO5p0ogzkHsz/kjZmyait5si7P63ny21PK4xrDMXYDdZ4h WAfcE5PYacIO2a+CZq1DKh6Jczzg451H5W2kAYoSvLD1ODq4hMzjSeIp8tTzvijv avPjyn5PtWu8lvR9TnG0rZJ4ejxiYINiwVlMNUPC0FocQUB4N9IerzrDwNF1Fg+l rO7oJjxxB3TY44c8cKIC1Cd/nTvW4/kE2Gs6YvVRAy20Yu1EcArNcUI4 -----END CERTIFICATE-----Generated at Mon Aug 11 04:48:14 2025 by rpki-client