$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EASPNET/4wqHU4EAtHm_gA905S3NzEBLQ4s.roa File: 4wqHU4EAtHm_gA905S3NzEBLQ4s.roa (raw, json) Hash identifier: fQuL0w/5ATw7m+AGK6VjfQsNYjYtneKhh1YVbMXFQhc= Subject key identifier: E3:0A:87:53:81:00:B4:79:BF:80:0F:74:E5:2D:CD:CC:40:4B:43:8B Certificate issuer: /CN=552B16164C361040D88F32D36509448CF3BB9D25 Certificate serial: 0D97 Authority key identifier: 55:2B:16:16:4C:36:10:40:D8:8F:32:D3:65:09:44:8C:F3:BB:9D:25 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/4wqHU4EAtHm_gA905S3NzEBLQ4s.roa Signing time: Fri 22 Aug 2025 08:52:51 +0000 ROA not before: Fri 22 Aug 2025 08:52:51 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 10135 IP address blocks: 115.85.144.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/VSsWFkw2EEDYjzLTZQlEjPO7nSU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/VSsWFkw2EEDYjzLTZQlEjPO7nSU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3479 (0xd97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B16164C361040D88F32D36509448CF3BB9D25 Validity Not Before: Aug 22 08:52:51 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E30A87538100B479BF800F74E52DCDCC404B438B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:02:01:b6:4b:26:65:8f:11:b8:17:06:4d:34: 0d:4f:41:36:6f:a3:fb:61:a8:1e:89:be:f6:e8:61: cd:97:ef:d5:00:dd:66:64:bf:b1:4b:6c:a9:70:16: 44:13:03:9b:fa:51:60:71:72:81:d2:96:71:37:9f: 8e:03:ec:44:66:92:50:66:37:7f:7a:0d:eb:41:f4: 4b:7b:21:ba:45:f9:8f:4b:0f:18:00:4f:b3:20:ea: b8:6e:c8:7b:2f:5f:62:48:fa:0f:15:fd:5f:52:dd: e3:49:d6:64:69:9d:a2:a9:01:d7:95:d7:ee:87:85: 80:1b:89:d4:8a:22:eb:e7:a7:21:95:0d:10:ed:54: 0d:b1:6a:e6:dc:34:e8:d8:3b:e1:70:58:8a:a5:57: 33:ef:a0:a6:a0:db:8f:4b:77:ac:03:10:ad:fd:8b: 83:7f:0e:7a:85:f9:0f:f8:17:5c:9f:83:57:45:59: 34:74:6d:e6:97:c9:bc:27:12:62:cc:60:b5:f1:c8: ba:9e:a6:bd:14:8f:70:ce:21:b3:2b:9a:d7:59:16: 26:31:cb:09:7d:c5:32:b5:2d:b3:4e:6c:e4:bd:d7: db:36:0f:81:d6:fc:a0:bd:10:46:d4:07:02:ec:d3: de:3f:b0:d8:8c:49:cc:f7:d0:36:86:cb:3c:93:45: 21:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:0A:87:53:81:00:B4:79:BF:80:0F:74:E5:2D:CD:CC:40:4B:43:8B X509v3 Authority Key Identifier: keyid:55:2B:16:16:4C:36:10:40:D8:8F:32:D3:65:09:44:8C:F3:BB:9D:25 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/VSsWFkw2EEDYjzLTZQlEjPO7nSU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/4wqHU4EAtHm_gA905S3NzEBLQ4s.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 115.85.144.0/20 Signature Algorithm: sha256WithRSAEncryption 2c:fe:fa:cc:67:52:12:27:ea:1a:3f:76:19:2f:8a:0d:d8:27: fe:95:37:8c:fc:11:b6:ab:10:52:35:cc:78:ca:12:a7:f0:db: e0:e6:85:86:88:77:f4:73:67:7c:9c:81:2a:25:63:b2:6f:a9: 83:4c:42:b1:52:71:a7:9d:f4:25:9b:7f:d2:d9:30:20:c0:be: d9:03:f3:16:00:d6:52:2a:37:28:97:7d:bb:ab:6d:88:62:8d: 10:42:da:ba:10:a5:f6:dc:d1:74:d9:c1:d6:a3:06:7a:c5:2b: 78:62:fe:37:ac:08:f8:d1:97:60:e6:bf:90:24:09:63:b5:ae: 25:3d:e7:ad:33:5c:05:2e:bf:eb:e3:11:a5:dd:54:82:97:7f: d6:2a:8a:3a:ee:c2:db:1b:38:cf:2b:56:5d:24:d1:0d:9b:2e: 2b:c6:1c:0f:cb:a6:1d:08:d0:40:f0:5d:ea:3b:7d:07:f0:49: 78:f0:03:b5:c9:2b:a8:41:3a:d7:e1:ba:85:93:ba:6c:b3:8a: 58:ce:b2:07:1d:96:d0:68:a4:4e:ec:a0:85:3a:a6:fe:83:58: bc:8f:c5:06:8b:73:5c:35:b4:ef:ae:34:55:55:6f:bc:6f:1f: 1a:d3:47:5f:38:37:77:17:97:99:22:19:c1:01:44:d3:de:4f: 6a:2e:61:2a -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDZcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTUy QjE2MTY0QzM2MTA0MEQ4OEYzMkQzNjUwOTQ0OENGM0JCOUQyNTAeFw0yNTA4MjIw ODUyNTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEUzMEE4NzUzODEwMEI0 NzlCRjgwMEY3NEU1MkRDRENDNDA0QjQzOEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNAgG2SyZljxG4FwZNNA1PQTZvo/thqB6JvvboYc2X79UA3WZk v7FLbKlwFkQTA5v6UWBxcoHSlnE3n44D7ERmklBmN396DetB9Et7IbpF+Y9LDxgA T7Mg6rhuyHsvX2JI+g8V/V9S3eNJ1mRpnaKpAdeV1+6HhYAbidSKIuvnpyGVDRDt VA2xaubcNOjYO+FwWIqlVzPvoKag249Ld6wDEK39i4N/DnqF+Q/4F1yfg1dFWTR0 beaXybwnEmLMYLXxyLqepr0Uj3DOIbMrmtdZFiYxywl9xTK1LbNObOS919s2D4HW /KC9EEbUBwLs094/sNiMScz30DaGyzyTRSHfAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU4wqHU4EAtHm/gA905S3NzEBLQ4swHwYDVR0jBBgwFoAUVSsWFkw2EEDYjzLT ZQlEjPO7nSUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRUFTUE5F VC9WU3NXRmt3MkVFRFlqekxUWlFsRWpQTzduU1UuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1ZTc1dGa3cyRUVEWWp6TFRaUWxFalBPN25TVS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0VBU1BORVQvNHdxSFU0RUF0SG1fZ0E5 MDVTM056RUJMUTRzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BHNVkDANBgkqhkiG9w0BAQsFAAOCAQEALP76zGdSEifqGj92GS+KDdgn/pU3jPwR tqsQUjXMeMoSp/Db4OaFhoh39HNnfJyBKiVjsm+pg0xCsVJxp530JZt/0tkwIMC+ 2QPzFgDWUio3KJd9u6ttiGKNEELauhCl9tzRdNnB1qMGesUreGL+N6wI+NGXYOa/ kCQJY7WuJT3nrTNcBS6/6+MRpd1Ugpd/1iqKOu7C2xs4zytWXSTRDZsuK8YcD8um HQjQQPBd6jt9B/BJePADtckrqEE61+G6hZO6bLOKWM6yBx2W0GikTuyghTqm/oNY vI/FBotzXDW07640VVVvvG8fGtNHXzg3dxeXmSIZwQFE095Pai5hKg== -----END CERTIFICATE-----Generated at Sun Aug 24 09:34:06 2025 by rpki-client