$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/tn_8c0Dou3ePetewxb4aCNtrpUk.roa File: tn_8c0Dou3ePetewxb4aCNtrpUk.roa (raw, json) Hash identifier: qjjP4A30pUMfzrlKWDOKzR00Zluxja3jjQJz8743r4c= Subject key identifier: B6:7F:FC:73:40:E8:BB:77:8F:7A:D7:B0:C5:BE:1A:08:DB:6B:A5:49 Certificate issuer: /CN=3BF441B57C86BD9D193451A005D26CE1A3C6DEE7 Certificate serial: 0396 Authority key identifier: 3B:F4:41:B5:7C:86:BD:9D:19:34:51:A0:05:D2:6C:E1:A3:C6:DE:E7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/tn_8c0Dou3ePetewxb4aCNtrpUk.roa Signing time: Fri 22 Aug 2025 08:52:20 +0000 ROA not before: Fri 22 Aug 2025 08:52:20 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18041 IP address blocks: 103.160.180.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 918 (0x396) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BF441B57C86BD9D193451A005D26CE1A3C6DEE7 Validity Not Before: Aug 22 08:52:20 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B67FFC7340E8BB778F7AD7B0C5BE1A08DB6BA549 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:4b:14:97:b3:ad:3b:39:e1:9b:07:8b:a6:5e: 80:5e:9f:9f:e2:a1:e0:45:9f:b6:98:ca:1d:ed:12: 1f:af:93:d2:4a:29:82:c9:ce:b6:c5:af:e6:43:6f: 77:21:14:a4:08:e5:f8:6b:82:1b:c5:c5:a2:c5:3e: 99:07:a6:48:70:70:32:82:a7:e4:6d:56:b7:ce:9b: 1b:fa:b3:a0:46:be:11:d6:5e:25:30:ce:d9:33:49: a3:a8:67:d7:fb:99:ae:18:d7:2b:e6:e4:c6:08:92: 9a:20:dc:a5:75:a1:24:69:73:2e:c6:60:7a:b1:6b: 30:22:17:5b:62:f8:38:b4:22:f3:fa:0a:bc:5f:5a: 1e:80:25:4f:3e:1b:ba:66:86:89:da:4a:32:19:f2: d5:b3:8f:40:13:18:c5:28:03:aa:83:be:80:0a:8b: 39:64:65:6a:66:77:9b:7f:a1:30:f3:5b:a2:52:5d: 24:99:88:39:72:7b:42:b1:4a:a3:64:b4:45:07:a4: 68:0c:b8:b1:86:64:58:12:c1:67:9d:de:5d:84:ce: 76:5c:f7:67:14:95:95:84:17:c3:1e:70:5f:ee:2c: 4a:3c:a8:7f:63:8f:d5:c2:eb:02:f7:d4:70:9a:d7: 7a:fb:d7:30:39:46:2a:8f:40:68:60:72:93:4c:05: d1:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:7F:FC:73:40:E8:BB:77:8F:7A:D7:B0:C5:BE:1A:08:DB:6B:A5:49 X509v3 Authority Key Identifier: keyid:3B:F4:41:B5:7C:86:BD:9D:19:34:51:A0:05:D2:6C:E1:A3:C6:DE:E7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/tn_8c0Dou3ePetewxb4aCNtrpUk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.160.180.0/23 Signature Algorithm: sha256WithRSAEncryption b0:8d:f7:3f:dd:e8:de:c1:7c:63:f3:16:1c:93:64:39:5c:52: be:ea:a4:e3:2f:d9:bd:b6:f4:5a:c5:27:85:90:98:1a:6d:6e: fb:28:d8:38:76:3f:6a:fa:76:5e:94:e4:d3:95:27:26:a6:06: 43:40:af:6d:09:03:e6:3c:a6:e6:82:dc:d5:7b:51:62:6f:fc: 7d:be:29:99:0b:f5:20:4d:72:c1:58:51:f8:83:99:f1:e1:d2: 45:47:cc:28:56:d2:f0:11:75:ff:c5:63:42:93:2e:0f:46:9f: 69:b1:5e:d8:91:1f:46:ef:e8:56:dc:df:95:f0:07:ab:56:af: 36:df:5b:1b:48:b3:44:37:ff:fb:58:14:1d:dc:9e:d7:4e:43: b7:8c:76:bb:dd:08:d0:d7:cf:11:08:3f:95:72:84:bb:32:c2: 24:19:7f:b0:42:7d:6d:81:bd:3d:d0:bb:6a:2b:69:0a:c5:a2: 81:53:1b:d5:4c:c3:2c:6b:6f:5f:f8:73:cf:98:64:7e:84:72: 5f:9f:cf:25:32:32:68:97:17:9e:1e:3d:42:5b:e9:17:7a:8b: e5:7c:40:c0:c1:65:cd:a5:e0:eb:5f:fe:42:5e:e4:4f:f5:78: 38:77:08:a1:c6:d0:b9:b4:a6:a6:48:df:fe:34:8d:de:c5:58: a1:2e:fc:27 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICA5YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JG NDQxQjU3Qzg2QkQ5RDE5MzQ1MUEwMDVEMjZDRTFBM0M2REVFNzAeFw0yNTA4MjIw ODUyMjBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEI2N0ZGQzczNDBFOEJC Nzc4RjdBRDdCMEM1QkUxQTA4REI2QkE1NDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDySxSXs607OeGbB4umXoBen5/ioeBFn7aYyh3tEh+vk9JKKYLJ zrbFr+ZDb3chFKQI5fhrghvFxaLFPpkHpkhwcDKCp+RtVrfOmxv6s6BGvhHWXiUw ztkzSaOoZ9f7ma4Y1yvm5MYIkpog3KV1oSRpcy7GYHqxazAiF1ti+Di0IvP6Crxf Wh6AJU8+G7pmhonaSjIZ8tWzj0ATGMUoA6qDvoAKizlkZWpmd5t/oTDzW6JSXSSZ iDlye0KxSqNktEUHpGgMuLGGZFgSwWed3l2EznZc92cUlZWEF8MecF/uLEo8qH9j j9XC6wL31HCa13r71zA5RiqPQGhgcpNMBdFrAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUtn/8c0Dou3ePetewxb4aCNtrpUkwHwYDVR0jBBgwFoAUO/RBtXyGvZ0ZNFGg BdJs4aPG3ucwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRVJBWUlO Rk8vT19SQnRYeUd2WjBaTkZHZ0JkSnM0YVBHM3VjLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9PX1JCdFh5R3ZaMFpORkdnQmRKczRhUEczdWMuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9FUkFZSU5GTy90bl84YzBEb3UzZVBl dGV3eGI0YUNOdHJwVWsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ6C0MA0GCSqGSIb3DQEBCwUAA4IBAQCwjfc/3ejewXxj8xYck2Q5XFK+6qTj L9m9tvRaxSeFkJgabW77KNg4dj9q+nZelOTTlScmpgZDQK9tCQPmPKbmgtzVe1Fi b/x9vimZC/UgTXLBWFH4g5nx4dJFR8woVtLwEXX/xWNCky4PRp9psV7YkR9G7+hW 3N+V8AerVq8231sbSLNEN//7WBQd3J7XTkO3jHa73QjQ188RCD+VcoS7MsIkGX+w Qn1tgb090LtqK2kKxaKBUxvVTMMsa29f+HPPmGR+hHJfn88lMjJolxeeHj1CW+kX eovlfEDAwWXNpeDrX/5CXuRP9Xg4dwihxtC5tKamSN/+NI3exVihLvwn -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:46 2025 by rpki-client