$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/JDA/4E10drccJBoAMAEZgB6jN97r-Xc.roa File: 4E10drccJBoAMAEZgB6jN97r-Xc.roa (raw, json) Hash identifier: moLo0vD5QxUFVKuCxrBT3i1tc9KC2igzUiHR6ZOruSc= Subject key identifier: E0:4D:74:76:B7:1C:24:1A:00:30:01:19:80:1E:A3:37:DE:EB:F9:77 Certificate issuer: /CN=86F6D06B4049386A106E5ED22656A93D9F355274 Certificate serial: 0221 Authority key identifier: 86:F6:D0:6B:40:49:38:6A:10:6E:5E:D2:26:56:A9:3D:9F:35:52:74 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/hvbQa0BJOGoQbl7SJlapPZ81UnQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JDA/4E10drccJBoAMAEZgB6jN97r-Xc.roa Signing time: Fri 22 Aug 2025 09:01:10 +0000 ROA not before: Fri 22 Aug 2025 09:01:10 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38136 IP address blocks: 210.79.154.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/JDA/hvbQa0BJOGoQbl7SJlapPZ81UnQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/JDA/hvbQa0BJOGoQbl7SJlapPZ81UnQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/hvbQa0BJOGoQbl7SJlapPZ81UnQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 545 (0x221) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86F6D06B4049386A106E5ED22656A93D9F355274 Validity Not Before: Aug 22 09:01:10 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E04D7476B71C241A00300119801EA337DEEBF977 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:b4:f5:59:b1:73:e1:f8:e3:ef:de:38:67:a9: 2a:d3:d3:23:9e:08:c5:20:89:b1:32:74:ff:c7:69: cd:2c:b0:f5:b8:8f:2f:c7:12:b2:1c:5c:13:8f:ab: 11:d4:2e:b2:0b:16:0a:9a:b5:e6:18:38:44:c3:fa: 9f:a0:93:44:56:16:da:e8:20:bd:d6:dd:1e:88:55: d5:17:22:ce:6d:98:37:9d:11:5c:b4:3f:23:64:62: 05:f1:ee:90:a2:d2:14:04:9d:7a:9b:ea:2a:24:de: d1:73:5a:ad:77:41:8e:95:7f:b5:10:8d:1c:25:35: 63:af:5d:72:05:66:06:73:bb:e9:17:0a:52:ac:ed: f0:df:1e:65:bb:a5:86:98:3d:4a:98:d9:20:5a:00: 74:ed:87:81:dd:4f:a6:ef:67:e1:43:2f:61:b3:ee: e4:be:39:69:8f:1f:88:09:ec:c8:f6:c7:e1:68:b6: 61:d0:95:d5:a5:37:17:e3:6a:79:6a:68:99:dd:37: 0f:d1:9d:37:0d:8d:6a:90:ac:e7:94:fa:14:b5:ba: d3:48:1b:82:59:ee:78:71:5d:c2:69:20:f1:96:1f: fb:1a:f5:14:b9:55:53:c4:df:f4:00:1d:f9:6e:74: c1:7e:3c:0d:1e:86:55:d3:22:f2:28:27:bd:cc:87: b9:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:4D:74:76:B7:1C:24:1A:00:30:01:19:80:1E:A3:37:DE:EB:F9:77 X509v3 Authority Key Identifier: keyid:86:F6:D0:6B:40:49:38:6A:10:6E:5E:D2:26:56:A9:3D:9F:35:52:74 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JDA/hvbQa0BJOGoQbl7SJlapPZ81UnQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/hvbQa0BJOGoQbl7SJlapPZ81UnQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JDA/4E10drccJBoAMAEZgB6jN97r-Xc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.79.154.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:96:e1:c3:65:80:54:57:95:1c:d2:2d:9a:c2:fe:e7:7d:71: 08:27:d0:2f:40:40:c9:b8:4a:c7:2f:f3:b5:16:c1:9a:e1:5e: 4e:db:1e:1c:a1:b4:8c:36:bb:67:e3:b4:1a:f6:a6:07:7e:59: fa:68:41:de:50:63:82:6b:66:c8:76:45:d7:80:0e:d1:4c:97: f7:f6:dc:6d:b0:68:2f:94:38:8b:38:8f:37:f2:d7:d9:35:31: b6:85:d1:ed:1e:16:ab:8b:7e:9d:10:60:bc:25:98:6f:f9:76: 52:fb:76:f7:d4:8a:ef:73:a5:0d:63:c5:66:59:7c:ad:f7:0d: be:52:ba:fb:7e:7a:74:0f:24:2b:49:4f:44:45:96:48:99:85: 40:d9:84:fb:0d:9a:a8:2c:4f:98:4c:d7:43:c9:c6:92:94:0a: af:c6:3c:b8:f5:62:b1:4a:39:77:56:38:62:e8:e8:e7:6e:4c: 26:cb:de:09:29:f7:49:f0:6f:b9:9b:a6:39:5a:20:2e:fc:85: af:47:89:5e:36:e6:db:d5:94:3b:cb:92:b9:09:aa:2e:d4:5a: 1a:17:a7:0c:b1:77:4a:cc:0b:61:45:89:0e:e1:fc:a2:53:d0: 33:60:f3:1f:10:5b:42:92:6c:b2:af:1e:1e:e1:29:df:18:86: d4:94:67:f5 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICAiEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODZG NkQwNkI0MDQ5Mzg2QTEwNkU1RUQyMjY1NkE5M0Q5RjM1NTI3NDAeFw0yNTA4MjIw OTAxMTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEUwNEQ3NDc2QjcxQzI0 MUEwMDMwMDExOTgwMUVBMzM3REVFQkY5NzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDctPVZsXPh+OPv3jhnqSrT0yOeCMUgibEydP/Hac0ssPW4jy/H ErIcXBOPqxHULrILFgqateYYOETD+p+gk0RWFtroIL3W3R6IVdUXIs5tmDedEVy0 PyNkYgXx7pCi0hQEnXqb6iok3tFzWq13QY6Vf7UQjRwlNWOvXXIFZgZzu+kXClKs 7fDfHmW7pYaYPUqY2SBaAHTth4HdT6bvZ+FDL2Gz7uS+OWmPH4gJ7Mj2x+FotmHQ ldWlNxfjanlqaJndNw/RnTcNjWqQrOeU+hS1utNIG4JZ7nhxXcJpIPGWH/sa9RS5 VVPE3/QAHfludMF+PA0ehlXTIvIoJ73Mh7lLAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU4E10drccJBoAMAEZgB6jN97r+XcwHwYDVR0jBBgwFoAUhvbQa0BJOGoQbl7S JlapPZ81UnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSkRBL2h2 YlFhMEJKT0dvUWJsN1NKbGFwUFo4MVVuUS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev aHZiUWEwQkpPR29RYmw3U0psYXBQWjgxVW5RLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvSkRBLzRFMTBkcmNjSkJvQU1BRVpnQjZqTjk3 ci1YYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHST5owDQYJ KoZIhvcNAQELBQADggEBAFuW4cNlgFRXlRzSLZrC/ud9cQgn0C9AQMm4Sscv87UW wZrhXk7bHhyhtIw2u2fjtBr2pgd+WfpoQd5QY4JrZsh2RdeADtFMl/f23G2waC+U OIs4jzfy19k1MbaF0e0eFquLfp0QYLwlmG/5dlL7dvfUiu9zpQ1jxWZZfK33Db5S uvt+enQPJCtJT0RFlkiZhUDZhPsNmqgsT5hM10PJxpKUCq/GPLj1YrFKOXdWOGLo 6OduTCbL3gkp90nwb7mbpjlaIC78ha9HiV425tvVlDvLkrkJqi7UWhoXpwyxd0rM C2FFiQ7h/KJT0DNg8x8QW0KSbLKvHh7hKd8YhtSUZ/U= -----END CERTIFICATE-----Generated at Sun Aug 24 09:04:19 2025 by rpki-client