$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/07vcUggfOhRzdvP6je7M0VW6DSU.roa File: 07vcUggfOhRzdvP6je7M0VW6DSU.roa (raw, json) Hash identifier: l73O/MfcK8gJef4ZyWkFYASOyaDhiWhoKdjFPMS6MHg= Subject key identifier: D3:BB:DC:52:08:1F:3A:14:73:76:F3:FA:8D:EE:CC:D1:55:BA:0D:25 Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0FF1 Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/07vcUggfOhRzdvP6je7M0VW6DSU.roa Signing time: Fri 22 Aug 2025 08:55:46 +0000 ROA not before: Fri 22 Aug 2025 08:55:46 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9916 IP address blocks: 192.83.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4081 (0xff1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 22 08:55:46 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=D3BBDC52081F3A147376F3FA8DEECCD155BA0D25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:6d:ab:0c:db:22:15:a2:06:85:0f:48:48:8c: ab:a5:b7:31:38:f6:3b:24:b3:90:90:53:d6:ca:f7: e6:0c:f6:fb:59:8e:a3:dd:ef:1a:e0:54:6c:5b:65: 24:e3:5e:49:c0:e3:bf:79:c4:6d:ba:fa:03:91:b6: c3:cb:a0:1f:60:bc:2b:bf:70:8f:cd:d6:6b:0a:b5: 7a:e1:62:41:31:99:40:05:1c:f3:bc:1b:44:11:63: db:2f:eb:28:56:57:69:a9:3f:0e:3a:e6:dd:05:3b: 9a:04:56:9d:84:4d:e0:5e:37:9b:fe:6c:83:cf:6b: 95:67:d4:78:ef:e4:df:5e:24:46:55:5c:0a:0a:16: 13:c1:8b:5b:9a:0f:9a:b0:21:4a:38:22:52:fe:e2: bd:8b:a8:f3:c2:88:de:e7:15:f6:aa:21:42:26:f7: e9:69:65:b1:e5:6d:b0:a9:78:27:11:58:13:6e:af: 86:e8:06:e2:31:12:45:d7:4b:81:4f:68:91:d4:ce: 17:be:92:3a:72:61:5b:23:0d:46:22:26:68:92:1d: 8a:cc:a7:48:c7:03:fd:30:eb:51:cc:00:47:27:19: 8a:df:8a:ee:ee:36:23:7f:46:a3:c6:ad:4d:37:62: a3:af:3f:55:d2:cf:ac:e9:21:66:50:d5:ce:f8:c0: b6:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:BB:DC:52:08:1F:3A:14:73:76:F3:FA:8D:EE:CC:D1:55:BA:0D:25 X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/07vcUggfOhRzdvP6je7M0VW6DSU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.83.179.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:25:9b:7c:9c:39:cb:84:1a:eb:7f:2b:ac:ce:18:5b:19:ad: 1e:19:42:26:55:fe:35:96:51:cd:4c:ed:a9:78:11:f5:f4:60: 60:3d:27:5f:fb:dd:90:01:1d:9d:f9:f7:0e:32:fb:14:30:d7: 8c:f7:00:bf:a4:7a:64:9e:11:60:77:6b:7a:d6:35:f6:d2:52: 41:00:cf:ab:32:f9:61:cf:59:2d:79:e7:2b:fc:20:a3:97:c8: 0d:8c:07:c2:63:28:e2:6a:fc:11:7c:7d:4c:ff:72:c2:60:46: 19:44:b6:56:66:d1:44:0b:1f:91:bf:ce:8f:b3:7c:67:c9:c4: 08:80:f7:38:3f:be:a7:94:dd:0f:b6:2d:05:52:8a:67:71:52: 6c:ae:96:19:86:e6:c2:80:80:55:d7:d2:94:d9:2f:93:85:59: f3:96:7b:1d:d1:f9:59:4e:bb:3f:28:27:1b:97:f7:75:d0:2c: 3f:34:ab:a5:f5:7a:76:60:e8:34:d4:1c:63:27:06:65:0f:5c: 6d:e8:e5:82:2b:a5:6c:b8:15:77:8d:23:0b:88:b2:e9:c8:c7: 27:8b:03:59:38:29:24:85:6c:1d:18:c5:9a:27:73:51:61:83: c0:a3:e5:49:a6:82:99:b0:80:2c:07:24:7e:02:a9:31:71:86: 8c:97:76:5f -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICD/EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTA4MjIw ODU1NDZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEQzQkJEQzUyMDgxRjNB MTQ3Mzc2RjNGQThERUVDQ0QxNTVCQTBEMjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYbasM2yIVogaFD0hIjKultzE49jsks5CQU9bK9+YM9vtZjqPd 7xrgVGxbZSTjXknA4795xG26+gORtsPLoB9gvCu/cI/N1msKtXrhYkExmUAFHPO8 G0QRY9sv6yhWV2mpPw465t0FO5oEVp2ETeBeN5v+bIPPa5Vn1Hjv5N9eJEZVXAoK FhPBi1uaD5qwIUo4IlL+4r2LqPPCiN7nFfaqIUIm9+lpZbHlbbCpeCcRWBNur4bo BuIxEkXXS4FPaJHUzhe+kjpyYVsjDUYiJmiSHYrMp0jHA/0w61HMAEcnGYrfiu7u NiN/RqPGrU03YqOvP1XSz6zpIWZQ1c74wLYRAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU07vcUggfOhRzdvP6je7M0VW6DSUwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC8wN3ZjVWdnZk9oUnpkdlA2amU3 TTBWVzZEU1Uucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwFOz MA0GCSqGSIb3DQEBCwUAA4IBAQCbJZt8nDnLhBrrfyuszhhbGa0eGUImVf41llHN TO2peBH19GBgPSdf+92QAR2d+fcOMvsUMNeM9wC/pHpknhFgd2t61jX20lJBAM+r Mvlhz1kteecr/CCjl8gNjAfCYyjiavwRfH1M/3LCYEYZRLZWZtFECx+Rv86Ps3xn ycQIgPc4P76nlN0Pti0FUopncVJsrpYZhubCgIBV19KU2S+ThVnzlnsd0flZTrs/ KCcbl/d10Cw/NKul9Xp2YOg01BxjJwZlD1xt6OWCK6VsuBV3jSMLiLLpyMcniwNZ OCkkhWwdGMWaJ3NRYYPAo+VJpoKZsIAsByR+AqkxcYaMl3Zf -----END CERTIFICATE-----Generated at Sun Aug 24 07:30:59 2025 by rpki-client