$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/124-dgujcSfZi9iFE7nrSwcZU1E.roa File: 124-dgujcSfZi9iFE7nrSwcZU1E.roa (raw, json) Hash identifier: PTqkaLiD7JlVtDIsU1ySyDbrfGcLbb3p2bBV8kE3G2c= Subject key identifier: D7:6E:3E:76:0B:A3:71:27:D9:8B:D8:85:13:B9:EB:4B:07:19:53:51 Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0FE0 Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/124-dgujcSfZi9iFE7nrSwcZU1E.roa Signing time: Fri 22 Aug 2025 08:55:42 +0000 ROA not before: Fri 22 Aug 2025 08:55:42 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17713 IP address blocks: 140.133.32.0/19 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4064 (0xfe0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 22 08:55:42 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=D76E3E760BA37127D98BD88513B9EB4B07195351 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:92:18:08:db:99:54:62:ed:ea:fd:6f:f9:e2: e9:9c:ff:e7:ea:1a:ef:a2:5a:86:85:05:67:3d:bb: 30:af:48:ce:eb:1b:fa:15:b6:4a:cb:6a:71:28:6d: ff:a1:cf:39:e5:2f:7e:99:7e:51:6d:db:3f:70:e2: 98:1b:4a:61:79:a4:87:10:73:09:f6:82:0f:fb:f3: a4:18:40:e3:c7:01:9f:04:8d:a5:e9:a2:ee:1f:bd: a7:91:de:e6:59:fe:d5:3c:32:bf:7a:b8:1e:48:11: 6e:1c:a4:50:2a:fe:33:45:f9:61:b0:9a:be:fb:21: 45:7f:e9:80:f6:5c:e4:f4:71:7e:ac:bc:53:10:80: 06:c2:b5:9d:58:3a:f0:ab:46:2e:05:c6:2b:eb:21: c5:c9:65:58:26:b9:1f:dd:32:e9:58:83:3e:0e:a7: bc:78:86:0d:96:80:16:43:24:84:a5:d5:95:99:ce: bd:a7:c5:68:73:f6:6d:da:b5:b7:9c:08:a8:dd:af: a7:ab:59:b5:df:36:e1:9f:83:3b:3e:29:2b:79:f8: 2f:32:30:c5:c6:33:61:3c:a9:c5:b5:d7:46:09:4a: fc:58:15:b0:53:49:45:f3:6b:56:69:f7:2f:1b:e5: 21:a1:5e:be:2d:be:8c:4d:b5:f3:21:cb:40:16:ba: b9:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:6E:3E:76:0B:A3:71:27:D9:8B:D8:85:13:B9:EB:4B:07:19:53:51 X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/124-dgujcSfZi9iFE7nrSwcZU1E.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 140.133.32.0/19 Signature Algorithm: sha256WithRSAEncryption 77:ba:ad:1e:71:ca:04:6a:be:01:42:14:2c:8a:0b:eb:b3:33: b6:f0:01:2c:70:b1:2a:91:7f:fe:2c:0e:74:c6:c6:b9:2b:a7: 71:98:1d:b6:2f:06:60:60:d7:f2:9d:fa:b8:6e:08:90:8a:13: a7:28:60:9e:da:a6:67:aa:31:89:2e:4c:b9:e0:28:f2:6b:26: 63:30:5a:bf:95:67:2a:6e:9e:b8:7e:9a:25:bb:be:78:3e:e4: 15:c3:0b:bc:7f:22:bb:ed:8d:8d:18:e2:78:8d:1c:39:8e:41: 68:55:0a:3b:70:5f:29:e5:33:f7:e7:cd:19:16:67:88:60:e7: 81:c5:9e:bd:a6:4e:ab:90:86:a4:9c:01:d0:00:73:77:be:93: 84:83:e6:98:d8:21:6a:7c:ec:8a:f3:63:5b:92:62:18:4c:7e: 8b:61:85:9c:08:e1:9d:29:5c:1a:30:a8:ab:16:d1:15:f8:b8: 61:4a:5e:55:45:67:00:92:8c:f3:1f:6d:be:3b:70:59:38:93: 9a:49:cf:a2:b7:a1:20:7e:6b:1f:c9:78:30:25:44:9f:a0:f8: 06:b7:e4:6d:8c:a6:87:54:07:d0:00:fb:89:e2:58:e9:44:14: 00:dd:8b:7e:27:29:1c:40:c9:59:a4:d6:d3:71:67:92:0b:2e: aa:7d:e7:3a -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICD+AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTA4MjIw ODU1NDJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEQ3NkUzRTc2MEJBMzcx MjdEOThCRDg4NTEzQjlFQjRCMDcxOTUzNTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRkhgI25lUYu3q/W/54umc/+fqGu+iWoaFBWc9uzCvSM7rG/oV tkrLanEobf+hzznlL36ZflFt2z9w4pgbSmF5pIcQcwn2gg/786QYQOPHAZ8EjaXp ou4fvaeR3uZZ/tU8Mr96uB5IEW4cpFAq/jNF+WGwmr77IUV/6YD2XOT0cX6svFMQ gAbCtZ1YOvCrRi4FxivrIcXJZVgmuR/dMulYgz4Op7x4hg2WgBZDJISl1ZWZzr2n xWhz9m3atbecCKjdr6erWbXfNuGfgzs+KSt5+C8yMMXGM2E8qcW110YJSvxYFbBT SUXza1Zp9y8b5SGhXr4tvoxNtfMhy0AWurmdAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU124+dgujcSfZi9iFE7nrSwcZU1EwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC8xMjQtZGd1amNTZlppOWlGRTdu clN3Y1pVMUUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFjIUg MA0GCSqGSIb3DQEBCwUAA4IBAQB3uq0eccoEar4BQhQsigvrszO28AEscLEqkX/+ LA50xsa5K6dxmB22LwZgYNfynfq4bgiQihOnKGCe2qZnqjGJLky54CjyayZjMFq/ lWcqbp64fpolu754PuQVwwu8fyK77Y2NGOJ4jRw5jkFoVQo7cF8p5TP3580ZFmeI YOeBxZ69pk6rkIaknAHQAHN3vpOEg+aY2CFqfOyK82NbkmIYTH6LYYWcCOGdKVwa MKirFtEV+LhhSl5VRWcAkozzH22+O3BZOJOaSc+it6EgfmsfyXgwJUSfoPgGt+Rt jKaHVAfQAPuJ4ljpRBQA3Yt+JykcQMlZpNbTcWeSCy6qfec6 -----END CERTIFICATE-----Generated at Sun Aug 24 07:28:25 2025 by rpki-client