$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/26xyhkyJH13DRzujBz9ZRebEcCQ.roa File: 26xyhkyJH13DRzujBz9ZRebEcCQ.roa (raw, json) Hash identifier: zI66whS6CLh4GvF64XyDM0xGT66O10lsdaxiFNh8iDY= Subject key identifier: DB:AC:72:86:4C:89:1F:5D:C3:47:3B:A3:07:3F:59:45:E6:C4:70:24 Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Certificate serial: 1082 Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/26xyhkyJH13DRzujBz9ZRebEcCQ.roa Signing time: Fri 22 Aug 2025 08:55:33 +0000 ROA not before: Fri 22 Aug 2025 08:55:33 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17716 IP address blocks: 203.68.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4226 (0x1082) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Validity Not Before: Aug 22 08:55:33 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=DBAC72864C891F5DC3473BA3073F5945E6C47024 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:59:b3:63:55:ef:cd:2d:c5:63:9c:e6:77:2a: d1:f2:32:45:7c:de:1d:50:27:d5:1a:de:d4:92:2b: f9:db:6c:01:13:d1:48:84:93:9d:a0:88:20:fd:31: 46:ab:ec:44:ae:55:45:91:ed:86:bf:8d:08:00:b7: e2:7f:e3:52:b0:88:44:42:d6:07:4b:1f:89:ff:ba: a1:cd:88:13:40:1c:52:fa:81:c7:83:a0:36:b1:23: 70:18:3c:86:cd:49:53:fd:cb:69:ce:cd:5d:9e:0d: 49:c9:e8:ec:64:55:a6:bd:06:51:9c:c9:34:46:71: f1:2b:59:b9:d7:54:2e:3e:c1:ba:53:f9:48:23:9e: ee:a4:3b:a3:16:be:d4:25:ba:a6:5b:b4:6c:4b:1f: 66:52:31:5a:19:5a:2e:ec:99:1c:62:85:ab:36:82: 6d:e5:f2:62:f1:3e:fc:c0:65:93:dc:af:0c:9b:32: 42:18:68:e7:90:3f:0e:77:f7:34:9f:79:a3:6d:e8: 3b:3b:1d:ec:c8:b2:52:5d:21:e4:e0:fa:2b:71:98: 2b:c3:6a:4a:ff:89:a5:36:7a:48:83:62:6a:52:84: 3a:a8:8f:9e:a7:7e:ff:22:59:8c:19:8b:e5:58:9f: 10:ea:de:22:4d:f0:97:03:64:ab:0b:7b:bb:24:7e: 48:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:AC:72:86:4C:89:1F:5D:C3:47:3B:A3:07:3F:59:45:E6:C4:70:24 X509v3 Authority Key Identifier: keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/26xyhkyJH13DRzujBz9ZRebEcCQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.68.168.0/24 Signature Algorithm: sha256WithRSAEncryption 43:06:a6:08:89:08:72:2e:28:df:12:cd:05:e4:a5:5e:10:c1: 78:8f:14:58:0a:fa:f9:7a:f1:7d:df:65:a9:29:d8:6a:a3:9f: de:cd:e4:d7:8c:0c:74:3c:85:f6:4d:cd:81:a6:f0:53:67:ed: 8b:57:60:3e:e0:62:53:73:1d:9f:16:f2:ec:e1:2e:90:f7:dc: 94:d6:f5:63:56:ba:ef:9d:ec:9f:a2:2b:de:c5:5a:07:dc:2a: d5:5b:25:cf:a5:7d:64:be:83:3a:04:e9:bd:78:49:ab:48:7e: 20:ba:e7:87:fd:88:86:4a:29:b8:7d:fd:09:53:c5:37:55:b5: dc:a9:fd:1a:5a:ce:92:a1:e2:ea:10:25:12:8c:3d:0d:88:87: d1:a0:5d:32:ac:ed:63:15:15:fb:ae:48:56:3f:29:43:fa:a5: 52:51:23:43:ae:60:40:24:d3:84:1e:c9:aa:1c:11:c2:d8:30: b5:3b:8d:64:7a:19:c1:26:39:39:a9:63:9b:97:25:b5:c6:ea: 35:87:ae:52:d8:5d:50:a3:aa:41:92:61:03:e2:b6:17:13:14: 9b:c3:0e:5e:c3:a3:23:bd:f6:8e:89:6b:ce:36:f9:33:05:b2: e6:c6:ce:23:e8:fd:6e:68:31:21:59:b5:e9:63:99:0f:99:1b: c1:c0:be:cb -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEIIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNTA4MjIw ODU1MzNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKERCQUM3Mjg2NEM4OTFG NURDMzQ3M0JBMzA3M0Y1OTQ1RTZDNDcwMjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCTWbNjVe/NLcVjnOZ3KtHyMkV83h1QJ9Ua3tSSK/nbbAET0UiE k52giCD9MUar7ESuVUWR7Ya/jQgAt+J/41KwiERC1gdLH4n/uqHNiBNAHFL6gceD oDaxI3AYPIbNSVP9y2nOzV2eDUnJ6OxkVaa9BlGcyTRGcfErWbnXVC4+wbpT+Ugj nu6kO6MWvtQluqZbtGxLH2ZSMVoZWi7smRxihas2gm3l8mLxPvzAZZPcrwybMkIY aOeQPw539zSfeaNt6Ds7HezIslJdIeTg+itxmCvDakr/iaU2ekiDYmpShDqoj56n fv8iWYwZi+VYnxDq3iJN8JcDZKsLe7skfkiHAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU26xyhkyJH13DRzujBz9ZRebEcCQwHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF /peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC8yNnh5aGt5SkgxM0RSenVqQno5 WlJlYkVjQ1Eucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy0So MA0GCSqGSIb3DQEBCwUAA4IBAQBDBqYIiQhyLijfEs0F5KVeEMF4jxRYCvr5evF9 32WpKdhqo5/ezeTXjAx0PIX2Tc2BpvBTZ+2LV2A+4GJTcx2fFvLs4S6Q99yU1vVj VrrvneyfoivexVoH3CrVWyXPpX1kvoM6BOm9eEmrSH4guueH/YiGSim4ff0JU8U3 VbXcqf0aWs6SoeLqECUSjD0NiIfRoF0yrO1jFRX7rkhWPylD+qVSUSNDrmBAJNOE HsmqHBHC2DC1O41kehnBJjk5qWOblyW1xuo1h65S2F1Qo6pBkmED4rYXExSbww5e w6MjvfaOiWvONvkzBbLmxs4j6P1uaDEhWbXpY5kPmRvBwL7L -----END CERTIFICATE-----Generated at Sun Aug 24 13:44:09 2025 by rpki-client