$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/37-lYtxharFPHhtQwqWHSe4JwTA.roa File: 37-lYtxharFPHhtQwqWHSe4JwTA.roa (raw, json) Hash identifier: FtylxqbpWXvGaJsNJk+BBRV7NdkF0g4ITM8C46RrToo= Subject key identifier: DF:BF:A5:62:DC:61:6A:B1:4F:1E:1B:50:C2:A5:87:49:EE:09:C1:30 Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0FF9 Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/37-lYtxharFPHhtQwqWHSe4JwTA.roa Signing time: Fri 22 Aug 2025 08:55:48 +0000 ROA not before: Fri 22 Aug 2025 08:55:48 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 1659 IP address blocks: 192.83.166.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4089 (0xff9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 22 08:55:48 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=DFBFA562DC616AB14F1E1B50C2A58749EE09C130 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:f4:b4:f2:9f:34:cc:c9:54:ff:9b:3b:4c:90: cc:f6:c8:cb:42:88:96:4d:65:44:fb:33:d0:29:c2: 9c:1b:32:79:20:85:6b:37:db:d6:bc:24:fe:0c:73: 00:a7:27:a5:cb:2c:79:c9:40:1d:0f:d7:09:b6:d4: 30:be:c4:dd:58:c9:35:d7:56:10:72:38:ec:3b:01: 22:e7:e3:53:d5:8d:ea:2f:08:45:79:08:be:c3:87: c3:e2:05:c0:d8:ec:f5:d8:a6:f9:87:d1:e9:9d:b3: 54:83:b4:f3:92:96:8a:c0:6e:ba:c2:71:e5:80:6b: 4a:98:76:0d:8c:c4:7d:a9:be:fb:20:ec:1c:90:3e: 01:2a:f9:4a:36:49:84:fc:e4:b4:22:55:ad:41:40: 59:5c:e8:49:6e:a3:d5:82:f1:7e:d5:cb:c9:6c:b1: 75:45:05:9c:be:5c:50:7a:28:3c:39:7e:01:d1:33: e6:11:64:64:75:da:e2:21:2b:d7:4b:dc:5c:aa:f4: 14:54:73:e9:18:22:00:c6:a9:3d:4e:ad:44:39:c0: 88:ec:cd:3b:d4:86:82:25:9c:4b:bc:5a:47:56:29: 28:d5:e8:4e:b2:7d:e4:04:98:b6:17:4b:da:ba:0e: 83:73:b5:14:b2:52:dd:57:d0:1e:57:09:ba:f8:71: 9b:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:BF:A5:62:DC:61:6A:B1:4F:1E:1B:50:C2:A5:87:49:EE:09:C1:30 X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/37-lYtxharFPHhtQwqWHSe4JwTA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.83.166.0/23 Signature Algorithm: sha256WithRSAEncryption 3f:24:96:f3:02:02:a8:a9:29:5b:9c:8e:01:69:2c:74:10:ec: 2a:2b:7e:37:46:86:9a:c7:dd:b4:86:3c:fe:ae:9e:dc:f4:56: a7:e2:5e:cd:ce:4e:cc:31:39:0f:49:c9:62:78:74:45:07:18: e8:68:34:20:9f:ec:5c:28:aa:07:8e:b9:52:4c:5d:74:29:30: 93:93:5b:ef:94:a5:ac:fd:d0:b8:b3:6b:5f:f1:1c:cf:8b:e2: f2:af:13:3f:01:f2:f7:0d:76:c9:b7:d3:4e:ad:91:4e:c1:05: b8:8b:53:39:d7:b7:10:1f:ac:fb:14:40:99:12:1b:2e:e3:bd: 99:63:63:8c:53:aa:77:72:67:85:06:f3:f2:c9:73:f4:e4:81: 3a:5e:db:72:41:db:fc:f5:83:12:e6:55:37:8e:c4:ba:a5:c4: 64:90:ce:61:e4:97:42:da:94:44:7d:a6:f9:b0:7b:82:11:1e: a9:a2:f9:64:40:47:b6:dd:ea:9e:33:a4:f8:fd:f2:d6:d2:aa: 6e:21:e5:a0:ae:52:51:e7:1b:a9:84:44:fd:82:ca:f8:c1:ec: 93:48:90:a8:5f:f6:4d:c1:96:fc:06:db:a2:81:09:f1:32:a3: 3a:67:8b:72:a2:bd:9c:59:4d:05:0d:2f:93:fd:2f:23:45:7f: bf:2b:be:88 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICD/kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTA4MjIw ODU1NDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKERGQkZBNTYyREM2MTZB QjE0RjFFMUI1MEMyQTU4NzQ5RUUwOUMxMzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCV9LTynzTMyVT/mztMkMz2yMtCiJZNZUT7M9ApwpwbMnkghWs3 29a8JP4McwCnJ6XLLHnJQB0P1wm21DC+xN1YyTXXVhByOOw7ASLn41PVjeovCEV5 CL7Dh8PiBcDY7PXYpvmH0emds1SDtPOSlorAbrrCceWAa0qYdg2MxH2pvvsg7ByQ PgEq+Uo2SYT85LQiVa1BQFlc6Eluo9WC8X7Vy8lssXVFBZy+XFB6KDw5fgHRM+YR ZGR12uIhK9dL3Fyq9BRUc+kYIgDGqT1OrUQ5wIjszTvUhoIlnEu8WkdWKSjV6E6y feQEmLYXS9q6DoNztRSyUt1X0B5XCbr4cZvlAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU37+lYtxharFPHhtQwqWHSe4JwTAwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC8zNy1sWXR4aGFyRlBIaHRRd3FX SFNlNEp3VEEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwFOm MA0GCSqGSIb3DQEBCwUAA4IBAQA/JJbzAgKoqSlbnI4BaSx0EOwqK343Roaax920 hjz+rp7c9Fan4l7Nzk7MMTkPSclieHRFBxjoaDQgn+xcKKoHjrlSTF10KTCTk1vv lKWs/dC4s2tf8RzPi+LyrxM/AfL3DXbJt9NOrZFOwQW4i1M517cQH6z7FECZEhsu 472ZY2OMU6p3cmeFBvPyyXP05IE6XttyQdv89YMS5lU3jsS6pcRkkM5h5JdC2pRE fab5sHuCER6povlkQEe23eqeM6T4/fLW0qpuIeWgrlJR5xuphET9gsr4weyTSJCo X/ZNwZb8BtuigQnxMqM6Z4tyor2cWU0FDS+T/S8jRX+/K76I -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:17 2025 by rpki-client