$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/5MDHZ5nDxHc2wDM-VumFm4Cg9Fw.roa File: 5MDHZ5nDxHc2wDM-VumFm4Cg9Fw.roa (raw, json) Hash identifier: 9UdeXCY6lmXKAu7txrGQvA56uOgJz5EyedvYCKDPR4E= Subject key identifier: E4:C0:C7:67:99:C3:C4:77:36:C0:33:3E:56:E9:85:9B:80:A0:F4:5C Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Certificate serial: 1086 Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/5MDHZ5nDxHc2wDM-VumFm4Cg9Fw.roa Signing time: Fri 22 Aug 2025 08:55:34 +0000 ROA not before: Fri 22 Aug 2025 08:55:34 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 1659 IP address blocks: 210.60.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4230 (0x1086) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Validity Not Before: Aug 22 08:55:34 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E4C0C76799C3C47736C0333E56E9859B80A0F45C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:fe:10:1d:73:7c:dd:83:bb:64:b0:59:09:4e: 7a:4f:56:63:c4:b7:af:52:46:e9:1b:c5:7a:16:37: 8f:1c:13:78:5b:36:2d:c3:c0:3c:67:90:6c:ec:9d: ff:e0:f8:aa:46:ed:b1:81:98:f1:24:3c:d9:bf:d8: af:61:f8:c3:d1:76:35:ad:43:6e:42:85:31:4c:82: 5f:00:5e:ee:4b:17:ab:a5:65:9e:bf:e2:63:38:37: ad:c5:ae:66:54:a3:72:41:8f:31:85:83:5a:4e:52: 30:d1:94:3e:6c:87:e3:9b:a1:0c:87:df:0a:c4:98: 9b:70:f6:66:c7:ec:f0:cb:7d:6c:0e:88:bb:95:df: ac:d8:b0:2e:5b:d6:07:b3:84:0b:4e:29:bd:7c:e2: 8d:29:83:90:86:39:94:ec:65:ec:57:12:8a:a8:31: ed:58:73:00:08:1a:f4:3c:3b:d4:94:45:33:da:fd: 3a:5f:b6:56:f8:17:c6:da:1d:e9:e7:a7:f9:28:7d: 59:88:1f:40:dd:ef:a3:73:93:cd:14:d6:22:ac:3b: 62:e6:22:a4:f6:38:4c:ea:c4:b2:40:79:45:e9:16: c0:ca:c4:be:a8:0d:58:0d:8f:8b:34:83:7d:66:16: 57:b5:d6:23:ab:bf:0d:4d:8f:d2:a4:d8:09:5f:66: 06:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:C0:C7:67:99:C3:C4:77:36:C0:33:3E:56:E9:85:9B:80:A0:F4:5C X509v3 Authority Key Identifier: keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/5MDHZ5nDxHc2wDM-VumFm4Cg9Fw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.60.0.0/16 Signature Algorithm: sha256WithRSAEncryption 00:98:49:7c:bc:a2:b5:fb:a0:03:c8:21:90:a1:e8:09:6d:c8: 00:38:c3:11:6e:38:2f:92:4a:bf:54:f1:38:7a:ae:eb:3b:b1: 94:f8:12:61:1b:41:67:8a:c0:bb:98:fb:26:ca:5f:1f:89:51: eb:20:4a:74:f1:b2:72:05:f9:b3:f5:75:10:3a:99:a9:1a:43: d0:07:a4:19:8e:ed:c8:7f:fd:fe:61:9b:a2:1b:04:74:bf:dd: 71:e9:4a:27:3f:04:17:55:eb:b2:67:27:47:88:9f:9b:c0:02: 93:0c:b7:19:ab:28:12:c2:94:fb:95:7d:8b:e6:6f:1b:d0:14: 51:ad:00:62:3d:5e:cf:ca:b2:86:0a:83:b6:e1:31:7f:b0:4c: 04:f9:50:3f:09:e9:b6:ca:78:1d:6c:62:cc:07:8b:0b:50:eb: 4a:ab:4b:98:09:78:fe:2c:3c:ba:f1:13:3a:b2:1b:9e:7c:ae: fb:bd:d9:e5:00:a8:79:b4:ce:7d:8e:2e:4d:5d:f1:20:7f:7c: 7f:60:4b:c6:11:a3:1f:bc:0b:59:1d:90:64:14:d0:ea:95:f8: fe:3f:82:51:b4:ed:31:67:91:63:b7:2b:9a:43:14:24:4b:e2: 96:71:0a:67:4b:49:df:f0:8f:2b:b4:e5:69:2d:65:fe:1f:7f: 0a:97:e1:b2 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICEIYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNTA4MjIw ODU1MzRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEU0QzBDNzY3OTlDM0M0 NzczNkMwMzMzRTU2RTk4NTlCODBBMEY0NUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCq/hAdc3zdg7tksFkJTnpPVmPEt69SRukbxXoWN48cE3hbNi3D wDxnkGzsnf/g+KpG7bGBmPEkPNm/2K9h+MPRdjWtQ25ChTFMgl8AXu5LF6ulZZ6/ 4mM4N63FrmZUo3JBjzGFg1pOUjDRlD5sh+OboQyH3wrEmJtw9mbH7PDLfWwOiLuV 36zYsC5b1gezhAtOKb184o0pg5CGOZTsZexXEoqoMe1YcwAIGvQ8O9SURTPa/Tpf tlb4F8baHennp/kofVmIH0Dd76Nzk80U1iKsO2LmIqT2OEzqxLJAeUXpFsDKxL6o DVgNj4s0g31mFle11iOrvw1Nj9Kk2AlfZgaxAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQU5MDHZ5nDxHc2wDM+VumFm4Cg9FwwHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF /peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC81TURIWjVuRHhIYzJ3RE0tVnVt Rm00Q2c5Rncucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMA0jww DQYJKoZIhvcNAQELBQADggEBAACYSXy8orX7oAPIIZCh6AltyAA4wxFuOC+SSr9U 8Th6rus7sZT4EmEbQWeKwLuY+ybKXx+JUesgSnTxsnIF+bP1dRA6makaQ9AHpBmO 7ch//f5hm6IbBHS/3XHpSic/BBdV67JnJ0eIn5vAApMMtxmrKBLClPuVfYvmbxvQ FFGtAGI9Xs/KsoYKg7bhMX+wTAT5UD8J6bbKeB1sYswHiwtQ60qrS5gJeP4sPLrx EzqyG558rvu92eUAqHm0zn2OLk1d8SB/fH9gS8YRox+8C1kdkGQU0OqV+P4/glG0 7TFnkWO3K5pDFCRL4pZxCmdLSd/wjyu05WktZf4ffwqX4bI= -----END CERTIFICATE-----Generated at Sun Aug 24 07:57:21 2025 by rpki-client