$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/6ZAnqa3O-kXxw0fa8okj7HcplHQ.roa File: 6ZAnqa3O-kXxw0fa8okj7HcplHQ.roa (raw, json) Hash identifier: Wz3Dq8YMxowyhHXJl/L+IhQkJjjWaYZvpQg9VouDtD0= Subject key identifier: E9:90:27:A9:AD:CE:FA:45:F1:C3:47:DA:F2:89:23:EC:77:29:94:74 Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0FFE Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/6ZAnqa3O-kXxw0fa8okj7HcplHQ.roa Signing time: Fri 22 Aug 2025 08:55:49 +0000 ROA not before: Fri 22 Aug 2025 08:55:49 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9916 IP address blocks: 140.113.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4094 (0xffe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 22 08:55:49 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E99027A9ADCEFA45F1C347DAF28923EC77299474 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:52:82:b2:d8:6f:25:8e:f6:73:02:23:ba:98: 47:d8:c5:eb:e1:f1:f5:00:7e:27:6b:46:b3:2f:74: ce:63:88:01:c0:fa:bb:86:fb:fe:52:48:4f:d5:bb: 7c:ee:14:20:f0:fa:70:bf:61:89:e6:10:46:c7:09: 92:03:8a:f2:3f:5d:b1:cc:e2:ab:fb:23:0e:98:17: 35:b7:0c:3c:ff:7a:67:5d:29:8b:a4:75:65:1a:39: f7:bd:29:d5:da:05:c2:4b:24:90:db:f4:ba:45:a6: a5:d7:d7:7a:24:45:35:81:7f:2f:c3:3e:b4:0d:04: 92:ff:c4:c8:e2:7b:da:55:30:ac:22:06:73:f3:42: 19:6f:f9:4a:49:73:6b:40:90:42:d5:e6:4e:60:4f: 69:69:16:da:28:a6:a6:9a:26:16:c3:59:ff:58:66: 93:43:d1:4b:41:76:d9:15:0a:79:ef:32:a3:00:1d: 89:87:a6:0f:34:09:e2:6c:a0:65:06:74:79:94:4d: 00:a0:d0:95:3a:fe:d8:ff:76:9a:44:c7:d1:87:f8: 05:1c:6e:e9:66:2f:f7:7b:c9:c2:53:2b:99:4c:42: 60:76:68:e0:91:da:27:2c:c0:13:1d:68:e4:15:91: f4:b4:43:ea:89:d9:14:c0:16:8c:73:40:45:92:2b: aa:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:90:27:A9:AD:CE:FA:45:F1:C3:47:DA:F2:89:23:EC:77:29:94:74 X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/6ZAnqa3O-kXxw0fa8okj7HcplHQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 140.113.0.0/16 Signature Algorithm: sha256WithRSAEncryption 85:dc:dc:8b:09:0c:e2:af:79:c3:1e:19:d4:c8:86:68:2e:69: 23:ed:97:eb:96:7f:ae:a5:93:d2:23:c5:3b:6d:3f:6b:1c:d9: 1b:ed:2b:9c:d2:e9:90:87:d1:51:ff:66:86:5b:b9:06:b2:52: 92:0c:47:f8:e6:6e:54:ef:6a:d3:07:6b:97:4c:17:e4:56:25: 39:d7:cf:c4:b9:32:ce:eb:4a:e9:b3:06:c9:88:59:e3:c4:48: c8:b2:b2:5e:3b:a5:a4:7a:05:d2:2a:1d:50:cd:41:01:28:ba: 4c:29:a7:01:aa:18:cd:1c:97:b9:e3:73:9a:cf:da:6d:c4:14: 80:dc:79:95:6b:fb:33:f5:9a:9e:1f:7f:27:a9:56:8f:95:c9: 6a:2a:96:39:96:6d:69:d2:2b:1a:45:9b:7f:61:5d:39:ea:f3: b7:02:54:75:3b:b6:a2:3e:10:ce:e7:aa:55:a6:53:f5:26:15: a4:a6:9c:af:d3:80:7b:77:7d:06:67:aa:3b:e8:90:4b:ab:3d: e5:62:22:bc:4e:ae:d5:d5:4d:22:1a:fd:25:be:d4:9e:a7:bc: 43:57:d0:39:77:a0:0c:9d:8c:78:f2:08:6b:ac:18:9f:9f:00: 9b:c9:53:ba:2a:31:b6:75:23:ba:cc:f3:1c:87:cb:f2:ce:fe: c1:bc:b6:41 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICD/4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTA4MjIw ODU1NDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEU5OTAyN0E5QURDRUZB NDVGMUMzNDdEQUYyODkyM0VDNzcyOTk0NzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwUoKy2G8ljvZzAiO6mEfYxevh8fUAfidrRrMvdM5jiAHA+ruG +/5SSE/Vu3zuFCDw+nC/YYnmEEbHCZIDivI/XbHM4qv7Iw6YFzW3DDz/emddKYuk dWUaOfe9KdXaBcJLJJDb9LpFpqXX13okRTWBfy/DPrQNBJL/xMjie9pVMKwiBnPz Qhlv+UpJc2tAkELV5k5gT2lpFtoopqaaJhbDWf9YZpND0UtBdtkVCnnvMqMAHYmH pg80CeJsoGUGdHmUTQCg0JU6/tj/dppEx9GH+AUcbulmL/d7ycJTK5lMQmB2aOCR 2icswBMdaOQVkfS0Q+qJ2RTAFoxzQEWSK6q3AgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQU6ZAnqa3O+kXxw0fa8okj7HcplHQwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC82WkFucWEzTy1rWHh3MGZhOG9r ajdIY3BsSFEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjHEw DQYJKoZIhvcNAQELBQADggEBAIXc3IsJDOKvecMeGdTIhmguaSPtl+uWf66lk9Ij xTttP2sc2RvtK5zS6ZCH0VH/ZoZbuQayUpIMR/jmblTvatMHa5dMF+RWJTnXz8S5 Ms7rSumzBsmIWePESMiysl47paR6BdIqHVDNQQEoukwppwGqGM0cl7njc5rP2m3E FIDceZVr+zP1mp4ffyepVo+VyWoqljmWbWnSKxpFm39hXTnq87cCVHU7tqI+EM7n qlWmU/UmFaSmnK/TgHt3fQZnqjvokEurPeViIrxOrtXVTSIa/SW+1J6nvENX0Dl3 oAydjHjyCGusGJ+fAJvJU7oqMbZ1I7rM8xyHy/LO/sG8tkE= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:24 2025 by rpki-client