$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/80lhrL1SGxFoAGNIUNqwq9U45-Q.roa File: 80lhrL1SGxFoAGNIUNqwq9U45-Q.roa (raw, json) Hash identifier: O1kERfmBimG+47pZ08hI42/rnN+GiqN17/v8Mn3GN9M= Subject key identifier: F3:49:61:AC:BD:52:1B:11:68:00:63:48:50:DA:B0:AB:D5:38:E7:E4 Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0FEB Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/80lhrL1SGxFoAGNIUNqwq9U45-Q.roa Signing time: Fri 22 Aug 2025 08:55:45 +0000 ROA not before: Fri 22 Aug 2025 08:55:45 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18177 IP address blocks: 140.116.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4075 (0xfeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 22 08:55:45 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F34961ACBD521B116800634850DAB0ABD538E7E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:e4:a4:db:66:fc:86:d2:60:14:f6:9f:b8:17: ed:4a:cf:a2:49:0c:61:23:0c:27:48:7d:eb:61:08: de:c0:4b:dd:e1:c1:b7:4b:cc:83:31:e2:00:46:56: 4a:d0:a3:d0:e3:bf:d7:9e:52:0b:07:87:2f:c4:bc: df:79:a7:b1:f3:00:88:da:fe:ef:9f:df:72:d6:eb: 78:52:9f:41:d4:c7:eb:b8:79:7c:84:0c:6e:92:89: 34:cc:2f:b6:f4:a6:82:d6:55:f4:63:c3:33:fd:86: 27:85:e7:d3:46:0e:f6:c8:55:01:86:a4:c1:d5:a4: 4f:bf:74:d3:b8:d2:1f:dd:44:46:18:af:39:83:69: c1:7d:9c:ec:1d:9a:89:5a:7d:23:87:42:ce:f1:2f: 5a:1c:e7:39:0c:ea:5e:de:00:e7:29:92:d7:6d:b5: 0c:73:0e:6e:45:1b:39:35:10:11:36:99:6b:db:c6: 84:d8:c3:39:8a:4e:0c:7e:87:c6:5e:34:57:86:29: f0:e4:fa:e9:98:d5:6b:67:31:d3:36:1a:a9:11:1e: f6:75:b1:31:f8:e0:0e:a4:ef:da:15:6c:8c:20:97: d5:5e:56:68:ef:c4:88:68:8a:29:5b:d8:50:5d:30: 90:58:7a:94:dd:7f:c3:cb:c3:7c:13:81:4d:ad:09: 0b:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:49:61:AC:BD:52:1B:11:68:00:63:48:50:DA:B0:AB:D5:38:E7:E4 X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/80lhrL1SGxFoAGNIUNqwq9U45-Q.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 140.116.0.0/16 Signature Algorithm: sha256WithRSAEncryption 13:8f:0b:81:10:0b:76:c2:7d:25:be:59:be:d6:3d:52:44:22: fa:d9:1c:1e:b3:d4:1f:fa:50:f8:ba:69:2c:7e:27:e7:3d:bb: 30:13:bc:63:e2:46:29:d6:b0:56:e7:35:0b:e7:b7:53:35:10: fc:1c:6c:5d:d6:ef:5a:07:ae:ba:3c:8a:c4:0d:6d:08:d9:9a: 86:34:ac:c2:ef:e1:82:db:56:c7:77:b0:e9:9d:c0:40:f5:64: 83:f2:3d:0f:49:a7:8f:7d:57:7d:0b:77:01:1c:0a:65:0b:85: fa:52:44:f1:94:35:40:be:af:d3:10:22:85:12:a9:8a:41:96: 6c:6a:4d:0c:56:c7:d3:62:ae:b8:06:a1:41:9d:f6:21:9b:a2: bc:f6:84:db:e1:dc:c6:81:d7:48:9b:04:00:94:31:d2:14:66: 04:86:41:6c:4d:93:bd:be:83:87:0e:c1:33:cc:ae:c6:64:86: ef:92:b5:59:01:db:37:ea:ad:cd:4d:d8:fd:20:a3:d3:06:4f: 22:79:0d:23:a5:f5:55:41:9a:61:ec:e7:8a:27:ba:a7:ae:44: ba:97:a8:78:d1:ee:2e:b3:ad:43:c2:0f:f0:4b:e4:f4:1f:d0: 63:8d:c2:89:9b:9c:da:75:6d:89:be:55:28:cc:17:5e:a1:61: f1:29:39:c1 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICD+swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTA4MjIw ODU1NDVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEYzNDk2MUFDQkQ1MjFC MTE2ODAwNjM0ODUwREFCMEFCRDUzOEU3RTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDn5KTbZvyG0mAU9p+4F+1Kz6JJDGEjDCdIfethCN7AS93hwbdL zIMx4gBGVkrQo9Djv9eeUgsHhy/EvN95p7HzAIja/u+f33LW63hSn0HUx+u4eXyE DG6SiTTML7b0poLWVfRjwzP9hieF59NGDvbIVQGGpMHVpE+/dNO40h/dREYYrzmD acF9nOwdmolafSOHQs7xL1oc5zkM6l7eAOcpktdttQxzDm5FGzk1EBE2mWvbxoTY wzmKTgx+h8ZeNFeGKfDk+umY1WtnMdM2GqkRHvZ1sTH44A6k79oVbIwgl9VeVmjv xIhoiilb2FBdMJBYepTdf8PLw3wTgU2tCQuhAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQU80lhrL1SGxFoAGNIUNqwq9U45+QwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC84MGxockwxU0d4Rm9BR05JVU5x d3E5VTQ1LVEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjHQw DQYJKoZIhvcNAQELBQADggEBABOPC4EQC3bCfSW+Wb7WPVJEIvrZHB6z1B/6UPi6 aSx+J+c9uzATvGPiRinWsFbnNQvnt1M1EPwcbF3W71oHrro8isQNbQjZmoY0rMLv 4YLbVsd3sOmdwED1ZIPyPQ9Jp499V30LdwEcCmULhfpSRPGUNUC+r9MQIoUSqYpB lmxqTQxWx9NirrgGoUGd9iGborz2hNvh3MaB10ibBACUMdIUZgSGQWxNk72+g4cO wTPMrsZkhu+StVkB2zfqrc1N2P0go9MGTyJ5DSOl9VVBmmHs54onuqeuRLqXqHjR 7i6zrUPCD/BL5PQf0GONwombnNp1bYm+VSjMF16hYfEpOcE= -----END CERTIFICATE-----Generated at Sun Aug 24 07:24:12 2025 by rpki-client