$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/840YZW9mk8rYV4gKrwWiLCui72w.roa File: 840YZW9mk8rYV4gKrwWiLCui72w.roa (raw, json) Hash identifier: OTtSbfZy5IMDX50XbfiN2kowNvN615fzZc6ExsioutQ= Subject key identifier: F3:8D:18:65:6F:66:93:CA:D8:57:88:0A:AF:05:A2:2C:2B:A2:EF:6C Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Certificate serial: 10A0 Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/840YZW9mk8rYV4gKrwWiLCui72w.roa Signing time: Fri 22 Aug 2025 08:55:40 +0000 ROA not before: Fri 22 Aug 2025 08:55:40 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 1659 IP address blocks: 203.64.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4256 (0x10a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Validity Not Before: Aug 22 08:55:40 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F38D18656F6693CAD857880AAF05A22C2BA2EF6C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:33:75:92:3c:40:b2:06:8f:21:b2:86:f6:63: ed:a3:5f:1b:ee:eb:f1:53:06:c2:2c:26:f0:65:22: b8:8c:3b:30:f4:78:37:57:fb:c1:0f:b9:fa:aa:1c: 01:30:9e:96:42:c8:c1:b5:2d:a8:9d:f4:bc:bd:80: 66:59:9a:e6:e4:cd:06:1e:c8:f6:20:2c:78:2f:57: 8c:bc:b2:3f:46:85:16:ef:45:ed:c4:c8:99:21:87: db:bb:f0:6d:4a:61:9a:40:44:5d:54:68:2d:11:02: c5:38:5a:14:cd:85:aa:50:e4:2b:53:49:5c:ca:ee: b1:bd:0d:da:4a:68:8f:22:9c:b4:5e:3c:97:2a:9b: 2c:db:49:8f:b0:35:88:fb:12:2e:ce:fb:f9:eb:76: 8e:f4:65:80:c7:f1:ac:ce:76:ef:b4:04:06:e8:0a: 32:c6:52:86:ae:f2:16:0b:98:29:9b:d8:3f:02:f9: 3d:b9:3d:d7:4f:2e:f8:d8:0f:d9:09:d1:5a:6f:11: c2:d8:f9:93:09:b8:38:da:0e:61:22:35:c6:cd:4e: a3:65:9f:25:be:2f:fc:56:73:12:bc:be:cf:c6:97: 09:a0:20:db:15:ab:c2:84:c9:01:35:dc:71:d4:34: f5:15:59:40:12:f1:5b:50:71:db:54:84:9f:00:8f: 3e:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:8D:18:65:6F:66:93:CA:D8:57:88:0A:AF:05:A2:2C:2B:A2:EF:6C X509v3 Authority Key Identifier: keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/840YZW9mk8rYV4gKrwWiLCui72w.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.64.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9c:40:60:22:15:a8:84:ff:08:a2:3c:a4:c9:38:99:93:1e:f7: 9a:25:5d:5c:35:fe:a2:81:71:4c:18:c6:92:67:ab:65:d6:d6: 53:45:5b:1b:a2:33:e1:43:c3:c9:47:1b:30:ee:e5:64:02:92: aa:c2:ff:ea:35:f7:a8:ff:46:79:11:42:fe:80:35:c4:87:ad: 81:56:8e:13:d7:34:b1:4e:35:6d:72:91:cd:fe:7a:68:50:4d: 1c:fa:2b:f9:69:56:22:28:cf:b1:50:c1:f4:ba:7c:51:5a:2c: bc:02:27:9c:15:55:e6:b4:d5:f3:e4:b3:f2:b6:af:0c:9d:16: 3e:d4:2b:00:a9:a9:c1:03:c2:e4:be:6a:86:1a:b3:da:f9:4f: 20:55:8c:92:92:8e:27:8c:24:e7:c5:3f:98:5e:b2:d3:9f:0c: cb:46:5f:e8:8b:f6:59:12:41:b6:61:4f:4c:9d:a1:1f:e5:f2: e4:ff:97:67:3e:1c:c0:9b:65:4e:48:11:62:d6:cb:62:9e:5f: 08:9f:42:26:49:d0:c4:dd:d3:ab:af:4c:74:2c:39:8b:c4:44: b0:0a:9f:16:ee:b4:8c:3d:3d:e2:39:0d:7b:16:5a:6d:8f:b6: 81:32:7d:db:71:94:99:74:a0:79:25:5b:e7:95:a1:49:69:f9: 50:ea:a8:37 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICEKAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNTA4MjIw ODU1NDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEYzOEQxODY1NkY2Njkz Q0FEODU3ODgwQUFGMDVBMjJDMkJBMkVGNkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDjM3WSPECyBo8hsob2Y+2jXxvu6/FTBsIsJvBlIriMOzD0eDdX +8EPufqqHAEwnpZCyMG1Laid9Ly9gGZZmubkzQYeyPYgLHgvV4y8sj9GhRbvRe3E yJkhh9u78G1KYZpARF1UaC0RAsU4WhTNhapQ5CtTSVzK7rG9DdpKaI8inLRePJcq myzbSY+wNYj7Ei7O+/nrdo70ZYDH8azOdu+0BAboCjLGUoau8hYLmCmb2D8C+T25 PddPLvjYD9kJ0VpvEcLY+ZMJuDjaDmEiNcbNTqNlnyW+L/xWcxK8vs/GlwmgINsV q8KEyQE13HHUNPUVWUAS8VtQcdtUhJ8Ajz6TAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQU840YZW9mk8rYV4gKrwWiLCui72wwHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF /peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC84NDBZWlc5bWs4cllWNGdLcndX aUxDdWk3Mncucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAy0Aw DQYJKoZIhvcNAQELBQADggEBAJxAYCIVqIT/CKI8pMk4mZMe95olXVw1/qKBcUwY xpJnq2XW1lNFWxuiM+FDw8lHGzDu5WQCkqrC/+o196j/RnkRQv6ANcSHrYFWjhPX NLFONW1ykc3+emhQTRz6K/lpViIoz7FQwfS6fFFaLLwCJ5wVVea01fPks/K2rwyd Fj7UKwCpqcEDwuS+aoYas9r5TyBVjJKSjieMJOfFP5hestOfDMtGX+iL9lkSQbZh T0ydoR/l8uT/l2c+HMCbZU5IEWLWy2KeXwifQiZJ0MTd06uvTHQsOYvERLAKnxbu tIw9PeI5DXsWWm2PtoEyfdtxlJl0oHklW+eVoUlp+VDqqDc= -----END CERTIFICATE-----Generated at Sun Aug 24 07:57:18 2025 by rpki-client