$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/8AuZrWW_CDXH0eIbjSmrlQhnKaU.roa File: 8AuZrWW_CDXH0eIbjSmrlQhnKaU.roa (raw, json) Hash identifier: Zl1VDXziGuPBOTSctZBW3mIDi9q+9lwVM0+pMER0Z8Y= Subject key identifier: F0:0B:99:AD:65:BF:08:35:C7:D1:E2:1B:8D:29:AB:95:08:67:29:A5 Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0FF0 Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/8AuZrWW_CDXH0eIbjSmrlQhnKaU.roa Signing time: Fri 22 Aug 2025 08:55:46 +0000 ROA not before: Fri 22 Aug 2025 08:55:46 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 1659 IP address blocks: 192.83.168.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4080 (0xff0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 22 08:55:46 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F00B99AD65BF0835C7D1E21B8D29AB95086729A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:03:9a:75:bf:fa:3b:3a:dc:57:25:36:35:88: 0f:37:a6:e9:49:57:8f:34:d0:5c:44:b7:8f:64:df: 33:ce:0f:cc:04:a2:e5:9c:05:a8:0d:06:59:d4:e3: 33:02:eb:3d:3c:40:ff:ac:c5:4f:86:68:d1:ca:2b: 31:91:6d:f9:ce:96:41:5a:dd:e3:5d:e9:70:10:5d: a6:19:f9:95:23:06:79:b6:99:5a:1d:89:e9:3c:9d: b1:10:28:5b:c6:48:1a:f9:33:3a:a9:60:75:bc:41: f3:78:f7:5c:ce:44:62:50:9d:9c:d0:f1:fb:8c:6d: b9:57:e7:07:ee:f6:d1:c6:5a:b4:79:2e:14:e2:80: cf:ac:17:ff:80:53:9c:b9:f5:37:8b:aa:7a:74:1e: 63:30:fe:fb:cb:41:fb:76:3a:ce:eb:f8:ed:9d:43: 64:d7:ef:8d:50:4d:f7:1a:43:73:39:b6:39:e3:57: 37:61:b2:d6:6d:31:db:c3:b9:19:44:2a:f5:a2:2c: 0d:69:d1:61:2e:ca:32:6e:5f:3b:ba:9b:dc:77:87: 0f:fe:ba:78:98:60:c2:2b:87:9a:8b:1b:c3:fe:18: b2:74:bc:0f:f8:da:a1:32:94:00:19:6c:58:57:d4: c7:61:01:5d:56:44:f2:3d:52:1f:a4:9c:82:47:fa: 03:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:0B:99:AD:65:BF:08:35:C7:D1:E2:1B:8D:29:AB:95:08:67:29:A5 X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/8AuZrWW_CDXH0eIbjSmrlQhnKaU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.83.168.0/21 Signature Algorithm: sha256WithRSAEncryption 16:5b:26:5b:63:65:eb:b4:ec:5f:bc:1f:e8:92:59:99:92:f8: 8a:e0:27:a7:b2:79:d0:36:92:21:6f:83:2c:0b:bc:69:d0:35: d7:1a:3b:8b:34:cb:ec:b9:ef:8a:b5:7e:65:1b:ee:01:96:8b: ff:25:08:83:1d:f8:96:15:bd:60:51:11:b2:bd:a9:e8:88:d1: 09:8f:5f:1c:ee:19:19:3a:0f:fc:95:95:49:2c:b4:86:26:7c: 6e:4f:4d:52:8a:de:2e:0b:13:59:a9:97:87:cc:06:10:67:02: 44:da:b5:13:0b:25:1b:5c:c8:ae:d8:18:c7:0a:f6:97:1e:eb: a4:75:a4:f4:f1:82:73:a4:10:24:92:a8:da:9f:f2:7e:ca:93: bf:6d:9a:78:e1:44:07:25:7b:d5:95:da:c2:0c:5a:9a:dc:77: 04:5a:d1:83:c5:1b:61:bf:03:10:6b:15:e9:06:bd:5a:2a:f6: 7f:44:d3:95:7f:e1:5a:87:43:37:65:99:95:58:06:2c:a3:63: 06:bc:df:ca:a1:c8:77:d0:de:42:bb:ed:bf:c6:d2:87:57:e8: 56:b4:93:ee:81:2e:2d:e2:2a:fb:4f:19:0d:4d:db:0b:17:98: fe:b6:6b:08:c1:63:af:0f:cc:95:3f:e0:6e:68:ac:08:cb:c7: 92:3c:77:f8 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICD/AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTA4MjIw ODU1NDZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEYwMEI5OUFENjVCRjA4 MzVDN0QxRTIxQjhEMjlBQjk1MDg2NzI5QTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDxA5p1v/o7OtxXJTY1iA83pulJV4800FxEt49k3zPOD8wEouWc BagNBlnU4zMC6z08QP+sxU+GaNHKKzGRbfnOlkFa3eNd6XAQXaYZ+ZUjBnm2mVod iek8nbEQKFvGSBr5MzqpYHW8QfN491zORGJQnZzQ8fuMbblX5wfu9tHGWrR5LhTi gM+sF/+AU5y59TeLqnp0HmMw/vvLQft2Os7r+O2dQ2TX741QTfcaQ3M5tjnjVzdh stZtMdvDuRlEKvWiLA1p0WEuyjJuXzu6m9x3hw/+uniYYMIrh5qLG8P+GLJ0vA/4 2qEylAAZbFhX1MdhAV1WRPI9Uh+knIJH+gOxAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU8AuZrWW/CDXH0eIbjSmrlQhnKaUwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC84QXVacldXX0NEWEgwZUlialNt cmxRaG5LYVUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDwFOo MA0GCSqGSIb3DQEBCwUAA4IBAQAWWyZbY2XrtOxfvB/oklmZkviK4CensnnQNpIh b4MsC7xp0DXXGjuLNMvsue+KtX5lG+4Blov/JQiDHfiWFb1gURGyvanoiNEJj18c 7hkZOg/8lZVJLLSGJnxuT01Sit4uCxNZqZeHzAYQZwJE2rUTCyUbXMiu2BjHCvaX HuukdaT08YJzpBAkkqjan/J+ypO/bZp44UQHJXvVldrCDFqa3HcEWtGDxRthvwMQ axXpBr1aKvZ/RNOVf+Fah0M3ZZmVWAYso2MGvN/Koch30N5Cu+2/xtKHV+hWtJPu gS4t4ir7TxkNTdsLF5j+tmsIwWOvD8yVP+BuaKwIy8eSPHf4 -----END CERTIFICATE-----Generated at Sun Aug 24 07:29:34 2025 by rpki-client