$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/8zXNS7EDQ_krZRYvp-RWXJ9BSVg.roa File: 8zXNS7EDQ_krZRYvp-RWXJ9BSVg.roa (raw, json) Hash identifier: ksXJYKwa4dbT+L/pfMQ6hpWqvohAw3aAz5XjNMEeyTE= Subject key identifier: F3:35:CD:4B:B1:03:43:F9:2B:65:16:2F:A7:E4:56:5C:9F:41:49:58 Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 1003 Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/8zXNS7EDQ_krZRYvp-RWXJ9BSVg.roa Signing time: Fri 22 Aug 2025 08:55:50 +0000 ROA not before: Fri 22 Aug 2025 08:55:50 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9916 IP address blocks: 140.129.80.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4099 (0x1003) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 22 08:55:50 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F335CD4BB10343F92B65162FA7E4565C9F414958 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:61:cd:51:f8:40:d5:32:b1:56:ac:15:fa:b2: fb:66:55:4d:fd:8a:58:80:fb:af:e0:c1:8d:39:c8: 2f:2f:2f:ed:7d:5d:54:b2:23:97:65:2c:19:ae:4f: 3d:35:eb:c6:f1:49:f7:69:c8:2a:1e:80:56:aa:2d: 1a:fa:b5:5a:95:53:0d:bd:71:48:64:04:88:ed:3c: 57:b4:26:fc:99:be:bb:82:bd:30:72:02:7d:6d:94: 83:58:91:66:87:d2:51:8e:df:92:a2:4c:c7:a3:d1: 71:1e:53:5b:4e:37:9f:82:45:65:03:57:38:12:cc: 72:90:81:fd:4b:05:cb:b4:6d:a3:d7:8e:a1:bd:86: 24:93:fe:8b:76:38:ad:4e:46:66:69:19:6f:fd:08: ab:da:90:1f:eb:7a:bd:07:13:1c:1f:2c:1d:a5:08: 64:c7:11:44:80:66:eb:79:13:ec:23:96:7a:1e:5d: c8:de:67:4b:b1:73:85:e3:b9:cb:2d:20:e3:8f:f4: 4a:5c:61:f7:40:25:d7:4c:1e:0d:96:fa:4c:c3:70: d3:f0:83:b4:00:19:05:e0:4a:be:1e:2f:58:c5:97: dd:f8:15:d6:a3:41:30:49:2d:2a:7c:29:f1:89:31: ea:59:c9:01:00:d1:48:11:82:8f:56:2a:ad:71:ea: aa:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:35:CD:4B:B1:03:43:F9:2B:65:16:2F:A7:E4:56:5C:9F:41:49:58 X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/8zXNS7EDQ_krZRYvp-RWXJ9BSVg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 140.129.80.0/24 Signature Algorithm: sha256WithRSAEncryption 12:39:21:16:26:b8:f7:82:2b:d4:a7:e1:e8:88:90:82:e2:45: 54:61:ae:7c:ba:c0:0b:1c:02:86:49:56:96:af:e2:c5:91:20: 1d:37:57:67:0a:8b:74:86:6e:4a:9d:93:85:0f:8a:71:c4:49: b6:a6:8b:e3:97:95:66:66:fe:31:5e:dd:7e:a7:a3:d7:a6:6c: b0:a5:ef:62:bd:f0:33:ec:8f:13:e8:2b:40:4d:eb:9a:7c:3c: 4c:e4:c9:a5:2d:c2:bd:9b:b7:7f:04:61:1d:a5:7e:da:17:8d: 56:bb:b8:d3:14:82:cb:61:fa:43:6b:ae:6c:e4:79:f1:3f:ff: 0a:8e:5b:c6:7d:6e:ef:ff:dd:ac:30:0c:d2:7e:e8:42:41:19: d8:ef:89:c7:c4:eb:9e:9e:df:3f:b6:58:6d:fe:57:91:5b:74: d0:b2:63:cf:76:a8:f3:33:b7:d3:fe:e4:e7:f2:b9:92:fc:f4: 5b:82:37:a3:9a:99:65:b6:7f:7e:cb:18:e3:52:67:19:fc:41: d6:70:0b:a0:29:3f:90:0f:36:c3:71:62:52:e9:71:a7:e7:2d: f5:3a:a5:aa:3b:e2:bb:dc:07:6f:7c:0f:c4:c0:41:cb:62:68: 36:4d:a7:90:1f:48:12:80:e1:10:37:f8:e9:6b:6d:f1:28:81: 18:b9:5b:7f -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEAMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTA4MjIw ODU1NTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEYzMzVDRDRCQjEwMzQz RjkyQjY1MTYyRkE3RTQ1NjVDOUY0MTQ5NTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOYc1R+EDVMrFWrBX6svtmVU39iliA+6/gwY05yC8vL+19XVSy I5dlLBmuTz0168bxSfdpyCoegFaqLRr6tVqVUw29cUhkBIjtPFe0JvyZvruCvTBy An1tlINYkWaH0lGO35KiTMej0XEeU1tON5+CRWUDVzgSzHKQgf1LBcu0baPXjqG9 hiST/ot2OK1ORmZpGW/9CKvakB/rer0HExwfLB2lCGTHEUSAZut5E+wjlnoeXcje Z0uxc4XjucstIOOP9EpcYfdAJddMHg2W+kzDcNPwg7QAGQXgSr4eL1jFl934Fdaj QTBJLSp8KfGJMepZyQEA0UgRgo9WKq1x6qpNAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU8zXNS7EDQ/krZRYvp+RWXJ9BSVgwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC84elhOUzdFRFFfa3JaUll2cC1S V1hKOUJTVmcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAjIFQ MA0GCSqGSIb3DQEBCwUAA4IBAQASOSEWJrj3givUp+HoiJCC4kVUYa58usALHAKG SVaWr+LFkSAdN1dnCot0hm5KnZOFD4pxxEm2povjl5VmZv4xXt1+p6PXpmywpe9i vfAz7I8T6CtATeuafDxM5MmlLcK9m7d/BGEdpX7aF41Wu7jTFILLYfpDa65s5Hnx P/8KjlvGfW7v/92sMAzSfuhCQRnY74nHxOuent8/tlht/leRW3TQsmPPdqjzM7fT /uTn8rmS/PRbgjejmplltn9+yxjjUmcZ/EHWcAugKT+QDzbDcWJS6XGn5y31OqWq O+K73AdvfA/EwEHLYmg2TaeQH0gSgOEQN/jpa23xKIEYuVt/ -----END CERTIFICATE-----Generated at Sun Aug 24 07:28:25 2025 by rpki-client