$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/EQA-4XdfIndRiU4iGUybSR35gN4.roa File: EQA-4XdfIndRiU4iGUybSR35gN4.roa (raw, json) Hash identifier: n8tpDQg4agsYD6iJfoRPVCfRvAYkipOPVZYfqyhvTfE= Subject key identifier: 11:00:3E:E1:77:5F:22:77:51:89:4E:22:19:4C:9B:49:1D:F9:80:DE Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 1002 Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/EQA-4XdfIndRiU4iGUybSR35gN4.roa Signing time: Fri 22 Aug 2025 08:55:50 +0000 ROA not before: Fri 22 Aug 2025 08:55:50 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9916 IP address blocks: 140.129.56.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4098 (0x1002) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 22 08:55:50 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=11003EE1775F227751894E22194C9B491DF980DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:20:f9:0f:de:1e:9c:67:13:68:63:34:b4:dc: 15:c6:72:fe:b5:a3:aa:7c:db:03:06:5d:a0:e7:00: f0:a6:7e:b3:6a:0b:12:21:5f:b3:2f:94:5d:53:a5: 31:a1:93:0b:1a:52:b2:34:f1:e9:5a:06:df:97:46: 8f:40:33:ea:1e:24:75:e4:41:e2:aa:cd:36:a9:17: 4b:29:1a:7f:a3:e3:69:6d:f3:4f:14:a1:a0:46:cd: e5:84:7f:65:5a:38:27:2d:00:75:cd:f4:a0:ad:4f: cd:81:15:28:62:fe:77:f8:be:84:d5:f4:bf:05:80: d1:1b:ec:f1:b9:22:39:a0:2e:a5:53:15:59:0e:10: aa:ea:28:86:ae:98:80:de:77:26:ff:de:5d:f8:75: 9b:e2:8b:e4:b2:f6:86:5e:9b:84:88:3b:1e:25:df: 77:d2:93:a9:d8:1f:67:2d:67:f7:aa:c1:87:ff:9a: fc:1b:34:f6:3c:2b:ad:b9:dd:2e:69:4e:4f:86:5d: 85:44:e7:81:c3:65:2f:7a:51:22:b8:f2:41:a0:dc: 83:0e:0e:8a:51:2d:f5:f7:87:b5:60:8c:00:e8:88: f2:e8:6a:66:62:be:c0:20:77:59:8d:da:67:13:7d: 6f:5c:06:79:a8:be:76:76:14:ab:55:1b:8c:80:be: 84:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:00:3E:E1:77:5F:22:77:51:89:4E:22:19:4C:9B:49:1D:F9:80:DE X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/EQA-4XdfIndRiU4iGUybSR35gN4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 140.129.56.0/21 Signature Algorithm: sha256WithRSAEncryption 23:8e:1b:36:81:2a:33:a7:4e:82:ba:70:65:cd:5a:9e:98:3d: 8d:b3:54:21:25:53:96:14:b4:8c:dd:04:18:19:68:24:ad:b4: 76:84:e8:e7:27:9f:4c:00:7d:94:ae:17:9d:92:53:4f:74:9c: d8:30:cf:6e:fb:e5:cc:81:ff:be:d8:20:c8:21:23:b3:75:57: 66:89:8b:cf:cf:8d:4a:70:c1:b3:ab:37:0e:5c:54:99:c4:cf: 14:21:20:3c:fd:70:66:d2:b1:a0:07:f7:46:8f:ba:3b:43:8e: 8b:35:3e:a7:47:33:ad:db:cc:5f:43:a9:7c:77:12:a1:df:f8: 64:dd:65:ac:4d:20:03:9d:8e:aa:f8:cb:8d:f1:6f:d6:f0:93: 6b:74:96:a0:4a:a1:57:da:54:61:93:c3:2b:20:c5:84:83:07: 77:81:e0:c3:12:f1:10:c0:21:0d:5c:1b:5f:ea:69:25:d6:89: fb:a3:58:78:53:68:a7:a4:8b:05:c6:2d:8a:21:1d:60:e9:40: 6b:c6:a1:46:e1:15:80:f6:5e:b8:d9:be:dc:3a:1c:6e:db:f9: 4c:87:68:41:a5:09:bc:76:3c:c1:fb:6a:a8:dd:35:b1:3f:e0: 9b:da:68:46:e0:61:1e:ed:c0:4f:b0:b2:1c:f7:a5:0b:d0:75: ec:96:9b:b9 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEAIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTA4MjIw ODU1NTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDExMDAzRUUxNzc1RjIy Nzc1MTg5NEUyMjE5NEM5QjQ5MURGOTgwREUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLIPkP3h6cZxNoYzS03BXGcv61o6p82wMGXaDnAPCmfrNqCxIh X7MvlF1TpTGhkwsaUrI08elaBt+XRo9AM+oeJHXkQeKqzTapF0spGn+j42lt808U oaBGzeWEf2VaOCctAHXN9KCtT82BFShi/nf4voTV9L8FgNEb7PG5IjmgLqVTFVkO EKrqKIaumIDedyb/3l34dZvii+Sy9oZem4SIOx4l33fSk6nYH2ctZ/eqwYf/mvwb NPY8K6253S5pTk+GXYVE54HDZS96USK48kGg3IMODopRLfX3h7VgjADoiPLoamZi vsAgd1mN2mcTfW9cBnmovnZ2FKtVG4yAvoTvAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUEQA+4XdfIndRiU4iGUybSR35gN4wHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9FUUEtNFhkZkluZFJpVTRpR1V5 YlNSMzVnTjQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDjIE4 MA0GCSqGSIb3DQEBCwUAA4IBAQAjjhs2gSozp06CunBlzVqemD2Ns1QhJVOWFLSM 3QQYGWgkrbR2hOjnJ59MAH2UrhedklNPdJzYMM9u++XMgf++2CDIISOzdVdmiYvP z41KcMGzqzcOXFSZxM8UISA8/XBm0rGgB/dGj7o7Q46LNT6nRzOt28xfQ6l8dxKh 3/hk3WWsTSADnY6q+MuN8W/W8JNrdJagSqFX2lRhk8MrIMWEgwd3geDDEvEQwCEN XBtf6mkl1on7o1h4U2inpIsFxi2KIR1g6UBrxqFG4RWA9l642b7cOhxu2/lMh2hB pQm8djzB+2qo3TWxP+Cb2mhG4GEe7cBPsLIc96UL0HXslpu5 -----END CERTIFICATE-----Generated at Sun Aug 24 05:34:04 2025 by rpki-client