$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/EgT0UroUiG5zlhxgj-IkQ81Uie8.roa File: EgT0UroUiG5zlhxgj-IkQ81Uie8.roa (raw, json) Hash identifier: DIrXpEZ0GF9bvjS+WQ9VzfvPy9i4sPvSoodq/EftGec= Subject key identifier: 12:04:F4:52:BA:14:88:6E:73:96:1C:60:8F:E2:24:43:CD:54:89:EF Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Certificate serial: 109F Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/EgT0UroUiG5zlhxgj-IkQ81Uie8.roa Signing time: Fri 22 Aug 2025 08:55:40 +0000 ROA not before: Fri 22 Aug 2025 08:55:40 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 1659 IP address blocks: 210.70.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4255 (0x109f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Validity Not Before: Aug 22 08:55:40 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1204F452BA14886E73961C608FE22443CD5489EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ec:3d:d3:89:72:d3:a3:86:f6:cf:87:a4:9d: f4:b1:17:15:c8:5d:fd:3f:1c:1b:b1:69:ed:47:e6: 85:24:63:28:73:18:ec:82:e1:83:45:51:bc:51:43: 99:34:97:45:c4:b7:6f:f9:75:50:59:ba:3d:bf:34: cc:1c:6a:9f:d2:fd:0a:13:ef:22:81:f3:31:53:1d: bb:4c:da:3b:6b:27:b6:2d:51:0e:26:a8:62:53:4d: da:f4:02:e5:a3:fa:d3:81:28:9a:91:e5:a6:24:a1: a8:9a:b6:7d:fd:0e:77:99:9a:40:49:c5:a6:b4:ad: 04:7f:eb:3b:46:35:7d:52:0b:d2:de:1f:f7:a0:b2: 05:57:76:0d:90:4b:75:14:d8:e5:29:4e:44:0e:ad: f1:7f:46:b7:43:19:ea:0a:fa:ed:63:ea:b8:99:0d: 1e:88:2f:ee:33:cb:93:21:b5:a9:1f:a6:f0:79:cd: 87:31:2c:ea:ad:d7:d3:fe:a1:8b:2a:0e:c0:a8:c5: e5:38:07:b6:eb:be:15:e0:cb:5a:7c:35:51:38:ec: ba:f5:23:f8:06:71:8a:3d:c3:bc:1c:77:fd:72:40: 3b:7c:de:4b:d5:d4:55:30:63:66:06:bc:b7:b4:51: 08:43:89:c6:ef:5c:d6:c1:a8:e7:6d:aa:3a:c0:a2: cc:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:04:F4:52:BA:14:88:6E:73:96:1C:60:8F:E2:24:43:CD:54:89:EF X509v3 Authority Key Identifier: keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/EgT0UroUiG5zlhxgj-IkQ81Uie8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.70.0.0/16 Signature Algorithm: sha256WithRSAEncryption 82:c7:d1:2a:2d:54:15:90:9e:95:18:25:4a:a4:6a:ba:33:18: 40:94:6f:ea:f9:97:cc:a5:c8:9f:fc:7c:11:77:55:28:10:6e: 67:13:ee:5a:27:eb:a7:be:01:e3:03:5a:5c:83:ae:8b:53:55: 64:ab:00:ad:03:b3:49:6e:76:78:c0:68:c8:6d:12:04:26:3e: a5:a1:1f:d2:3a:b9:2f:4f:0c:cf:a2:8c:d5:79:87:e3:eb:0e: 19:4a:47:e5:c0:43:0a:12:90:e0:8f:bc:66:1f:71:7f:73:f5: 33:38:2a:d2:1b:7b:ba:24:ac:c9:c6:b3:85:e1:ae:d5:fd:42: cf:75:6c:9b:f7:23:d7:3f:11:bf:12:8a:3d:5d:04:d3:e8:20: 47:c5:c9:93:9d:15:71:80:1f:e5:a3:2b:46:b4:2d:da:3c:24: a5:c0:88:dd:fd:2e:f0:63:ec:2b:9e:59:16:79:f5:0c:98:ce: 43:14:52:2b:47:46:8b:ba:79:b8:fc:9d:98:d5:b9:2a:a4:6a: ed:fb:01:87:02:68:cf:a9:0b:a3:e9:28:34:14:a2:72:9e:88: 78:74:37:74:8e:21:48:59:5f:c0:6a:b8:0d:a3:21:e9:4c:98: 75:2d:47:c9:2d:c3:35:20:9b:17:8c:2d:76:a2:99:aa:28:e0: 06:a9:71:a0 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICEJ8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNTA4MjIw ODU1NDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDEyMDRGNDUyQkExNDg4 NkU3Mzk2MUM2MDhGRTIyNDQzQ0Q1NDg5RUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDA7D3TiXLTo4b2z4eknfSxFxXIXf0/HBuxae1H5oUkYyhzGOyC 4YNFUbxRQ5k0l0XEt2/5dVBZuj2/NMwcap/S/QoT7yKB8zFTHbtM2jtrJ7YtUQ4m qGJTTdr0AuWj+tOBKJqR5aYkoaiatn39DneZmkBJxaa0rQR/6ztGNX1SC9LeH/eg sgVXdg2QS3UU2OUpTkQOrfF/RrdDGeoK+u1j6riZDR6IL+4zy5MhtakfpvB5zYcx LOqt19P+oYsqDsCoxeU4B7brvhXgy1p8NVE47Lr1I/gGcYo9w7wcd/1yQDt83kvV 1FUwY2YGvLe0UQhDicbvXNbBqOdtqjrAosz5AgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUEgT0UroUiG5zlhxgj+IkQ81Uie8wHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF /peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9FZ1QwVXJvVWlHNXpsaHhnai1J a1E4MVVpZTgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMA0kYw DQYJKoZIhvcNAQELBQADggEBAILH0SotVBWQnpUYJUqkarozGECUb+r5l8ylyJ/8 fBF3VSgQbmcT7lon66e+AeMDWlyDrotTVWSrAK0Ds0ludnjAaMhtEgQmPqWhH9I6 uS9PDM+ijNV5h+PrDhlKR+XAQwoSkOCPvGYfcX9z9TM4KtIbe7okrMnGs4XhrtX9 Qs91bJv3I9c/Eb8Sij1dBNPoIEfFyZOdFXGAH+WjK0a0Ldo8JKXAiN39LvBj7Cue WRZ59QyYzkMUUitHRou6ebj8nZjVuSqkau37AYcCaM+pC6PpKDQUonKeiHh0N3SO IUhZX8BquA2jIelMmHUtR8ktwzUgmxeMLXaimaoo4AapcaA= -----END CERTIFICATE-----Generated at Sun Aug 24 07:57:18 2025 by rpki-client