$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/GO8OE5OnIARbo9-dh1Pow-XXpko.roa File: GO8OE5OnIARbo9-dh1Pow-XXpko.roa (raw, json) Hash identifier: z/NalRMis760QYo8e9bWDmA0h3eZEyqXa6yt4ryuf24= Subject key identifier: 18:EF:0E:13:93:A7:20:04:5B:A3:DF:9D:87:53:E8:C3:E5:D7:A6:4A Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Certificate serial: 108D Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/GO8OE5OnIARbo9-dh1Pow-XXpko.roa Signing time: Fri 22 Aug 2025 08:55:36 +0000 ROA not before: Fri 22 Aug 2025 08:55:36 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 1659 IP address blocks: 210.240.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4237 (0x108d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Validity Not Before: Aug 22 08:55:36 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=18EF0E1393A720045BA3DF9D8753E8C3E5D7A64A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:83:23:56:61:df:90:4a:ed:35:9f:a0:ed:74: ce:79:ad:5f:31:85:eb:52:21:b0:28:0e:1f:e2:b8: 05:0e:1f:d7:67:1f:11:90:b2:6e:c9:da:78:0b:46: 59:ab:18:96:9b:d5:6c:6a:ca:85:64:0d:37:85:e1: df:c9:37:a8:35:d1:3a:79:bf:bb:52:1b:e5:c2:10: c4:2c:0a:95:f8:23:81:79:3f:fb:d6:d7:45:ee:f6: 59:f0:ba:60:db:85:66:83:b3:c1:24:32:65:33:65: 2e:c5:4f:1d:df:dc:93:39:b0:4e:71:8f:92:f6:84: 6e:1c:bf:4e:4f:94:0f:55:26:61:b5:4d:96:55:e4: a3:d8:b5:af:92:52:80:87:56:a8:40:9f:bd:35:ba: 59:b4:0c:31:d2:3b:a8:86:e1:d2:9f:0a:fc:f3:d3: 6f:f0:4a:fa:12:4f:ce:18:5d:92:71:5e:e9:f0:cc: 72:30:50:31:47:d8:05:0c:70:1c:d1:c9:3f:51:3b: 8d:e7:9f:a6:8d:b3:d7:d1:83:ca:6d:ce:3c:84:13: f2:ea:d6:25:49:9c:ac:a7:94:c7:c9:bc:99:71:6d: 1f:1b:7a:1e:55:3e:d1:9e:02:ac:62:f7:53:8e:72: 6f:ec:81:16:6c:5b:c1:fe:b3:da:9f:c5:70:09:50: d8:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:EF:0E:13:93:A7:20:04:5B:A3:DF:9D:87:53:E8:C3:E5:D7:A6:4A X509v3 Authority Key Identifier: keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/GO8OE5OnIARbo9-dh1Pow-XXpko.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.240.0.0/16 Signature Algorithm: sha256WithRSAEncryption 5c:40:e1:23:d1:50:b5:3d:72:0f:aa:a1:14:5b:e4:51:d4:c0: fc:3c:73:9f:4e:93:bc:d4:d7:f6:d0:c1:81:0f:1b:3e:22:2f: 33:52:82:13:97:11:ec:43:7b:f9:75:c5:cf:b4:5a:bd:d0:e7: fe:35:7b:89:fd:be:55:39:57:53:53:e6:1a:be:72:45:ef:74: ed:34:31:c8:9a:94:10:aa:e8:ff:71:b5:e0:81:27:d6:66:63: 29:ee:11:50:3e:90:a8:5d:f4:54:a4:7a:51:f6:ef:5a:73:ee: df:1e:cc:fe:53:32:d8:db:f3:c9:97:9e:96:e9:ab:25:a4:80: c1:08:2f:85:85:fc:4d:92:23:76:d4:fd:3c:43:a8:a7:8e:47: 51:6b:70:11:69:25:34:97:3f:a8:6d:a4:24:84:8c:2d:23:bd: ff:66:ad:f5:50:1c:15:54:bc:6f:66:bf:ff:50:a7:ef:31:93: b6:8f:d7:4f:3e:a0:46:cc:45:dd:1a:5a:46:13:46:5e:ae:bd: 9d:67:de:b0:45:ef:b8:bc:fa:20:d1:84:3a:9e:9c:68:91:0c: fe:26:34:15:f5:ec:e8:d3:99:02:49:f5:d9:a0:1b:01:34:a4: ce:af:02:1d:44:ff:bf:d7:70:c6:dd:e7:2e:bf:6c:87:a3:d6: be:41:ff:5d -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICEI0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNTA4MjIw ODU1MzZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDE4RUYwRTEzOTNBNzIw MDQ1QkEzREY5RDg3NTNFOEMzRTVEN0E2NEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDgyNWYd+QSu01n6DtdM55rV8xhetSIbAoDh/iuAUOH9dnHxGQ sm7J2ngLRlmrGJab1WxqyoVkDTeF4d/JN6g10Tp5v7tSG+XCEMQsCpX4I4F5P/vW 10Xu9lnwumDbhWaDs8EkMmUzZS7FTx3f3JM5sE5xj5L2hG4cv05PlA9VJmG1TZZV 5KPYta+SUoCHVqhAn701ulm0DDHSO6iG4dKfCvzz02/wSvoST84YXZJxXunwzHIw UDFH2AUMcBzRyT9RO43nn6aNs9fRg8ptzjyEE/Lq1iVJnKynlMfJvJlxbR8beh5V PtGeAqxi91OOcm/sgRZsW8H+s9qfxXAJUNibAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUGO8OE5OnIARbo9+dh1Pow+XXpkowHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF /peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9HTzhPRTVPbklBUmJvOS1kaDFQ b3ctWFhwa28ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMA0vAw DQYJKoZIhvcNAQELBQADggEBAFxA4SPRULU9cg+qoRRb5FHUwPw8c59Ok7zU1/bQ wYEPGz4iLzNSghOXEexDe/l1xc+0Wr3Q5/41e4n9vlU5V1NT5hq+ckXvdO00Mcia lBCq6P9xteCBJ9ZmYynuEVA+kKhd9FSkelH271pz7t8ezP5TMtjb88mXnpbpqyWk gMEIL4WF/E2SI3bU/TxDqKeOR1FrcBFpJTSXP6htpCSEjC0jvf9mrfVQHBVUvG9m v/9Qp+8xk7aP108+oEbMRd0aWkYTRl6uvZ1n3rBF77i8+iDRhDqenGiRDP4mNBX1 7OjTmQJJ9dmgGwE0pM6vAh1E/7/XcMbd5y6/bIej1r5B/10= -----END CERTIFICATE-----Generated at Sun Aug 24 07:57:18 2025 by rpki-client