$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/Gnjc6b-HGqdLq697Zg__8aQQnh0.roa File: Gnjc6b-HGqdLq697Zg__8aQQnh0.roa (raw, json) Hash identifier: cvzGriPI9YxBHCvbNTY37A4PsLdMYw4BrOUHXqUiE7Q= Subject key identifier: 1A:78:DC:E9:BF:87:1A:A7:4B:AB:AF:7B:66:0F:FF:F1:A4:10:9E:1D Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 1006 Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Gnjc6b-HGqdLq697Zg__8aQQnh0.roa Signing time: Fri 22 Aug 2025 08:55:51 +0000 ROA not before: Fri 22 Aug 2025 08:55:51 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 1659 IP address blocks: 192.83.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4102 (0x1006) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 22 08:55:51 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1A78DCE9BF871AA74BABAF7B660FFFF1A4109E1D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:50:cb:e5:06:c1:81:4e:25:f8:0b:d3:5a:04: 42:2e:ca:92:7f:3e:92:3e:ba:82:85:6c:5b:9f:ce: 95:7d:d6:50:87:be:53:5d:4c:07:18:1a:81:14:2f: 85:17:e0:bf:02:b8:02:88:e6:f0:e6:4c:0b:ba:43: e9:9e:5e:10:2e:c8:07:12:39:ad:a2:f3:bd:91:ff: 9d:80:7a:31:50:e4:d4:d1:ec:a3:f1:b6:8b:50:f2: 73:fd:48:b3:6b:df:34:24:78:f4:af:dd:d5:da:a9: db:63:cf:fd:08:65:53:5f:dd:d5:31:7d:d4:de:28: 69:1e:b7:bf:19:ef:0d:c5:04:d9:14:d7:e9:da:d9: bc:eb:ff:bb:51:c8:ee:ff:11:d9:ce:46:e5:a7:3f: e6:9f:99:6f:7e:bc:d9:b5:7f:35:73:46:b6:13:1b: 3a:fc:12:f9:09:84:82:ab:53:b3:78:3f:37:2e:d0: 9e:a9:dd:4f:24:81:b6:9b:45:bf:7c:39:03:fb:19: ff:22:44:6e:cf:d8:b9:9a:e6:e5:50:c8:78:0b:76: 22:d3:67:73:46:b1:2e:c0:4e:ce:88:62:e5:3f:d1: 21:7d:2f:4b:50:7f:f3:89:b8:d6:65:f6:b3:a6:10: 9a:ef:c5:55:ca:cf:b2:b9:4b:58:cd:2b:cf:af:4d: d1:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:78:DC:E9:BF:87:1A:A7:4B:AB:AF:7B:66:0F:FF:F1:A4:10:9E:1D X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Gnjc6b-HGqdLq697Zg__8aQQnh0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.83.196.0/24 Signature Algorithm: sha256WithRSAEncryption 23:40:a8:07:a7:bc:0a:33:a5:49:b3:b9:30:b0:39:6c:96:53: f4:3b:61:be:fa:49:64:d5:7f:18:a7:5e:ce:f4:33:59:a2:31: 0b:e7:43:aa:2a:08:44:e7:44:31:a9:65:ae:12:d9:ae:f9:28: f0:59:83:4a:c9:fd:a4:d2:bd:29:1b:3b:f9:cd:67:64:a2:57: f8:45:61:38:38:13:09:25:3d:e9:7c:18:8a:d3:6b:3b:6d:12: 3e:1e:bc:42:dd:0f:10:8b:e1:a4:a9:0d:e4:17:b7:5e:ed:fb: bf:3d:d9:1e:f6:b6:1a:e1:ff:10:3b:aa:56:07:47:5c:d5:6b: ba:e0:41:d9:c3:f4:69:99:e2:0c:87:a9:d9:d9:8f:94:d3:68: f2:b2:db:4f:59:4e:df:bd:d9:b5:ec:45:be:70:50:f2:27:e3: a1:fb:c2:d5:fe:73:83:8e:3c:ee:a8:d6:e3:1c:85:2c:81:0b: f5:81:33:fe:2b:d8:63:b7:38:26:76:6a:fe:74:a5:eb:49:bf: e9:bf:f5:38:d4:07:ec:55:24:0d:df:7f:0f:f2:da:cb:21:e3: f6:d2:42:07:96:db:6c:dd:21:9e:2e:76:a1:ae:66:35:d4:00: 67:61:e4:18:4a:5b:63:e7:d3:2f:2f:5d:d6:4b:e0:c2:4d:17: ee:cb:ce:f7 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEAYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTA4MjIw ODU1NTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDFBNzhEQ0U5QkY4NzFB QTc0QkFCQUY3QjY2MEZGRkYxQTQxMDlFMUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWUMvlBsGBTiX4C9NaBEIuypJ/PpI+uoKFbFufzpV91lCHvlNd TAcYGoEUL4UX4L8CuAKI5vDmTAu6Q+meXhAuyAcSOa2i872R/52AejFQ5NTR7KPx totQ8nP9SLNr3zQkePSv3dXaqdtjz/0IZVNf3dUxfdTeKGket78Z7w3FBNkU1+na 2bzr/7tRyO7/EdnORuWnP+afmW9+vNm1fzVzRrYTGzr8EvkJhIKrU7N4Pzcu0J6p 3U8kgbabRb98OQP7Gf8iRG7P2Lma5uVQyHgLdiLTZ3NGsS7ATs6IYuU/0SF9L0tQ f/OJuNZl9rOmEJrvxVXKz7K5S1jNK8+vTdFHAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUGnjc6b+HGqdLq697Zg//8aQQnh0wHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9HbmpjNmItSEdxZExxNjk3Wmdf XzhhUVFuaDAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwFPE MA0GCSqGSIb3DQEBCwUAA4IBAQAjQKgHp7wKM6VJs7kwsDlsllP0O2G++klk1X8Y p17O9DNZojEL50OqKghE50QxqWWuEtmu+SjwWYNKyf2k0r0pGzv5zWdkolf4RWE4 OBMJJT3pfBiK02s7bRI+HrxC3Q8Qi+GkqQ3kF7de7fu/Pdke9rYa4f8QO6pWB0dc 1Wu64EHZw/RpmeIMh6nZ2Y+U02jysttPWU7fvdm17EW+cFDyJ+Oh+8LV/nODjjzu qNbjHIUsgQv1gTP+K9hjtzgmdmr+dKXrSb/pv/U41AfsVSQN338P8trLIeP20kIH ltts3SGeLnahrmY11ABnYeQYSltj59MvL13WS+DCTRfuy873 -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:28 2025 by rpki-client