$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/Go38XMbMlpzrfCSclAjcddEDx3s.roa File: Go38XMbMlpzrfCSclAjcddEDx3s.roa (raw, json) Hash identifier: w7rLB2TIoCcJBwX+0NCDf3FA9vFOXTyqHtYLm7ulzqA= Subject key identifier: 1A:8D:FC:5C:C6:CC:96:9C:EB:7C:24:9C:94:08:DC:75:D1:03:C7:7B Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Certificate serial: 107F Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Go38XMbMlpzrfCSclAjcddEDx3s.roa Signing time: Fri 22 Aug 2025 08:55:33 +0000 ROA not before: Fri 22 Aug 2025 08:55:33 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9916 IP address blocks: 120.104.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4223 (0x107f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Validity Not Before: Aug 22 08:55:33 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1A8DFC5CC6CC969CEB7C249C9408DC75D103C77B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c9:34:8f:99:97:9e:4b:f1:c5:ba:cc:79:30: 3b:2c:3f:27:eb:13:f9:8b:6a:3e:77:2a:24:6d:34: 3a:29:eb:db:3d:52:4c:7a:89:5b:c9:63:9a:c0:85: 6d:90:56:e2:29:33:aa:31:bb:ba:fc:ac:72:56:b0: 7b:7f:60:88:c9:7f:80:29:f2:5f:fa:c4:77:5a:c8: 5e:a2:dc:0f:d2:5b:b9:89:7e:7d:6b:c0:02:7d:54: 13:e5:3c:67:45:24:8b:86:1f:b1:e5:fe:ce:8b:b0: 0e:a6:2e:e0:9a:0a:fb:4e:e4:24:33:42:63:3b:78: 02:89:09:92:c5:ff:b7:f9:42:94:80:25:a2:0a:80: c7:e5:db:b1:c5:4d:57:12:38:6a:b3:9f:a4:53:12: 40:62:92:ee:53:f4:20:89:c1:95:1d:f8:49:87:6f: 99:53:30:7c:12:c1:8e:3b:1b:3d:b9:06:fe:79:5b: 75:57:58:7d:d5:77:c7:f2:24:81:31:99:4d:69:2f: 13:87:fa:b2:82:74:5b:f1:50:85:59:69:0d:34:65: b7:41:7a:d4:a3:e1:09:20:a0:ab:31:bf:ce:0d:51: 4b:21:d7:ff:eb:c2:ab:71:e8:30:2a:4f:6c:43:90: 57:a2:f6:8f:48:75:cb:eb:96:0a:53:ac:33:63:91: 1a:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:8D:FC:5C:C6:CC:96:9C:EB:7C:24:9C:94:08:DC:75:D1:03:C7:7B X509v3 Authority Key Identifier: keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Go38XMbMlpzrfCSclAjcddEDx3s.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 120.104.0.0/16 Signature Algorithm: sha256WithRSAEncryption 5f:6e:85:4a:75:96:64:a5:fc:25:51:82:e7:99:75:27:90:ca: 3d:18:fb:25:b4:66:74:8a:79:51:72:6a:22:3f:80:f3:e5:0e: 1a:88:5e:f9:8e:ab:cd:69:9e:e9:e4:a6:39:55:f7:3b:f9:b0: d0:1c:0d:66:c7:77:ae:bf:de:9f:7b:94:d6:b4:71:cd:a4:04: 53:44:a4:d5:97:49:4c:1a:32:14:43:4a:aa:c4:a2:de:39:8f: c3:3c:ff:a0:67:8c:fa:b7:df:54:93:cd:49:2a:d4:dd:dc:6f: 99:7f:ff:d0:be:43:27:58:18:c0:06:da:ce:67:2f:e7:3a:c3: 17:38:a6:6b:39:e4:b7:08:ab:54:63:66:a1:28:d8:1d:b2:56: 41:19:ee:f0:ed:2a:d2:5c:a2:be:99:58:4a:1b:ce:20:e6:27: 00:fa:7f:8b:85:81:50:d9:5e:53:ea:d7:e4:e0:16:80:ed:8b: 05:d3:e6:e1:2d:c9:4d:bd:30:4d:ef:88:99:c4:7d:90:25:53: d0:31:e0:3d:d6:5e:f4:e6:51:07:bb:69:49:20:aa:41:bd:1f: 64:92:12:ba:0e:a5:df:4d:a1:4a:8a:58:ba:9c:0a:48:65:19: 48:b3:68:3c:07:e4:94:f4:21:8d:c9:2b:c1:c4:16:f3:7d:cb: 22:f9:8b:e7 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICEH8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNTA4MjIw ODU1MzNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDFBOERGQzVDQzZDQzk2 OUNFQjdDMjQ5Qzk0MDhEQzc1RDEwM0M3N0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzyTSPmZeeS/HFusx5MDssPyfrE/mLaj53KiRtNDop69s9Ukx6 iVvJY5rAhW2QVuIpM6oxu7r8rHJWsHt/YIjJf4Ap8l/6xHdayF6i3A/SW7mJfn1r wAJ9VBPlPGdFJIuGH7Hl/s6LsA6mLuCaCvtO5CQzQmM7eAKJCZLF/7f5QpSAJaIK gMfl27HFTVcSOGqzn6RTEkBiku5T9CCJwZUd+EmHb5lTMHwSwY47Gz25Bv55W3VX WH3Vd8fyJIExmU1pLxOH+rKCdFvxUIVZaQ00ZbdBetSj4QkgoKsxv84NUUsh1//r wqtx6DAqT2xDkFei9o9IdcvrlgpTrDNjkRo/AgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUGo38XMbMlpzrfCSclAjcddEDx3swHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF /peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9HbzM4WE1iTWxwenJmQ1NjbEFq Y2RkRUR4M3Mucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAeGgw DQYJKoZIhvcNAQELBQADggEBAF9uhUp1lmSl/CVRgueZdSeQyj0Y+yW0ZnSKeVFy aiI/gPPlDhqIXvmOq81pnunkpjlV9zv5sNAcDWbHd66/3p97lNa0cc2kBFNEpNWX SUwaMhRDSqrEot45j8M8/6BnjPq331STzUkq1N3cb5l//9C+QydYGMAG2s5nL+c6 wxc4pms55LcIq1RjZqEo2B2yVkEZ7vDtKtJcor6ZWEobziDmJwD6f4uFgVDZXlPq 1+TgFoDtiwXT5uEtyU29ME3viJnEfZAlU9Ax4D3WXvTmUQe7aUkgqkG9H2SSEroO pd9NoUqKWLqcCkhlGUizaDwH5JT0IY3JK8HEFvN9yyL5i+c= -----END CERTIFICATE-----Generated at Sun Aug 24 13:36:46 2025 by rpki-client