$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/JajsOzaV4g0s-AHG-JkYqoStyhU.roa File: JajsOzaV4g0s-AHG-JkYqoStyhU.roa (raw, json) Hash identifier: T1Ub1aDc6fj5CTXiQfWs5iQcd+qUPkuzXrB0dCjhn9E= Subject key identifier: 25:A8:EC:3B:36:95:E2:0D:2C:F8:01:C6:F8:99:18:AA:84:AD:CA:15 Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Certificate serial: 1081 Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/JajsOzaV4g0s-AHG-JkYqoStyhU.roa Signing time: Fri 22 Aug 2025 08:55:33 +0000 ROA not before: Fri 22 Aug 2025 08:55:33 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17716 IP address blocks: 210.60.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4225 (0x1081) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Validity Not Before: Aug 22 08:55:33 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=25A8EC3B3695E20D2CF801C6F89918AA84ADCA15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d5:ec:61:d4:21:a0:ac:1b:86:d0:be:94:45: b5:8b:1b:79:23:84:41:55:af:04:3f:c2:a7:64:ec: 96:8f:52:f2:7f:de:89:a3:db:94:0a:8b:ac:2f:a9: bc:a1:db:30:53:ce:8c:19:a3:3c:f4:6f:2e:ed:39: dd:4d:90:52:b8:e9:3e:66:54:c8:56:4a:ff:c3:dd: af:ac:95:4a:16:66:7d:46:43:1f:bb:eb:b8:f2:56: f8:a3:6e:74:7a:6a:c1:2c:07:a6:53:f5:d6:f1:73: 6a:6c:8c:cf:83:e0:ec:83:f2:05:d0:93:f6:54:6b: 03:c7:36:14:63:d0:79:5d:98:b0:bc:27:29:ce:40: 2b:4c:1b:85:2b:95:2f:5f:f6:d6:ea:b5:cc:01:2d: b1:d2:87:86:8a:7d:32:b7:5b:7e:94:85:50:77:42: d0:05:8d:e6:64:7e:11:3d:d8:53:ce:61:60:52:74: 64:48:35:f0:f6:70:72:69:80:27:94:1b:56:0e:4e: 34:ab:ad:73:54:ae:21:4c:53:c1:1a:c9:c2:88:96: be:af:91:f5:35:55:7d:16:74:71:9b:e2:2d:e5:51: 66:9a:a4:8a:01:a3:0f:73:d3:a9:de:de:d5:46:74: 5c:71:b2:48:79:9f:cf:2c:a6:1a:95:41:cc:fb:fc: c3:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:A8:EC:3B:36:95:E2:0D:2C:F8:01:C6:F8:99:18:AA:84:AD:CA:15 X509v3 Authority Key Identifier: keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/JajsOzaV4g0s-AHG-JkYqoStyhU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.60.149.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:81:43:c2:19:c1:56:08:b2:d8:fc:6c:93:49:a1:23:42:f9: 89:05:a3:3f:a4:5e:71:1f:8e:85:54:fb:23:bc:ba:bf:6f:c8: fd:b8:92:15:cd:e6:fd:0c:99:c5:19:67:af:ab:28:24:fb:5e: 67:61:23:b5:f9:47:45:cc:e0:57:c9:7c:29:7d:63:27:11:f0: 4f:9f:09:4b:8f:25:27:33:0c:60:ac:c4:eb:69:20:f8:60:0b: 2d:be:eb:67:6c:74:5c:fa:0c:b3:8f:c7:71:ca:e5:1d:ab:8d: ce:a8:49:ce:e7:89:86:a1:b8:b7:92:9f:ab:1e:b9:02:e2:03: 06:34:9c:4e:16:5a:e1:30:92:c4:94:3d:7e:b3:ec:1b:d7:85: 9c:61:77:34:dc:b7:29:2e:4b:8b:b5:76:2f:25:9b:cd:50:88: a2:a8:4f:81:49:04:13:dd:35:40:9f:bf:1c:6e:4a:0d:82:a5: 0d:75:5b:a6:94:80:5e:24:b8:f0:ce:9c:73:b6:e3:7e:30:c6: be:88:ff:bc:e6:7e:60:4a:5c:c2:8d:e2:9e:3f:d3:28:29:56: 8c:64:84:11:ba:82:96:a9:fc:4b:36:20:4d:1a:40:47:00:65: cf:d5:78:ec:4c:e1:93:6a:57:91:ce:0e:dc:be:6c:50:da:4a: 5d:5c:56:0a -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEIEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNTA4MjIw ODU1MzNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDI1QThFQzNCMzY5NUUy MEQyQ0Y4MDFDNkY4OTkxOEFBODRBRENBMTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDG1exh1CGgrBuG0L6URbWLG3kjhEFVrwQ/wqdk7JaPUvJ/3omj 25QKi6wvqbyh2zBTzowZozz0by7tOd1NkFK46T5mVMhWSv/D3a+slUoWZn1GQx+7 67jyVvijbnR6asEsB6ZT9dbxc2psjM+D4OyD8gXQk/ZUawPHNhRj0HldmLC8JynO QCtMG4UrlS9f9tbqtcwBLbHSh4aKfTK3W36UhVB3QtAFjeZkfhE92FPOYWBSdGRI NfD2cHJpgCeUG1YOTjSrrXNUriFMU8EaycKIlr6vkfU1VX0WdHGb4i3lUWaapIoB ow9z06ne3tVGdFxxskh5n88sphqVQcz7/MPdAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUJajsOzaV4g0s+AHG+JkYqoStyhUwHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF /peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9KYWpzT3phVjRnMHMtQUhHLUpr WXFvU3R5aFUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0jyV MA0GCSqGSIb3DQEBCwUAA4IBAQA+gUPCGcFWCLLY/GyTSaEjQvmJBaM/pF5xH46F VPsjvLq/b8j9uJIVzeb9DJnFGWevqygk+15nYSO1+UdFzOBXyXwpfWMnEfBPnwlL jyUnMwxgrMTraSD4YAstvutnbHRc+gyzj8dxyuUdq43OqEnO54mGobi3kp+rHrkC 4gMGNJxOFlrhMJLElD1+s+wb14WcYXc03LcpLkuLtXYvJZvNUIiiqE+BSQQT3TVA n78cbkoNgqUNdVumlIBeJLjwzpxztuN+MMa+iP+85n5gSlzCjeKeP9MoKVaMZIQR uoKWqfxLNiBNGkBHAGXP1XjsTOGTaleRzg7cvmxQ2kpdXFYK -----END CERTIFICATE-----Generated at Sun Aug 24 13:36:48 2025 by rpki-client