$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/Rc4KGG_kj9e26YHrFLFiB4TSdjM.roa File: Rc4KGG_kj9e26YHrFLFiB4TSdjM.roa (raw, json) Hash identifier: PAfzDFhiteLKMnsbuZmz5PPVca9REQo8S9PbmLKKWiI= Subject key identifier: 45:CE:0A:18:6F:E4:8F:D7:B6:E9:81:EB:14:B1:62:07:84:D2:76:33 Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 1000 Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Rc4KGG_kj9e26YHrFLFiB4TSdjM.roa Signing time: Fri 22 Aug 2025 08:55:49 +0000 ROA not before: Fri 22 Aug 2025 08:55:49 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 1659 IP address blocks: 140.136.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4096 (0x1000) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 22 08:55:49 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=45CE0A186FE48FD7B6E981EB14B1620784D27633 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:9b:b4:e8:0f:63:5f:0f:08:47:f8:85:2b:bb: ca:38:2c:eb:df:17:76:62:93:bc:e8:9f:8f:11:aa: 76:ec:c6:ee:d9:3c:12:b9:e2:54:ce:48:ab:f3:16: 74:14:9c:f4:a1:05:27:75:5e:d2:3f:21:6b:1d:6c: 05:2a:89:65:28:5f:f3:6e:54:a6:44:81:fe:b4:51: da:9a:ef:f1:eb:51:04:42:b7:99:b7:b4:94:10:52: 1b:65:b8:3f:a3:a2:e9:af:93:6b:07:2f:5a:80:fb: d1:b1:6f:2a:f7:0a:12:15:7c:89:cb:8a:d7:3b:1a: 40:ba:5e:9e:87:36:4b:a4:84:2f:c3:11:6a:c2:2f: 3a:7b:0c:e9:9b:10:e7:5d:68:b4:2c:7c:ca:b4:f1: e2:34:9a:af:36:bb:28:55:e3:50:34:39:ee:fb:81: cb:92:9f:f9:c8:5b:0a:4b:f1:d7:52:ea:68:eb:c8: 92:83:67:df:74:89:bc:5c:6c:76:4b:b2:c9:7e:66: 9f:ff:e0:e9:d7:ff:24:14:e2:31:4a:87:98:f2:2a: 43:06:03:eb:c5:2e:17:1d:ac:17:0a:9d:00:a4:d5: 32:84:cc:39:25:f3:5c:27:5f:5a:f0:41:52:8a:21: e4:55:04:68:93:7e:30:9c:00:43:28:62:79:c9:2e: 72:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:CE:0A:18:6F:E4:8F:D7:B6:E9:81:EB:14:B1:62:07:84:D2:76:33 X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Rc4KGG_kj9e26YHrFLFiB4TSdjM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 140.136.0.0/15 Signature Algorithm: sha256WithRSAEncryption 86:42:88:75:f4:26:54:d0:09:c4:02:58:87:0b:00:07:6e:cd: b1:54:39:ba:48:87:0b:bb:53:0c:68:7b:93:70:96:fc:25:25: 7c:ed:45:20:38:1a:57:4d:c4:d0:42:7f:41:d6:83:5f:c9:40: c0:4d:e6:b9:b3:31:40:42:6b:1b:5f:64:ef:65:3c:77:bc:86: 3f:1b:bf:e2:65:0e:d7:a8:2c:75:cf:65:70:bc:a5:3d:f4:eb: 43:f5:d0:58:e1:23:07:f1:d5:d2:f8:a4:50:bf:c6:6a:5a:c3: bf:f4:d3:c4:36:f1:50:d0:89:c8:ea:1e:51:0e:d1:52:6f:f3: f6:b4:67:11:82:e0:ac:ac:85:5f:36:14:64:35:9f:10:c1:8f: f3:f4:ee:59:74:a2:71:f2:18:80:d3:43:9e:f9:5c:df:52:31: 0d:2a:89:04:1c:de:cb:03:c0:0e:cd:bd:e5:9b:11:3a:c4:e8: a0:11:db:c2:06:37:39:92:86:b1:a5:70:05:71:d1:fa:c7:8c: e4:da:b4:40:5f:08:0a:e9:6c:bd:49:53:68:58:37:2d:45:77: 80:07:ff:c1:c4:58:45:47:5b:f7:7f:8b:68:6d:94:2f:d1:27: 87:56:da:2b:f8:8f:f9:e1:7d:7d:05:32:9c:90:09:5e:5f:97: 09:9b:a1:99 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICEAAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTA4MjIw ODU1NDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQ1Q0UwQTE4NkZFNDhG RDdCNkU5ODFFQjE0QjE2MjA3ODREMjc2MzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4m7ToD2NfDwhH+IUru8o4LOvfF3Zik7zon48Rqnbsxu7ZPBK5 4lTOSKvzFnQUnPShBSd1XtI/IWsdbAUqiWUoX/NuVKZEgf60Udqa7/HrUQRCt5m3 tJQQUhtluD+joumvk2sHL1qA+9Gxbyr3ChIVfInLitc7GkC6Xp6HNkukhC/DEWrC Lzp7DOmbEOddaLQsfMq08eI0mq82uyhV41A0Oe77gcuSn/nIWwpL8ddS6mjryJKD Z990ibxcbHZLssl+Zp//4OnX/yQU4jFKh5jyKkMGA+vFLhcdrBcKnQCk1TKEzDkl 81wnX1rwQVKKIeRVBGiTfjCcAEMoYnnJLnKZAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQURc4KGG/kj9e26YHrFLFiB4TSdjMwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9SYzRLR0dfa2o5ZTI2WUhyRkxG aUI0VFNkak0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMBjIgw DQYJKoZIhvcNAQELBQADggEBAIZCiHX0JlTQCcQCWIcLAAduzbFUObpIhwu7Uwxo e5NwlvwlJXztRSA4GldNxNBCf0HWg1/JQMBN5rmzMUBCaxtfZO9lPHe8hj8bv+Jl DteoLHXPZXC8pT3060P10FjhIwfx1dL4pFC/xmpaw7/008Q28VDQicjqHlEO0VJv 8/a0ZxGC4KyshV82FGQ1nxDBj/P07ll0onHyGIDTQ575XN9SMQ0qiQQc3ssDwA7N veWbETrE6KAR28IGNzmShrGlcAVx0frHjOTatEBfCArpbL1JU2hYNy1Fd4AH/8HE WEVHW/d/i2htlC/RJ4dW2iv4j/nhfX0FMpyQCV5flwmboZk= -----END CERTIFICATE-----Generated at Sun Aug 24 07:29:36 2025 by rpki-client