$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/TBqHuahGb-yyswk33rZtWuf0R8w.roa File: TBqHuahGb-yyswk33rZtWuf0R8w.roa (raw, json) Hash identifier: nRpJ1s4jCyMiAaF0o59T2gpgjYq5nck+zW4oyUCorBw= Subject key identifier: 4C:1A:87:B9:A8:46:6F:EC:B2:B3:09:37:DE:B6:6D:5A:E7:F4:47:CC Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0FFD Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/TBqHuahGb-yyswk33rZtWuf0R8w.roa Signing time: Fri 22 Aug 2025 08:55:49 +0000 ROA not before: Fri 22 Aug 2025 08:55:49 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 1659 IP address blocks: 192.83.192.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4093 (0xffd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 22 08:55:49 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=4C1A87B9A8466FECB2B30937DEB66D5AE7F447CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:e4:c6:af:82:f8:42:ac:96:69:a2:3d:fc:f9: 4b:85:79:ed:21:9f:cd:e8:64:44:33:45:fc:b4:a9: cc:98:4d:4b:dd:4b:7a:1b:67:ab:c7:f4:06:6f:c4: 0e:31:b4:b7:6a:ba:0d:f1:3b:91:11:5b:74:73:01: a2:ba:5b:5b:e9:89:7a:02:2e:a9:32:40:90:9d:be: 98:3c:1f:bb:bc:74:14:3c:75:a3:ce:ad:9d:59:48: 49:cc:4f:07:35:19:72:31:74:e9:3f:46:80:b8:bd: 27:7c:25:8d:16:50:2b:a9:2b:70:25:fb:e7:8f:f9: 4f:67:10:eb:38:73:00:9a:54:d2:94:ee:04:74:cb: 11:3b:67:2f:cd:b8:99:13:1a:a9:83:b2:dc:49:f7: 58:22:fe:56:d3:51:c5:e9:73:da:02:b8:d4:d8:38: 38:b1:08:0d:95:82:89:cd:72:32:70:b0:97:79:db: 3d:44:12:95:86:de:23:75:f6:33:94:50:79:52:ec: 17:a5:22:e6:9e:19:68:f9:28:1e:b9:f8:92:6c:36: fb:93:0d:8a:bd:90:3f:6f:9d:ca:42:6d:fc:4a:7e: 0a:1a:95:ea:0e:31:91:4d:0a:e3:7e:a0:10:93:33: 30:e4:c6:a1:59:84:e5:a6:6a:f2:a0:30:5f:54:2b: 5a:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:1A:87:B9:A8:46:6F:EC:B2:B3:09:37:DE:B6:6D:5A:E7:F4:47:CC X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/TBqHuahGb-yyswk33rZtWuf0R8w.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.83.192.0/22 Signature Algorithm: sha256WithRSAEncryption 18:4a:7a:fd:a6:09:3f:eb:e9:ff:4d:4f:18:2b:4b:4d:a0:fc: 5c:ee:11:bc:d9:a7:00:a6:d4:d8:67:fc:ad:cc:ca:d2:8a:23: c9:49:fe:62:14:7a:b0:24:49:ed:a5:7e:b1:a6:30:4a:61:18: 36:26:8c:2b:57:d9:1b:9c:31:33:01:37:26:a5:83:f9:e1:83: 4e:a9:49:e5:0b:df:00:82:61:61:24:f8:1b:71:ca:f8:4b:36: bd:e0:a3:0b:7c:81:3b:6f:8a:6b:d6:9d:f9:ce:c2:79:2a:f3: 70:a0:fe:5d:bd:0b:2f:3f:39:67:77:c2:a8:a9:cc:5a:0b:b7: d8:8e:d7:3a:71:c9:a6:0f:b8:79:39:b0:a0:7e:88:7e:de:36: 52:98:38:1e:9c:fd:e0:e1:c8:0f:45:66:04:da:12:bb:6e:cf: 35:bb:1d:16:56:53:0e:8b:0f:bd:54:b0:01:cb:20:b9:05:47: cb:cc:a1:92:16:2e:fb:69:1a:bd:df:82:f8:99:57:6f:35:21: 6d:e3:07:6b:e3:63:3c:87:50:84:59:73:4a:90:68:6b:69:3a: 92:ef:12:3a:03:8f:ef:ae:22:ad:4a:aa:f7:1e:c5:99:21:0c: 3b:bd:7b:6c:e6:2f:01:9a:90:b5:bf:66:cc:7a:6d:86:c8:b4: 0a:8d:ac:32 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICD/0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTA4MjIw ODU1NDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDRDMUE4N0I5QTg0NjZG RUNCMkIzMDkzN0RFQjY2RDVBRTdGNDQ3Q0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDh5MavgvhCrJZpoj38+UuFee0hn83oZEQzRfy0qcyYTUvdS3ob Z6vH9AZvxA4xtLdqug3xO5ERW3RzAaK6W1vpiXoCLqkyQJCdvpg8H7u8dBQ8daPO rZ1ZSEnMTwc1GXIxdOk/RoC4vSd8JY0WUCupK3Al++eP+U9nEOs4cwCaVNKU7gR0 yxE7Zy/NuJkTGqmDstxJ91gi/lbTUcXpc9oCuNTYODixCA2VgonNcjJwsJd52z1E EpWG3iN19jOUUHlS7BelIuaeGWj5KB65+JJsNvuTDYq9kD9vncpCbfxKfgoaleoO MZFNCuN+oBCTMzDkxqFZhOWmavKgMF9UK1pVAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUTBqHuahGb+yyswk33rZtWuf0R8wwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9UQnFIdWFoR2IteXlzd2szM3Ja dFd1ZjBSOHcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwFPA MA0GCSqGSIb3DQEBCwUAA4IBAQAYSnr9pgk/6+n/TU8YK0tNoPxc7hG82acAptTY Z/ytzMrSiiPJSf5iFHqwJEntpX6xpjBKYRg2JowrV9kbnDEzATcmpYP54YNOqUnl C98AgmFhJPgbccr4Sza94KMLfIE7b4pr1p35zsJ5KvNwoP5dvQsvPzlnd8Koqcxa C7fYjtc6ccmmD7h5ObCgfoh+3jZSmDgenP3g4cgPRWYE2hK7bs81ux0WVlMOiw+9 VLAByyC5BUfLzKGSFi77aRq934L4mVdvNSFt4wdr42M8h1CEWXNKkGhraTqS7xI6 A4/vriKtSqr3HsWZIQw7vXts5i8BmpC1v2bMem2GyLQKjawy -----END CERTIFICATE-----Generated at Sun Aug 24 07:33:17 2025 by rpki-client