$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/Ta_cKpw0VFAcPTmyDa21NeS4qtI.roa File: Ta_cKpw0VFAcPTmyDa21NeS4qtI.roa (raw, json) Hash identifier: joykKDekTW42XxBn8+MCIYmPa6dhoVYdY1mqDLe/NPQ= Subject key identifier: 4D:AF:DC:2A:9C:34:54:50:1C:3D:39:B2:0D:AD:B5:35:E4:B8:AA:D2 Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Certificate serial: 1080 Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Ta_cKpw0VFAcPTmyDa21NeS4qtI.roa Signing time: Fri 22 Aug 2025 08:55:33 +0000 ROA not before: Fri 22 Aug 2025 08:55:33 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17716 IP address blocks: 210.60.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4224 (0x1080) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Validity Not Before: Aug 22 08:55:33 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=4DAFDC2A9C3454501C3D39B20DADB535E4B8AAD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:7e:41:cb:a4:ca:4c:9b:a5:77:63:80:24:a0: 7d:28:ad:69:71:7e:07:45:6e:ed:cb:c0:f5:81:b2: b4:43:eb:cc:36:03:c8:09:f3:15:bf:d6:0d:20:0a: ce:42:e2:5b:90:ce:d6:bd:9b:4a:d9:64:73:8d:cb: 14:52:aa:49:3f:50:9c:8d:9c:74:c7:3a:fd:f8:7a: 7e:b5:27:d8:58:fb:d0:44:cb:35:c8:fd:a7:c1:f6: d9:27:4d:48:0e:fe:2b:25:d2:69:88:4c:ed:ee:31: d5:24:ec:16:f1:dd:33:df:9c:ac:62:b5:4e:99:f5: 84:d5:58:1a:c5:5a:d6:a9:05:9b:fa:2e:d9:c2:45: f6:27:a7:16:82:47:19:a2:f5:23:8e:60:13:d6:c7: 6d:c0:7e:1e:be:e6:f7:fc:a2:f3:f0:60:67:40:f6: 1a:c4:3d:8d:d8:6b:5e:34:38:6b:b5:97:95:39:db: bd:34:35:13:e5:ac:79:61:ec:32:ba:8f:18:a5:cc: 2c:34:04:fa:4d:2e:bc:61:4e:fb:fa:4f:53:df:03: aa:4c:a6:b9:86:05:8b:c8:1a:7e:34:19:f9:54:a9: e8:b8:d5:42:51:13:02:b3:4d:ad:43:85:d7:7f:ea: 50:52:34:b1:4f:09:3d:ac:20:c8:6e:e1:5c:63:6d: 3b:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:AF:DC:2A:9C:34:54:50:1C:3D:39:B2:0D:AD:B5:35:E4:B8:AA:D2 X509v3 Authority Key Identifier: keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Ta_cKpw0VFAcPTmyDa21NeS4qtI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.60.150.0/24 Signature Algorithm: sha256WithRSAEncryption 84:44:a6:3f:81:91:91:49:0e:46:94:58:7a:9c:5f:12:4d:b3: 6a:0d:0f:5c:7c:37:27:96:50:24:fb:03:4c:61:92:c9:cb:00: 68:79:ff:1d:c5:4e:ae:27:59:36:c7:ce:37:76:51:e5:16:b5: 4d:e8:5b:8b:8e:4e:4b:f7:71:01:52:df:90:5b:25:93:dd:d5: d5:74:41:32:c8:2e:7d:d8:dd:d4:0e:f5:91:85:7b:8e:a8:a8: ae:71:c7:ec:85:c8:01:aa:76:cf:05:97:dc:c3:70:91:d1:26: ac:3b:e6:a8:22:b6:d8:69:fd:55:3d:8a:75:17:be:77:29:d6: 2d:be:ef:35:1d:a2:8c:97:cf:63:55:3e:54:6c:0e:4d:66:5b: b3:aa:b0:fb:00:62:2e:0d:0d:71:8e:be:25:8f:70:de:9c:13: 39:66:28:b7:94:54:6e:3c:b9:c2:1f:3b:80:78:71:5f:7c:b9: 54:20:38:01:2a:f4:ee:70:73:f1:7c:8c:d9:9c:a2:a8:aa:4e: 6e:e2:9d:0e:3e:8d:a1:d8:38:79:ad:ce:fb:01:35:27:46:d6: ea:09:21:96:9a:b1:c5:a4:0d:07:94:d9:49:8c:8e:8f:b3:dd: d5:e6:8f:a4:fb:43:f4:71:d9:9c:d1:be:f5:fe:e3:39:ed:87: 30:dd:8c:41 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEIAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNTA4MjIw ODU1MzNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDREQUZEQzJBOUMzNDU0 NTAxQzNEMzlCMjBEQURCNTM1RTRCOEFBRDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5fkHLpMpMm6V3Y4AkoH0orWlxfgdFbu3LwPWBsrRD68w2A8gJ 8xW/1g0gCs5C4luQzta9m0rZZHONyxRSqkk/UJyNnHTHOv34en61J9hY+9BEyzXI /afB9tknTUgO/isl0mmITO3uMdUk7Bbx3TPfnKxitU6Z9YTVWBrFWtapBZv6LtnC RfYnpxaCRxmi9SOOYBPWx23Afh6+5vf8ovPwYGdA9hrEPY3Ya140OGu1l5U52700 NRPlrHlh7DK6jxilzCw0BPpNLrxhTvv6T1PfA6pMprmGBYvIGn40GflUqei41UJR EwKzTa1Dhdd/6lBSNLFPCT2sIMhu4VxjbTs7AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUTa/cKpw0VFAcPTmyDa21NeS4qtIwHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF /peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9UYV9jS3B3MFZGQWNQVG15RGEy MU5lUzRxdEkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0jyW MA0GCSqGSIb3DQEBCwUAA4IBAQCERKY/gZGRSQ5GlFh6nF8STbNqDQ9cfDcnllAk +wNMYZLJywBoef8dxU6uJ1k2x843dlHlFrVN6FuLjk5L93EBUt+QWyWT3dXVdEEy yC592N3UDvWRhXuOqKiuccfshcgBqnbPBZfcw3CR0SasO+aoIrbYaf1VPYp1F753 KdYtvu81HaKMl89jVT5UbA5NZluzqrD7AGIuDQ1xjr4lj3DenBM5Zii3lFRuPLnC HzuAeHFffLlUIDgBKvTucHPxfIzZnKKoqk5u4p0OPo2h2Dh5rc77ATUnRtbqCSGW mrHFpA0HlNlJjI6Ps93V5o+k+0P0cdmc0b71/uM57Ycw3YxB -----END CERTIFICATE-----Generated at Sun Aug 24 13:40:22 2025 by rpki-client