$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/XdGou_W_p_3tHGn8K9kxDcaryOA.roa File: XdGou_W_p_3tHGn8K9kxDcaryOA.roa (raw, json) Hash identifier: +Q1w6WHibwNrTlmgh2O9esMWPGaMomx1w1zKZhWIEuE= Subject key identifier: 5D:D1:A8:BB:F5:BF:A7:FD:ED:1C:69:FC:2B:D9:31:0D:C6:AB:C8:E0 Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0FE3 Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/XdGou_W_p_3tHGn8K9kxDcaryOA.roa Signing time: Fri 22 Aug 2025 08:55:43 +0000 ROA not before: Fri 22 Aug 2025 08:55:43 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17716 IP address blocks: 140.131.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4067 (0xfe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 22 08:55:43 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=5DD1A8BBF5BFA7FDED1C69FC2BD9310DC6ABC8E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:cb:c2:1c:37:9a:31:d7:f4:8f:e5:ab:c6:6c: 10:2e:69:cc:ce:87:0e:c0:fa:2f:3a:1e:a4:fd:a3: 64:ff:6f:9e:e6:09:3b:ee:79:d5:7f:bf:38:bb:2e: 0b:f4:90:13:ce:47:ee:55:44:ea:11:81:03:34:96: f5:22:49:be:35:25:1e:41:63:6d:14:67:2e:55:2b: 42:0a:d7:59:82:21:63:59:1b:0a:3c:87:89:e2:ff: 76:62:c0:8e:af:10:a1:a5:0f:83:a3:ee:ff:ef:93: 07:5f:6b:e1:44:84:27:84:75:65:73:96:8f:92:af: c8:c3:7e:08:5f:1a:02:e5:f5:30:c4:3b:1a:13:13: ac:9b:d1:0d:e0:e4:6e:e1:3d:a5:9b:2f:3e:5a:3e: f6:79:76:42:c9:2d:3b:c4:45:37:26:06:47:0a:c3: 70:d8:2f:ef:a4:17:4e:0e:4d:0a:95:7c:7d:b6:54: 5a:2b:b6:b9:e8:e7:70:5a:b3:8f:96:c4:61:2e:4c: cd:c9:be:92:09:d0:b5:e1:76:41:46:6d:38:4b:bc: 16:e1:69:e0:4c:05:80:a9:5b:5c:d4:77:c8:12:a4: 10:c1:0a:d1:77:df:b7:1c:11:9a:a0:2f:eb:a3:d6: c8:76:65:15:d8:fb:34:1a:9e:5f:b8:07:89:55:67: 3d:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:D1:A8:BB:F5:BF:A7:FD:ED:1C:69:FC:2B:D9:31:0D:C6:AB:C8:E0 X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/XdGou_W_p_3tHGn8K9kxDcaryOA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 140.131.0.0/16 Signature Algorithm: sha256WithRSAEncryption 66:78:6d:1d:31:d1:53:b6:36:a6:61:6a:55:20:29:47:eb:43: d4:d6:cb:93:4c:19:2e:1e:46:85:df:fc:ec:d5:aa:e0:64:cc: 20:6e:52:08:50:8d:c2:5e:a0:17:93:ef:6c:29:5c:6e:78:5f: 32:97:d1:91:3e:03:f4:28:b8:d5:e4:0e:d2:00:47:17:0f:53: cd:59:88:c5:53:92:85:7e:47:bc:6d:7f:3f:b0:18:1b:e2:52: 41:18:94:3b:ca:e3:a4:1a:3b:8e:d0:3b:8a:a5:de:42:bd:b3: d7:e7:c3:63:dc:4e:11:92:e3:c6:50:3c:53:08:4c:05:79:3f: 8b:fd:6d:37:37:70:44:d4:f8:fa:fa:ee:b6:d8:5a:2c:3e:56: 12:9e:c8:08:94:91:c1:9a:c7:1c:32:c2:c2:8e:a6:89:6d:b7: 12:7d:38:c4:5f:c6:f5:a4:7f:0e:b5:f5:d7:4a:5e:de:b6:f6: fb:bc:71:42:5c:ec:0c:4d:f5:a2:c9:6a:44:4b:3a:7b:e6:51: 5e:93:a2:33:63:4f:61:ed:d8:b5:17:b5:fb:2b:2d:c4:6d:cc: f6:cf:3c:05:d8:98:6d:64:42:f2:3c:0d:52:99:27:c3:6e:20: 5a:d8:89:06:0e:f8:04:f0:1e:1c:03:b7:b4:a1:11:c6:97:60: c5:02:40:18 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICD+MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTA4MjIw ODU1NDNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDVERDFBOEJCRjVCRkE3 RkRFRDFDNjlGQzJCRDkzMTBEQzZBQkM4RTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwy8IcN5ox1/SP5avGbBAuaczOhw7A+i86HqT9o2T/b57mCTvu edV/vzi7Lgv0kBPOR+5VROoRgQM0lvUiSb41JR5BY20UZy5VK0IK11mCIWNZGwo8 h4ni/3ZiwI6vEKGlD4Oj7v/vkwdfa+FEhCeEdWVzlo+Sr8jDfghfGgLl9TDEOxoT E6yb0Q3g5G7hPaWbLz5aPvZ5dkLJLTvERTcmBkcKw3DYL++kF04OTQqVfH22VFor trno53Bas4+WxGEuTM3JvpIJ0LXhdkFGbThLvBbhaeBMBYCpW1zUd8gSpBDBCtF3 37ccEZqgL+uj1sh2ZRXY+zQanl+4B4lVZz0xAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUXdGou/W/p/3tHGn8K9kxDcaryOAwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9YZEdvdV9XX3BfM3RIR244Szlr eERjYXJ5T0Eucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjIMw DQYJKoZIhvcNAQELBQADggEBAGZ4bR0x0VO2NqZhalUgKUfrQ9TWy5NMGS4eRoXf /OzVquBkzCBuUghQjcJeoBeT72wpXG54XzKX0ZE+A/QouNXkDtIARxcPU81ZiMVT koV+R7xtfz+wGBviUkEYlDvK46QaO47QO4ql3kK9s9fnw2PcThGS48ZQPFMITAV5 P4v9bTc3cETU+Pr67rbYWiw+VhKeyAiUkcGaxxwywsKOpolttxJ9OMRfxvWkfw61 9ddKXt629vu8cUJc7AxN9aLJakRLOnvmUV6TojNjT2Ht2LUXtfsrLcRtzPbPPAXY mG1kQvI8DVKZJ8NuIFrYiQYO+ATwHhwDt7ShEcaXYMUCQBg= -----END CERTIFICATE-----Generated at Sun Aug 24 07:28:24 2025 by rpki-client