$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/YMW9ZoePgAT8By822yn9Vo4cpxU.roa File: YMW9ZoePgAT8By822yn9Vo4cpxU.roa (raw, json) Hash identifier: iZm/HStqt8+oRfagB9EUFyL1009RD3aX35KFby/pGJ4= Subject key identifier: 60:C5:BD:66:87:8F:80:04:FC:07:2F:36:DB:29:FD:56:8E:1C:A7:15 Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0FF5 Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/YMW9ZoePgAT8By822yn9Vo4cpxU.roa Signing time: Fri 22 Aug 2025 08:55:47 +0000 ROA not before: Fri 22 Aug 2025 08:55:47 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 1659 IP address blocks: 134.208.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 22:26:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4085 (0xff5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 22 08:55:47 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=60C5BD66878F8004FC072F36DB29FD568E1CA715 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:2e:87:9b:01:90:ad:06:4d:55:ca:99:2d:32: 6c:60:1d:32:fb:fb:be:0b:96:11:ad:db:0a:70:45: 42:7a:b7:42:ad:27:41:e9:a6:de:4b:bc:b1:00:1b: 6c:a0:3b:06:e2:7a:0f:4a:94:f8:60:00:36:27:33: c5:6c:85:19:9c:c3:72:ed:1f:cc:de:c9:15:c9:97: 01:da:a9:86:22:aa:d8:11:8d:5b:7d:19:dc:5c:55: da:c5:b0:fb:2c:82:30:b5:17:3f:74:07:52:33:9a: ec:19:ee:2b:34:be:90:68:7f:e1:0f:0d:8b:eb:78: 09:a9:0a:7f:36:38:46:f3:5c:40:99:34:d4:3e:1b: 5d:5e:84:af:9b:60:a6:22:12:77:74:6f:d9:b7:cc: bd:43:75:d1:b1:90:65:83:7d:9e:35:05:c4:ab:8e: c5:59:81:83:7e:23:2e:a9:75:1c:f9:5b:40:68:ad: 28:f7:07:fc:5e:f2:1d:25:f0:07:49:91:8b:4d:2c: c2:78:bf:ed:bd:99:7f:bb:bc:59:d0:5d:6a:5f:38: 69:bf:86:2d:ce:64:d5:78:ec:dd:f6:02:74:0f:6f: 04:f4:b4:22:c7:9c:c9:c7:8f:67:8c:2f:2b:94:26: 60:e3:d6:c3:1d:af:3f:0d:3b:98:5e:1e:20:e8:df: 7b:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:C5:BD:66:87:8F:80:04:FC:07:2F:36:DB:29:FD:56:8E:1C:A7:15 X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/YMW9ZoePgAT8By822yn9Vo4cpxU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 134.208.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3d:12:44:d3:49:ba:b8:eb:81:b4:b7:e0:d1:a7:91:88:79:78: 53:2c:e4:dc:6f:60:02:d3:9e:a1:92:2d:c4:0d:9b:9b:c4:e8: 8f:5d:35:66:05:96:3b:29:8c:c2:6d:54:5a:9c:2f:82:d6:aa: cb:26:b0:1e:ea:ed:69:d6:47:d2:7c:f4:e6:be:2b:a2:df:bd: d4:ef:7a:52:8d:03:4e:4c:d9:29:a2:8b:cf:39:8f:cc:77:90: 7f:b2:59:5a:c1:d0:2f:ec:69:fb:1f:05:3f:17:92:7d:66:d4: 42:ee:20:65:84:80:c8:83:7f:e6:a0:19:77:6b:11:3c:c4:c6: c9:9f:7d:44:af:5d:52:51:66:a6:04:3b:63:bd:9b:49:f7:0a: de:66:dd:bc:53:73:09:17:ae:0a:02:f8:a8:78:83:a2:5b:74: b2:4c:31:0b:5f:a5:6f:1a:cb:51:57:1b:40:d0:b0:ec:a2:8c: 66:f2:57:be:7f:53:a9:97:28:06:73:97:ea:e2:6c:33:7f:02: 99:32:c8:0c:9f:e5:88:94:75:3c:2d:25:7a:02:f3:85:d2:d6: e7:a2:58:92:d1:90:94:f8:6d:31:54:97:20:31:65:f5:9c:5a: 03:8d:2e:1f:04:d9:c5:5a:35:05:44:73:1d:8d:5d:d2:f4:ea: 6c:39:31:a0 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICD/UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTA4MjIw ODU1NDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDYwQzVCRDY2ODc4Rjgw MDRGQzA3MkYzNkRCMjlGRDU2OEUxQ0E3MTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCLoebAZCtBk1VypktMmxgHTL7+74LlhGt2wpwRUJ6t0KtJ0Hp pt5LvLEAG2ygOwbieg9KlPhgADYnM8VshRmcw3LtH8zeyRXJlwHaqYYiqtgRjVt9 GdxcVdrFsPssgjC1Fz90B1IzmuwZ7is0vpBof+EPDYvreAmpCn82OEbzXECZNNQ+ G11ehK+bYKYiEnd0b9m3zL1DddGxkGWDfZ41BcSrjsVZgYN+Iy6pdRz5W0BorSj3 B/xe8h0l8AdJkYtNLMJ4v+29mX+7vFnQXWpfOGm/hi3OZNV47N32AnQPbwT0tCLH nMnHj2eMLyuUJmDj1sMdrz8NO5heHiDo33uFAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUYMW9ZoePgAT8By822yn9Vo4cpxUwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9ZTVc5Wm9lUGdBVDhCeTgyMnlu OVZvNGNweFUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAhtAw DQYJKoZIhvcNAQELBQADggEBAD0SRNNJurjrgbS34NGnkYh5eFMs5NxvYALTnqGS LcQNm5vE6I9dNWYFljspjMJtVFqcL4LWqssmsB7q7WnWR9J89Oa+K6LfvdTvelKN A05M2Smii885j8x3kH+yWVrB0C/safsfBT8Xkn1m1ELuIGWEgMiDf+agGXdrETzE xsmffUSvXVJRZqYEO2O9m0n3Ct5m3bxTcwkXrgoC+Kh4g6JbdLJMMQtfpW8ay1FX G0DQsOyijGbyV75/U6mXKAZzl+ribDN/ApkyyAyf5YiUdTwtJXoC84XS1ueiWJLR kJT4bTFUlyAxZfWcWgONLh8E2cVaNQVEcx2NXdL06mw5MaA= -----END CERTIFICATE-----Generated at Mon Oct 20 21:00:38 2025 by rpki-client