$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/YWvHhNoxJBsftvuGWvl3zQ6HYT0.roa File: YWvHhNoxJBsftvuGWvl3zQ6HYT0.roa (raw, json) Hash identifier: 9ub7UK1nZ15EUf4G7nstWqicZt0z8uPJPbNb9uNQtTY= Subject key identifier: 61:6B:C7:84:DA:31:24:1B:1F:B6:FB:86:5A:F9:77:CD:0E:87:61:3D Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Certificate serial: 106F Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/YWvHhNoxJBsftvuGWvl3zQ6HYT0.roa Signing time: Fri 22 Aug 2025 08:55:29 +0000 ROA not before: Fri 22 Aug 2025 08:55:29 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9916 IP address blocks: 163.19.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4207 (0x106f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Validity Not Before: Aug 22 08:55:29 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=616BC784DA31241B1FB6FB865AF977CD0E87613D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:bb:ad:c1:45:4a:aa:5c:1e:1c:10:6d:3a:5b: 3b:1d:23:5e:f3:6b:be:ae:bc:a2:1c:6a:04:ab:7f: cb:25:8d:04:7c:60:4b:ef:90:5a:03:b4:02:a7:70: f0:e7:85:c0:82:2f:78:e3:a6:19:bf:0c:0f:0c:1e: 08:f3:61:9b:8d:5e:7e:a8:e4:0f:3f:aa:87:32:c6: 55:ec:65:a2:d7:e8:05:38:eb:64:67:8d:7e:22:bb: 50:22:1e:87:07:f9:70:f5:f0:e4:2f:c0:e9:16:e4: 11:09:4a:5b:ad:93:8c:ef:9b:35:c1:9f:f3:2d:80: f7:7d:1a:0b:9e:d7:15:fe:2b:c9:5f:de:dc:0f:fb: 3c:1c:c3:53:f1:b0:a3:2e:03:43:51:99:79:56:91: 75:2c:6e:62:de:71:30:d2:0b:49:ea:31:1e:a8:b1: 58:0e:54:8a:e4:ff:06:4c:a0:aa:e4:79:0b:3d:06: 1b:41:a9:fa:75:96:0a:54:df:58:59:7b:ea:49:25: e3:f6:7b:35:37:7f:56:51:77:42:80:27:2e:33:c4: 13:75:8a:8d:11:4e:d4:60:89:12:85:c8:7e:c3:47: ed:29:3b:1b:15:ab:dc:3d:d6:34:c3:b4:ac:54:4b: 78:7a:de:b9:14:0d:62:94:b7:bb:5e:a6:ae:0a:23: 42:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:6B:C7:84:DA:31:24:1B:1F:B6:FB:86:5A:F9:77:CD:0E:87:61:3D X509v3 Authority Key Identifier: keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/YWvHhNoxJBsftvuGWvl3zQ6HYT0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 163.19.0.0/16 Signature Algorithm: sha256WithRSAEncryption a6:cb:33:79:3c:29:bf:0c:2f:a3:76:e0:23:15:9c:e3:52:1e: 58:d2:77:50:a8:1b:10:b8:62:04:4c:47:a3:8b:b1:0f:5a:88: cc:ef:c0:9b:1f:ce:f0:a9:be:a2:08:8d:fd:5a:9e:82:11:1c: 06:c0:9f:60:27:c8:f2:59:89:b0:6d:9c:7c:8d:ec:8e:27:0b: be:e2:a5:85:bc:86:2c:e8:e4:f4:4a:ef:9e:c3:73:ba:e7:db: e0:ba:e9:71:d4:5c:83:34:91:7a:80:0f:68:67:25:e7:42:46: c7:9c:bd:c9:4c:18:16:1b:44:09:08:ae:62:d5:41:35:63:53: fb:ae:e4:67:9a:77:1c:fb:fa:2b:77:df:6b:ea:ad:15:26:da: 22:9c:82:dc:9e:ea:05:cb:b9:0b:ab:8d:d1:0e:41:27:a5:34: 82:67:f6:7c:00:17:cb:11:b8:a6:40:0e:56:ce:09:8e:10:0d: 65:ec:f8:40:3d:ae:f3:14:fc:63:65:49:c4:14:92:79:31:14: 78:e6:7e:a7:84:d2:4e:92:69:ef:1c:51:80:31:d7:c8:a1:c3: 4a:42:f0:5e:3e:3f:da:4b:4b:ba:03:9a:c8:b0:09:85:d0:90: 80:04:84:65:f6:d7:39:12:58:a1:6b:f0:de:7d:e9:4b:80:20: 13:3b:2e:d0 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICEG8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNTA4MjIw ODU1MjlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDYxNkJDNzg0REEzMTI0 MUIxRkI2RkI4NjVBRjk3N0NEMEU4NzYxM0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+u63BRUqqXB4cEG06WzsdI17za76uvKIcagSrf8sljQR8YEvv kFoDtAKncPDnhcCCL3jjphm/DA8MHgjzYZuNXn6o5A8/qocyxlXsZaLX6AU462Rn jX4iu1AiHocH+XD18OQvwOkW5BEJSlutk4zvmzXBn/MtgPd9Ggue1xX+K8lf3twP +zwcw1PxsKMuA0NRmXlWkXUsbmLecTDSC0nqMR6osVgOVIrk/wZMoKrkeQs9BhtB qfp1lgpU31hZe+pJJeP2ezU3f1ZRd0KAJy4zxBN1io0RTtRgiRKFyH7DR+0pOxsV q9w91jTDtKxUS3h63rkUDWKUt7tepq4KI0JbAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUYWvHhNoxJBsftvuGWvl3zQ6HYT0wHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF /peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9ZV3ZIaE5veEpCc2Z0dnVHV3Zs M3pRNkhZVDAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAoxMw DQYJKoZIhvcNAQELBQADggEBAKbLM3k8Kb8ML6N24CMVnONSHljSd1CoGxC4YgRM R6OLsQ9aiMzvwJsfzvCpvqIIjf1anoIRHAbAn2AnyPJZibBtnHyN7I4nC77ipYW8 hizo5PRK757Dc7rn2+C66XHUXIM0kXqAD2hnJedCRsecvclMGBYbRAkIrmLVQTVj U/uu5Geadxz7+it332vqrRUm2iKcgtye6gXLuQurjdEOQSelNIJn9nwAF8sRuKZA DlbOCY4QDWXs+EA9rvMU/GNlScQUknkxFHjmfqeE0k6Sae8cUYAx18ihw0pC8F4+ P9pLS7oDmsiwCYXQkIAEhGX21zkSWKFr8N596UuAIBM7LtA= -----END CERTIFICATE-----Generated at Sun Aug 24 13:44:12 2025 by rpki-client