$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/ZBoD3voBPD6qPW_WBinDNbCdt2w.roa File: ZBoD3voBPD6qPW_WBinDNbCdt2w.roa (raw, json) Hash identifier: JqJZPt3JM9dwTIFTqDZ2EY3ExGuilfFuqC1asU6JlNs= Subject key identifier: 64:1A:03:DE:FA:01:3C:3E:AA:3D:6F:D6:06:29:C3:35:B0:9D:B7:6C Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0FF6 Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/ZBoD3voBPD6qPW_WBinDNbCdt2w.roa Signing time: Fri 22 Aug 2025 08:55:47 +0000 ROA not before: Fri 22 Aug 2025 08:55:47 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 1659 IP address blocks: 140.112.0.0/12 maxlen: 12 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4086 (0xff6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 22 08:55:47 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=641A03DEFA013C3EAA3D6FD60629C335B09DB76C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:fd:33:3a:9b:12:4d:b7:b7:e3:ab:a5:1a:44: 5b:72:35:89:e1:73:75:d9:55:30:b9:3a:4f:3b:5b: 46:d3:e8:97:b4:ca:f5:5e:76:35:5b:e2:7f:b8:b3: 6f:77:ce:72:b5:d4:eb:d2:19:51:a4:d8:56:d3:ac: 8f:be:e1:41:fa:ab:7b:32:87:06:6f:13:06:2d:4f: 57:13:44:37:21:5b:42:22:67:66:92:45:4b:db:c3: b1:21:84:b5:9f:e4:db:1e:93:f6:0b:f1:36:c2:68: c0:88:e2:78:9e:c4:58:fb:60:6c:70:a7:92:76:7f: b2:45:45:7e:fa:05:33:63:b0:fe:be:df:6b:6d:7f: d3:b6:08:e3:09:39:85:47:31:31:1a:53:fb:f0:42: 97:1b:77:e8:37:a4:b4:67:05:43:08:1f:32:4e:72: ab:fc:66:24:67:cc:15:a4:3f:1f:7d:db:44:a9:0f: ff:17:25:33:a1:ac:22:a5:d6:e6:be:92:13:68:c1: 35:21:67:78:0a:69:b4:b2:34:c2:e1:c8:cd:23:60: 32:ae:6e:b9:10:96:03:88:27:14:58:2f:4d:4f:57: 72:f5:50:6c:28:69:53:a1:68:52:e4:ca:3a:a1:76: d9:c1:69:40:e3:fb:19:e6:58:46:12:41:7e:45:8c: 38:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:1A:03:DE:FA:01:3C:3E:AA:3D:6F:D6:06:29:C3:35:B0:9D:B7:6C X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/ZBoD3voBPD6qPW_WBinDNbCdt2w.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 140.112.0.0/12 Signature Algorithm: sha256WithRSAEncryption 99:4f:d2:14:12:b1:dc:e5:b6:1c:c2:ac:20:f4:d2:ea:ba:39: 4f:f5:48:4e:5c:bf:a6:81:26:03:46:b2:63:09:4c:3a:15:9d: 0e:95:1d:6c:d5:bc:02:dd:bc:3b:40:29:62:2b:b6:41:3c:fb: a6:bf:4d:5e:83:6d:4b:d7:00:1d:84:d1:9d:c1:b1:1c:3d:8b: e6:f0:0e:e2:1b:45:12:56:97:6f:bb:c0:ce:31:e7:00:0c:9d: ee:cb:3f:2a:4c:e4:83:91:10:d1:cc:8d:ca:06:f2:a7:90:35: 0e:50:67:84:10:45:77:a7:40:a9:dd:fe:e8:80:fe:1e:ad:4b: 99:2c:0a:89:3a:78:90:6f:bc:06:96:e8:8e:cf:14:59:59:39: 2d:6e:cd:b4:9b:f3:5c:97:9f:c6:4d:55:a6:41:55:f7:60:af: 55:ee:ac:c4:61:05:c1:79:2b:5a:0b:5b:b4:a0:0f:ba:ed:53: f6:72:c3:39:6b:9c:5e:7a:54:07:98:45:98:bd:23:4a:c5:3c: 5c:e7:43:80:d3:d0:c4:23:b5:d5:6c:16:98:81:2b:bb:15:d6: 83:59:c7:cf:ef:92:70:ab:3c:21:ac:39:91:24:15:f6:d9:63: 14:6b:73:c7:ad:af:17:c4:1d:f8:b1:e2:11:e6:b3:94:bf:d8: 3f:83:13:b4 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICD/YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTA4MjIw ODU1NDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDY0MUEwM0RFRkEwMTND M0VBQTNENkZENjA2MjlDMzM1QjA5REI3NkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDt/TM6mxJNt7fjq6UaRFtyNYnhc3XZVTC5Ok87W0bT6Je0yvVe djVb4n+4s293znK11OvSGVGk2FbTrI++4UH6q3syhwZvEwYtT1cTRDchW0IiZ2aS RUvbw7EhhLWf5Nsek/YL8TbCaMCI4niexFj7YGxwp5J2f7JFRX76BTNjsP6+32tt f9O2COMJOYVHMTEaU/vwQpcbd+g3pLRnBUMIHzJOcqv8ZiRnzBWkPx9920SpD/8X JTOhrCKl1ua+khNowTUhZ3gKabSyNMLhyM0jYDKubrkQlgOIJxRYL01PV3L1UGwo aVOhaFLkyjqhdtnBaUDj+xnmWEYSQX5FjDiPAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUZBoD3voBPD6qPW/WBinDNbCdt2wwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9aQm9EM3ZvQlBENnFQV19XQmlu RE5iQ2R0Mncucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMEjHAw DQYJKoZIhvcNAQELBQADggEBAJlP0hQSsdzlthzCrCD00uq6OU/1SE5cv6aBJgNG smMJTDoVnQ6VHWzVvALdvDtAKWIrtkE8+6a/TV6DbUvXAB2E0Z3BsRw9i+bwDuIb RRJWl2+7wM4x5wAMne7LPypM5IORENHMjcoG8qeQNQ5QZ4QQRXenQKnd/uiA/h6t S5ksCok6eJBvvAaW6I7PFFlZOS1uzbSb81yXn8ZNVaZBVfdgr1XurMRhBcF5K1oL W7SgD7rtU/ZywzlrnF56VAeYRZi9I0rFPFznQ4DT0MQjtdVsFpiBK7sV1oNZx8/v knCrPCGsOZEkFfbZYxRrc8etrxfEHfix4hHms5S/2D+DE7Q= -----END CERTIFICATE-----Generated at Sun Aug 24 07:24:13 2025 by rpki-client