$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/_CZpU9Pa62g2IEWy1B_ZjsPiMdo.roa File: _CZpU9Pa62g2IEWy1B_ZjsPiMdo.roa (raw, json) Hash identifier: 1bDHPlvQrQ/gIImzobRjtEGxBIX0Rd+/voSs/Mncw/U= Subject key identifier: FC:26:69:53:D3:DA:EB:68:36:20:45:B2:D4:1F:D9:8E:C3:E2:31:DA Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0FE1 Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/_CZpU9Pa62g2IEWy1B_ZjsPiMdo.roa Signing time: Fri 22 Aug 2025 08:55:42 +0000 ROA not before: Fri 22 Aug 2025 08:55:42 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18177 IP address blocks: 140.133.0.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4065 (0xfe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 22 08:55:42 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=FC266953D3DAEB68362045B2D41FD98EC3E231DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:14:56:27:42:ec:bb:bb:00:08:9d:f0:d9:c6: a7:24:cc:33:61:80:35:d9:af:fd:a2:9d:2b:10:07: 81:96:d4:8d:ba:74:42:30:46:47:a7:ff:8e:90:6a: 46:95:a6:a7:e2:7c:54:d7:67:8c:11:9c:92:c7:2b: 64:47:21:91:35:3c:d3:ea:45:d2:52:3c:d1:d4:58: 81:86:97:10:49:96:43:7b:38:d3:4d:1f:3f:c2:28: dd:5e:74:86:3d:69:97:14:90:fa:d7:27:19:9b:5f: 20:a8:50:31:61:5e:97:d1:96:41:5d:ed:65:61:a0: d7:6b:ae:9a:99:6a:d5:3e:91:a5:f9:b8:44:86:83: ef:27:dc:58:db:4f:d0:71:13:2b:16:fb:d4:43:57: 52:9b:c1:3a:d2:a1:d9:3f:84:39:37:20:96:a3:9f: 04:91:9e:47:53:38:9b:10:10:e1:fb:76:52:6f:6f: b1:af:52:28:90:f8:9b:98:f6:01:c7:de:4a:bd:cf: 61:ac:10:5e:27:7e:1b:92:21:24:4f:7f:9f:eb:3f: 7d:d8:59:31:06:ca:d0:40:63:97:18:e8:5d:78:6b: 6c:25:09:93:24:e6:ab:b4:e4:ad:fc:f7:8a:0c:70: 9a:9f:da:80:4c:52:c4:b5:50:e5:5f:a3:a5:c0:27: 60:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:26:69:53:D3:DA:EB:68:36:20:45:B2:D4:1F:D9:8E:C3:E2:31:DA X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/_CZpU9Pa62g2IEWy1B_ZjsPiMdo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 140.133.0.0/20 Signature Algorithm: sha256WithRSAEncryption 2c:87:1c:d3:e8:ef:9b:53:70:4b:81:d5:f8:18:81:d2:75:11: 85:74:68:e6:9e:96:92:74:81:d6:d5:2f:84:6c:7b:12:4b:a9: 51:af:0a:7f:57:fe:88:55:84:45:07:42:45:c9:75:8f:d0:52: c4:15:32:47:25:a7:e0:ec:31:b8:f8:11:bc:cf:2b:78:82:0b: df:b5:43:ae:16:19:11:5a:f8:f5:a2:29:29:cc:35:dd:9a:c9: 88:42:5f:9e:0b:43:94:16:ed:2b:75:a4:5d:ff:e3:89:9f:12: 40:8b:ce:7a:7f:2f:36:80:a6:9e:d0:e6:d6:61:bb:87:04:2d: 76:71:04:aa:b1:5f:d5:11:db:78:2e:8f:7d:ef:60:f4:ec:94: f3:bc:7f:a3:b0:2f:77:df:3b:30:12:89:da:42:bb:c2:15:bd: 72:4a:f2:05:89:de:88:96:82:c8:cb:1a:d0:85:ca:ae:3a:de: 96:88:8a:39:16:66:d7:6f:8b:22:86:a8:2a:5c:c9:37:0e:30: 8e:41:cb:0f:1c:75:a1:4d:ac:19:c8:37:9c:e0:7f:52:f9:21: dd:51:fa:ae:c1:2b:f8:60:40:f4:6c:df:97:bd:ad:18:e5:15: e6:e1:59:0a:69:35:60:32:a8:8b:08:33:2f:57:b2:28:df:56: df:9e:3a:39 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICD+EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTA4MjIw ODU1NDJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEZDMjY2OTUzRDNEQUVC NjgzNjIwNDVCMkQ0MUZEOThFQzNFMjMxREEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDdFFYnQuy7uwAInfDZxqckzDNhgDXZr/2inSsQB4GW1I26dEIw Rken/46QakaVpqfifFTXZ4wRnJLHK2RHIZE1PNPqRdJSPNHUWIGGlxBJlkN7ONNN Hz/CKN1edIY9aZcUkPrXJxmbXyCoUDFhXpfRlkFd7WVhoNdrrpqZatU+kaX5uESG g+8n3FjbT9BxEysW+9RDV1KbwTrSodk/hDk3IJajnwSRnkdTOJsQEOH7dlJvb7Gv UiiQ+JuY9gHH3kq9z2GsEF4nfhuSISRPf5/rP33YWTEGytBAY5cY6F14a2wlCZMk 5qu05K3894oMcJqf2oBMUsS1UOVfo6XAJ2BfAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU/CZpU9Pa62g2IEWy1B/ZjsPiMdowHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9fQ1pwVTlQYTYyZzJJRVd5MUJf WmpzUGlNZG8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEjIUA MA0GCSqGSIb3DQEBCwUAA4IBAQAshxzT6O+bU3BLgdX4GIHSdRGFdGjmnpaSdIHW 1S+EbHsSS6lRrwp/V/6IVYRFB0JFyXWP0FLEFTJHJafg7DG4+BG8zyt4ggvftUOu FhkRWvj1oikpzDXdmsmIQl+eC0OUFu0rdaRd/+OJnxJAi856fy82gKae0ObWYbuH BC12cQSqsV/VEdt4Lo9972D07JTzvH+jsC933zswEonaQrvCFb1ySvIFid6IloLI yxrQhcquOt6WiIo5FmbXb4sihqgqXMk3DjCOQcsPHHWhTawZyDec4H9S+SHdUfqu wSv4YED0bN+Xva0Y5RXm4VkKaTVgMqiLCDMvV7Io31bfnjo5 -----END CERTIFICATE-----Generated at Sun Aug 24 05:32:06 2025 by rpki-client