$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/a2uq5uuxK_4h9LXU5eJMgUrfm98.roa File: a2uq5uuxK_4h9LXU5eJMgUrfm98.roa (raw, json) Hash identifier: bQqSGSOFCYkLhdCCLqD/o8Xm1SI7XUJVXFaWdVM6eiA= Subject key identifier: 6B:6B:AA:E6:EB:B1:2B:FE:21:F4:B5:D4:E5:E2:4C:81:4A:DF:9B:DF Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Certificate serial: 106B Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/a2uq5uuxK_4h9LXU5eJMgUrfm98.roa Signing time: Fri 22 Aug 2025 08:55:28 +0000 ROA not before: Fri 22 Aug 2025 08:55:28 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17712 IP address blocks: 163.27.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4203 (0x106b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Validity Not Before: Aug 22 08:55:28 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=6B6BAAE6EBB12BFE21F4B5D4E5E24C814ADF9BDF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:6e:3f:fe:a2:67:79:7c:6e:96:6c:48:1b:17: 0b:7e:1e:09:b5:8d:41:99:d0:5b:9f:f9:36:80:66: b3:17:67:06:1f:5f:fa:51:5b:00:c2:1a:41:20:67: 69:72:10:c6:eb:f6:77:2f:d6:af:46:c8:e3:ab:66: f8:e9:0f:46:df:92:aa:ca:92:ad:a4:c0:96:e0:96: d7:90:57:8a:f5:78:92:1d:d5:10:e5:7b:ae:a8:08: f3:55:90:71:36:09:e8:d9:81:86:1d:e8:8f:90:56: 80:1c:09:1e:b4:ef:fe:4a:cd:18:78:79:96:bd:b0: 8f:5b:4b:cc:25:72:6b:29:43:a2:36:77:1a:68:d2: cd:23:fc:87:66:d8:56:91:a6:6a:12:a4:42:a8:18: 08:79:ce:5a:3b:1e:d8:64:13:fb:83:49:c5:69:7b: c4:7c:a0:21:53:2d:aa:60:03:67:3d:d5:5a:de:17: aa:cb:32:31:78:38:a7:85:84:34:1f:ac:e3:64:0c: b8:5c:fb:2b:58:8f:e4:12:64:fb:4c:30:1d:5e:bc: 25:83:42:90:aa:8c:74:24:64:12:ae:f2:b9:60:44: 74:ad:2c:0e:7b:78:0f:65:91:70:e0:3e:07:e5:a5: 86:65:ea:46:28:28:b4:fa:eb:28:09:9d:2d:54:ea: 2e:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:6B:AA:E6:EB:B1:2B:FE:21:F4:B5:D4:E5:E2:4C:81:4A:DF:9B:DF X509v3 Authority Key Identifier: keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/a2uq5uuxK_4h9LXU5eJMgUrfm98.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 163.27.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8a:d4:55:5c:22:cf:e2:0a:2d:5e:4f:db:f6:68:00:5a:64:ad: 35:30:e2:4c:c0:32:ee:56:ba:b5:4d:00:04:94:73:ff:8b:38: ff:bc:59:ad:17:93:96:9a:6e:e4:5e:ca:32:81:d9:e4:5b:5d: fe:09:7f:db:b8:3a:34:5a:b9:30:9f:41:24:d7:a1:a2:b0:e3: 64:62:60:0f:91:82:5e:1c:8a:ae:eb:10:b9:06:e7:ef:eb:60: 8f:d2:0e:38:48:d2:e1:30:1c:ba:7a:05:07:f1:e8:5d:07:21: 4c:86:3e:5b:7d:c2:7e:31:e5:1d:fc:fe:41:ad:bf:6b:29:da: bd:b7:5b:ce:72:54:ca:e6:07:db:48:51:c4:d3:78:21:01:1c: fd:28:3a:a4:c4:17:9e:75:f2:50:9c:96:0e:4d:4a:99:ac:83: 37:00:5d:5c:62:c7:db:70:55:b3:83:ab:03:33:5c:25:97:45: f6:8a:79:5d:6b:b6:82:e6:77:a7:10:68:3f:be:2f:19:4a:77: 77:93:6c:a1:f5:e6:7a:32:72:fe:db:da:1a:c1:56:57:5b:07: da:1e:04:c2:c9:50:35:5d:4c:4f:f4:83:10:67:f8:79:97:ba: cf:48:c1:d2:7d:d5:35:bb:b9:7f:27:45:af:f9:37:e0:40:9c: 0a:43:9d:f5 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICEGswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNTA4MjIw ODU1MjhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDZCNkJBQUU2RUJCMTJC RkUyMUY0QjVENEU1RTI0QzgxNEFERjlCREYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6bj/+omd5fG6WbEgbFwt+Hgm1jUGZ0Fuf+TaAZrMXZwYfX/pR WwDCGkEgZ2lyEMbr9ncv1q9GyOOrZvjpD0bfkqrKkq2kwJbglteQV4r1eJId1RDl e66oCPNVkHE2CejZgYYd6I+QVoAcCR607/5KzRh4eZa9sI9bS8wlcmspQ6I2dxpo 0s0j/Idm2FaRpmoSpEKoGAh5zlo7HthkE/uDScVpe8R8oCFTLapgA2c91VreF6rL MjF4OKeFhDQfrONkDLhc+ytYj+QSZPtMMB1evCWDQpCqjHQkZBKu8rlgRHStLA57 eA9lkXDgPgflpYZl6kYoKLT66ygJnS1U6i6TAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUa2uq5uuxK/4h9LXU5eJMgUrfm98wHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF /peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9hMnVxNXV1eEtfNGg5TFhVNWVK TWdVcmZtOTgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAoxsw DQYJKoZIhvcNAQELBQADggEBAIrUVVwiz+IKLV5P2/ZoAFpkrTUw4kzAMu5WurVN AASUc/+LOP+8Wa0Xk5aabuReyjKB2eRbXf4Jf9u4OjRauTCfQSTXoaKw42RiYA+R gl4ciq7rELkG5+/rYI/SDjhI0uEwHLp6BQfx6F0HIUyGPlt9wn4x5R38/kGtv2sp 2r23W85yVMrmB9tIUcTTeCEBHP0oOqTEF5518lCclg5NSpmsgzcAXVxix9twVbOD qwMzXCWXRfaKeV1rtoLmd6cQaD++LxlKd3eTbKH15noycv7b2hrBVldbB9oeBMLJ UDVdTE/0gxBn+HmXus9IwdJ91TW7uX8nRa/5N+BAnApDnfU= -----END CERTIFICATE-----Generated at Sun Aug 24 13:42:15 2025 by rpki-client