$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/aK_KoS-4PNMa-QY7JkPifNof3iA.roa File: aK_KoS-4PNMa-QY7JkPifNof3iA.roa (raw, json) Hash identifier: WoBSdLpV3YUb0DjikPyx7uSZHPMDZ/62y+0yyCGYZOc= Subject key identifier: 68:AF:CA:A1:2F:B8:3C:D3:1A:F9:06:3B:26:43:E2:7C:DA:1F:DE:20 Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Certificate serial: 106A Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/aK_KoS-4PNMa-QY7JkPifNof3iA.roa Signing time: Fri 22 Aug 2025 08:55:27 +0000 ROA not before: Fri 22 Aug 2025 08:55:27 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18047 IP address blocks: 120.127.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4202 (0x106a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Validity Not Before: Aug 22 08:55:27 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=68AFCAA12FB83CD31AF9063B2643E27CDA1FDE20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:7c:e6:a4:92:77:70:f8:b3:ee:02:70:bd:c7: 4e:9d:d8:78:9c:4c:52:c3:d2:29:d7:7c:4a:8d:7c: d2:af:fa:73:73:9a:84:ce:8d:96:0b:12:cc:66:31: 92:75:52:16:e6:ad:e4:c2:c1:e0:de:69:dc:6c:66: b9:bb:04:d3:d4:12:4e:06:9e:81:18:cf:43:f9:a1: f8:3a:a3:74:24:10:5f:3a:1c:9f:96:78:9c:57:2f: 51:77:8c:32:5c:38:80:39:de:97:13:e8:7b:92:88: eb:ac:27:26:cc:b9:80:25:da:e9:c2:a7:4b:0e:99: b3:d1:a8:45:82:8d:fa:4d:7c:55:5d:78:34:f9:a7: eb:c9:16:81:3d:76:3a:e4:73:6d:2f:5c:43:d0:ab: 86:f9:29:47:e6:55:82:82:d0:78:9c:fb:9a:66:c2: d1:2c:11:59:47:06:1e:f3:3d:cb:ae:86:88:d2:38: 14:4b:19:e5:9d:37:53:7d:7b:fb:19:a0:97:8b:4a: 4f:28:a1:2c:06:ab:43:41:50:2a:8c:f4:9c:75:c5: 74:e4:4a:08:b1:d3:ec:8e:3b:41:87:5c:f5:6d:f2: 1d:4b:a7:c5:73:21:54:79:7e:da:bd:0a:70:0b:c0: 55:57:b0:80:76:6f:1b:0e:8c:cb:bf:c0:d0:b3:6b: 8e:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:AF:CA:A1:2F:B8:3C:D3:1A:F9:06:3B:26:43:E2:7C:DA:1F:DE:20 X509v3 Authority Key Identifier: keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/aK_KoS-4PNMa-QY7JkPifNof3iA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 120.127.160.0/19 Signature Algorithm: sha256WithRSAEncryption 80:14:fc:5a:ba:4b:4f:a6:9e:91:c0:55:87:ca:67:c7:18:ca: cd:76:56:00:5e:5c:a9:b5:b5:fa:1b:8b:5f:29:eb:26:b7:2a: 6e:72:c0:85:24:2b:67:84:95:c6:06:35:10:5c:d7:34:bb:93: c4:3f:e1:b0:59:c2:d1:9a:f9:67:22:75:2e:b4:0a:f5:8c:ae: 9a:10:a8:87:24:9b:73:b4:da:9b:f9:b9:15:0f:d2:1e:a1:14: a9:90:48:0d:bc:a8:bb:34:20:7d:da:23:07:06:4f:74:9b:d6: 48:58:75:45:9f:f1:02:0d:20:ef:e1:bb:15:75:e2:96:78:75: 2d:df:d0:82:08:da:32:d4:56:2c:30:fa:40:01:76:1b:3d:3e: 02:14:75:e9:b3:f7:29:7b:de:f1:c1:69:d1:bf:36:95:9a:10: 54:b3:d2:2f:61:95:0c:94:f2:26:60:2d:04:a6:bc:26:41:ec: 3e:b8:2d:4e:3f:ed:0f:5c:1c:81:15:c2:db:d6:ca:64:67:32: a8:91:eb:a1:d9:c4:e9:58:e3:ae:a7:53:64:34:c8:a8:6f:db: 4c:15:5b:d8:6c:42:78:f4:e8:f0:e3:02:7b:ed:4c:df:3e:b7: 66:d5:cc:b6:76:6c:b0:41:ea:cb:5c:86:ab:ba:d2:44:fe:97: b1:8e:3a:5e -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEGowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNTA4MjIw ODU1MjdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDY4QUZDQUExMkZCODND RDMxQUY5MDYzQjI2NDNFMjdDREExRkRFMjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJfOakkndw+LPuAnC9x06d2HicTFLD0inXfEqNfNKv+nNzmoTO jZYLEsxmMZJ1UhbmreTCweDeadxsZrm7BNPUEk4GnoEYz0P5ofg6o3QkEF86HJ+W eJxXL1F3jDJcOIA53pcT6HuSiOusJybMuYAl2unCp0sOmbPRqEWCjfpNfFVdeDT5 p+vJFoE9djrkc20vXEPQq4b5KUfmVYKC0Hic+5pmwtEsEVlHBh7zPcuuhojSOBRL GeWdN1N9e/sZoJeLSk8ooSwGq0NBUCqM9Jx1xXTkSgix0+yOO0GHXPVt8h1Lp8Vz IVR5ftq9CnALwFVXsIB2bxsOjMu/wNCza44pAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUaK/KoS+4PNMa+QY7JkPifNof3iAwHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF /peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9hS19Lb1MtNFBOTWEtUVk3SmtQ aWZOb2YzaUEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFeH+g MA0GCSqGSIb3DQEBCwUAA4IBAQCAFPxauktPpp6RwFWHymfHGMrNdlYAXlyptbX6 G4tfKesmtypucsCFJCtnhJXGBjUQXNc0u5PEP+GwWcLRmvlnInUutAr1jK6aEKiH JJtztNqb+bkVD9IeoRSpkEgNvKi7NCB92iMHBk90m9ZIWHVFn/ECDSDv4bsVdeKW eHUt39CCCNoy1FYsMPpAAXYbPT4CFHXps/cpe97xwWnRvzaVmhBUs9IvYZUMlPIm YC0EprwmQew+uC1OP+0PXByBFcLb1spkZzKokeuh2cTpWOOup1NkNMiob9tMFVvY bEJ49Ojw4wJ77UzfPrdm1cy2dmywQerLXIarutJE/pexjjpe -----END CERTIFICATE-----Generated at Sun Aug 24 13:42:15 2025 by rpki-client