$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/bATQpIqR0bbFj0vAfhjTqa8N_e4.roa File: bATQpIqR0bbFj0vAfhjTqa8N_e4.roa (raw, json) Hash identifier: YuVwDAqUTVHBgbS2qqVfxsPbFPD8mnquowZlFbOxOBQ= Subject key identifier: 6C:04:D0:A4:8A:91:D1:B6:C5:8F:4B:C0:7E:18:D3:A9:AF:0D:FD:EE Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0FDD Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/bATQpIqR0bbFj0vAfhjTqa8N_e4.roa Signing time: Fri 22 Aug 2025 08:55:42 +0000 ROA not before: Fri 22 Aug 2025 08:55:42 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18047 IP address blocks: 140.114.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4061 (0xfdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 22 08:55:42 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=6C04D0A48A91D1B6C58F4BC07E18D3A9AF0DFDEE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c4:ec:42:11:2b:99:36:b2:3a:d3:b0:56:50: 5b:05:e7:d5:57:c0:51:e2:af:24:17:22:d8:b2:00: d1:02:e0:40:48:1f:3d:95:1f:e6:fb:ac:0b:56:14: 29:93:d8:5b:4a:37:e8:1b:72:46:7b:c3:b3:ea:19: 01:52:ac:68:ac:29:be:fe:77:49:61:0b:f3:3c:93: a5:e7:d4:61:53:61:2a:28:04:83:b7:a9:ac:05:6f: 34:87:9a:80:9f:95:5a:a2:1a:36:a0:9f:69:dc:03: 49:0f:8f:25:79:bd:0c:df:94:bc:fd:ea:5c:45:a0: aa:11:d4:24:18:43:04:00:79:a9:a5:f3:36:01:ba: 42:59:3f:10:4b:ad:ef:66:0f:f6:ba:ac:70:5f:7b: e4:5e:e3:65:35:8e:9a:a8:c5:94:a7:26:67:3c:f8: ab:3d:f2:f3:7a:db:55:ba:47:9c:c9:1b:57:f9:47: da:a4:d8:97:ad:69:69:10:2f:e7:da:ad:b5:3d:68: 39:1f:08:2d:e4:d0:7f:85:6b:fc:5b:85:15:85:07: 19:81:fe:4f:22:fc:54:65:c8:f5:06:63:48:95:8e: e1:e8:1b:83:97:45:9d:7f:ea:df:a6:8b:d7:ca:14: ed:8f:f7:91:ee:ae:f6:99:61:ad:2c:92:45:30:f2: b2:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:04:D0:A4:8A:91:D1:B6:C5:8F:4B:C0:7E:18:D3:A9:AF:0D:FD:EE X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/bATQpIqR0bbFj0vAfhjTqa8N_e4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 140.114.0.0/16 Signature Algorithm: sha256WithRSAEncryption 10:81:2d:37:b2:50:f8:0f:a5:1e:20:69:4d:05:82:ac:9e:23: 92:3d:b4:a1:42:fb:db:ed:e3:d5:21:b6:34:60:48:46:0c:1a: 21:3b:65:76:17:58:27:56:12:a2:45:a3:f1:eb:61:db:ea:73: 88:45:f5:99:b3:c5:ec:23:fa:02:12:74:39:6d:7e:f6:01:45: f9:a4:80:5c:d3:19:57:58:ab:e0:2d:d1:63:c1:20:b0:5d:fb: ac:65:3f:2f:4f:62:92:fc:0c:df:60:5a:b9:f6:a5:58:41:43: 5e:3e:37:00:9f:93:71:58:e8:dd:a5:28:aa:38:3b:87:e0:60: 1d:9a:32:55:b7:23:15:c8:41:7c:25:14:bf:e4:1d:24:56:b2: 5f:45:af:71:76:22:33:8f:ab:dc:de:c2:1a:9a:f2:17:ca:a1: b1:29:99:8a:5a:b7:21:00:2d:6d:24:78:be:28:8a:37:8c:ee: 65:69:49:6b:a7:cc:ca:0a:77:08:9d:c6:db:7c:ef:19:88:6a: dc:4d:d9:cc:76:0e:4c:c3:f4:0e:ef:76:b1:77:c4:54:7e:af: df:66:9b:10:b8:bb:7a:c8:ba:2f:b2:62:64:16:bf:40:89:20: f4:d7:72:1d:df:fa:1d:a9:77:8c:cf:21:55:db:a3:4c:c5:b9: 29:14:d9:e5 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICD90wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTA4MjIw ODU1NDJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDZDMDREMEE0OEE5MUQx QjZDNThGNEJDMDdFMThEM0E5QUYwREZERUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuxOxCESuZNrI607BWUFsF59VXwFHiryQXItiyANEC4EBIHz2V H+b7rAtWFCmT2FtKN+gbckZ7w7PqGQFSrGisKb7+d0lhC/M8k6Xn1GFTYSooBIO3 qawFbzSHmoCflVqiGjagn2ncA0kPjyV5vQzflLz96lxFoKoR1CQYQwQAeaml8zYB ukJZPxBLre9mD/a6rHBfe+Re42U1jpqoxZSnJmc8+Ks98vN621W6R5zJG1f5R9qk 2JetaWkQL+farbU9aDkfCC3k0H+Fa/xbhRWFBxmB/k8i/FRlyPUGY0iVjuHoG4OX RZ1/6t+mi9fKFO2P95HurvaZYa0skkUw8rKhAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUbATQpIqR0bbFj0vAfhjTqa8N/e4wHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9iQVRRcElxUjBiYkZqMHZBZmhq VHFhOE5fZTQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjHIw DQYJKoZIhvcNAQELBQADggEBABCBLTeyUPgPpR4gaU0FgqyeI5I9tKFC+9vt49Uh tjRgSEYMGiE7ZXYXWCdWEqJFo/HrYdvqc4hF9Zmzxewj+gISdDltfvYBRfmkgFzT GVdYq+At0WPBILBd+6xlPy9PYpL8DN9gWrn2pVhBQ14+NwCfk3FY6N2lKKo4O4fg YB2aMlW3IxXIQXwlFL/kHSRWsl9Fr3F2IjOPq9zewhqa8hfKobEpmYpatyEALW0k eL4oijeM7mVpSWunzMoKdwidxtt87xmIatxN2cx2DkzD9A7vdrF3xFR+r99mmxC4 u3rIui+yYmQWv0CJIPTXch3f+h2pd4zPIVXbo0zFuSkU2eU= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:53 2025 by rpki-client