$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/bL6IdvUJeo3uWv4iJ8qTshQgmdU.roa File: bL6IdvUJeo3uWv4iJ8qTshQgmdU.roa (raw, json) Hash identifier: Ru2So6svXGxUdyAowOFzi8PBOYSPoc777yiJaNTt/Tw= Subject key identifier: 6C:BE:88:76:F5:09:7A:8D:EE:5A:FE:22:27:CA:93:B2:14:20:99:D5 Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Certificate serial: 1069 Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/bL6IdvUJeo3uWv4iJ8qTshQgmdU.roa Signing time: Fri 22 Aug 2025 08:55:27 +0000 ROA not before: Fri 22 Aug 2025 08:55:27 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 1659 IP address blocks: 163.30.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4201 (0x1069) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Validity Not Before: Aug 22 08:55:27 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=6CBE8876F5097A8DEE5AFE2227CA93B2142099D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d8:72:72:ae:0c:b1:a6:98:61:be:4e:50:e1: 11:47:76:a2:9f:4f:de:42:e5:16:44:cd:90:df:47: 2c:f6:79:d9:78:d8:c2:2e:39:3e:ab:d0:96:64:41: 00:3a:3c:11:20:38:b7:00:85:8c:35:1e:d6:12:0c: ed:86:8c:d6:ca:d3:cd:79:48:b6:0e:74:29:3d:b5: 9d:c8:52:b5:c2:8a:88:07:4e:4e:54:d9:5c:1c:15: a6:3c:f7:71:c0:e1:d4:c4:95:35:07:e8:22:40:86: 8d:90:80:e4:a1:17:36:a8:47:c3:6b:8f:b2:95:06: be:50:aa:3b:e3:cc:88:3c:34:fb:6f:6a:a1:ba:db: 4b:4f:ba:b4:60:9f:a5:d7:0c:f2:91:48:59:b1:a7: 36:3a:ce:eb:71:08:97:5b:70:58:72:a6:1f:da:a9: 48:db:b5:54:3c:37:f9:4e:f5:62:66:32:b5:8d:06: ed:62:b3:e1:89:54:65:39:e3:e7:79:8a:f7:42:3a: 40:3c:ad:8b:6d:d7:3d:8d:47:08:89:dc:5f:0f:e2: 2c:1d:c4:18:17:d3:91:ba:15:6f:a4:de:19:21:8a: 2a:e9:ca:44:87:af:f5:78:69:bc:c3:ad:6b:93:7b: 60:49:02:a2:a3:3e:fb:b2:51:92:58:46:c0:46:b2: af:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:BE:88:76:F5:09:7A:8D:EE:5A:FE:22:27:CA:93:B2:14:20:99:D5 X509v3 Authority Key Identifier: keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/bL6IdvUJeo3uWv4iJ8qTshQgmdU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 163.30.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8e:3a:2f:d5:ab:dd:fe:09:44:23:15:97:cd:5e:59:03:3f:dd: a4:2a:de:c6:b6:cc:3b:45:4c:c3:77:b8:9f:d9:fa:5a:60:d1: 4a:2c:1b:ba:3a:37:30:a1:99:e1:15:45:db:d8:43:ae:c2:1a: 56:81:26:1c:a1:45:5a:ff:30:26:f2:0e:e9:64:d4:74:1f:18: d7:c2:38:f5:e7:27:64:1b:5c:a2:ac:fd:d7:e4:33:b2:53:a3: 72:17:2a:dd:1c:e7:56:28:ef:4c:d7:b7:63:77:7b:78:e6:14: 46:0a:e9:60:38:22:d8:e9:70:f4:f5:5f:43:c8:af:cd:2f:b6: 02:e5:fa:e5:00:2c:13:23:ae:21:b9:23:a1:b1:d2:b8:33:6b: a3:49:ab:1d:01:79:cb:df:3f:5b:ca:53:0d:3f:f4:49:ec:46: 32:0f:06:a3:b0:64:89:f6:46:f6:b2:94:05:c0:f8:75:b9:8f: a1:c9:58:27:6d:0f:5b:9b:49:e8:c9:75:fa:d4:57:20:61:8c: f1:e3:08:47:9c:42:b6:0f:2a:a6:a1:ba:b5:66:4f:da:ec:27: ba:b3:8a:8a:bd:c5:77:81:02:3f:1e:35:d8:4b:cd:96:4d:2e: 77:71:e9:c9:52:ca:84:5d:44:25:eb:0d:a7:ed:c5:ac:1a:7a: 9a:62:4c:69 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICEGkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNTA4MjIw ODU1MjdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDZDQkU4ODc2RjUwOTdB OERFRTVBRkUyMjI3Q0E5M0IyMTQyMDk5RDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDG2HJyrgyxpphhvk5Q4RFHdqKfT95C5RZEzZDfRyz2edl42MIu OT6r0JZkQQA6PBEgOLcAhYw1HtYSDO2GjNbK0815SLYOdCk9tZ3IUrXCiogHTk5U 2VwcFaY893HA4dTElTUH6CJAho2QgOShFzaoR8Nrj7KVBr5QqjvjzIg8NPtvaqG6 20tPurRgn6XXDPKRSFmxpzY6zutxCJdbcFhyph/aqUjbtVQ8N/lO9WJmMrWNBu1i s+GJVGU54+d5ivdCOkA8rYtt1z2NRwiJ3F8P4iwdxBgX05G6FW+k3hkhiirpykSH r/V4abzDrWuTe2BJAqKjPvuyUZJYRsBGsq8RAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUbL6IdvUJeo3uWv4iJ8qTshQgmdUwHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF /peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9iTDZJZHZVSmVvM3VXdjRpSjhx VHNoUWdtZFUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAox4w DQYJKoZIhvcNAQELBQADggEBAI46L9Wr3f4JRCMVl81eWQM/3aQq3sa2zDtFTMN3 uJ/Z+lpg0UosG7o6NzChmeEVRdvYQ67CGlaBJhyhRVr/MCbyDulk1HQfGNfCOPXn J2QbXKKs/dfkM7JTo3IXKt0c51Yo70zXt2N3e3jmFEYK6WA4ItjpcPT1X0PIr80v tgLl+uUALBMjriG5I6Gx0rgza6NJqx0BecvfP1vKUw0/9EnsRjIPBqOwZIn2Rvay lAXA+HW5j6HJWCdtD1ubSejJdfrUVyBhjPHjCEecQrYPKqahurVmT9rsJ7qzioq9 xXeBAj8eNdhLzZZNLndx6clSyoRdRCXrDaftxawaeppiTGk= -----END CERTIFICATE-----Generated at Sun Aug 24 07:57:22 2025 by rpki-client