$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/dy3ORvGNyyBtPgv-M7-ATPi0DdI.roa File: dy3ORvGNyyBtPgv-M7-ATPi0DdI.roa (raw, json) Hash identifier: 3EZ1kTq1Pv8Te2sSFJVqwgXB0io8hcQOtgbCPCdsPwY= Subject key identifier: 77:2D:CE:46:F1:8D:CB:20:6D:3E:0B:FE:33:BF:80:4C:F8:B4:0D:D2 Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Certificate serial: 1072 Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/dy3ORvGNyyBtPgv-M7-ATPi0DdI.roa Signing time: Fri 22 Aug 2025 08:55:29 +0000 ROA not before: Fri 22 Aug 2025 08:55:29 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 1659 IP address blocks: 120.124.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4210 (0x1072) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Validity Not Before: Aug 22 08:55:29 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=772DCE46F18DCB206D3E0BFE33BF804CF8B40DD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:48:91:b0:17:34:6d:e6:e9:ad:0e:ab:67:80: d8:45:e1:a6:64:71:ff:d7:d2:da:4c:e7:ce:04:87: ff:23:f8:94:a4:18:e4:23:df:39:60:18:82:6a:ec: dc:ab:e8:e3:4f:ba:49:61:96:a0:13:df:08:5c:94: 27:e4:92:ce:b9:62:d8:ca:fc:45:c9:1c:dc:a6:f0: 06:10:93:17:62:a6:70:de:0f:94:f4:45:20:8c:62: 9e:9e:02:5e:f2:a3:4f:68:df:9e:54:eb:77:5e:f2: 48:93:2e:30:0d:9c:2f:f9:88:d6:7b:b8:18:ad:c9: 8f:6f:50:3a:93:a1:99:c8:51:b5:09:9a:5f:a6:3a: bb:27:74:83:bc:83:c0:ec:26:6c:2d:14:06:66:93: 18:5b:4a:fc:1a:1b:c5:ae:11:14:37:2b:12:b6:c8: 9b:a7:35:c6:8e:bf:01:23:c5:d8:20:c1:ad:f4:81: 6b:ed:17:d7:26:93:6c:21:86:8f:5e:a7:d1:7b:da: 47:fc:cd:c3:a1:1d:4a:04:e6:42:50:32:a8:71:64: 33:83:08:31:12:4a:97:86:50:50:d4:0c:74:d6:9b: f1:a6:ca:0d:ab:66:22:f7:26:6f:c2:6d:71:d7:30: dc:97:04:03:a4:c8:be:db:ad:c3:c6:6f:97:65:60: d3:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:2D:CE:46:F1:8D:CB:20:6D:3E:0B:FE:33:BF:80:4C:F8:B4:0D:D2 X509v3 Authority Key Identifier: keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/dy3ORvGNyyBtPgv-M7-ATPi0DdI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 120.124.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2e:09:d0:4b:59:3d:a4:76:03:3f:33:b5:ac:1e:8c:f6:dc:d2: 6e:b7:ce:60:1d:a6:02:dd:6f:43:42:1c:93:d3:61:e7:47:0f: 0e:b5:45:29:92:33:88:d0:84:08:97:32:3c:81:3d:4e:d8:84: cf:63:c4:6e:db:af:26:6d:dc:e1:a9:e1:5d:9a:39:b8:24:3d: 1a:8b:21:e0:81:41:e8:d9:8b:65:49:5e:31:7e:d4:d6:af:f3: 8a:ab:ea:d0:50:e1:b8:e2:12:6c:a2:dd:b5:83:ac:d9:2d:8c: 4e:a3:e9:b8:80:e9:48:9c:34:ff:6d:df:61:a8:ef:c8:67:23: 55:48:e4:f5:e8:74:9f:93:be:7f:d8:b7:18:6b:49:65:11:6c: 63:b6:fd:17:ba:6f:6b:9d:88:bd:fb:0b:f7:6a:c1:7d:76:32: 93:13:72:7c:a6:2a:7f:58:d2:24:71:f6:5b:84:af:ac:ca:fb: 08:c4:0f:3c:17:e7:7a:7b:dc:b4:7e:fb:00:74:b6:c3:eb:11: 22:0f:33:d7:ad:75:ea:9c:86:38:e6:0c:4e:c5:e0:61:49:bf: db:dc:86:85:71:e3:ce:65:7d:6f:3c:07:79:7c:0e:80:bf:7b: fa:61:66:29:93:5a:f2:3f:62:63:ba:11:04:19:c8:13:58:1a: f3:f5:d9:01 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICEHIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNTA4MjIw ODU1MjlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDc3MkRDRTQ2RjE4RENC MjA2RDNFMEJGRTMzQkY4MDRDRjhCNDBERDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQSJGwFzRt5umtDqtngNhF4aZkcf/X0tpM584Eh/8j+JSkGOQj 3zlgGIJq7Nyr6ONPuklhlqAT3whclCfkks65YtjK/EXJHNym8AYQkxdipnDeD5T0 RSCMYp6eAl7yo09o355U63de8kiTLjANnC/5iNZ7uBityY9vUDqToZnIUbUJml+m OrsndIO8g8DsJmwtFAZmkxhbSvwaG8WuERQ3KxK2yJunNcaOvwEjxdggwa30gWvt F9cmk2whho9ep9F72kf8zcOhHUoE5kJQMqhxZDODCDESSpeGUFDUDHTWm/Gmyg2r ZiL3Jm/CbXHXMNyXBAOkyL7brcPGb5dlYNOdAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUdy3ORvGNyyBtPgv+M7+ATPi0DdIwHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF /peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9keTNPUnZHTnl5QnRQZ3YtTTct QVRQaTBEZEkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAeHww DQYJKoZIhvcNAQELBQADggEBAC4J0EtZPaR2Az8ztawejPbc0m63zmAdpgLdb0NC HJPTYedHDw61RSmSM4jQhAiXMjyBPU7YhM9jxG7bryZt3OGp4V2aObgkPRqLIeCB QejZi2VJXjF+1Nav84qr6tBQ4bjiEmyi3bWDrNktjE6j6biA6UicNP9t32Go78hn I1VI5PXodJ+Tvn/YtxhrSWURbGO2/Re6b2udiL37C/dqwX12MpMTcnymKn9Y0iRx 9luEr6zK+wjEDzwX53p73LR++wB0tsPrESIPM9etdeqchjjmDE7F4GFJv9vchoVx 485lfW88B3l8DoC/e/phZimTWvI/YmO6EQQZyBNYGvP12QE= -----END CERTIFICATE-----Generated at Sun Aug 24 07:57:19 2025 by rpki-client