$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/fNiXZxDiBMEiKWsX4ylbbkQVO3Y.roa File: fNiXZxDiBMEiKWsX4ylbbkQVO3Y.roa (raw, json) Hash identifier: BOmglLNARwgsCN3WF4kB0yBfjRsddgxsc/2R54WShPM= Subject key identifier: 7C:D8:97:67:10:E2:04:C1:22:29:6B:17:E3:29:5B:6E:44:15:3B:76 Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0FE5 Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/fNiXZxDiBMEiKWsX4ylbbkQVO3Y.roa Signing time: Fri 22 Aug 2025 08:55:43 +0000 ROA not before: Fri 22 Aug 2025 08:55:43 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17716 IP address blocks: 140.129.112.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4069 (0xfe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 22 08:55:43 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7CD8976710E204C122296B17E3295B6E44153B76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:b6:ab:11:38:3d:03:fa:f1:61:1d:ba:6c:0c: 35:09:1a:50:7c:b7:46:5c:16:bb:75:c6:bc:2f:37: 9b:3c:ba:fc:6f:a8:01:12:a1:37:35:11:67:f2:4d: d5:18:9d:a4:5c:00:28:04:3e:d7:f1:57:ec:3a:ac: 98:f9:86:79:36:07:0a:63:1a:cc:b7:25:18:74:35: 40:bf:ed:44:cc:6b:35:45:e0:ea:0c:73:49:8d:df: 39:03:b4:89:61:bb:20:c6:1f:9f:b6:ff:55:ef:bd: bb:97:e6:3d:82:c4:9c:55:e0:44:04:5e:0d:c3:f5: f6:d0:7f:33:44:a5:25:9d:7a:bd:b0:0e:95:48:99: 8f:6a:3b:e7:45:b9:81:f3:c9:b2:83:47:17:fc:fe: 67:9a:c4:29:f8:75:f1:00:12:65:6d:96:2b:90:cc: c3:ca:b0:36:b7:df:0c:dd:9e:88:6a:1d:16:00:60: e3:74:54:d3:34:f1:6d:b4:d2:99:ea:d3:1f:64:7b: ec:84:4b:21:52:84:d9:fc:b0:82:43:d2:e2:fc:b4: 53:29:7c:0c:67:64:43:98:0b:ec:fc:23:0a:91:49: 95:1c:1d:6c:b7:a4:4c:f6:91:6c:3d:0a:d3:a7:85: 74:17:f1:20:a5:dd:c4:06:ea:54:31:1e:62:e6:de: 7f:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:D8:97:67:10:E2:04:C1:22:29:6B:17:E3:29:5B:6E:44:15:3B:76 X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/fNiXZxDiBMEiKWsX4ylbbkQVO3Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 140.129.112.0/22 Signature Algorithm: sha256WithRSAEncryption 15:81:78:55:15:58:52:b8:89:d2:71:fd:e2:d0:00:12:13:52: 07:e9:86:1f:36:42:56:16:0c:22:d1:44:2f:bc:2e:4d:02:67: 3b:6f:8c:d0:bf:ec:3a:f8:ea:25:9d:c2:a9:fb:8b:e4:cc:8d: 14:44:33:8f:7a:d0:cc:30:82:6b:56:23:61:50:73:45:9b:79: c1:68:6c:85:d1:4b:ba:63:03:c1:d2:68:c0:44:54:fe:a6:d5: a3:b6:fc:59:4d:e8:22:86:73:96:1b:f8:36:ce:86:1b:b7:f4: bb:0b:40:29:88:28:f7:2b:ac:85:8f:2a:4a:ad:c5:68:d8:f4: f4:c1:82:8b:53:7c:a6:b7:ed:a3:11:1b:f8:b0:33:f1:a6:c2: 57:f4:93:c6:13:0d:c7:44:37:d5:96:7f:c4:19:90:40:8c:10: 5f:29:b5:95:7b:c7:4a:f8:d2:2f:2f:e5:e1:25:2a:ba:82:4d: ed:b6:80:61:dd:92:45:76:5b:7a:50:e7:d9:8f:dd:97:1b:de: a7:16:e7:c5:44:80:bd:4f:bd:d1:27:d2:d0:e5:aa:da:dc:0b: ef:16:87:89:25:39:63:11:ef:45:77:9e:ea:39:32:d5:4a:b9: 30:78:46:fb:4c:37:1d:3b:c7:5d:00:a3:b0:5e:5c:84:74:a4: bb:14:a9:b8 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICD+UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTA4MjIw ODU1NDNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDdDRDg5NzY3MTBFMjA0 QzEyMjI5NkIxN0UzMjk1QjZFNDQxNTNCNzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOtqsROD0D+vFhHbpsDDUJGlB8t0ZcFrt1xrwvN5s8uvxvqAES oTc1EWfyTdUYnaRcACgEPtfxV+w6rJj5hnk2BwpjGsy3JRh0NUC/7UTMazVF4OoM c0mN3zkDtIlhuyDGH5+2/1XvvbuX5j2CxJxV4EQEXg3D9fbQfzNEpSWder2wDpVI mY9qO+dFuYHzybKDRxf8/meaxCn4dfEAEmVtliuQzMPKsDa33wzdnohqHRYAYON0 VNM08W200pnq0x9ke+yESyFShNn8sIJD0uL8tFMpfAxnZEOYC+z8IwqRSZUcHWy3 pEz2kWw9CtOnhXQX8SCl3cQG6lQxHmLm3n+BAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUfNiXZxDiBMEiKWsX4ylbbkQVO3YwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9mTmlYWnhEaUJNRWlLV3NYNHls YmJrUVZPM1kucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCjIFw MA0GCSqGSIb3DQEBCwUAA4IBAQAVgXhVFVhSuInScf3i0AASE1IH6YYfNkJWFgwi 0UQvvC5NAmc7b4zQv+w6+OolncKp+4vkzI0URDOPetDMMIJrViNhUHNFm3nBaGyF 0Uu6YwPB0mjARFT+ptWjtvxZTegihnOWG/g2zoYbt/S7C0ApiCj3K6yFjypKrcVo 2PT0wYKLU3ymt+2jERv4sDPxpsJX9JPGEw3HRDfVln/EGZBAjBBfKbWVe8dK+NIv L+XhJSq6gk3ttoBh3ZJFdlt6UOfZj92XG96nFufFRIC9T73RJ9LQ5ara3AvvFoeJ JTljEe9Fd57qOTLVSrkweEb7TDcdO8ddAKOwXlyEdKS7FKm4 -----END CERTIFICATE-----Generated at Sun Aug 24 07:26:34 2025 by rpki-client