$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/hduL-GcwBEv-zE3cfjsU3pZFokE.roa File: hduL-GcwBEv-zE3cfjsU3pZFokE.roa (raw, json) Hash identifier: TtVcyTISWTBLcvyGUxlMoAzMqlUsRL9yBdZKYSYMfWE= Subject key identifier: 85:DB:8B:F8:67:30:04:4B:FE:CC:4D:DC:7E:3B:14:DE:96:45:A2:41 Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0FF4 Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/hduL-GcwBEv-zE3cfjsU3pZFokE.roa Signing time: Fri 22 Aug 2025 08:55:47 +0000 ROA not before: Fri 22 Aug 2025 08:55:47 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 1659 IP address blocks: 140.110.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4084 (0xff4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 22 08:55:47 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=85DB8BF86730044BFECC4DDC7E3B14DE9645A241 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:b8:37:14:6e:f1:95:3c:bc:dc:a6:7e:9e:48: 53:f7:11:59:d4:01:1b:47:2a:d1:73:d2:d2:46:aa: d6:98:fa:63:81:f8:54:3f:bf:ed:d7:01:79:6b:90: 9e:3e:8e:c4:a0:c6:14:b7:8c:4c:08:45:76:72:50: ea:c9:9e:e2:3c:15:e6:d2:81:8f:34:9b:d5:3f:05: 95:45:a1:5b:9c:06:61:38:f9:64:a3:8f:c3:07:c9: 76:88:b2:8b:0e:e2:34:a0:ae:25:03:fd:54:ab:f8: 5b:bf:d6:84:02:bd:d3:78:a7:b9:1a:c5:39:84:ae: fe:41:19:19:f5:4c:a0:81:4e:61:d4:82:3d:c2:4f: 61:56:00:a1:1f:f4:81:57:97:17:8c:31:f2:97:81: 17:8d:b3:cc:8d:cd:b3:50:c9:35:8f:12:94:8d:0a: 04:a9:5f:4e:bc:e4:6c:13:7e:62:20:27:2c:88:b6: 0d:43:34:b4:67:be:ec:d0:f9:62:bb:32:8a:27:4e: b2:a2:89:55:62:63:ce:5a:15:95:4a:4e:67:05:24: 49:02:57:63:54:54:61:f6:ae:0c:c6:b4:8a:81:4e: b5:72:ef:13:ff:5d:51:d8:5c:b5:3f:8d:41:10:50: 2e:1e:c2:03:22:d7:ee:e1:ef:6d:94:1f:14:a1:5c: 2a:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:DB:8B:F8:67:30:04:4B:FE:CC:4D:DC:7E:3B:14:DE:96:45:A2:41 X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/hduL-GcwBEv-zE3cfjsU3pZFokE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 140.110.0.0/15 Signature Algorithm: sha256WithRSAEncryption 72:1a:1b:85:40:fa:72:35:7c:fc:1c:4d:fb:68:8b:67:5c:9a: 0e:ba:b0:26:73:ac:46:ea:a3:bd:0f:0d:36:97:05:0e:01:cc: 93:61:04:e5:23:a8:42:52:af:4c:3e:6a:7b:c8:9d:c5:4f:15: ac:c8:b2:f3:71:05:69:66:cf:25:2d:6c:0d:60:52:4d:a5:fc: 5e:a0:1b:13:ed:69:bd:23:ba:df:f0:e0:88:83:0c:c3:c3:99: 30:3c:c4:db:fc:37:f2:f2:f8:ea:cf:b7:51:af:11:a5:aa:9c: 76:41:d2:08:3d:37:ab:54:fd:5c:dc:55:b4:c6:be:de:ea:79: e4:07:cb:0a:8c:49:3d:86:59:16:75:bb:42:c2:66:72:b6:d4: 31:9f:8f:ee:f9:65:e3:8f:19:3d:6b:ce:1d:86:8d:93:1c:ac: ff:41:f0:bd:aa:6b:58:c9:82:3e:10:0d:88:63:e3:bf:31:ef: c4:bf:e0:30:80:2b:ab:54:c7:fc:1a:18:e3:5a:28:93:b9:b9: 10:63:7f:b6:e6:32:1c:2b:ff:fd:d1:7b:b3:65:e3:62:cf:e0: 4d:88:08:cc:ed:4b:09:66:ad:8b:b2:83:7e:a3:52:92:ff:bc: 55:7f:f2:a1:80:56:65:08:b1:d3:8b:7f:0c:dd:eb:9d:ab:7b: 8d:b0:8b:69 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICD/QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTA4MjIw ODU1NDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDg1REI4QkY4NjczMDA0 NEJGRUNDNEREQzdFM0IxNERFOTY0NUEyNDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQuDcUbvGVPLzcpn6eSFP3EVnUARtHKtFz0tJGqtaY+mOB+FQ/ v+3XAXlrkJ4+jsSgxhS3jEwIRXZyUOrJnuI8FebSgY80m9U/BZVFoVucBmE4+WSj j8MHyXaIsosO4jSgriUD/VSr+Fu/1oQCvdN4p7kaxTmErv5BGRn1TKCBTmHUgj3C T2FWAKEf9IFXlxeMMfKXgReNs8yNzbNQyTWPEpSNCgSpX0685GwTfmIgJyyItg1D NLRnvuzQ+WK7MoonTrKiiVViY85aFZVKTmcFJEkCV2NUVGH2rgzGtIqBTrVy7xP/ XVHYXLU/jUEQUC4ewgMi1+7h722UHxShXCoLAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUhduL+GcwBEv+zE3cfjsU3pZFokEwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9oZHVMLUdjd0JFdi16RTNjZmpz VTNwWkZva0Uucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMBjG4w DQYJKoZIhvcNAQELBQADggEBAHIaG4VA+nI1fPwcTftoi2dcmg66sCZzrEbqo70P DTaXBQ4BzJNhBOUjqEJSr0w+anvIncVPFazIsvNxBWlmzyUtbA1gUk2l/F6gGxPt ab0jut/w4IiDDMPDmTA8xNv8N/Ly+OrPt1GvEaWqnHZB0gg9N6tU/VzcVbTGvt7q eeQHywqMST2GWRZ1u0LCZnK21DGfj+75ZeOPGT1rzh2GjZMcrP9B8L2qa1jJgj4Q DYhj478x78S/4DCAK6tUx/waGONaKJO5uRBjf7bmMhwr//3Re7Nl42LP4E2ICMzt SwlmrYuyg36jUpL/vFV/8qGAVmUIsdOLfwzd652re42wi2k= -----END CERTIFICATE-----Generated at Sun Aug 24 05:32:07 2025 by rpki-client