$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/ijieom_c1p0KsAAIxWeZaW7VIfk.roa File: ijieom_c1p0KsAAIxWeZaW7VIfk.roa (raw, json) Hash identifier: p1vK+ZK7gZCYypb9EP3mk4lpcQ5GRL+CqqmdlriPLBI= Subject key identifier: 8A:38:9E:A2:6F:DC:D6:9D:0A:B0:00:08:C5:67:99:69:6E:D5:21:F9 Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0FFC Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/ijieom_c1p0KsAAIxWeZaW7VIfk.roa Signing time: Fri 22 Aug 2025 08:55:48 +0000 ROA not before: Fri 22 Aug 2025 08:55:48 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 7539 IP address blocks: 140.110.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4092 (0xffc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 22 08:55:48 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8A389EA26FDCD69D0AB00008C56799696ED521F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:b4:e4:f0:61:ea:45:49:d6:81:dc:f6:60:95: 9d:a3:53:2c:9b:fc:25:a7:55:72:97:d9:de:eb:e8: 79:f2:85:1f:f4:d2:cc:d0:2d:e8:99:62:f7:27:c0: 65:34:68:63:3a:a1:51:07:5d:3c:c5:e1:74:5c:25: 42:ba:48:79:15:f9:08:9f:e4:18:be:72:1f:98:8b: 4e:14:e1:44:f6:f4:95:a9:b6:0a:34:7d:c8:76:98: eb:f5:58:61:a8:b6:b9:3a:2a:81:10:7f:f0:c2:36: 8a:af:d4:b5:07:68:fe:f6:65:ba:64:12:b4:83:d5: 81:b3:86:b8:5d:0a:7c:30:aa:ad:38:15:f2:c4:9a: b5:a3:4e:3a:45:2f:6a:db:dc:21:47:e7:dd:53:09: fa:8b:eb:c3:af:b9:a1:a6:c2:64:1c:71:ff:8a:44: bc:31:f0:e5:74:f3:04:c6:10:82:e1:39:0c:51:c7: 1a:14:74:1a:e8:91:93:e0:15:bb:bc:b2:ca:d3:5f: ab:7a:a6:62:33:9b:f6:7e:fc:2b:9a:53:9e:4f:c4: 05:74:e7:04:b1:c2:e8:78:09:cf:c1:73:86:e0:99: 3d:cb:aa:26:be:ec:1a:39:72:e6:35:70:5a:fc:4c: 7a:e6:49:10:99:f2:22:8e:2b:6f:52:d0:2b:4c:81: f7:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:38:9E:A2:6F:DC:D6:9D:0A:B0:00:08:C5:67:99:69:6E:D5:21:F9 X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/ijieom_c1p0KsAAIxWeZaW7VIfk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 140.110.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7b:0b:ab:ef:1a:ac:ff:21:1c:98:3a:a4:c7:55:44:96:17:aa: 15:05:58:b0:7b:ea:aa:1b:ee:5c:a7:aa:7e:fc:b7:07:1c:39: f1:11:04:d9:70:96:cb:b1:c5:9c:73:3f:a3:0f:bc:27:6b:00: 38:50:29:7e:39:64:c9:ad:79:48:ac:de:fa:0f:f5:c2:9f:a1: c8:50:dc:7b:dc:d2:2e:1e:98:23:24:e4:1d:4b:6a:6c:48:00: 99:33:63:40:45:03:71:32:4d:b5:0b:cf:0a:1f:4f:7b:d0:1b: 1a:77:cd:91:68:ea:ff:0c:8a:58:50:1d:22:77:35:23:e2:92: a5:2a:11:af:49:8b:61:e1:df:dc:cc:e5:4b:09:49:49:2e:bf: 0b:ac:2e:b4:7f:49:4f:90:32:3e:5f:9f:51:34:2a:42:9c:64: 57:85:7f:28:ef:6e:d7:b7:f1:54:5d:c5:85:1e:6b:07:d8:b6: 5b:3f:d2:d5:34:df:08:62:64:9f:21:65:17:09:fd:3d:4b:2b: 58:5d:d2:10:0a:17:d5:d9:56:de:56:ac:f5:9a:17:ba:aa:f7: bb:ac:f8:43:1b:96:e5:c7:28:d0:8b:70:d1:5b:a4:1e:8b:72: ec:61:f1:fc:52:78:0e:bf:db:fe:4b:d3:f4:04:26:23:48:07: 38:a7:1d:c1 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICD/wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTA4MjIw ODU1NDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDhBMzg5RUEyNkZEQ0Q2 OUQwQUIwMDAwOEM1Njc5OTY5NkVENTIxRjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCgtOTwYepFSdaB3PZglZ2jUyyb/CWnVXKX2d7r6HnyhR/00szQ LeiZYvcnwGU0aGM6oVEHXTzF4XRcJUK6SHkV+Qif5Bi+ch+Yi04U4UT29JWptgo0 fch2mOv1WGGotrk6KoEQf/DCNoqv1LUHaP72ZbpkErSD1YGzhrhdCnwwqq04FfLE mrWjTjpFL2rb3CFH591TCfqL68OvuaGmwmQccf+KRLwx8OV08wTGEILhOQxRxxoU dBrokZPgFbu8ssrTX6t6pmIzm/Z+/CuaU55PxAV05wSxwuh4Cc/Bc4bgmT3Lqia+ 7Bo5cuY1cFr8THrmSRCZ8iKOK29S0CtMgfcdAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUijieom/c1p0KsAAIxWeZaW7VIfkwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9pamllb21fYzFwMEtzQUFJeFdl WmFXN1ZJZmsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjG4w DQYJKoZIhvcNAQELBQADggEBAHsLq+8arP8hHJg6pMdVRJYXqhUFWLB76qob7lyn qn78twccOfERBNlwlsuxxZxzP6MPvCdrADhQKX45ZMmteUis3voP9cKfochQ3Hvc 0i4emCMk5B1LamxIAJkzY0BFA3EyTbULzwofT3vQGxp3zZFo6v8MilhQHSJ3NSPi kqUqEa9Ji2Hh39zM5UsJSUkuvwusLrR/SU+QMj5fn1E0KkKcZFeFfyjvbte38VRd xYUeawfYtls/0tU03whiZJ8hZRcJ/T1LK1hd0hAKF9XZVt5WrPWaF7qq97us+EMb luXHKNCLcNFbpB6Lcuxh8fxSeA6/2/5L0/QEJiNIBzinHcE= -----END CERTIFICATE-----Generated at Sun Aug 24 05:34:05 2025 by rpki-client