$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/jh3goPFnjTaJwwQgzURw22Ny1-0.roa File: jh3goPFnjTaJwwQgzURw22Ny1-0.roa (raw, json) Hash identifier: uo5LDrgO+knr9j2+VwrN5K678mUacyITKVK9tqdXhyo= Subject key identifier: 8E:1D:E0:A0:F1:67:8D:36:89:C3:04:20:CD:44:70:DB:63:72:D7:ED Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 1005 Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/jh3goPFnjTaJwwQgzURw22Ny1-0.roa Signing time: Fri 22 Aug 2025 08:55:51 +0000 ROA not before: Fri 22 Aug 2025 08:55:51 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 1659 IP address blocks: 192.192.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4101 (0x1005) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 22 08:55:51 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8E1DE0A0F1678D3689C30420CD4470DB6372D7ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:15:e1:71:e9:12:ab:b7:19:bf:b0:cd:e6:6f: 00:98:2e:5f:d7:33:68:d1:f3:ee:ae:db:7d:f5:2a: 7f:17:e5:57:d7:a3:3a:f4:51:a0:90:93:74:76:28: 07:ed:89:ae:01:38:1e:ca:3a:15:dc:d6:9c:a4:42: 13:fd:dc:33:d0:2f:0f:a1:1c:1b:58:de:0d:29:10: 58:2b:8d:56:14:d7:03:fe:71:7b:f3:f5:36:58:a0: c1:08:97:a0:d9:b7:bc:1a:f4:02:b6:e4:8b:aa:30: c7:74:e2:50:1f:e6:61:09:ed:45:ce:30:81:72:18: 67:75:43:86:16:be:b8:c0:5a:3e:8c:9b:ce:b8:0e: f1:c9:46:ee:87:ff:e2:95:7f:b0:9a:f9:78:70:18: 58:b3:e1:9c:fa:02:29:51:cc:68:e2:62:16:98:bc: 48:fa:45:56:24:93:47:72:ef:31:14:ab:52:f7:9e: 5d:12:de:99:74:bd:82:c3:e2:a0:4f:99:a3:b5:60: 91:3b:10:ec:4a:18:9c:97:f7:5e:09:78:85:24:6c: e8:5b:8f:7c:41:b8:0a:b2:8b:e8:bb:e6:05:a2:44: 5f:ca:64:d2:18:07:92:3a:43:8a:a1:99:ca:89:0f: ee:3b:77:78:8a:81:4c:62:48:8b:11:26:36:89:78: 02:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:1D:E0:A0:F1:67:8D:36:89:C3:04:20:CD:44:70:DB:63:72:D7:ED X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/jh3goPFnjTaJwwQgzURw22Ny1-0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.192.0.0/16 Signature Algorithm: sha256WithRSAEncryption 06:93:f4:0f:67:f1:95:71:cf:24:ea:14:e3:b0:03:c1:f7:78: ae:67:6b:0c:e8:af:51:3f:d5:75:52:b6:e6:11:7b:a6:d6:d3: 70:23:d4:1a:ab:ce:81:a6:7f:81:05:01:c3:df:32:94:36:2a: ad:b9:cd:26:d7:a5:cd:26:71:70:7d:a0:0b:94:95:dc:2c:eb: a6:1a:c2:1d:01:c0:73:62:9e:1f:c4:cd:ff:2e:b4:6e:b4:99: 78:aa:01:9d:02:d3:e7:60:87:0e:01:68:b6:d5:81:71:1f:29: ec:e2:7d:7a:c0:a5:80:24:34:24:8a:51:67:c5:40:d6:8c:a0: 4d:46:75:4b:6f:58:3e:2b:25:c3:86:96:fc:6d:8e:c2:3e:7d: ee:2e:5b:b1:67:af:31:8f:32:08:d5:83:df:c1:df:15:73:17: 3e:07:ad:75:7e:bb:86:f2:3b:89:be:9a:47:dd:72:53:3c:31: 7a:ae:27:9f:13:15:3f:b3:bc:8b:30:e0:71:bf:46:44:61:b5: d7:05:c9:35:8d:44:62:43:1b:2d:51:54:6f:35:79:9a:6b:98: 7f:28:22:b7:cd:6a:37:3e:a2:93:e8:47:53:aa:cf:f8:57:28: 65:51:51:ba:6b:59:ca:d5:51:08:4a:49:25:b0:d7:bb:b8:66: 64:ce:f1:61 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICEAUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTA4MjIw ODU1NTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDhFMURFMEEwRjE2NzhE MzY4OUMzMDQyMENENDQ3MERCNjM3MkQ3RUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5FeFx6RKrtxm/sM3mbwCYLl/XM2jR8+6u2331Kn8X5VfXozr0 UaCQk3R2KAftia4BOB7KOhXc1pykQhP93DPQLw+hHBtY3g0pEFgrjVYU1wP+cXvz 9TZYoMEIl6DZt7wa9AK25IuqMMd04lAf5mEJ7UXOMIFyGGd1Q4YWvrjAWj6Mm864 DvHJRu6H/+KVf7Ca+XhwGFiz4Zz6AilRzGjiYhaYvEj6RVYkk0dy7zEUq1L3nl0S 3pl0vYLD4qBPmaO1YJE7EOxKGJyX914JeIUkbOhbj3xBuAqyi+i75gWiRF/KZNIY B5I6Q4qhmcqJD+47d3iKgUxiSIsRJjaJeAI5AgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUjh3goPFnjTaJwwQgzURw22Ny1+0wHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9qaDNnb1BGbmpUYUp3d1FnelVS dzIyTnkxLTAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAwMAw DQYJKoZIhvcNAQELBQADggEBAAaT9A9n8ZVxzyTqFOOwA8H3eK5nawzor1E/1XVS tuYRe6bW03Aj1BqrzoGmf4EFAcPfMpQ2Kq25zSbXpc0mcXB9oAuUldws66Yawh0B wHNinh/Ezf8utG60mXiqAZ0C0+dghw4BaLbVgXEfKezifXrApYAkNCSKUWfFQNaM oE1GdUtvWD4rJcOGlvxtjsI+fe4uW7FnrzGPMgjVg9/B3xVzFz4HrXV+u4byO4m+ mkfdclM8MXquJ58TFT+zvIsw4HG/RkRhtdcFyTWNRGJDGy1RVG81eZprmH8oIrfN ajc+opPoR1Oqz/hXKGVRUbprWcrVUQhKSSWw17u4ZmTO8WE= -----END CERTIFICATE-----Generated at Sun Aug 24 07:31:02 2025 by rpki-client