$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/lPkzuUS7XQ-2ZVfgaUt8dnRvguw.roa File: lPkzuUS7XQ-2ZVfgaUt8dnRvguw.roa (raw, json) Hash identifier: y5VtucSA8cGGt8TuFgBbyce34HB6E68APILUVFLY6f8= Subject key identifier: 94:F9:33:B9:44:BB:5D:0F:B6:65:57:E0:69:4B:7C:76:74:6F:82:EC Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0FF8 Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/lPkzuUS7XQ-2ZVfgaUt8dnRvguw.roa Signing time: Fri 22 Aug 2025 08:55:47 +0000 ROA not before: Fri 22 Aug 2025 08:55:47 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9916 IP address blocks: 192.83.180.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4088 (0xff8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 22 08:55:47 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=94F933B944BB5D0FB66557E0694B7C76746F82EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:dd:4c:10:c6:57:9b:62:18:29:62:d5:84:f0: d5:5e:19:6b:97:6c:80:27:54:5d:cf:e0:a6:1b:f2: 17:c8:1b:23:68:14:1c:76:ed:8c:30:3e:ae:0c:fc: 0a:66:60:41:79:83:0c:35:5a:72:1f:97:3b:d6:6d: 44:37:23:9c:c4:1f:0e:70:7f:e9:8e:91:e1:99:f4: e5:45:c9:a2:94:5a:8f:24:0b:72:ca:37:c6:20:ef: e9:77:16:61:e0:05:fb:2a:b1:c7:51:1f:79:dd:13: a8:63:cc:0c:07:42:b6:85:ed:40:2a:ee:e0:14:5a: 01:bd:e4:6f:17:54:45:44:72:d9:5e:4e:48:11:01: 84:56:20:1f:ea:af:e0:16:a0:39:c7:6d:4c:b5:c6: 72:9c:ef:8b:9e:de:8b:da:07:b4:fa:92:6f:a7:52: 75:f4:3e:da:05:18:a5:8a:c8:0a:b3:d3:66:df:0d: b2:3e:80:10:5f:f0:97:8a:c9:de:6d:cd:38:09:7b: d6:b8:29:ec:2c:c5:2a:9b:9d:5a:55:3a:d1:1f:70: db:ee:62:cd:a6:37:af:34:31:4f:b2:79:49:a6:7c: 19:37:0d:96:0c:10:9b:5f:b0:4f:cc:28:30:09:4a: 14:bf:8b:93:1b:68:6a:bc:c2:ca:0f:d6:b5:65:b2: a4:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:F9:33:B9:44:BB:5D:0F:B6:65:57:E0:69:4B:7C:76:74:6F:82:EC X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/lPkzuUS7XQ-2ZVfgaUt8dnRvguw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.83.180.0/24 Signature Algorithm: sha256WithRSAEncryption 23:43:6b:69:0b:a7:bd:12:8a:63:3a:d0:1a:9e:b8:74:19:5b: 1a:a3:55:73:3a:a3:b9:55:79:70:20:bf:6c:45:ca:cb:b9:64: 8a:aa:0c:b1:93:35:2f:86:0b:b8:55:13:c2:a0:7b:b8:1e:58: 95:c4:dd:35:e9:51:1d:e9:fd:a4:01:54:2d:22:cc:1e:8f:d1: ba:bb:52:5c:f1:98:3e:26:38:84:d0:ad:cf:e2:0d:76:1d:ff: 00:c5:a6:ea:7e:a8:b4:46:ea:9e:dc:44:9c:7e:94:82:c8:96: 4b:fa:9f:cc:58:9c:47:bc:1a:45:b1:6e:7f:b3:28:a8:33:b1: c2:aa:c3:00:77:b8:72:06:96:d7:bb:29:f8:3d:8f:26:f3:81: 83:b2:89:42:49:ad:d6:b8:af:d2:15:60:74:c5:86:38:b0:c6: 06:cc:13:51:46:8c:cf:1a:a2:aa:bf:5c:0d:c5:68:25:94:10: 1d:2b:0c:73:6f:fb:3a:8e:96:14:27:2c:51:90:61:02:a2:59: 99:16:90:56:49:ed:6f:74:ab:b3:d6:80:3e:ee:8e:fc:3a:89: 34:63:88:72:d4:88:26:b2:7d:3a:3e:b5:e1:77:db:8c:dd:a5: 14:4e:ca:a5:ea:45:4b:14:20:0b:7d:b0:7a:7c:8d:ac:5b:d6: 40:db:66:7a -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICD/gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTA4MjIw ODU1NDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDk0RjkzM0I5NDRCQjVE MEZCNjY1NTdFMDY5NEI3Qzc2NzQ2RjgyRUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC23UwQxlebYhgpYtWE8NVeGWuXbIAnVF3P4KYb8hfIGyNoFBx2 7YwwPq4M/ApmYEF5gww1WnIflzvWbUQ3I5zEHw5wf+mOkeGZ9OVFyaKUWo8kC3LK N8Yg7+l3FmHgBfsqscdRH3ndE6hjzAwHQraF7UAq7uAUWgG95G8XVEVEctleTkgR AYRWIB/qr+AWoDnHbUy1xnKc74ue3ovaB7T6km+nUnX0PtoFGKWKyAqz02bfDbI+ gBBf8JeKyd5tzTgJe9a4KewsxSqbnVpVOtEfcNvuYs2mN680MU+yeUmmfBk3DZYM EJtfsE/MKDAJShS/i5MbaGq8wsoP1rVlsqSZAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUlPkzuUS7XQ+2ZVfgaUt8dnRvguwwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9sUGt6dVVTN1hRLTJaVmZnYVV0 OGRuUnZndXcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwFO0 MA0GCSqGSIb3DQEBCwUAA4IBAQAjQ2tpC6e9EopjOtAanrh0GVsao1VzOqO5VXlw IL9sRcrLuWSKqgyxkzUvhgu4VRPCoHu4HliVxN016VEd6f2kAVQtIswej9G6u1Jc 8Zg+JjiE0K3P4g12Hf8Axabqfqi0Ruqe3EScfpSCyJZL+p/MWJxHvBpFsW5/syio M7HCqsMAd7hyBpbXuyn4PY8m84GDsolCSa3WuK/SFWB0xYY4sMYGzBNRRozPGqKq v1wNxWgllBAdKwxzb/s6jpYUJyxRkGEColmZFpBWSe1vdKuz1oA+7o78Ook0Y4hy 1Igmsn06PrXhd9uM3aUUTsql6kVLFCALfbB6fI2sW9ZA22Z6 -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:31 2025 by rpki-client