$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/nXkoOGB80cVuHGvknywSJ0_H8O8.roa File: nXkoOGB80cVuHGvknywSJ0_H8O8.roa (raw, json) Hash identifier: G1sCDoPruNykSLQigYNjn6tXDJM2nWUa/MJWzDZvz3w= Subject key identifier: 9D:79:28:38:60:7C:D1:C5:6E:1C:6B:E4:9F:2C:12:27:4F:C7:F0:EF Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Certificate serial: 107D Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/nXkoOGB80cVuHGvknywSJ0_H8O8.roa Signing time: Fri 22 Aug 2025 08:55:32 +0000 ROA not before: Fri 22 Aug 2025 08:55:32 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9916 IP address blocks: 120.106.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4221 (0x107d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Validity Not Before: Aug 22 08:55:32 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=9D792838607CD1C56E1C6BE49F2C12274FC7F0EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:60:d3:78:bd:d7:ad:bd:ca:08:82:f4:e3:e5: 68:29:05:1e:b0:39:97:22:8d:15:9d:7d:a9:83:b5: c8:b0:13:9f:cc:fa:4b:ed:61:27:41:6f:a5:8b:db: 97:e3:5c:5d:41:46:1a:63:d1:ff:1e:14:e4:ae:42: 3d:c1:01:33:a9:34:c5:13:99:a0:68:16:b6:b1:78: 8f:a7:73:6d:b7:6e:a0:fb:3e:62:5a:5f:53:43:07: a0:52:8f:ef:4e:b1:f8:cc:70:3b:6c:1d:19:83:fb: bd:c3:22:5f:78:04:da:f6:d5:fd:68:b4:e5:67:3d: 60:90:3c:11:d9:7b:1c:05:20:b2:f6:27:0e:e9:3f: d6:c7:9b:af:5c:8d:ec:19:92:cf:14:a2:27:bf:3d: 3b:1d:c1:c2:34:53:c6:46:0d:ed:40:0d:b9:13:5e: 23:6d:59:0e:18:33:80:3a:13:85:ec:b5:a8:a1:ba: 92:e7:1c:e1:87:03:18:8c:d7:80:9f:bd:78:85:36: 82:6f:a0:f7:2b:6b:6b:ee:dd:04:95:9b:d5:38:0d: bd:3c:2f:77:a0:b1:f7:4e:6b:2a:1d:35:6d:ba:87: 34:e3:b3:14:d8:e2:1e:4f:a9:4f:e5:27:22:6f:b2: e9:d3:c5:98:53:da:09:5f:07:32:74:20:c0:08:fc: 3d:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:79:28:38:60:7C:D1:C5:6E:1C:6B:E4:9F:2C:12:27:4F:C7:F0:EF X509v3 Authority Key Identifier: keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/nXkoOGB80cVuHGvknywSJ0_H8O8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 120.106.0.0/16 Signature Algorithm: sha256WithRSAEncryption b6:f7:61:d5:57:e5:cb:8e:c0:66:87:4c:3c:71:94:9c:04:a5: 34:00:cd:b5:9c:b2:87:86:5f:57:73:de:92:b9:a6:57:aa:82: 91:1c:42:1a:5c:82:88:e3:94:00:f7:44:6b:db:43:2a:e2:99: 6d:a1:28:39:49:e0:99:06:e5:c0:01:d7:5a:45:51:41:0c:04: 52:78:bd:51:fe:97:bf:93:03:d1:b8:ff:9f:03:c3:d1:52:5f: 74:6c:80:92:7d:53:49:4b:5e:b5:23:58:ae:96:6c:c9:0f:0f: 3a:ce:48:c0:6d:8a:1d:38:e3:88:b4:1b:f8:79:96:91:4f:9d: e5:91:ab:f0:a8:77:49:8e:c8:29:5d:27:c7:ab:4b:44:ef:74: ae:5b:9a:72:37:ba:86:e7:59:b6:56:60:93:5e:46:c2:f1:98: 5c:ec:24:a3:3b:a0:5e:c9:40:b8:9d:bb:36:e2:1c:72:bd:08: 9a:43:d5:e7:4d:39:3c:34:fb:1c:9f:92:6b:91:c6:79:0d:be: ad:b3:79:b9:87:51:bd:93:86:9e:70:20:d2:43:e1:0a:77:cf: 6e:5a:71:d2:f7:3e:ed:d3:7b:35:eb:a8:db:e4:f7:cc:ce:6d: 23:68:84:a3:f3:34:b8:07:9e:0e:e9:60:8b:fc:4a:3f:7e:7d: 2c:ed:5a:9e -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICEH0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNTA4MjIw ODU1MzJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDlENzkyODM4NjA3Q0Qx QzU2RTFDNkJFNDlGMkMxMjI3NEZDN0YwRUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDYNN4vdetvcoIgvTj5WgpBR6wOZcijRWdfamDtciwE5/M+kvt YSdBb6WL25fjXF1BRhpj0f8eFOSuQj3BATOpNMUTmaBoFraxeI+nc223bqD7PmJa X1NDB6BSj+9OsfjMcDtsHRmD+73DIl94BNr21f1otOVnPWCQPBHZexwFILL2Jw7p P9bHm69cjewZks8Uoie/PTsdwcI0U8ZGDe1ADbkTXiNtWQ4YM4A6E4XstaihupLn HOGHAxiM14CfvXiFNoJvoPcra2vu3QSVm9U4Db08L3egsfdOayodNW26hzTjsxTY 4h5PqU/lJyJvsunTxZhT2glfBzJ0IMAI/D1BAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUnXkoOGB80cVuHGvknywSJ0/H8O8wHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF /peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9uWGtvT0dCODBjVnVIR3Zrbnl3 U0owX0g4Tzgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAeGow DQYJKoZIhvcNAQELBQADggEBALb3YdVX5cuOwGaHTDxxlJwEpTQAzbWcsoeGX1dz 3pK5pleqgpEcQhpcgojjlAD3RGvbQyrimW2hKDlJ4JkG5cAB11pFUUEMBFJ4vVH+ l7+TA9G4/58Dw9FSX3RsgJJ9U0lLXrUjWK6WbMkPDzrOSMBtih0444i0G/h5lpFP neWRq/Cod0mOyCldJ8erS0TvdK5bmnI3uobnWbZWYJNeRsLxmFzsJKM7oF7JQLid uzbiHHK9CJpD1edNOTw0+xyfkmuRxnkNvq2zebmHUb2Thp5wINJD4Qp3z25acdL3 Pu3TezXrqNvk98zObSNohKPzNLgHng7pYIv8Sj9+fSztWp4= -----END CERTIFICATE-----Generated at Sun Aug 24 13:44:08 2025 by rpki-client