$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/o_ILGP7QEWQWHooK5VhpU06V9rA.roa File: o_ILGP7QEWQWHooK5VhpU06V9rA.roa (raw, json) Hash identifier: 6fFnrqS49hNGX0Ra5UJvKsm/ePi4y60mzY1qYm4NqDw= Subject key identifier: A3:F2:0B:18:FE:D0:11:64:16:1E:8A:0A:E5:58:69:53:4E:95:F6:B0 Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0FDC Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/o_ILGP7QEWQWHooK5VhpU06V9rA.roa Signing time: Fri 22 Aug 2025 08:55:41 +0000 ROA not before: Fri 22 Aug 2025 08:55:41 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 1659 IP address blocks: 192.192.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4060 (0xfdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 22 08:55:41 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=A3F20B18FED01164161E8A0AE55869534E95F6B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:67:3f:a8:0a:25:64:53:e8:3f:8f:54:35:0c: 73:6d:11:4f:01:32:c3:6a:d4:8c:83:13:f0:a7:19: 92:be:81:95:85:69:60:f9:1e:06:3b:1e:de:2e:4e: 70:c0:06:20:60:1b:a5:4d:a5:cf:80:d7:07:2f:41: c7:52:df:58:70:b9:2b:09:ff:87:cc:d5:8d:72:19: 60:a2:a1:44:46:4b:f8:fc:4c:0f:0d:73:c0:fc:75: 85:32:d6:fe:16:16:ce:2f:3e:a0:6b:28:00:db:62: 90:1a:24:67:61:f6:9f:14:bd:91:b4:cf:24:02:32: a7:07:e8:91:df:42:b5:9b:9f:72:0c:51:48:4f:d8: 43:de:70:c2:b7:65:89:28:6d:a7:df:5e:39:9d:9d: 18:8a:aa:24:37:54:f2:95:85:81:d3:ca:b5:42:7d: c4:29:01:f0:f5:f7:45:8c:b6:a8:46:0b:5b:e9:a3: 59:bb:a9:00:7b:d5:61:b7:d7:05:07:81:3f:c5:07: 79:43:00:dd:cc:45:ef:a9:66:2e:b8:90:1d:27:b2: d4:68:56:ba:82:7c:e2:32:df:f3:7e:f3:70:3c:14: 9f:ae:43:68:90:e5:b9:17:63:22:65:ce:64:71:a7: c2:1c:9c:a1:13:7e:6f:2a:61:c2:9c:37:67:e9:c8: fb:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:F2:0B:18:FE:D0:11:64:16:1E:8A:0A:E5:58:69:53:4E:95:F6:B0 X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/o_ILGP7QEWQWHooK5VhpU06V9rA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.192.16.0/20 Signature Algorithm: sha256WithRSAEncryption 42:a9:5e:54:65:cd:7d:48:73:b8:71:34:83:03:2f:b1:cb:94: 6b:8b:84:7e:06:94:95:89:31:b8:ca:74:59:e8:87:cd:50:54: 78:4d:2f:69:14:61:f6:1c:ce:04:de:05:d2:1b:2d:35:aa:39: e5:92:90:b2:bc:7d:65:11:c7:e6:01:ad:cd:bd:3a:54:7e:fc: a1:e8:53:ae:94:06:1e:db:90:34:7a:80:a7:e1:60:00:29:0d: e4:2d:57:9b:b6:7d:96:bb:01:bb:dc:a7:a9:1c:30:1a:88:0d: 6a:4d:43:f3:6c:6f:e9:23:fa:35:fc:95:de:ab:da:79:de:56: 7a:7d:b7:22:3c:9b:1d:3c:66:b8:8b:8b:9a:c9:1c:df:d5:74: 85:b6:64:0b:9a:63:56:28:33:85:40:c0:e4:fe:58:a8:71:e4: 84:79:b1:33:70:ea:da:d5:fe:d9:9c:6a:7b:30:19:5a:77:ad: dc:9c:f0:5e:c4:20:d5:b4:bc:59:17:01:df:cf:fc:3b:25:83: 0d:96:ba:74:c1:30:18:d2:64:3e:ca:b3:b5:0a:ce:a8:79:93: 84:ff:2d:48:8e:70:42:33:4a:4d:98:8e:d3:1c:71:8e:04:94: a0:f1:46:18:f6:79:75:83:98:59:99:53:43:df:b7:d2:ad:fa: 57:63:0d:17 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICD9wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTA4MjIw ODU1NDFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEEzRjIwQjE4RkVEMDEx NjQxNjFFOEEwQUU1NTg2OTUzNEU5NUY2QjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCbZz+oCiVkU+g/j1Q1DHNtEU8BMsNq1IyDE/CnGZK+gZWFaWD5 HgY7Ht4uTnDABiBgG6VNpc+A1wcvQcdS31hwuSsJ/4fM1Y1yGWCioURGS/j8TA8N c8D8dYUy1v4WFs4vPqBrKADbYpAaJGdh9p8UvZG0zyQCMqcH6JHfQrWbn3IMUUhP 2EPecMK3ZYkobaffXjmdnRiKqiQ3VPKVhYHTyrVCfcQpAfD190WMtqhGC1vpo1m7 qQB71WG31wUHgT/FB3lDAN3MRe+pZi64kB0nstRoVrqCfOIy3/N+83A8FJ+uQ2iQ 5bkXYyJlzmRxp8IcnKETfm8qYcKcN2fpyPvBAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUo/ILGP7QEWQWHooK5VhpU06V9rAwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9vX0lMR1A3UUVXUVdIb29LNVZo cFUwNlY5ckEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEwMAQ MA0GCSqGSIb3DQEBCwUAA4IBAQBCqV5UZc19SHO4cTSDAy+xy5Rri4R+BpSViTG4 ynRZ6IfNUFR4TS9pFGH2HM4E3gXSGy01qjnlkpCyvH1lEcfmAa3NvTpUfvyh6FOu lAYe25A0eoCn4WAAKQ3kLVebtn2WuwG73KepHDAaiA1qTUPzbG/pI/o1/JXeq9p5 3lZ6fbciPJsdPGa4i4uayRzf1XSFtmQLmmNWKDOFQMDk/lioceSEebEzcOra1f7Z nGp7MBlad63cnPBexCDVtLxZFwHfz/w7JYMNlrp0wTAY0mQ+yrO1Cs6oeZOE/y1I jnBCM0pNmI7THHGOBJSg8UYY9nl1g5hZmVND37fSrfpXYw0X -----END CERTIFICATE-----Generated at Sun Aug 24 07:23:14 2025 by rpki-client