$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/s4gb6W5if9P_3_62YVXNnpqbDxE.roa File: s4gb6W5if9P_3_62YVXNnpqbDxE.roa (raw, json) Hash identifier: 2ETqCBh1WhLz64zPS2lWdGO+8tzE7HLs4o/GGuLN4yA= Subject key identifier: B3:88:1B:E9:6E:62:7F:D3:FF:DF:FE:B6:61:55:CD:9E:9A:9B:0F:11 Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Certificate serial: 1073 Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/s4gb6W5if9P_3_62YVXNnpqbDxE.roa Signing time: Fri 22 Aug 2025 08:55:29 +0000 ROA not before: Fri 22 Aug 2025 08:55:29 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17712 IP address blocks: 120.123.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4211 (0x1073) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Validity Not Before: Aug 22 08:55:29 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B3881BE96E627FD3FFDFFEB66155CD9E9A9B0F11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:cf:87:2f:9b:38:07:7c:72:50:b2:d6:23:3a: fc:55:8c:46:cd:ea:a2:6f:9b:b2:46:fb:4f:be:80: 97:c0:5e:7a:25:68:66:56:8b:7d:52:1d:37:80:22: 84:06:7f:c2:ca:ce:5b:91:29:bc:ef:2f:a4:0f:4f: a1:8a:80:60:a3:10:00:81:7e:dc:a4:69:e0:f9:c5: f5:64:c4:cd:66:03:f2:41:b4:d4:87:9a:04:8d:8d: ab:8c:96:fc:8f:49:36:af:f9:6a:bc:bc:98:35:fa: e1:85:1a:30:41:87:fd:51:a4:1c:0b:14:58:a7:12: 80:5f:cd:27:2e:c8:63:ab:2b:37:1e:45:3d:7a:13: 52:22:30:43:9b:f2:06:9e:93:dc:4a:9d:87:98:fd: 2a:c2:10:4f:ef:b1:14:51:56:83:a6:e2:80:d4:d1: 46:e1:fd:cc:49:d9:a5:d6:a3:9e:7b:2a:34:15:0d: 32:21:04:3b:91:fb:bf:99:8e:d7:b0:ea:07:bf:70: 12:f7:c0:a5:dc:e8:be:93:da:84:74:60:0d:c9:0f: 00:23:87:3b:93:74:dc:fd:cd:69:cb:81:6f:25:c9: df:9a:6c:38:a3:2b:42:51:77:0c:74:15:8a:1f:ed: bc:93:08:2a:47:6e:ef:bf:51:24:f3:f7:05:c3:66: 9d:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:88:1B:E9:6E:62:7F:D3:FF:DF:FE:B6:61:55:CD:9E:9A:9B:0F:11 X509v3 Authority Key Identifier: keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/s4gb6W5if9P_3_62YVXNnpqbDxE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 120.123.0.0/18 Signature Algorithm: sha256WithRSAEncryption 9e:ac:34:ba:89:41:39:a0:9f:b7:5c:a2:33:30:97:54:f5:14: ea:6f:d1:ea:06:dd:2d:dd:a3:bc:23:d2:e6:cf:d5:59:33:23: 62:6e:f5:12:ff:27:d8:b1:87:e7:14:99:e8:df:1c:02:42:c2: 17:27:96:67:b1:06:4b:37:dd:23:42:f3:c9:8a:a2:54:02:8e: 4c:da:6d:74:bc:34:b3:3b:c0:2e:af:90:e1:56:9f:a9:b5:b8: f6:a6:f8:28:3e:e4:1d:8c:5e:9d:e5:c8:4f:0e:53:85:a5:d0: 9f:b9:dc:37:00:b0:b7:f6:25:ac:bc:63:f0:eb:e9:ca:2b:46: 2b:24:76:24:5c:0c:89:66:00:4e:98:60:31:66:1d:84:d7:e6: 47:9c:39:ac:bb:22:59:a3:cd:48:61:78:34:6c:45:9c:bf:41: 8f:9b:9e:80:a5:d1:74:8f:4d:89:8f:00:cd:0d:c5:8f:f1:f7: 9b:77:6f:d1:1e:0c:fe:bc:86:d6:28:49:38:41:43:86:7c:00: cc:9f:42:04:b0:98:d9:f1:31:85:b7:2b:22:e9:2b:04:9a:38: 3b:9d:28:7b:c3:ae:33:2b:65:7f:df:91:d5:54:37:6c:1e:80: b2:dc:dc:28:aa:94:b2:96:be:98:b3:f3:22:e9:a8:e6:52:f8: e2:37:ba:ca -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEHMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNTA4MjIw ODU1MjlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEIzODgxQkU5NkU2MjdG RDNGRkRGRkVCNjYxNTVDRDlFOUE5QjBGMTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRz4cvmzgHfHJQstYjOvxVjEbN6qJvm7JG+0++gJfAXnolaGZW i31SHTeAIoQGf8LKzluRKbzvL6QPT6GKgGCjEACBftykaeD5xfVkxM1mA/JBtNSH mgSNjauMlvyPSTav+Wq8vJg1+uGFGjBBh/1RpBwLFFinEoBfzScuyGOrKzceRT16 E1IiMEOb8gaek9xKnYeY/SrCEE/vsRRRVoOm4oDU0Ubh/cxJ2aXWo557KjQVDTIh BDuR+7+Zjtew6ge/cBL3wKXc6L6T2oR0YA3JDwAjhzuTdNz9zWnLgW8lyd+abDij K0JRdwx0FYof7byTCCpHbu+/USTz9wXDZp2dAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUs4gb6W5if9P/3/62YVXNnpqbDxEwHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF /peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9zNGdiNlc1aWY5UF8zXzYyWVZY Tm5wcWJEeEUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGeHsA MA0GCSqGSIb3DQEBCwUAA4IBAQCerDS6iUE5oJ+3XKIzMJdU9RTqb9HqBt0t3aO8 I9Lmz9VZMyNibvUS/yfYsYfnFJno3xwCQsIXJ5ZnsQZLN90jQvPJiqJUAo5M2m10 vDSzO8Aur5DhVp+ptbj2pvgoPuQdjF6d5chPDlOFpdCfudw3ALC39iWsvGPw6+nK K0YrJHYkXAyJZgBOmGAxZh2E1+ZHnDmsuyJZo81IYXg0bEWcv0GPm56ApdF0j02J jwDNDcWP8febd2/RHgz+vIbWKEk4QUOGfADMn0IEsJjZ8TGFtysi6SsEmjg7nSh7 w64zK2V/35HVVDdsHoCy3NwoqpSylr6Ys/Mi6ajmUvjiN7rK -----END CERTIFICATE-----Generated at Sun Aug 24 13:42:13 2025 by rpki-client