$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/tlqCQ5KxB-mpvox50MiGbeYTdv0.roa File: tlqCQ5KxB-mpvox50MiGbeYTdv0.roa (raw, json) Hash identifier: ejbkUYBgRIPIiw+aGJylEV7qQK3PhCSlLHTZO4V+aQ4= Subject key identifier: B6:5A:82:43:92:B1:07:E9:A9:BE:8C:79:D0:C8:86:6D:E6:13:76:FD Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0FDB Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/tlqCQ5KxB-mpvox50MiGbeYTdv0.roa Signing time: Fri 22 Aug 2025 08:55:41 +0000 ROA not before: Fri 22 Aug 2025 08:55:41 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18420 IP address blocks: 140.115.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4059 (0xfdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 22 08:55:41 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B65A824392B107E9A9BE8C79D0C8866DE61376FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:25:13:f0:fc:10:88:8c:0a:64:4c:fe:4e:04: ef:e4:64:48:c5:57:25:aa:3c:8d:1f:59:3d:92:3f: a8:bf:bf:6c:9e:27:5e:ac:9a:f1:ac:ef:a7:5d:d6: a0:cd:83:45:fb:26:72:74:7f:6c:dd:31:38:4e:67: 2c:91:fc:d0:7d:c4:75:fe:2e:fd:fa:ba:1f:32:ae: cd:5e:62:70:6b:e9:4b:4b:f2:e9:29:fb:3c:45:18: 78:9d:db:ad:31:46:7c:75:09:0c:4e:74:a3:d1:cf: bb:70:77:f9:c2:b0:93:53:87:94:5e:2f:50:a6:d1: 31:be:54:a6:07:e0:e5:6d:98:a9:0f:c2:d8:6c:58: b6:e4:6d:78:ca:ce:2c:69:ce:f0:0b:50:f1:b2:42: 62:ed:58:a1:43:c4:23:6b:b2:b2:e3:ec:d5:bd:87: d2:e5:b0:79:5b:3e:91:94:de:4d:d7:33:0d:7f:4f: 1e:69:33:bb:7e:22:05:06:49:07:14:4a:1b:cb:f0: c6:93:21:9a:12:b3:18:79:f6:64:38:ef:23:5f:c0: 5a:47:df:e2:25:9b:18:a2:2b:55:6a:53:25:d5:bc: 0d:ff:43:be:b1:90:07:8c:0e:4b:dc:c9:32:32:5b: 1b:f2:2c:f1:4c:44:36:66:99:70:99:30:e6:ca:fe: 16:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:5A:82:43:92:B1:07:E9:A9:BE:8C:79:D0:C8:86:6D:E6:13:76:FD X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/tlqCQ5KxB-mpvox50MiGbeYTdv0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 140.115.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9c:b1:a4:99:72:e6:56:4a:1f:5d:4f:94:b8:8f:e9:5f:8e:14: 0d:71:9c:9d:9c:2b:b0:58:dd:e4:33:c4:19:8d:3c:80:05:49: 9f:3a:96:ad:4a:9a:0b:d2:4f:e8:55:92:f5:2f:1e:97:2b:60: d1:2c:32:e3:67:76:a5:a3:97:1b:63:a1:30:b4:aa:b3:46:17: 98:45:ac:46:8e:78:d8:99:c0:a3:ab:5b:e5:3c:35:01:66:4a: e8:2e:b8:d9:40:07:24:af:a5:4e:61:cc:5b:4f:7c:49:a6:e3: 55:8a:27:1f:04:fb:c1:76:df:9a:76:45:86:f3:4e:a9:ef:22: 2f:34:a4:f1:75:87:4c:b6:08:23:63:58:09:8d:33:59:50:4d: 22:16:60:49:94:d7:f5:cf:18:40:64:44:82:e9:b4:30:18:b2: bf:c8:03:f3:de:ed:73:e0:2a:86:38:a6:34:38:4c:f1:3a:ae: 0e:85:71:53:b8:6e:a9:75:ba:60:26:f8:9d:f2:e5:00:13:e8: 34:42:92:86:a6:56:b6:fb:28:7d:4b:6d:d5:6c:96:4d:69:f5: 7c:77:94:c9:f3:d3:23:7d:b9:a9:27:d2:ba:9c:0c:02:cd:b4: 68:57:5f:ba:84:e7:65:5c:70:fa:07:72:97:25:d5:8f:ba:e0: 0f:f4:ba:4e -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICD9swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTA4MjIw ODU1NDFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEI2NUE4MjQzOTJCMTA3 RTlBOUJFOEM3OUQwQzg4NjZERTYxMzc2RkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDhJRPw/BCIjApkTP5OBO/kZEjFVyWqPI0fWT2SP6i/v2yeJ16s mvGs76dd1qDNg0X7JnJ0f2zdMThOZyyR/NB9xHX+Lv36uh8yrs1eYnBr6UtL8ukp +zxFGHid260xRnx1CQxOdKPRz7twd/nCsJNTh5ReL1Cm0TG+VKYH4OVtmKkPwths WLbkbXjKzixpzvALUPGyQmLtWKFDxCNrsrLj7NW9h9LlsHlbPpGU3k3XMw1/Tx5p M7t+IgUGSQcUShvL8MaTIZoSsxh59mQ47yNfwFpH3+IlmxiiK1VqUyXVvA3/Q76x kAeMDkvcyTIyWxvyLPFMRDZmmXCZMObK/hbnAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUtlqCQ5KxB+mpvox50MiGbeYTdv0wHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC90bHFDUTVLeEItbXB2b3g1ME1p R2JlWVRkdjAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjHMw DQYJKoZIhvcNAQELBQADggEBAJyxpJly5lZKH11PlLiP6V+OFA1xnJ2cK7BY3eQz xBmNPIAFSZ86lq1KmgvST+hVkvUvHpcrYNEsMuNndqWjlxtjoTC0qrNGF5hFrEaO eNiZwKOrW+U8NQFmSuguuNlABySvpU5hzFtPfEmm41WKJx8E+8F235p2RYbzTqnv Ii80pPF1h0y2CCNjWAmNM1lQTSIWYEmU1/XPGEBkRILptDAYsr/IA/Pe7XPgKoY4 pjQ4TPE6rg6FcVO4bql1umAm+J3y5QAT6DRCkoamVrb7KH1LbdVslk1p9Xx3lMnz 0yN9uakn0rqcDALNtGhXX7qE52VccPoHcpcl1Y+64A/0uk4= -----END CERTIFICATE-----Generated at Sun Aug 24 05:32:24 2025 by rpki-client