$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/v5hrfLrSHCMO6MWad5BghbKoMUE.roa File: v5hrfLrSHCMO6MWad5BghbKoMUE.roa (raw, json) Hash identifier: F5cAIUJIf2rsC6+pTZBgo8zEfsI1BO+e3WW1yx3bSTo= Subject key identifier: BF:98:6B:7C:BA:D2:1C:23:0E:E8:C5:9A:77:90:60:85:B2:A8:31:41 Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Certificate serial: 1093 Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/v5hrfLrSHCMO6MWad5BghbKoMUE.roa Signing time: Fri 22 Aug 2025 08:55:37 +0000 ROA not before: Fri 22 Aug 2025 08:55:37 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 1659 IP address blocks: 210.243.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4243 (0x1093) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Validity Not Before: Aug 22 08:55:37 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=BF986B7CBAD21C230EE8C59A77906085B2A83141 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:c0:2a:26:d4:3d:8a:12:ab:61:97:9a:f2:46: 71:a8:0d:2e:6a:e4:15:31:7e:c5:44:6a:31:9b:5f: 18:f0:a1:a5:b1:b6:78:0a:cb:81:32:36:c2:82:b7: ac:f7:ac:02:1b:4c:3c:62:07:79:e7:61:c8:62:05: cf:cb:4c:70:a7:8c:46:6f:ea:21:49:7c:38:de:87: fe:44:c0:9f:95:3a:34:03:0c:f9:2a:19:06:23:4d: bc:37:7b:6a:2e:08:41:c5:61:eb:d5:02:11:00:ae: 7c:b3:6d:72:35:56:e9:ab:c1:c8:ff:32:1b:4f:b8: 2f:ff:ec:16:94:8b:d8:5f:ae:1f:02:e8:7f:8e:c6: 70:84:06:24:a9:45:38:77:7e:90:6f:1c:74:72:77: af:ad:94:22:6a:43:5a:51:89:ef:fd:a5:05:fc:d4: 49:75:26:73:c0:17:87:59:bd:54:62:41:f6:b0:8f: 9a:ba:e7:67:a7:0b:4e:65:8b:2b:59:1c:52:ae:17: 5b:5b:b9:03:09:c0:bd:ad:61:4f:36:42:a6:0e:e9: 0d:5e:82:b7:a8:4a:7e:da:19:55:43:72:92:bd:25: 94:ae:61:0b:0d:0b:4e:bc:78:80:58:30:85:2c:74: c3:5e:9e:80:b6:ba:f4:35:68:29:30:91:e7:ca:7b: 65:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:98:6B:7C:BA:D2:1C:23:0E:E8:C5:9A:77:90:60:85:B2:A8:31:41 X509v3 Authority Key Identifier: keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/v5hrfLrSHCMO6MWad5BghbKoMUE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.243.0.0/18 Signature Algorithm: sha256WithRSAEncryption 36:44:8b:f3:49:13:6e:71:63:38:1f:3b:38:fd:90:6e:3d:38: 07:ad:78:6a:c7:e4:08:c1:93:31:04:39:61:46:89:2b:2b:bb: ea:70:bb:fb:a6:99:a5:52:86:14:59:63:90:c7:b5:5f:11:24: ca:57:53:38:d1:ea:a7:3b:4a:3e:01:57:ad:e4:af:be:c6:46: ca:10:ab:d9:db:c8:d0:78:de:85:1b:ae:ae:c9:30:6b:f5:9f: d6:b4:7b:10:1b:0e:98:a9:80:df:8f:3b:5e:1b:1c:1e:5a:96: 4c:02:a0:75:0b:1a:1e:e2:0b:74:03:1e:2f:f6:55:27:d2:a5: 9c:d6:48:86:a2:96:d4:bc:ac:be:55:08:a9:f4:c9:67:46:ca: a7:47:17:a0:f7:bc:f0:00:53:63:c8:99:20:30:36:28:ee:f0: 15:fa:68:76:55:81:ee:6f:99:82:78:cd:4d:81:2f:07:a2:1e: 19:92:bc:2f:1a:d2:4b:30:86:57:03:98:d2:b7:e6:48:c1:50: 96:1e:b9:94:ec:82:7c:01:76:a0:63:f0:c2:b4:67:74:58:f6: 79:62:66:12:15:52:84:c2:f9:bc:8c:1a:20:7e:5b:70:3b:ed: 7a:82:02:be:cc:ed:b7:a2:0f:ff:98:10:04:ce:72:6a:90:ad: 6c:a6:73:1d -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEJMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNTA4MjIw ODU1MzdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEJGOTg2QjdDQkFEMjFD MjMwRUU4QzU5QTc3OTA2MDg1QjJBODMxNDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCbwCom1D2KEqthl5ryRnGoDS5q5BUxfsVEajGbXxjwoaWxtngK y4EyNsKCt6z3rAIbTDxiB3nnYchiBc/LTHCnjEZv6iFJfDjeh/5EwJ+VOjQDDPkq GQYjTbw3e2ouCEHFYevVAhEArnyzbXI1Vumrwcj/MhtPuC//7BaUi9hfrh8C6H+O xnCEBiSpRTh3fpBvHHRyd6+tlCJqQ1pRie/9pQX81El1JnPAF4dZvVRiQfawj5q6 52enC05liytZHFKuF1tbuQMJwL2tYU82QqYO6Q1egreoSn7aGVVDcpK9JZSuYQsN C068eIBYMIUsdMNenoC2uvQ1aCkwkefKe2UzAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUv5hrfLrSHCMO6MWad5BghbKoMUEwHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF /peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC92NWhyZkxyU0hDTU82TVdhZDVC Z2hiS29NVUUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQG0vMA MA0GCSqGSIb3DQEBCwUAA4IBAQA2RIvzSRNucWM4Hzs4/ZBuPTgHrXhqx+QIwZMx BDlhRokrK7vqcLv7ppmlUoYUWWOQx7VfESTKV1M40eqnO0o+AVet5K++xkbKEKvZ 28jQeN6FG66uyTBr9Z/WtHsQGw6YqYDfjzteGxweWpZMAqB1Cxoe4gt0Ax4v9lUn 0qWc1kiGopbUvKy+VQip9MlnRsqnRxeg97zwAFNjyJkgMDYo7vAV+mh2VYHub5mC eM1NgS8Hoh4ZkrwvGtJLMIZXA5jSt+ZIwVCWHrmU7IJ8AXagY/DCtGd0WPZ5YmYS FVKEwvm8jBogfltwO+16ggK+zO23og//mBAEznJqkK1spnMd -----END CERTIFICATE-----Generated at Sun Aug 24 07:57:20 2025 by rpki-client