$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VOCOM/4MBAOShuHXpmJePHgzpPU3rTwnc.roa File: 4MBAOShuHXpmJePHgzpPU3rTwnc.roa (raw, json) Hash identifier: AtQt5UL1V/p53eOUD7EGVGDRw2FSWFLZWLvQK5NAm6Q= Subject key identifier: E0:C0:40:39:28:6E:1D:7A:66:25:E3:C7:83:3A:4F:53:7A:D3:C2:77 Certificate issuer: /CN=9E847108EBA0B550BC020FD9B1DC6DEB29E0DBEF Certificate serial: 02B4 Authority key identifier: 9E:84:71:08:EB:A0:B5:50:BC:02:0F:D9:B1:DC:6D:EB:29:E0:DB:EF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/noRxCOugtVC8Ag_Zsdxt6yng2-8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VOCOM/4MBAOShuHXpmJePHgzpPU3rTwnc.roa Signing time: Fri 22 Aug 2025 08:56:31 +0000 ROA not before: Fri 22 Aug 2025 08:56:31 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 63897 IP address blocks: 103.178.36.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/VOCOM/noRxCOugtVC8Ag_Zsdxt6yng2-8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/VOCOM/noRxCOugtVC8Ag_Zsdxt6yng2-8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/noRxCOugtVC8Ag_Zsdxt6yng2-8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 692 (0x2b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E847108EBA0B550BC020FD9B1DC6DEB29E0DBEF Validity Not Before: Aug 22 08:56:31 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E0C04039286E1D7A6625E3C7833A4F537AD3C277 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:2e:c8:4d:b7:a2:08:bd:b8:8d:10:91:a5:d8: f7:35:3d:92:93:22:1e:58:4e:2e:40:e5:45:94:d8: 44:ee:4e:ff:46:6b:d8:f1:19:2e:0d:e4:e0:29:18: a4:07:96:6a:cd:cc:8b:c4:a9:53:6c:13:8e:d1:81: 0f:32:8f:6e:48:86:7f:c4:62:cc:f1:df:84:f5:97: 66:8f:cf:e5:47:7c:fc:cc:d7:ea:a2:f6:ec:24:ae: d4:3b:8c:5c:04:7e:f1:d4:e4:c3:99:2e:ac:26:96: 84:00:68:67:4b:52:8a:8b:3f:cf:a3:42:78:ea:a6: 0a:63:45:7b:40:31:50:6b:3a:96:92:20:7b:2a:de: 1a:17:4d:ea:4e:89:f5:9c:b0:1d:f4:32:36:e1:ea: e3:4e:f3:9e:3a:a0:7a:40:cb:42:92:be:68:04:38: 65:c5:5c:53:a1:ba:7c:45:a4:ba:d5:70:37:14:c0: f1:e5:d0:22:9e:57:3b:b3:8e:bd:2b:52:fb:5a:e0: d4:d9:af:9b:e7:d7:14:38:bd:a2:a9:d6:35:15:6c: 1d:db:b4:43:0e:7a:2f:a1:36:c0:6c:5f:cb:11:29: 3a:91:02:9a:84:a8:a0:5f:a7:45:23:b7:87:04:29: 44:c6:52:88:a8:4f:29:55:46:fc:4e:a1:8f:ab:b3: 81:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:C0:40:39:28:6E:1D:7A:66:25:E3:C7:83:3A:4F:53:7A:D3:C2:77 X509v3 Authority Key Identifier: keyid:9E:84:71:08:EB:A0:B5:50:BC:02:0F:D9:B1:DC:6D:EB:29:E0:DB:EF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VOCOM/noRxCOugtVC8Ag_Zsdxt6yng2-8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/noRxCOugtVC8Ag_Zsdxt6yng2-8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VOCOM/4MBAOShuHXpmJePHgzpPU3rTwnc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.178.36.0/23 Signature Algorithm: sha256WithRSAEncryption 4f:1f:ca:ed:95:34:be:9e:2b:20:57:3f:e0:c7:4e:96:ba:be: 07:dc:f7:39:b8:f8:fa:0a:2d:f1:6c:27:51:07:9d:b1:75:88: 83:eb:a9:45:25:5e:38:0f:da:2a:d5:70:6c:c1:47:d3:25:3d: 21:13:e8:59:17:e5:f6:34:b6:ff:e5:10:d4:d9:1c:15:dd:df: b3:1a:4c:4c:1d:5b:89:79:1e:2c:97:0f:01:86:f4:2a:8b:0a: 5e:d9:de:26:1f:79:30:97:be:03:4d:70:45:ce:2c:5f:d0:11: 4e:2d:2f:53:10:4f:4d:06:cf:db:d6:4d:d7:a6:61:82:8e:08: b4:60:34:1e:f8:98:46:c2:51:55:5f:ea:0c:cb:5e:57:e7:39: f8:73:8c:6f:26:7b:e7:66:8a:4c:7a:9b:a7:53:60:e9:78:e5: fa:f8:dc:7d:04:dd:99:c5:fe:bd:de:dd:d1:82:d5:0c:2c:43: d8:a5:a5:cb:9f:a7:e5:dd:a4:6d:cc:35:c3:f6:2e:df:49:2f: 60:12:f4:c8:94:f1:a7:e4:bb:e4:7b:2c:dd:34:08:85:0e:6b: 7d:d0:92:1c:72:7a:53:27:48:51:44:25:02:8d:3e:20:59:d3: b8:eb:61:0d:f2:17:e6:8c:11:da:f9:22:ef:ba:e5:db:5b:60: 9e:f7:c1:10 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICArQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUU4 NDcxMDhFQkEwQjU1MEJDMDIwRkQ5QjFEQzZERUIyOUUwREJFRjAeFw0yNTA4MjIw ODU2MzFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEUwQzA0MDM5Mjg2RTFE N0E2NjI1RTNDNzgzM0E0RjUzN0FEM0MyNzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDwLshNt6IIvbiNEJGl2Pc1PZKTIh5YTi5A5UWU2ETuTv9Ga9jx GS4N5OApGKQHlmrNzIvEqVNsE47RgQ8yj25Ihn/EYszx34T1l2aPz+VHfPzM1+qi 9uwkrtQ7jFwEfvHU5MOZLqwmloQAaGdLUoqLP8+jQnjqpgpjRXtAMVBrOpaSIHsq 3hoXTepOifWcsB30Mjbh6uNO8546oHpAy0KSvmgEOGXFXFOhunxFpLrVcDcUwPHl 0CKeVzuzjr0rUvta4NTZr5vn1xQ4vaKp1jUVbB3btEMOei+hNsBsX8sRKTqRApqE qKBfp0Ujt4cEKUTGUoioTylVRvxOoY+rs4FdAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU4MBAOShuHXpmJePHgzpPU3rTwncwHwYDVR0jBBgwFoAUnoRxCOugtVC8Ag/Z sdxt6yng2+8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVk9DT00v bm9SeENPdWd0VkM4QWdfWnNkeHQ2eW5nMi04LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9ub1J4Q091Z3RWQzhBZ19ac2R4dDZ5bmcyLTguY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9WT0NPTS80TUJBT1NodUhYcG1KZVBIZ3pw UFUzclR3bmMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7Ik MA0GCSqGSIb3DQEBCwUAA4IBAQBPH8rtlTS+nisgVz/gx06Wur4H3Pc5uPj6Ci3x bCdRB52xdYiD66lFJV44D9oq1XBswUfTJT0hE+hZF+X2NLb/5RDU2RwV3d+zGkxM HVuJeR4slw8BhvQqiwpe2d4mH3kwl74DTXBFzixf0BFOLS9TEE9NBs/b1k3XpmGC jgi0YDQe+JhGwlFVX+oMy15X5zn4c4xvJnvnZopMepunU2DpeOX6+Nx9BN2Zxf69 3t3RgtUMLEPYpaXLn6fl3aRtzDXD9i7fSS9gEvTIlPGn5LvkeyzdNAiFDmt90JIc cnpTJ0hRRCUCjT4gWdO462EN8hfmjBHa+SLvuuXbW2Ce98EQ -----END CERTIFICATE-----Generated at Sun Aug 24 07:31:02 2025 by rpki-client