$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/mJBqscIg4eG8Tbz9Q0XWgAJHXNY.roa File: mJBqscIg4eG8Tbz9Q0XWgAJHXNY.roa (raw, json) Hash identifier: EA//zl5leG6otj907ssyAICblIvwjou/tnOlIfpFTRk= Subject key identifier: 98:90:6A:B1:C2:20:E1:E1:BC:4D:BC:FD:43:45:D6:80:02:47:5C:D6 Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0FFF Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/mJBqscIg4eG8Tbz9Q0XWgAJHXNY.roa Signing time: Fri 22 Aug 2025 08:55:49 +0000 ROA not before: Fri 22 Aug 2025 08:55:49 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17713 IP address blocks: 140.117.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 20:57:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4095 (0xfff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 22 08:55:49 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=98906AB1C220E1E1BC4DBCFD4345D68002475CD6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:f5:b9:f8:52:e9:e1:c7:75:8d:80:b2:2d:e9: 1d:fa:eb:b1:19:14:88:0c:90:a0:4a:09:32:7f:2c: de:aa:57:25:71:e7:72:0f:87:f3:df:fd:b3:d4:80: 0c:e6:3d:e0:a1:43:cb:1b:8a:d1:8e:33:eb:ef:78: 36:07:c8:50:be:19:c6:c3:de:6b:7b:bc:1b:bb:f8: 07:36:1e:cb:13:30:40:39:d5:32:e8:f2:00:52:59: 36:7d:75:2e:67:0c:54:4f:ca:ab:24:22:d3:96:f2: 54:05:73:c1:f3:8b:90:ae:33:14:e3:2c:4a:43:6f: 01:42:1f:16:42:7f:26:1a:f7:b9:fe:f0:95:6d:ff: 6a:47:c0:e1:b1:4f:19:25:b5:d4:13:b1:83:94:64: 00:d7:aa:af:fb:93:a0:f3:dd:a1:d2:46:c4:e0:c7: 2f:61:20:9a:91:ac:51:bf:dc:c2:f3:01:ab:16:53: 90:f3:06:2a:87:73:96:5e:e5:b0:3b:58:5c:7f:6e: f2:7e:58:74:e5:9e:c2:0d:99:c3:8b:fd:45:a2:b8: 16:e7:ba:23:24:51:37:ca:69:cb:4e:05:e5:7e:2b: 02:48:85:b2:ed:f9:f2:f3:09:67:72:72:3a:d3:db: 13:67:1a:ec:9d:83:37:85:9b:68:2f:17:15:b3:12: b4:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:90:6A:B1:C2:20:E1:E1:BC:4D:BC:FD:43:45:D6:80:02:47:5C:D6 X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/mJBqscIg4eG8Tbz9Q0XWgAJHXNY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 140.117.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8d:6c:c5:50:2c:ea:a3:bc:8b:d9:af:20:d8:32:49:78:92:a3: c4:d1:48:96:91:63:db:f7:3c:cd:02:6e:cb:af:9b:0b:e1:20: 0a:6b:66:eb:0d:44:2b:d9:6d:01:34:a5:14:c3:0d:23:2a:73: 0c:a1:c5:7c:17:5c:b5:a2:4a:fa:ad:6b:ea:76:6a:5b:be:95: 56:76:a1:e5:09:63:ca:87:a4:b2:ab:02:38:45:7c:28:14:cd: 44:e9:ab:fc:89:d9:9c:46:83:30:8b:99:de:59:99:c7:51:26: 7f:89:4a:18:e2:b5:fe:45:61:ac:64:52:3a:4f:64:61:10:8b: de:bf:9b:97:c2:59:6b:0f:9c:1d:80:24:9e:e7:97:00:ab:aa: 83:1c:cb:3b:a4:95:58:d8:ee:e8:4d:5d:2d:55:eb:16:cb:ba: ef:1f:25:c8:93:63:09:17:4a:29:92:bc:3a:d3:34:5b:07:b6: f0:d9:11:23:1a:5f:c6:b8:5f:be:07:29:89:46:b7:bd:cd:12: 3a:77:0d:0d:10:f9:38:d0:8b:99:43:11:53:9a:61:79:cf:63: 87:99:6d:9d:7e:8a:42:6c:72:cd:a3:32:31:01:e1:f2:00:e1: 76:65:6e:43:8b:da:57:6e:b4:f1:56:90:3e:81:6e:18:ff:27: cd:82:67:98 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICD/8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTA4MjIw ODU1NDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDk4OTA2QUIxQzIyMEUx RTFCQzREQkNGRDQzNDVENjgwMDI0NzVDRDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD89bn4Uunhx3WNgLIt6R3667EZFIgMkKBKCTJ/LN6qVyVx53IP h/Pf/bPUgAzmPeChQ8sbitGOM+vveDYHyFC+GcbD3mt7vBu7+Ac2HssTMEA51TLo 8gBSWTZ9dS5nDFRPyqskItOW8lQFc8Hzi5CuMxTjLEpDbwFCHxZCfyYa97n+8JVt /2pHwOGxTxkltdQTsYOUZADXqq/7k6Dz3aHSRsTgxy9hIJqRrFG/3MLzAasWU5Dz BiqHc5Ze5bA7WFx/bvJ+WHTlnsINmcOL/UWiuBbnuiMkUTfKactOBeV+KwJIhbLt +fLzCWdycjrT2xNnGuydgzeFm2gvFxWzErSvAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUmJBqscIg4eG8Tbz9Q0XWgAJHXNYwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9tSkJxc2NJZzRlRzhUYno5UTBY V2dBSkhYTlkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjHUw DQYJKoZIhvcNAQELBQADggEBAI1sxVAs6qO8i9mvINgySXiSo8TRSJaRY9v3PM0C bsuvmwvhIAprZusNRCvZbQE0pRTDDSMqcwyhxXwXXLWiSvqta+p2alu+lVZ2oeUJ Y8qHpLKrAjhFfCgUzUTpq/yJ2ZxGgzCLmd5ZmcdRJn+JShjitf5FYaxkUjpPZGEQ i96/m5fCWWsPnB2AJJ7nlwCrqoMcyzuklVjY7uhNXS1V6xbLuu8fJciTYwkXSimS vDrTNFsHtvDZESMaX8a4X74HKYlGt73NEjp3DQ0Q+TjQi5lDEVOaYXnPY4eZbZ1+ ikJscs2jMjEB4fIA4XZlbkOL2ldutPFWkD6Bbhj/J82CZ5g= -----END CERTIFICATE-----Generated at Tue Oct 28 16:05:43 2025 by rpki-client