$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/nkbmGfe7JcJRmB3RWPPtmVIxVTg.roa File: nkbmGfe7JcJRmB3RWPPtmVIxVTg.roa (raw, json) Hash identifier: YuChHZZqzXgkLcfSkmIaAgxllyIATVQ40+DC45Hg+Y4= Subject key identifier: 9E:46:E6:19:F7:BB:25:C2:51:98:1D:D1:58:F3:ED:99:52:31:55:38 Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0FED Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/nkbmGfe7JcJRmB3RWPPtmVIxVTg.roa Signing time: Fri 22 Aug 2025 08:55:45 +0000 ROA not before: Fri 22 Aug 2025 08:55:45 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17716 IP address blocks: 192.192.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 20:57:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4077 (0xfed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 22 08:55:45 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=9E46E619F7BB25C251981DD158F3ED9952315538 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:c7:f5:17:5e:b8:7a:85:3f:4d:20:1e:d1:cf: 56:5a:f4:56:78:db:e2:7c:cd:4e:13:f7:a3:06:e3: 33:f1:f1:fd:0f:79:74:cc:91:06:a6:25:19:9d:22: ae:76:1a:e1:bc:55:11:a2:22:f4:80:66:92:1c:82: 0a:f1:34:0d:96:9c:5f:e5:1f:bf:47:24:78:4f:0d: 1c:32:e6:f8:32:dc:37:91:24:49:fb:cc:bf:8b:fb: a9:2e:2e:0b:2a:b9:ff:dd:11:19:db:36:9c:40:b9: ff:2a:61:91:54:99:c7:c7:2c:6d:60:49:f5:6c:ba: 0c:d9:ee:4a:fa:30:1e:0b:b4:cf:d0:e1:21:5c:51: 99:49:63:cd:d5:88:c4:d0:8c:cb:58:9f:53:26:cc: 3c:c7:b2:dd:87:9f:3e:dc:f3:99:dd:9b:f6:cc:c5: 54:a2:f6:4d:a0:61:d5:2a:6d:88:83:19:bd:5b:a9: a4:f0:c4:0f:f4:7a:53:fd:e1:ea:8f:de:12:cc:26: 78:cd:0a:f6:9f:09:8e:fc:39:43:6e:67:de:f0:ab: 04:2b:25:7c:6e:22:48:1f:74:94:0f:48:fb:c3:62: ba:37:2d:21:aa:2e:90:95:95:78:f8:0f:98:e0:e3: 21:5e:82:b2:11:e9:22:74:12:69:59:0e:17:04:5b: 9c:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:46:E6:19:F7:BB:25:C2:51:98:1D:D1:58:F3:ED:99:52:31:55:38 X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/nkbmGfe7JcJRmB3RWPPtmVIxVTg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.192.1.0/24 Signature Algorithm: sha256WithRSAEncryption 34:00:70:47:d7:ac:d7:43:1e:67:c4:61:01:f7:63:0f:da:8e: 33:c8:e0:56:ef:61:da:2c:b1:a6:8c:a8:ae:88:e2:13:2b:1b: c9:16:d4:0c:57:44:92:9e:fa:f9:c2:fd:1c:84:96:05:bd:12: ed:14:e3:ac:af:db:b5:cd:32:14:69:72:ec:f2:5d:73:d2:f0: a7:7f:73:9d:ff:82:59:99:5f:a7:90:0d:2b:0b:21:ef:01:04: f4:13:14:9d:33:9e:db:1a:1f:b0:13:51:64:68:d2:0b:43:ef: d3:32:5d:b8:79:91:41:b9:13:19:0d:2f:1f:d9:e1:89:9c:55: f8:8f:56:3e:85:91:11:1a:5e:b4:51:60:51:9e:f4:70:29:37: ff:48:09:69:00:31:b6:14:52:72:84:ef:5c:e3:ae:e5:ad:5c: 64:ea:15:b4:8c:84:ad:ea:16:68:1a:73:42:5c:69:1f:f5:50: ef:e0:f9:2e:99:35:c8:6e:84:ac:31:f6:85:a4:40:e4:c9:eb: 82:0b:dd:09:89:c2:c4:a6:25:d2:49:fc:45:50:25:13:52:20: 6d:14:60:80:98:1c:03:4e:97:8f:35:77:6c:4a:3f:99:ea:78: 32:6d:fe:f2:a6:ad:45:db:59:0c:fc:68:2f:46:26:0e:d0:a4: 13:f4:34:df -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICD+0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTA4MjIw ODU1NDVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDlFNDZFNjE5RjdCQjI1 QzI1MTk4MUREMTU4RjNFRDk5NTIzMTU1MzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCbx/UXXrh6hT9NIB7Rz1Za9FZ42+J8zU4T96MG4zPx8f0PeXTM kQamJRmdIq52GuG8VRGiIvSAZpIcggrxNA2WnF/lH79HJHhPDRwy5vgy3DeRJEn7 zL+L+6kuLgsquf/dERnbNpxAuf8qYZFUmcfHLG1gSfVsugzZ7kr6MB4LtM/Q4SFc UZlJY83ViMTQjMtYn1MmzDzHst2Hnz7c85ndm/bMxVSi9k2gYdUqbYiDGb1bqaTw xA/0elP94eqP3hLMJnjNCvafCY78OUNuZ97wqwQrJXxuIkgfdJQPSPvDYro3LSGq LpCVlXj4D5jg4yFegrIR6SJ0EmlZDhcEW5xvAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUnkbmGfe7JcJRmB3RWPPtmVIxVTgwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9ua2JtR2ZlN0pjSlJtQjNSV1BQ dG1WSXhWVGcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwMAB MA0GCSqGSIb3DQEBCwUAA4IBAQA0AHBH16zXQx5nxGEB92MP2o4zyOBW72HaLLGm jKiuiOITKxvJFtQMV0SSnvr5wv0chJYFvRLtFOOsr9u1zTIUaXLs8l1z0vCnf3Od /4JZmV+nkA0rCyHvAQT0ExSdM57bGh+wE1FkaNILQ+/TMl24eZFBuRMZDS8f2eGJ nFX4j1Y+hZERGl60UWBRnvRwKTf/SAlpADG2FFJyhO9c467lrVxk6hW0jISt6hZo GnNCXGkf9VDv4PkumTXIboSsMfaFpEDkyeuCC90JicLEpiXSSfxFUCUTUiBtFGCA mBwDTpePNXdsSj+Z6ngybf7ypq1F21kM/GgvRiYO0KQT9DTf -----END CERTIFICATE-----Generated at Tue Oct 28 16:05:42 2025 by rpki-client