$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/nxFfjB1K5MPTczdIiRhHesvxW8I.roa File: nxFfjB1K5MPTczdIiRhHesvxW8I.roa (raw, json) Hash identifier: lBRba59AK6+Qclp9ru7eVzFNOgXhfEwn9FK6AUhtVDg= Subject key identifier: 9F:11:5F:8C:1D:4A:E4:C3:D3:73:37:48:89:18:47:7A:CB:F1:5B:C2 Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Certificate serial: 1085 Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/nxFfjB1K5MPTczdIiRhHesvxW8I.roa Signing time: Fri 22 Aug 2025 08:55:34 +0000 ROA not before: Fri 22 Aug 2025 08:55:34 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 1659 IP address blocks: 203.72.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 07:27:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4229 (0x1085) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Validity Not Before: Aug 22 08:55:34 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=9F115F8C1D4AE4C3D37337488918477ACBF15BC2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b8:c1:28:21:79:8a:4d:2d:d3:88:e7:78:1a: cc:8c:82:49:b2:ea:37:fd:3b:35:5c:a6:7c:dd:aa: b8:31:21:53:71:7b:47:d1:8e:f4:85:80:9a:61:e2: d9:ee:b7:cc:6b:82:ab:c4:27:70:b5:75:fa:46:72: fc:f1:81:a4:88:56:7d:48:df:cf:57:33:9c:7e:d0: 5e:08:1c:49:fc:22:11:cc:b4:60:a6:df:f5:9d:74: a5:94:62:6f:20:a5:a5:34:aa:1c:ae:b6:66:df:ef: 5b:b1:10:84:a7:53:27:f3:df:06:a6:bf:e7:77:ec: cc:32:66:ac:d6:5b:fe:09:d7:01:f3:5c:71:85:22: 2e:67:bf:e7:38:ed:77:fd:22:98:a0:d5:6b:47:a3: 5e:8e:f3:36:e4:87:96:c0:da:8e:f1:e5:db:e0:38: 38:a5:5d:15:e6:6a:09:c9:d4:08:e9:33:de:ec:72: 45:37:e4:93:87:1a:6b:d4:5b:8a:61:19:dd:09:eb: 74:af:7f:0d:40:c2:e7:0e:20:47:67:a0:30:56:91: d0:2f:96:4a:94:a4:36:74:5b:c2:17:8c:31:ac:3f: 51:a7:20:a6:81:8a:5a:cf:86:3d:75:3e:e5:2c:6c: 82:22:cf:4f:e6:c6:d8:72:7d:0d:83:85:c8:4d:43: 30:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:11:5F:8C:1D:4A:E4:C3:D3:73:37:48:89:18:47:7A:CB:F1:5B:C2 X509v3 Authority Key Identifier: keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/nxFfjB1K5MPTczdIiRhHesvxW8I.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.72.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8e:40:34:4d:88:dc:98:c4:0a:7f:00:9f:1e:98:89:83:ed:5e: 38:d3:63:00:74:aa:7f:b4:63:bd:86:95:3a:11:62:a2:22:7b: 93:30:42:13:07:1a:66:31:72:da:00:bd:aa:85:4f:44:d3:42: 9d:ef:30:42:d3:a2:22:37:7c:af:63:89:5c:97:97:55:63:c8: 3b:c5:0c:3f:3e:71:3b:cd:a3:c4:f8:67:f0:8d:d5:3c:f2:d9: 73:6c:a3:c9:34:35:f1:e9:cc:17:4b:1d:83:28:93:a5:f0:ab: 04:55:e3:d2:7e:a1:d3:7c:16:14:0e:49:76:fa:2a:17:9b:4e: f7:fd:6b:b4:28:aa:d5:f5:da:2f:b0:6e:27:d6:5d:f7:d3:ab: e5:87:31:f1:93:6e:fa:e7:30:7f:8d:c2:d4:8e:84:3d:cd:1c: a4:1e:02:4a:db:c9:d0:7b:c0:cd:22:01:89:02:9c:6b:fd:18: da:99:56:e6:54:de:c6:95:2f:ab:60:77:79:92:81:10:c7:7e: de:2f:3c:0d:a4:dc:87:69:ea:dd:78:0b:81:bd:33:f1:f4:49: 15:3b:05:d7:31:aa:a2:f5:df:3e:5b:53:a5:58:5b:f5:c5:99: 83:a8:15:77:1c:b7:8a:fe:c5:fd:1f:24:5d:8f:b3:34:79:07: 2d:1a:7c:e9 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICEIUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNTA4MjIw ODU1MzRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDlGMTE1RjhDMUQ0QUU0 QzNEMzczMzc0ODg5MTg0NzdBQ0JGMTVCQzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFuMEoIXmKTS3TiOd4GsyMgkmy6jf9OzVcpnzdqrgxIVNxe0fR jvSFgJph4tnut8xrgqvEJ3C1dfpGcvzxgaSIVn1I389XM5x+0F4IHEn8IhHMtGCm 3/WddKWUYm8gpaU0qhyutmbf71uxEISnUyfz3wamv+d37MwyZqzWW/4J1wHzXHGF Ii5nv+c47Xf9Ipig1WtHo16O8zbkh5bA2o7x5dvgODilXRXmagnJ1AjpM97sckU3 5JOHGmvUW4phGd0J63Svfw1AwucOIEdnoDBWkdAvlkqUpDZ0W8IXjDGsP1GnIKaB ilrPhj11PuUsbIIiz0/mxthyfQ2DhchNQzADAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUnxFfjB1K5MPTczdIiRhHesvxW8IwHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF /peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9ueEZmakIxSzVNUFRjemRJaVJo SGVzdnhXOEkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAy0gw DQYJKoZIhvcNAQELBQADggEBAI5ANE2I3JjECn8Anx6YiYPtXjjTYwB0qn+0Y72G lToRYqIie5MwQhMHGmYxctoAvaqFT0TTQp3vMELToiI3fK9jiVyXl1VjyDvFDD8+ cTvNo8T4Z/CN1Tzy2XNso8k0NfHpzBdLHYMok6XwqwRV49J+odN8FhQOSXb6Kheb Tvf9a7QoqtX12i+wbifWXffTq+WHMfGTbvrnMH+NwtSOhD3NHKQeAkrbydB7wM0i AYkCnGv9GNqZVuZU3saVL6tgd3mSgRDHft4vPA2k3Idp6t14C4G9M/H0SRU7Bdcx qqL13z5bU6VYW/XFmYOoFXcct4r+xf0fJF2PszR5By0afOk= -----END CERTIFICATE-----Generated at Sat Oct 25 06:48:30 2025 by rpki-client