$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/pePjoLg8fASsPdpaASipK35XmjM.roa File: pePjoLg8fASsPdpaASipK35XmjM.roa (raw, json) Hash identifier: 8h1l/GfP5gxnbkcTvV2FayKulM6DNoKQW/2YQlAtrQs= Subject key identifier: A5:E3:E3:A0:B8:3C:7C:04:AC:3D:DA:5A:01:28:A9:2B:7E:57:9A:33 Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0FF3 Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/pePjoLg8fASsPdpaASipK35XmjM.roa Signing time: Fri 22 Aug 2025 08:55:46 +0000 ROA not before: Fri 22 Aug 2025 08:55:46 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9916 IP address blocks: 140.129.51.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 16:27:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4083 (0xff3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 22 08:55:46 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=A5E3E3A0B83C7C04AC3DDA5A0128A92B7E579A33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:3a:6f:04:81:b9:ce:85:b7:d5:25:aa:cd:e8: 5a:cf:e7:fb:08:95:99:28:22:78:3b:64:71:f4:f3: 48:1d:32:70:06:cf:ea:f6:7f:95:72:a2:03:a5:3f: 08:77:ca:6a:c6:91:fd:e3:66:63:83:45:22:c5:5e: bc:d0:6e:6d:2f:80:ed:ec:54:6b:a3:9d:ca:cf:cf: 29:06:d0:e0:ac:10:0c:5b:ff:08:6a:35:f0:80:85: a6:b2:ee:10:d6:1a:56:67:d3:98:62:3b:8f:55:65: 7d:6e:db:27:07:c9:91:02:f6:cb:bf:62:e0:22:fc: b8:35:4c:94:16:cc:9c:59:b9:c0:14:b6:26:ec:28: d6:67:d1:47:ba:31:01:6a:74:02:0b:43:dd:8c:29: d0:97:c4:51:c2:9c:b9:d7:10:23:b7:7e:a4:b6:11: fa:84:cb:69:bb:10:84:68:16:22:4a:00:d1:4d:7e: 07:af:30:e5:e4:2d:d5:11:d0:4f:63:22:1c:d0:ce: 67:9f:d3:a8:7f:09:b9:97:ab:e9:86:5d:1b:e6:d0: 67:ee:bc:a8:da:8a:11:01:86:18:d2:e8:87:db:cf: 9e:af:16:7f:9b:81:65:c4:b0:13:b7:cb:cb:cc:87: 83:df:01:46:dc:70:ea:f3:ea:83:bc:03:c9:6f:72: 2d:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:E3:E3:A0:B8:3C:7C:04:AC:3D:DA:5A:01:28:A9:2B:7E:57:9A:33 X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/pePjoLg8fASsPdpaASipK35XmjM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 140.129.51.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:ec:2c:6a:90:e8:0e:25:c1:f3:0e:48:70:f1:09:ae:cd:f3: 34:95:61:3c:29:77:27:bf:db:ea:8d:c3:ec:15:11:3b:f4:91: 58:11:20:b0:62:fb:5d:58:a6:a9:ba:93:81:4b:a8:69:d5:0b: da:1f:10:99:99:3e:7e:f8:5a:0e:ba:fb:f1:3c:2d:cf:77:1b: 3e:7d:c8:2d:3b:d7:b0:78:9c:d6:de:3b:ac:0a:ee:96:9c:76: 33:19:c8:8c:2d:ea:85:4a:34:ee:29:77:61:b0:ea:fa:56:b8: 1d:ee:d6:43:fc:b5:07:a5:c8:85:cf:ce:37:49:ab:a9:2d:32: dc:14:4d:36:e2:34:2a:a0:bc:bb:a7:4f:91:68:13:b2:e8:00: a4:14:aa:db:97:24:75:b1:43:75:9f:95:ef:9b:ec:85:80:d2: 3e:5a:b6:b9:67:38:83:aa:d4:f4:1c:15:3b:b5:c6:e7:ee:96: 08:d0:8d:54:88:44:76:50:e3:ae:fc:59:ef:e3:d7:87:1c:06: 18:b9:97:2d:41:40:62:0d:1d:60:94:57:de:1f:5d:17:f6:45: 2b:99:9d:bb:78:f3:89:7c:3a:ba:7d:52:70:f4:ab:04:d4:93: 6c:a8:15:ff:92:61:9e:d6:05:c2:e6:b6:fe:ad:b1:5a:c7:41: 6e:b7:b4:cf -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICD/MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTA4MjIw ODU1NDZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEE1RTNFM0EwQjgzQzdD MDRBQzNEREE1QTAxMjhBOTJCN0U1NzlBMzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1Om8EgbnOhbfVJarN6FrP5/sIlZkoIng7ZHH080gdMnAGz+r2 f5VyogOlPwh3ymrGkf3jZmODRSLFXrzQbm0vgO3sVGujncrPzykG0OCsEAxb/whq NfCAhaay7hDWGlZn05hiO49VZX1u2ycHyZEC9su/YuAi/Lg1TJQWzJxZucAUtibs KNZn0Ue6MQFqdAILQ92MKdCXxFHCnLnXECO3fqS2EfqEy2m7EIRoFiJKANFNfgev MOXkLdUR0E9jIhzQzmef06h/CbmXq+mGXRvm0GfuvKjaihEBhhjS6Ifbz56vFn+b gWXEsBO3y8vMh4PfAUbccOrz6oO8A8lvci3JAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUpePjoLg8fASsPdpaASipK35XmjMwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9wZVBqb0xnOGZBU3NQZHBhQVNp cEszNVhtak0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAjIEz MA0GCSqGSIb3DQEBCwUAA4IBAQCN7CxqkOgOJcHzDkhw8QmuzfM0lWE8KXcnv9vq jcPsFRE79JFYESCwYvtdWKapupOBS6hp1QvaHxCZmT5++FoOuvvxPC3Pdxs+fcgt O9eweJzW3jusCu6WnHYzGciMLeqFSjTuKXdhsOr6Vrgd7tZD/LUHpciFz843Saup LTLcFE024jQqoLy7p0+RaBOy6ACkFKrblyR1sUN1n5Xvm+yFgNI+Wra5ZziDqtT0 HBU7tcbn7pYI0I1UiER2UOOu/Fnv49eHHAYYuZctQUBiDR1glFfeH10X9kUrmZ27 ePOJfDq6fVJw9KsE1JNsqBX/kmGe1gXC5rb+rbFax0Fut7TP -----END CERTIFICATE-----Generated at Tue Oct 28 16:05:42 2025 by rpki-client