$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/XINANG/8ZfoAC-4HgxFDTXyH0MLSDprEEA.roa File: 8ZfoAC-4HgxFDTXyH0MLSDprEEA.roa (raw, json) Hash identifier: GRERY2F31SD59yR8KOMvu8ZXUUiDnbwi8R+yP0Fsrqg= Subject key identifier: F1:97:E8:00:2F:B8:1E:0C:45:0D:35:F2:1F:43:0B:48:3A:6B:10:40 Certificate issuer: /CN=032D33664F780B2C501EE623E7BBF1D226B26248 Certificate serial: 030E Authority key identifier: 03:2D:33:66:4F:78:0B:2C:50:1E:E6:23:E7:BB:F1:D2:26:B2:62:48 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Ay0zZk94CyxQHuYj57vx0iayYkg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XINANG/8ZfoAC-4HgxFDTXyH0MLSDprEEA.roa Signing time: Tue 21 Oct 2025 15:55:48 +0000 ROA not before: Tue 21 Oct 2025 15:55:48 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131642 IP address blocks: 160.191.168.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/XINANG/Ay0zZk94CyxQHuYj57vx0iayYkg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/XINANG/Ay0zZk94CyxQHuYj57vx0iayYkg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Ay0zZk94CyxQHuYj57vx0iayYkg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:27:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 782 (0x30e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=032D33664F780B2C501EE623E7BBF1D226B26248 Validity Not Before: Oct 21 15:55:48 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F197E8002FB81E0C450D35F21F430B483A6B1040 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:18:49:dd:f9:db:60:ed:94:53:fb:c8:92:32: a7:e9:95:8e:55:6a:a4:8b:57:af:46:e0:40:81:82: f0:f5:95:87:18:3c:b4:c2:b9:5a:ff:0d:1f:11:85: b5:33:94:1e:09:82:af:82:0c:cc:4b:bb:bf:93:72: d9:85:0e:d4:07:1d:03:b0:af:dc:ce:f6:50:a5:23: fb:70:a2:de:c6:37:08:79:67:ad:81:e6:cd:d4:64: 83:c0:20:94:bb:40:b4:05:72:48:ed:3e:b4:91:8e: c4:b9:09:eb:1c:19:df:29:6e:9e:57:8d:c9:1e:6b: b3:ca:28:16:98:8e:72:9a:b7:fe:02:30:a6:23:12: ab:a3:5e:0a:27:fb:63:62:7f:4a:8e:15:59:1c:cf: 3a:41:2c:e7:c0:c9:0f:aa:60:41:66:e0:f4:eb:be: d5:c9:8a:eb:b4:2f:60:ce:0e:89:b5:5b:bb:7b:cc: 95:0f:91:ce:55:87:66:82:28:ce:ae:87:69:e4:87: cd:82:ef:86:b7:09:a2:3a:b8:b9:85:7a:aa:bc:27: 58:ab:ad:7c:e9:55:76:38:99:db:9d:01:3e:7f:59: 7d:fe:1e:51:de:b6:d5:49:72:3b:ec:4d:f8:95:f0: 80:88:a7:b3:85:83:45:2d:25:c7:e9:a8:7f:56:49: 7d:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:97:E8:00:2F:B8:1E:0C:45:0D:35:F2:1F:43:0B:48:3A:6B:10:40 X509v3 Authority Key Identifier: keyid:03:2D:33:66:4F:78:0B:2C:50:1E:E6:23:E7:BB:F1:D2:26:B2:62:48 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XINANG/Ay0zZk94CyxQHuYj57vx0iayYkg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Ay0zZk94CyxQHuYj57vx0iayYkg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XINANG/8ZfoAC-4HgxFDTXyH0MLSDprEEA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.191.168.0/23 Signature Algorithm: sha256WithRSAEncryption 74:3c:b1:8c:e8:0f:4e:ef:af:c8:1a:39:43:59:b3:ee:33:bf: e2:cb:47:fa:e3:3f:5a:e7:64:7c:34:eb:0a:3f:f5:b9:47:69: 4d:9a:38:69:6b:8c:b4:0f:5d:b4:07:61:08:24:09:cf:fc:3f: 27:b0:91:40:0a:3d:8e:55:a3:77:29:3a:e8:9b:f6:03:b3:29: 95:f9:38:c9:3d:f7:71:0d:c8:9e:2b:7f:2a:9a:f1:96:94:79: f5:d9:f4:21:78:a0:7d:98:e0:52:a7:07:81:c3:b6:23:45:f7: 8d:36:e4:fb:12:05:0f:1a:80:7e:ad:b8:49:3d:ac:d8:0b:c0: a8:b0:c6:b6:34:1d:d0:6e:3f:83:0f:e9:15:f6:51:f4:60:70: c3:48:01:a2:ba:90:9d:de:b1:3c:b2:a3:75:59:bb:58:a4:0b: cc:9a:ae:ff:37:a2:2d:d5:a1:f5:19:b2:6a:3a:3e:2d:81:85: a4:6a:ba:ca:00:5f:8c:10:8c:6c:f7:20:54:a9:f7:3a:95:af: 79:b8:58:3c:02:0b:ee:7a:99:10:4b:38:ab:48:c6:fe:fa:55: b9:96:8d:7d:6b:75:f0:a9:21:ff:b1:94:ab:bc:33:c3:ab:87: 10:1b:c5:6a:29:2c:83:8e:92:22:19:c6:1c:21:d8:49:b9:ae: 9e:20:f3:7d -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICAw4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDMy RDMzNjY0Rjc4MEIyQzUwMUVFNjIzRTdCQkYxRDIyNkIyNjI0ODAeFw0yNTEwMjEx NTU1NDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEYxOTdFODAwMkZCODFF MEM0NTBEMzVGMjFGNDMwQjQ4M0E2QjEwNDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrGEnd+dtg7ZRT+8iSMqfplY5VaqSLV69G4ECBgvD1lYcYPLTC uVr/DR8RhbUzlB4Jgq+CDMxLu7+TctmFDtQHHQOwr9zO9lClI/twot7GNwh5Z62B 5s3UZIPAIJS7QLQFckjtPrSRjsS5CescGd8pbp5Xjckea7PKKBaYjnKat/4CMKYj EqujXgon+2Nif0qOFVkczzpBLOfAyQ+qYEFm4PTrvtXJiuu0L2DODom1W7t7zJUP kc5Vh2aCKM6uh2nkh82C74a3CaI6uLmFeqq8J1irrXzpVXY4mdudAT5/WX3+HlHe ttVJcjvsTfiV8ICIp7OFg0UtJcfpqH9WSX0tAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU8ZfoAC+4HgxFDTXyH0MLSDprEEAwHwYDVR0jBBgwFoAUAy0zZk94CyxQHuYj 57vx0iayYkgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWElOQU5H L0F5MHpaazk0Q3l4UUh1WWo1N3Z4MGlheVlrZy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQXkwelprOTRDeXhRSHVZajU3dngwaWF5WWtnLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvWElOQU5HLzhaZm9BQy00SGd4RkRUWHlI ME1MU0RwckVFQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGg v6gwDQYJKoZIhvcNAQELBQADggEBAHQ8sYzoD07vr8gaOUNZs+4zv+LLR/rjP1rn ZHw06wo/9blHaU2aOGlrjLQPXbQHYQgkCc/8PyewkUAKPY5Vo3cpOuib9gOzKZX5 OMk993ENyJ4rfyqa8ZaUefXZ9CF4oH2Y4FKnB4HDtiNF94025PsSBQ8agH6tuEk9 rNgLwKiwxrY0HdBuP4MP6RX2UfRgcMNIAaK6kJ3esTyyo3VZu1ikC8yarv83oi3V ofUZsmo6Pi2BhaRqusoAX4wQjGz3IFSp9zqVr3m4WDwCC+56mRBLOKtIxv76VbmW jX1rdfCpIf+xlKu8M8OrhxAbxWopLIOOkiIZxhwh2Em5rp4g830= -----END CERTIFICATE-----Generated at Sun Oct 26 03:38:29 2025 by rpki-client