$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/bCoGJBYMKPLUAz05_1wdfXw-djs.roa File: bCoGJBYMKPLUAz05_1wdfXw-djs.roa (raw, json) Hash identifier: MFgnho/zTB/mlDnLU1+NXwpUEtCIihDbGfxKgLwzmQw= Subject key identifier: 6C:2A:06:24:16:0C:28:F2:D4:03:3D:39:FF:5C:1D:7D:7C:3E:76:3B Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0FC9 Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/bCoGJBYMKPLUAz05_1wdfXw-djs.roa Signing time: Wed 30 Jul 2025 10:46:31 +0000 ROA not before: Wed 30 Jul 2025 10:46:31 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18420 IP address blocks: 140.115.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 15 Aug 2025 04:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4041 (0xfc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Jul 30 10:46:31 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6C2A0624160C28F2D4033D39FF5C1D7D7C3E763B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:21:34:f2:e0:83:3e:1a:e9:69:dd:63:49:ba: e4:86:46:ec:37:09:5e:ca:f7:fa:99:79:2c:21:01: 0d:4b:ca:a2:10:dc:2e:97:03:66:d2:c7:1d:e3:e7: 38:81:84:3d:8d:f0:1c:95:80:5a:0b:63:4e:4f:42: 81:78:ec:5b:e5:15:16:0c:c0:24:94:b4:52:d6:35: a4:51:61:ed:68:40:60:ce:71:6a:4a:7d:3a:b0:43: aa:7e:21:6d:c3:fc:12:29:08:4f:75:ae:c3:09:68: 7f:3f:f7:78:62:b4:52:fb:9f:1e:6f:27:5d:fb:96: 57:81:8f:b9:d2:e3:7f:4e:5e:df:0c:c2:16:1a:41: ff:ad:03:7d:54:1a:84:82:49:0b:c5:be:1a:a6:b0: bf:1c:32:12:1c:a8:82:e1:ca:22:e4:51:98:a4:4b: da:e1:b0:bc:30:b5:b6:4b:f1:30:c3:f0:48:a2:53: 15:94:8d:2d:8f:c4:89:de:98:cc:a2:77:1b:69:8d: 71:ca:74:ec:bb:70:3f:46:38:11:53:52:be:e9:3f: 63:5b:94:01:1f:a5:7f:60:ec:4b:49:77:99:c5:79: 94:2d:26:1f:d0:c4:7c:3c:3f:82:60:0a:9e:1d:10: dd:cd:14:4d:68:87:ea:c8:49:a8:80:69:c7:8b:36: 20:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:2A:06:24:16:0C:28:F2:D4:03:3D:39:FF:5C:1D:7D:7C:3E:76:3B X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/bCoGJBYMKPLUAz05_1wdfXw-djs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 140.115.0.0/16 Signature Algorithm: sha256WithRSAEncryption 62:a0:5a:96:7e:db:c1:a1:0b:13:f0:a5:6c:94:7f:2a:91:14: ed:22:ea:43:1e:06:c2:c5:37:30:21:6c:d7:fb:dc:c6:45:b8: a7:7a:99:ab:0a:ff:e2:33:93:33:ea:8d:01:de:a5:a0:c6:07: 72:78:51:3d:21:de:8a:05:1a:4f:7a:ff:7b:f4:bd:9d:61:f3: d1:4a:ed:9f:1e:1d:7d:bc:1d:ee:68:f3:c6:f7:7c:81:81:71: bc:c5:2b:dc:eb:75:01:00:7e:90:95:82:bd:2a:fb:5a:4a:79: e8:89:a2:94:e5:05:d8:86:ef:ee:ab:85:43:86:2b:ae:22:23: 96:91:da:c6:82:76:06:d7:55:0e:45:34:eb:58:c7:cc:35:b0: 7a:dd:de:4e:f2:92:de:cf:e8:e8:57:f8:7a:f7:44:57:5d:1f: ff:18:7c:ea:fa:34:be:65:4d:7d:97:92:5b:12:e9:6f:0c:cf: c8:61:2d:2c:f1:bb:63:11:60:e1:9e:d8:1e:99:d0:b4:bd:82: 93:50:a1:ce:3d:6a:e9:3f:05:47:3c:19:55:39:a5:76:b9:8c: 99:72:3d:62:74:d8:6f:f6:ad:ee:41:68:c2:6b:6d:11:86:52: 7a:54:d5:73:f8:2b:96:1f:23:eb:da:b7:6d:48:9d:ed:b2:e4: 58:44:13:21 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICD8kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNTA3MzAx MDQ2MzFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZDMkEwNjI0MTYwQzI4 RjJENDAzM0QzOUZGNUMxRDdEN0MzRTc2M0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxITTy4IM+Gulp3WNJuuSGRuw3CV7K9/qZeSwhAQ1LyqIQ3C6X A2bSxx3j5ziBhD2N8ByVgFoLY05PQoF47FvlFRYMwCSUtFLWNaRRYe1oQGDOcWpK fTqwQ6p+IW3D/BIpCE91rsMJaH8/93hitFL7nx5vJ137lleBj7nS439OXt8MwhYa Qf+tA31UGoSCSQvFvhqmsL8cMhIcqILhyiLkUZikS9rhsLwwtbZL8TDD8EiiUxWU jS2PxInemMyidxtpjXHKdOy7cD9GOBFTUr7pP2NblAEfpX9g7EtJd5nFeZQtJh/Q xHw8P4JgCp4dEN3NFE1oh+rISaiAaceLNiBPAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUbCoGJBYMKPLUAz05/1wdfXw+djswHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9iQ29HSkJZTUtQTFVBejA1XzF3 ZGZYdy1kanMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjHMw DQYJKoZIhvcNAQELBQADggEBAGKgWpZ+28GhCxPwpWyUfyqRFO0i6kMeBsLFNzAh bNf73MZFuKd6masK/+IzkzPqjQHepaDGB3J4UT0h3ooFGk96/3v0vZ1h89FK7Z8e HX28He5o88b3fIGBcbzFK9zrdQEAfpCVgr0q+1pKeeiJopTlBdiG7+6rhUOGK64i I5aR2saCdgbXVQ5FNOtYx8w1sHrd3k7ykt7P6OhX+Hr3RFddH/8YfOr6NL5lTX2X klsS6W8Mz8hhLSzxu2MRYOGe2B6Z0LS9gpNQoc49auk/BUc8GVU5pXa5jJlyPWJ0 2G/2re5BaMJrbRGGUnpU1XP4K5YfI+vat21Ine2y5FhEEyE= -----END CERTIFICATE-----Generated at Fri Aug 15 00:20:15 2025 by rpki-client