$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/HiJ-nnQsRSnIwflxjQrVw2y9I_4.roa File: HiJ-nnQsRSnIwflxjQrVw2y9I_4.roa (raw, json) Hash identifier: CfhNBvVK678YMcnAmLj4Veun64Vi7WuBeJd2Lsum7n4= Subject key identifier: 1E:22:7E:9E:74:2C:45:29:C8:C1:F9:71:8D:0A:D5:C3:6C:BD:23:FE Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB Certificate serial: 0E02 Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/HiJ-nnQsRSnIwflxjQrVw2y9I_4.roa Signing time: Tue 15 Jul 2025 02:35:56 +0000 ROA not before: Tue 15 Jul 2025 02:35:56 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131611 IP address blocks: 2401:1780:1316::/48 maxlen: 56 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 21 Jul 2025 15:06:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3586 (0xe02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB Validity Not Before: Jul 15 02:35:56 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1E227E9E742C4529C8C1F9718D0AD5C36CBD23FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c6:5a:78:78:24:97:d1:ff:2b:c5:be:ac:d8: 3b:6e:ca:44:40:32:76:a9:ae:2e:90:b8:bf:4b:ba: 2d:fd:b8:cb:b3:31:35:62:e6:5d:47:94:3f:29:4b: a4:a3:a0:90:96:cd:c9:1c:4f:09:9d:01:8c:6e:a8: 16:f4:61:0c:54:e3:1e:49:b3:f0:67:c6:b3:b9:e7: 24:fa:9e:60:67:9e:96:09:53:b1:2a:f1:39:7c:af: 9b:24:10:aa:f7:c9:16:7a:d9:dd:71:38:af:9c:56: a6:83:12:57:39:e3:42:59:af:9d:f6:32:97:65:1b: ba:34:3f:c9:c8:46:9a:b7:e7:25:97:b5:a1:b7:2c: 2c:ba:7c:d5:35:95:16:53:83:6e:d2:6f:0f:0f:30: 4a:29:1e:35:f7:70:4d:47:3f:7e:5e:8e:9d:3e:f7: 76:60:03:64:9b:35:f7:8d:44:b8:2e:06:65:8a:64: df:6d:97:ec:e5:89:7b:c7:db:b7:81:e9:26:8a:d6: 65:a8:d4:ac:b9:b1:75:81:f3:9c:72:4e:82:ca:55: ce:5a:b1:71:52:2e:fd:84:ac:98:60:fd:bc:1a:10: bf:ed:d7:c7:2c:17:65:b9:e6:88:43:e5:29:85:20: 24:fa:6c:be:9c:95:62:38:b4:7e:2f:3d:46:2e:0e: 36:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:22:7E:9E:74:2C:45:29:C8:C1:F9:71:8D:0A:D5:C3:6C:BD:23:FE X509v3 Authority Key Identifier: keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/HiJ-nnQsRSnIwflxjQrVw2y9I_4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:1780:1316::/48 Signature Algorithm: sha256WithRSAEncryption 75:de:ba:36:b9:c3:da:74:8a:05:96:90:14:ce:f2:15:48:30: 64:29:96:20:bb:ac:e0:da:3a:fe:88:97:55:9e:48:f7:90:fb: aa:79:15:38:08:22:4e:f0:18:26:3d:d6:3e:8f:e5:b7:18:9b: 4f:66:5f:9e:97:29:f3:0b:61:82:8d:fd:e4:da:8d:53:33:87: 96:d4:80:5a:47:35:28:9a:06:cb:66:07:a5:e3:63:1b:dc:6a: 26:a8:05:b7:7c:27:cb:33:2e:85:e7:98:45:4d:b6:9f:c3:fd: 29:1d:87:95:ad:2a:94:dc:08:7d:e9:61:27:31:fc:8c:a8:a9: 4a:1b:57:10:f0:98:9f:1b:c4:b5:9f:89:02:5a:79:54:94:51: 6b:18:c2:8a:e3:2f:0d:f1:58:80:4c:81:dc:5c:c6:87:97:c7: de:05:c0:e4:dd:ab:bd:a8:88:58:28:69:49:27:f8:77:a9:53: bf:39:f9:d9:ea:9f:dc:90:e1:cc:8f:99:fb:68:78:b6:e7:d8: c0:9b:e8:c2:71:df:7f:fb:c4:d5:f1:98:87:44:7d:60:23:f5: 4b:af:53:c9:7c:78:f4:5b:bf:46:f3:23:ce:44:2b:fe:7a:12: 92:0e:c2:a4:07:5b:55:d0:32:19:40:73:86:18:ae:c1:7e:7c: 35:40:20:12 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgICDgIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEM3 ODk2MTY0MkEwNEJFMTMyNzA4REIxOTNEN0JBOTE2QjJCNjdDQjAeFw0yNTA3MTUw MjM1NTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFFMjI3RTlFNzQyQzQ1 MjlDOEMxRjk3MThEMEFENUMzNkNCRDIzRkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJxlp4eCSX0f8rxb6s2DtuykRAMnapri6QuL9Lui39uMuzMTVi 5l1HlD8pS6SjoJCWzckcTwmdAYxuqBb0YQxU4x5Js/BnxrO55yT6nmBnnpYJU7Eq 8Tl8r5skEKr3yRZ62d1xOK+cVqaDElc540JZr532MpdlG7o0P8nIRpq35yWXtaG3 LCy6fNU1lRZTg27Sbw8PMEopHjX3cE1HP35ejp0+93ZgA2SbNfeNRLguBmWKZN9t l+zliXvH27eB6SaK1mWo1Ky5sXWB85xyToLKVc5asXFSLv2ErJhg/bwaEL/t18cs F2W55ohD5SmFICT6bL6clWI4tH4vPUYuDjYdAgMBAAGjggH1MIIB8TAdBgNVHQ4E FgQUHiJ+nnQsRSnIwflxjQrVw2y9I/4wHwYDVR0jBBgwFoAUDHiWFkKgS+EycI2x k9e6kWsrZ8swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE9OR0ZP TkcvREhpV0ZrS2dTLUV5Y0kyeGs5ZTZrV3NyWjhzLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9ESGlXRmtLZ1MtRXljSTJ4azllNmtXc3JaOHMuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ET05HRk9ORy9IaUotbm5Rc1JTbkl3 Zmx4alFyVncyeTlJXzQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJ AwcAJAEXgBMWMA0GCSqGSIb3DQEBCwUAA4IBAQB13ro2ucPadIoFlpAUzvIVSDBk KZYgu6zg2jr+iJdVnkj3kPuqeRU4CCJO8BgmPdY+j+W3GJtPZl+elynzC2GCjf3k 2o1TM4eW1IBaRzUomgbLZgel42Mb3GomqAW3fCfLMy6F55hFTbafw/0pHYeVrSqU 3Ah96WEnMfyMqKlKG1cQ8JifG8S1n4kCWnlUlFFrGMKK4y8N8ViATIHcXMaHl8fe BcDk3au9qIhYKGlJJ/h3qVO/OfnZ6p/ckOHMj5n7aHi259jAm+jCcd9/+8TV8ZiH RH1gI/VLr1PJfHj0W79G8yPORCv+ehKSDsKkB1tV0DIZQHOGGK7Bfnw1QCAS -----END CERTIFICATE-----Generated at Mon Jul 21 13:24:27 2025 by rpki-client