$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/1nfLsHri_wb1Uw04bP4o60E1_qM.roa File: 1nfLsHri_wb1Uw04bP4o60E1_qM.roa (raw, json) Hash identifier: EknL1WIpiSkpP0JZGFUHE45I7DNCejRupODkgUsI4QY= Subject key identifier: D6:77:CB:B0:7A:E2:FF:06:F5:53:0D:38:6C:FE:28:EB:41:35:FE:A3 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 190E Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/1nfLsHri_wb1Uw04bP4o60E1_qM.roa Signing time: Fri 22 Aug 2025 09:02:43 +0000 ROA not before: Fri 22 Aug 2025 09:02:43 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 3462 IP address blocks: 203.160.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 00:46:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6414 (0x190e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 22 09:02:43 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=D677CBB07AE2FF06F5530D386CFE28EB4135FEA3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d4:45:88:38:88:dd:64:bb:55:cc:cc:01:5b: 64:47:d0:70:0a:67:8b:ac:9a:a5:5b:f0:5f:c3:46: 43:80:9b:e2:a3:44:e9:bd:11:e9:c3:80:81:e4:ae: 18:96:9b:14:21:72:86:1b:42:4c:81:64:24:88:b0: 91:af:8f:e7:b9:58:f6:3b:29:91:8c:7b:60:47:8e: 69:4e:4c:3b:27:db:f1:f4:e5:3c:a5:4e:5c:d3:83: ba:60:44:0e:5f:91:6e:13:52:be:9e:08:2c:f3:3d: 21:96:c4:a7:f6:7e:08:d3:82:45:3d:9e:60:62:d9: 88:8c:1c:83:98:23:31:dd:72:24:08:12:76:62:63: bb:ea:a2:ab:f3:96:15:f9:3a:3e:85:9f:9e:f6:d9: ff:c9:96:7c:5f:a6:78:87:49:1e:b6:2b:96:58:f3: 0e:b2:76:38:57:ca:0f:c0:f6:96:2a:5d:8a:61:a7: 9d:68:27:95:dc:48:11:a8:d6:b1:0c:33:16:63:9f: 4c:66:c2:12:b3:8d:18:fe:54:88:57:43:ae:92:7c: 30:8e:c6:dc:a3:ca:7f:57:4a:8f:5d:8a:e6:8d:17: e4:8e:e6:46:9d:1c:8e:eb:f6:aa:fa:0d:7e:6c:3d: d1:1e:3d:c7:5f:d8:c5:8b:39:60:f2:01:cc:85:a0: 31:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:77:CB:B0:7A:E2:FF:06:F5:53:0D:38:6C:FE:28:EB:41:35:FE:A3 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/1nfLsHri_wb1Uw04bP4o60E1_qM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.160.253.0/24 Signature Algorithm: sha256WithRSAEncryption 05:64:f1:2d:a2:66:8d:7d:0a:4d:e1:be:04:cd:39:7c:d9:ba: 94:19:1b:f5:03:77:3d:bd:f9:b9:8e:6c:1d:6d:b9:c0:6e:a6: 6c:6e:a6:2d:f4:03:a7:72:e8:0d:46:af:95:09:78:01:fa:f8: dd:05:81:d8:03:83:b4:81:8e:84:5f:fd:1e:eb:cd:62:c3:45: 32:04:25:00:20:f9:ba:ff:90:a9:aa:c2:7b:ce:41:81:c5:1c: e3:3c:0e:fc:2a:56:8b:3b:1f:fc:93:ea:39:16:68:86:ba:79: 1f:68:64:95:ab:32:b0:38:40:ca:73:34:5b:4b:ba:d6:b0:ce: 1f:e8:2d:ae:80:b5:41:bb:63:94:87:1d:c2:05:de:30:da:78: 8f:ae:65:d1:98:94:eb:f4:f1:a7:db:d6:8e:ed:f6:60:c9:25: 87:8d:26:a6:3a:4c:d1:77:e7:d0:db:69:0a:4b:44:67:6f:1f: f3:fe:ca:18:b5:f6:f5:c6:1f:a9:b9:04:e4:d7:9b:65:cb:10: 39:7a:89:5d:29:98:4a:2b:e4:d9:98:31:7e:55:eb:e9:d2:2c: 88:70:1e:93:74:13:34:7d:f9:40:fc:12:66:55:8b:13:ea:6d: fa:67:db:2e:04:41:3e:fd:c8:03:26:1c:b5:85:24:c6:ff:4b: 51:f8:0d:74 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICGQ4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw OTAyNDNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEQ2NzdDQkIwN0FFMkZG MDZGNTUzMEQzODZDRkUyOEVCNDEzNUZFQTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/1EWIOIjdZLtVzMwBW2RH0HAKZ4usmqVb8F/DRkOAm+KjROm9 EenDgIHkrhiWmxQhcoYbQkyBZCSIsJGvj+e5WPY7KZGMe2BHjmlOTDsn2/H05Tyl TlzTg7pgRA5fkW4TUr6eCCzzPSGWxKf2fgjTgkU9nmBi2YiMHIOYIzHdciQIEnZi Y7vqoqvzlhX5Oj6Fn5722f/JlnxfpniHSR62K5ZY8w6ydjhXyg/A9pYqXYphp51o J5XcSBGo1rEMMxZjn0xmwhKzjRj+VIhXQ66SfDCOxtyjyn9XSo9diuaNF+SO5kad HI7r9qr6DX5sPdEePcdf2MWLOWDyAcyFoDEBAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU1nfLsHri/wb1Uw04bP4o60E1/qMwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC8xbmZMc0hyaV93YjFVdzA0YlA0 bzYwRTFfcU0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy6D9 MA0GCSqGSIb3DQEBCwUAA4IBAQAFZPEtomaNfQpN4b4EzTl82bqUGRv1A3c9vfm5 jmwdbbnAbqZsbqYt9AOncugNRq+VCXgB+vjdBYHYA4O0gY6EX/0e681iw0UyBCUA IPm6/5CpqsJ7zkGBxRzjPA78KlaLOx/8k+o5FmiGunkfaGSVqzKwOEDKczRbS7rW sM4f6C2ugLVBu2OUhx3CBd4w2niPrmXRmJTr9PGn29aO7fZgySWHjSamOkzRd+fQ 22kKS0Rnbx/z/soYtfb1xh+puQTk15tlyxA5eoldKZhKK+TZmDF+Vevp0iyIcB6T dBM0fflA/BJmVYsT6m36Z9suBEE+/cgDJhy1hSTG/0tR+A10 -----END CERTIFICATE-----Generated at Fri Sep 5 21:16:39 2025 by rpki-client