$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/2FUdrnA6pjDkqLqrSHZAF-Kgow4.roa File: 2FUdrnA6pjDkqLqrSHZAF-Kgow4.roa (raw, json) Hash identifier: Db77FyFe2ZH1rMlfDYt4X5JvnMbCpncXIi5jMI49BX8= Subject key identifier: D8:55:1D:AE:70:3A:A6:30:E4:A8:BA:AB:48:76:40:17:E2:A0:A3:0E Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 18DA Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/2FUdrnA6pjDkqLqrSHZAF-Kgow4.roa Signing time: Fri 22 Aug 2025 09:02:31 +0000 ROA not before: Fri 22 Aug 2025 09:02:31 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 3462 IP address blocks: 211.72.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 00:46:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6362 (0x18da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 22 09:02:31 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=D8551DAE703AA630E4A8BAAB48764017E2A0A30E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:35:21:1a:46:02:58:03:0e:ed:66:6d:a1:b6: 5f:27:bf:c7:61:1d:cf:46:b6:a9:32:43:6d:7e:66: b2:b1:c4:b5:14:7d:ff:7d:03:f9:1c:b3:29:f5:12: 19:58:9c:6a:3c:44:d5:e8:15:2c:c6:b1:88:f8:be: 75:6e:51:ec:27:b3:8b:3f:a8:ba:8b:f6:ac:ff:a4: dd:57:cb:1c:c4:a7:97:01:7c:5b:12:26:3b:86:5a: 50:a7:d2:79:b6:9b:c0:66:b4:65:9f:22:54:f0:0c: c5:c4:41:43:f4:95:7f:31:14:4a:85:4e:6c:a1:9a: 2a:3d:80:6c:6e:02:b0:26:f6:f5:e7:7b:b5:7b:ab: 5d:75:1f:4f:73:a5:c6:8d:04:a2:5c:eb:d9:bb:b2: de:1a:36:98:42:46:58:a4:79:7a:a2:41:6f:94:bb: 8c:a5:37:d1:fc:8a:40:53:e9:32:7c:61:e4:14:88: bf:82:3d:dc:82:7b:50:34:09:01:72:32:40:db:4f: fa:50:63:ec:e0:2c:89:71:eb:83:ac:5e:68:61:0d: 4d:56:8d:32:68:75:be:9d:b6:12:52:e5:95:c1:fa: 68:17:12:12:75:8d:71:02:1d:f0:14:a5:ad:f9:cb: 59:7d:66:bf:5c:a8:20:2d:b0:d9:9c:99:90:1e:6e: 6c:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:55:1D:AE:70:3A:A6:30:E4:A8:BA:AB:48:76:40:17:E2:A0:A3:0E X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/2FUdrnA6pjDkqLqrSHZAF-Kgow4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.72.0.0/16 Signature Algorithm: sha256WithRSAEncryption 26:0e:74:77:20:e4:21:f9:fb:64:3b:d6:27:74:53:58:13:96: b2:af:9b:9d:d6:6d:74:8f:81:d5:c3:2e:02:2d:1f:16:b8:38: a5:87:27:45:eb:f1:fb:4c:cf:6a:49:5f:f0:e5:c2:51:e6:0a: e0:0e:65:5f:73:cd:43:f2:0b:ff:a2:6d:9f:f8:ef:95:28:e3: 1e:76:be:42:97:e7:c3:2c:5f:14:66:a8:8f:7f:26:18:c1:26: 45:c7:40:30:bf:14:a8:92:98:97:a5:dc:b5:df:fc:59:19:fe: bb:b3:53:04:04:45:9d:db:c4:cf:e8:1c:98:f1:64:9c:68:c8: 44:3a:77:c0:9b:92:43:08:14:4e:ca:78:c1:15:6d:27:23:80: f2:ef:a3:81:ea:ad:9b:0c:c8:81:95:0e:0f:00:db:0f:c9:71: ab:6f:68:7c:7e:32:64:e9:be:8e:54:dd:5b:69:22:b1:e8:e2: e3:90:8b:91:df:3b:ed:0a:18:61:ea:17:bf:6d:b4:cb:6c:72: 65:f0:db:c6:5d:d4:e1:31:f7:ff:52:8a:d1:72:98:56:4d:a6: 1f:41:b4:e0:6a:ab:25:95:e0:bf:03:3f:76:f7:f5:41:c2:fc: 3c:0a:85:83:8c:65:9a:61:13:bc:ad:3d:48:48:2a:09:94:97: d8:6c:75:59 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICGNowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw OTAyMzFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEQ4NTUxREFFNzAzQUE2 MzBFNEE4QkFBQjQ4NzY0MDE3RTJBMEEzMEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDENSEaRgJYAw7tZm2htl8nv8dhHc9GtqkyQ21+ZrKxxLUUff99 A/kcsyn1EhlYnGo8RNXoFSzGsYj4vnVuUewns4s/qLqL9qz/pN1XyxzEp5cBfFsS JjuGWlCn0nm2m8BmtGWfIlTwDMXEQUP0lX8xFEqFTmyhmio9gGxuArAm9vXne7V7 q111H09zpcaNBKJc69m7st4aNphCRlikeXqiQW+Uu4ylN9H8ikBT6TJ8YeQUiL+C PdyCe1A0CQFyMkDbT/pQY+zgLIlx64OsXmhhDU1WjTJodb6dthJS5ZXB+mgXEhJ1 jXECHfAUpa35y1l9Zr9cqCAtsNmcmZAebmwTAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQU2FUdrnA6pjDkqLqrSHZAF+Kgow4wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC8yRlVkcm5BNnBqRGtxTHFyU0ha QUYtS2dvdzQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMA00gw DQYJKoZIhvcNAQELBQADggEBACYOdHcg5CH5+2Q71id0U1gTlrKvm53WbXSPgdXD LgItHxa4OKWHJ0Xr8ftMz2pJX/DlwlHmCuAOZV9zzUPyC/+ibZ/475Uo4x52vkKX 58MsXxRmqI9/JhjBJkXHQDC/FKiSmJel3LXf/FkZ/ruzUwQERZ3bxM/oHJjxZJxo yEQ6d8CbkkMIFE7KeMEVbScjgPLvo4HqrZsMyIGVDg8A2w/JcatvaHx+MmTpvo5U 3VtpIrHo4uOQi5HfO+0KGGHqF79ttMtscmXw28Zd1OEx9/9SitFymFZNph9BtOBq qyWV4L8DP3b39UHC/DwKhYOMZZphE7ytPUhIKgmUl9hsdVk= -----END CERTIFICATE-----Generated at Fri Sep 5 21:13:24 2025 by rpki-client