$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/7XH9J-bI7WgPIrQ_AuNbvUPdLJk.roa File: 7XH9J-bI7WgPIrQ_AuNbvUPdLJk.roa (raw, json) Hash identifier: 1g5Iu5UsNPrs7HhDDeNRti0mAmVIkZRy94QBUGBGTsE= Subject key identifier: ED:71:FD:27:E6:C8:ED:68:0F:22:B4:3F:02:E3:5B:BD:43:DD:2C:99 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1917 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/7XH9J-bI7WgPIrQ_AuNbvUPdLJk.roa Signing time: Fri 22 Aug 2025 09:02:45 +0000 ROA not before: Fri 22 Aug 2025 09:02:45 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 198949 IP address blocks: 210.242.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 00:46:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6423 (0x1917) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 22 09:02:45 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=ED71FD27E6C8ED680F22B43F02E35BBD43DD2C99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:36:bc:da:fb:ac:b5:a0:05:3b:f1:ab:4a:6f: 31:b1:e8:f0:bb:91:dd:2a:72:9e:3b:84:87:ed:c6: 58:cb:1c:21:94:10:93:1b:e1:c8:36:f6:81:08:fd: 26:9c:e8:3f:ea:e1:60:de:e7:99:2d:46:37:54:16: 71:f6:33:18:c4:32:9c:ca:10:8a:98:4a:35:a7:2a: 11:08:19:07:49:c5:8e:93:2f:da:09:58:24:10:18: 60:5e:60:2a:ba:aa:3e:82:a7:d2:fd:f9:01:10:32: 28:8b:42:1e:21:c2:b2:4d:1b:ed:05:ca:89:69:b1: ed:ba:8e:cc:c9:51:bf:eb:c7:90:06:82:67:4f:5a: 1d:f6:77:c0:60:38:5b:a8:7d:92:40:0c:b0:dd:bf: 77:0d:c9:0c:21:e8:e5:21:db:b0:df:25:2c:c0:ac: b9:ce:71:f5:5d:64:df:c8:32:fb:ff:41:c8:65:70: 9c:d3:33:f3:f2:39:8f:31:23:03:de:5b:de:e8:29: af:78:bb:0c:9b:c6:27:c5:35:8e:2b:b9:f3:32:4c: 0f:86:1a:52:e5:9d:f2:39:32:65:16:28:22:f2:38: 63:df:ea:4a:40:b9:3a:92:cb:75:d9:08:ac:24:d2: 3b:ce:d8:72:a8:f0:31:1a:44:ea:53:01:fc:c9:80: 3c:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:71:FD:27:E6:C8:ED:68:0F:22:B4:3F:02:E3:5B:BD:43:DD:2C:99 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/7XH9J-bI7WgPIrQ_AuNbvUPdLJk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.242.186.0/24 Signature Algorithm: sha256WithRSAEncryption a1:66:89:2e:b7:05:4e:20:66:be:0a:89:d9:3e:49:0f:4d:9d: 0a:66:90:33:a4:69:5d:cc:01:db:5a:b1:0f:6a:c2:32:ed:53: 52:ef:96:8a:da:e2:2c:0d:74:15:94:f0:8e:96:37:cb:9e:a1: b7:33:f4:c8:a4:ab:fd:a5:33:65:4a:10:38:d4:31:08:8c:fc: be:59:c5:2d:00:d7:a2:cc:01:db:f1:02:af:5e:f9:e7:a1:a6: 60:e4:e6:91:8e:e4:6b:f7:30:a2:a5:7c:b7:0d:ac:23:3e:58: e4:93:35:69:e1:56:b9:3d:48:86:03:08:0c:c3:33:01:c5:1c: ed:89:d6:25:84:73:37:bf:c8:7b:86:eb:0e:a0:d1:a8:31:31: a5:e2:98:51:cc:82:f5:bb:cc:ab:f0:6b:4e:fe:0f:48:9e:52: 6d:b8:2a:6b:1d:d9:e5:3d:d0:64:05:0b:28:2b:7f:7f:80:f0: 13:72:5e:e2:f3:19:4d:23:15:8b:fc:c2:aa:8c:42:a7:20:3f: 76:4d:23:b1:f4:18:98:cd:62:e9:07:7e:49:f1:23:48:63:a7: 94:e4:cd:e8:84:2c:e1:55:fd:d7:d5:29:15:41:bc:f8:4c:b4: 3d:79:b1:99:8b:da:f5:0e:88:b1:fd:73:08:66:13:89:1b:a9: ea:34:0f:e6 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICGRcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw OTAyNDVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEVENzFGRDI3RTZDOEVE NjgwRjIyQjQzRjAyRTM1QkJENDNERDJDOTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDNrza+6y1oAU78atKbzGx6PC7kd0qcp47hIftxljLHCGUEJMb 4cg29oEI/Sac6D/q4WDe55ktRjdUFnH2MxjEMpzKEIqYSjWnKhEIGQdJxY6TL9oJ WCQQGGBeYCq6qj6Cp9L9+QEQMiiLQh4hwrJNG+0Fyolpse26jszJUb/rx5AGgmdP Wh32d8BgOFuofZJADLDdv3cNyQwh6OUh27DfJSzArLnOcfVdZN/IMvv/QchlcJzT M/PyOY8xIwPeW97oKa94uwybxifFNY4rufMyTA+GGlLlnfI5MmUWKCLyOGPf6kpA uTqSy3XZCKwk0jvO2HKo8DEaROpTAfzJgDy/AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU7XH9J+bI7WgPIrQ/AuNbvUPdLJkwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC83WEg5Si1iSTdXZ1BJclFfQXVO YnZVUGRMSmsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0vK6 MA0GCSqGSIb3DQEBCwUAA4IBAQChZokutwVOIGa+ConZPkkPTZ0KZpAzpGldzAHb WrEPasIy7VNS75aK2uIsDXQVlPCOljfLnqG3M/TIpKv9pTNlShA41DEIjPy+WcUt ANeizAHb8QKvXvnnoaZg5OaRjuRr9zCipXy3DawjPljkkzVp4Va5PUiGAwgMwzMB xRztidYlhHM3v8h7husOoNGoMTGl4phRzIL1u8yr8GtO/g9InlJtuCprHdnlPdBk BQsoK39/gPATcl7i8xlNIxWL/MKqjEKnID92TSOx9BiYzWLpB35J8SNIY6eU5M3o hCzhVf3X1SkVQbz4TLQ9ebGZi9r1Doix/XMIZhOJG6nqNA/m -----END CERTIFICATE-----Generated at Fri Sep 5 21:10:22 2025 by rpki-client