$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/AGIVFhnGK9hErhlO9HFXUBc2llE.roa File: AGIVFhnGK9hErhlO9HFXUBc2llE.roa (raw, json) Hash identifier: RMWpMCp6tgl5tZuLZTe/wo9oB2cKpwqfgdq59x3FHeY= Subject key identifier: 00:62:15:16:19:C6:2B:D8:44:AE:19:4E:F4:71:57:50:17:36:96:51 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1944 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/AGIVFhnGK9hErhlO9HFXUBc2llE.roa Signing time: Fri 22 Aug 2025 09:02:55 +0000 ROA not before: Fri 22 Aug 2025 09:02:55 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 20940 IP address blocks: 203.66.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 00:46:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6468 (0x1944) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 22 09:02:55 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=0062151619C62BD844AE194EF471575017369651 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a4:2e:5b:d4:5a:49:fd:e2:dd:c5:1f:91:b7: 68:10:72:6c:93:84:61:18:1a:5d:63:50:b7:4d:ad: bb:ee:53:5c:5e:a3:2f:2e:34:11:e7:97:7b:59:79: 22:00:8a:71:53:82:01:c6:ba:54:7b:d9:02:88:cb: d7:4c:f9:de:41:6f:4f:e0:13:e5:22:8f:cc:7d:a3: 56:e2:e9:99:a7:1e:f3:43:f4:a7:c0:96:63:75:79: 20:77:9b:1e:b4:0b:ed:82:5f:22:18:68:c6:12:af: 4c:fe:5e:f6:77:54:50:bf:7f:f4:d0:03:be:19:a3: 92:9d:56:80:04:99:57:af:08:ee:17:db:8e:12:c7: 8f:33:4a:08:7a:ed:91:de:7d:08:1b:64:98:17:6d: 1c:fb:91:bd:bb:89:bd:a5:a5:cd:4d:9b:9b:16:95: de:8c:50:27:21:8d:d3:94:66:12:c9:1e:79:7a:97: 0d:18:d5:bc:ee:d9:31:f0:0a:1c:ac:95:f7:05:ab: 84:e0:39:92:4a:4f:03:26:ce:9a:10:b6:4a:c6:d2: af:42:91:7c:e5:df:78:85:27:7f:58:33:4d:96:69: f0:d1:88:42:6f:8b:6d:6d:ad:cd:1d:75:42:9b:58: 33:95:75:a5:55:58:01:f5:6b:21:42:dc:d5:3a:26: 29:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:62:15:16:19:C6:2B:D8:44:AE:19:4E:F4:71:57:50:17:36:96:51 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/AGIVFhnGK9hErhlO9HFXUBc2llE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.66.226.0/24 Signature Algorithm: sha256WithRSAEncryption 84:e1:b6:e1:ee:a0:b4:31:86:d9:bd:02:e4:f7:30:24:75:d9: e1:86:92:d5:3d:52:78:c5:d0:8a:17:a2:93:e7:bf:4b:c9:b7: 16:fa:a0:de:b4:38:8a:19:5d:71:bf:cc:61:11:0c:79:4d:64: 86:df:89:01:56:4b:8d:3c:fe:df:52:96:85:cc:66:67:f9:0f: 88:18:df:a8:67:0c:98:37:29:3d:72:13:80:49:4c:45:45:5b: b9:b8:c5:ea:23:f9:e6:d7:39:9b:46:3e:7a:77:19:59:e5:04: d2:5d:3d:7a:18:9f:63:54:5c:a3:71:00:de:7c:1f:b2:11:ec: 5b:d3:77:64:09:ae:6a:60:77:22:55:f5:20:df:0e:28:c1:e1: 8a:9d:fa:fc:89:33:ba:84:69:57:cb:cb:c8:a1:87:e0:2e:2e: 11:cf:cc:4c:46:af:61:28:28:64:bb:8c:8d:bf:8c:69:33:74: a6:e4:81:48:3f:15:fb:cf:49:5a:dd:cb:57:11:0e:60:35:d2: 8f:23:f9:48:40:9f:2c:4b:89:be:0d:be:0d:02:cf:7e:e5:2f: ad:75:57:25:49:81:1e:f5:19:f9:52:0f:07:5e:4a:a6:88:9f: 37:11:e1:28:c0:bb:2c:fd:bb:a9:86:29:20:bc:46:78:75:41: 4d:34:75:e3 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICGUQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw OTAyNTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDAwNjIxNTE2MTlDNjJC RDg0NEFFMTk0RUY0NzE1NzUwMTczNjk2NTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+pC5b1FpJ/eLdxR+Rt2gQcmyThGEYGl1jULdNrbvuU1xeoy8u NBHnl3tZeSIAinFTggHGulR72QKIy9dM+d5Bb0/gE+Uij8x9o1bi6ZmnHvND9KfA lmN1eSB3mx60C+2CXyIYaMYSr0z+XvZ3VFC/f/TQA74Zo5KdVoAEmVevCO4X244S x48zSgh67ZHefQgbZJgXbRz7kb27ib2lpc1Nm5sWld6MUCchjdOUZhLJHnl6lw0Y 1bzu2THwChyslfcFq4TgOZJKTwMmzpoQtkrG0q9CkXzl33iFJ39YM02WafDRiEJv i21trc0ddUKbWDOVdaVVWAH1ayFC3NU6JimZAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUAGIVFhnGK9hErhlO9HFXUBc2llEwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9BR0lWRmhuR0s5aEVyaGxPOUhG WFVCYzJsbEUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy0Li MA0GCSqGSIb3DQEBCwUAA4IBAQCE4bbh7qC0MYbZvQLk9zAkddnhhpLVPVJ4xdCK F6KT579LybcW+qDetDiKGV1xv8xhEQx5TWSG34kBVkuNPP7fUpaFzGZn+Q+IGN+o ZwyYNyk9chOASUxFRVu5uMXqI/nm1zmbRj56dxlZ5QTSXT16GJ9jVFyjcQDefB+y Eexb03dkCa5qYHciVfUg3w4oweGKnfr8iTO6hGlXy8vIoYfgLi4Rz8xMRq9hKChk u4yNv4xpM3Sm5IFIPxX7z0la3ctXEQ5gNdKPI/lIQJ8sS4m+Db4NAs9+5S+tdVcl SYEe9Rn5Ug8HXkqmiJ83EeEowLss/buphikgvEZ4dUFNNHXj -----END CERTIFICATE-----Generated at Fri Sep 5 21:10:58 2025 by rpki-client