$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/FGIaaxc-pvHTaMP617vTHyOV348.roa File: FGIaaxc-pvHTaMP617vTHyOV348.roa (raw, json) Hash identifier: 5Gcfciio1jXFwnWoOcX6WLVmlUTtCarM3ZNek+RYHjk= Subject key identifier: 14:62:1A:6B:17:3E:A6:F1:D3:68:C3:FA:D7:BB:D3:1F:23:95:DF:8F Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1912 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/FGIaaxc-pvHTaMP617vTHyOV348.roa Signing time: Fri 22 Aug 2025 09:02:44 +0000 ROA not before: Fri 22 Aug 2025 09:02:44 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 3462 IP address blocks: 118.168.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 00:46:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6418 (0x1912) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 22 09:02:44 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=14621A6B173EA6F1D368C3FAD7BBD31F2395DF8F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:32:75:5b:68:71:d6:47:27:f6:8d:5a:f6:95: 18:b5:fb:3d:e1:0e:a3:ae:58:d7:38:32:35:e5:e2: 86:0a:2d:e9:f6:f5:1f:96:ae:be:b7:03:e1:23:b0: 59:39:e7:6f:60:ab:96:d2:6a:ef:b6:07:e2:b5:e4: e3:c2:7c:00:a3:2f:57:58:33:b5:2c:ce:34:c8:ce: 88:2d:e2:c8:5e:c4:b3:b6:ab:20:7b:ec:44:89:26: 33:e7:d4:4a:e5:49:27:c7:43:1a:5c:08:96:04:a0: 22:52:36:d2:7d:a5:67:49:21:c7:88:d6:8a:b5:0a: 25:a2:f0:dd:41:d8:88:1b:f6:bf:e5:f3:90:ab:4e: e4:46:17:6a:1e:75:25:b4:cf:f2:a6:61:2e:da:13: 6f:72:68:ad:a1:6b:e6:69:5b:28:13:96:0c:32:21: 62:93:87:b0:ae:a3:76:a8:41:44:16:8a:72:df:d1: 3c:ec:3e:59:40:29:06:11:20:8d:3d:7c:77:99:84: 2f:8b:5f:ba:70:23:aa:95:3d:9b:af:95:57:98:91: d7:81:b4:1f:d6:82:1c:47:aa:5b:bb:a5:9c:52:5c: 1a:d9:20:7f:5a:36:a3:69:b4:04:88:49:2d:83:17: 06:b5:21:39:fb:79:d3:7c:0e:38:e0:33:78:ed:ee: f2:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:62:1A:6B:17:3E:A6:F1:D3:68:C3:FA:D7:BB:D3:1F:23:95:DF:8F X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/FGIaaxc-pvHTaMP617vTHyOV348.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.168.0.0/14 Signature Algorithm: sha256WithRSAEncryption 9a:c0:f6:c7:b0:c2:f9:b4:53:34:d4:29:e9:8b:88:d9:37:ff: 97:2a:cc:f9:fa:de:52:74:1b:14:d9:a1:65:72:8c:1e:a1:11: 13:b0:5b:0e:11:35:1d:c6:f6:67:77:46:5b:09:ea:bf:b7:17: 20:89:bb:3b:a6:55:0b:f9:94:8a:7a:41:f6:f8:82:ba:11:61: b6:c9:7a:92:9d:b5:31:64:e8:06:fc:b8:03:77:a2:02:34:c7: 0d:fa:18:72:69:3c:b7:88:20:55:02:9c:9c:bd:fe:1f:cd:28: e3:6c:49:dd:1a:d5:e1:57:a3:f2:c1:eb:f7:88:d8:bb:40:ca: 86:3c:ad:04:0d:cb:86:87:d1:5b:d1:44:51:d5:65:59:e6:4a: 19:ec:f8:21:b6:d8:11:1c:3b:ff:b6:27:6e:6b:86:56:92:cf: e0:de:c4:f0:d5:84:e5:b6:3e:eb:6f:49:17:80:4f:a0:17:fc: 48:36:33:b2:2c:6b:fe:82:71:27:4b:c2:5a:92:58:e0:f4:b7: 4a:ac:c2:dd:0a:eb:85:89:06:a4:6c:d0:43:66:b3:54:ee:ff: 08:0a:a3:b3:2d:b9:62:3a:7d:0f:f7:43:87:e5:ef:8d:51:ad: 83:e9:bf:a9:19:e0:19:e6:01:28:9a:60:db:e4:63:56:57:9f: 96:bf:2d:b1 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICGRIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw OTAyNDRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDE0NjIxQTZCMTczRUE2 RjFEMzY4QzNGQUQ3QkJEMzFGMjM5NURGOEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDkMnVbaHHWRyf2jVr2lRi1+z3hDqOuWNc4MjXl4oYKLen29R+W rr63A+EjsFk5529gq5bSau+2B+K15OPCfACjL1dYM7UszjTIzogt4shexLO2qyB7 7ESJJjPn1ErlSSfHQxpcCJYEoCJSNtJ9pWdJIceI1oq1CiWi8N1B2Igb9r/l85Cr TuRGF2oedSW0z/KmYS7aE29yaK2ha+ZpWygTlgwyIWKTh7Cuo3aoQUQWinLf0Tzs PllAKQYRII09fHeZhC+LX7pwI6qVPZuvlVeYkdeBtB/WghxHqlu7pZxSXBrZIH9a NqNptASISS2DFwa1ITn7edN8DjjgM3jt7vI9AgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUFGIaaxc+pvHTaMP617vTHyOV348wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9GR0lhYXhjLXB2SFRhTVA2MTd2 VEh5T1YzNDgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMCdqgw DQYJKoZIhvcNAQELBQADggEBAJrA9sewwvm0UzTUKemLiNk3/5cqzPn63lJ0GxTZ oWVyjB6hEROwWw4RNR3G9md3RlsJ6r+3FyCJuzumVQv5lIp6Qfb4groRYbbJepKd tTFk6Ab8uAN3ogI0xw36GHJpPLeIIFUCnJy9/h/NKONsSd0a1eFXo/LB6/eI2LtA yoY8rQQNy4aH0VvRRFHVZVnmShns+CG22BEcO/+2J25rhlaSz+DexPDVhOW2Putv SReAT6AX/Eg2M7Isa/6CcSdLwlqSWOD0t0qswt0K64WJBqRs0ENms1Tu/wgKo7Mt uWI6fQ/3Q4fl741RrYPpv6kZ4BnmASiaYNvkY1ZXn5a/LbE= -----END CERTIFICATE-----Generated at Fri Sep 5 21:03:46 2025 by rpki-client