$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/IgIcN0YAEtyuVstAHBi2xx-RxNo.roa File: IgIcN0YAEtyuVstAHBi2xx-RxNo.roa (raw, json) Hash identifier: +vVoxEZU+3rIeYLtu//GA8lW3BjBcI5HvT8hBlT6EzI= Subject key identifier: 22:02:1C:37:46:00:12:DC:AE:56:CB:40:1C:18:B6:C7:1F:91:C4:DA Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1918 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/IgIcN0YAEtyuVstAHBi2xx-RxNo.roa Signing time: Fri 22 Aug 2025 09:02:45 +0000 ROA not before: Fri 22 Aug 2025 09:02:45 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 3462 IP address blocks: 203.69.47.224/27 maxlen: 27 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 00:46:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6424 (0x1918) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 22 09:02:45 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=22021C37460012DCAE56CB401C18B6C71F91C4DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:55:07:a2:28:0e:59:d3:81:29:df:3b:d8:9a: 58:ba:c8:26:0c:0c:6f:68:7e:de:16:bb:19:da:f6: da:f1:4d:4c:80:8b:f3:69:e5:e1:66:35:d6:f6:72: 1f:d8:0a:a4:1e:8d:ce:94:f0:3b:9b:bc:dc:49:01: 5d:c1:4a:a0:b2:d5:14:92:12:85:71:43:74:9b:cd: ae:f6:03:44:64:b0:92:c4:e4:56:49:05:f6:5d:2d: 1b:6c:88:af:5e:0e:9d:ec:89:e9:94:0e:85:ac:2b: d8:94:30:f5:33:af:32:77:4b:c7:a0:a3:83:7b:51: 26:0b:26:73:c6:5c:e3:19:d9:f0:88:d9:1f:aa:21: 42:ac:24:47:d0:67:d8:e7:41:b6:fb:bc:39:c6:83: 50:3e:f9:83:71:f4:8a:2f:59:91:1c:6e:f3:4a:6e: 58:8d:c6:a3:66:76:63:8d:05:0c:c1:2d:8e:85:83: 97:7d:b5:14:90:4d:d7:83:0e:f4:b3:09:00:2f:4f: ee:c6:e6:f2:f3:6d:ed:ec:f9:d6:93:d2:ae:98:53: 06:8a:3c:a2:ba:d7:1b:bc:b7:3e:6f:87:4a:b6:35: 24:99:32:84:ee:56:20:72:b4:21:53:53:8c:56:30: bd:fe:7e:a1:6b:26:1e:16:e6:29:ea:d0:76:06:2c: f4:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:02:1C:37:46:00:12:DC:AE:56:CB:40:1C:18:B6:C7:1F:91:C4:DA X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/IgIcN0YAEtyuVstAHBi2xx-RxNo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.69.47.224/27 Signature Algorithm: sha256WithRSAEncryption be:24:d0:34:a4:07:2d:ff:a7:0e:9d:0c:54:74:5e:45:91:15: 50:0d:b7:68:03:62:ad:1e:04:73:7f:f8:fc:45:24:97:5c:e7: 3a:06:33:67:4f:d6:f7:27:8c:67:09:cf:1b:cd:06:98:c8:67: 97:a7:6b:68:7c:fc:c1:8e:95:db:e7:63:e9:27:ad:cb:e6:7e: 07:09:23:ab:c1:6d:1d:ed:ca:98:cf:02:c7:19:aa:0c:9a:4e: 43:01:ff:c1:08:0f:4d:f2:c3:87:77:d8:11:d4:8b:bd:ea:3d: 35:5a:8a:8e:e3:e8:ee:da:5e:ba:4f:9b:27:0a:06:14:c3:fd: 48:f6:aa:7e:b8:8a:c2:75:ca:c6:38:f7:58:bd:10:4d:31:c2: 7f:07:50:2e:d0:4c:db:32:00:b0:f4:6b:dc:79:60:05:88:54: f4:14:0f:24:7c:b6:10:b4:39:46:3d:56:bc:1c:a2:93:0c:52: d6:c6:b6:31:bb:f1:03:8f:69:31:03:fd:c6:8a:5a:62:e7:ae: 21:72:3a:32:37:3e:73:59:08:9a:3d:de:ce:e2:4c:04:60:dc: c7:d2:09:5c:1d:46:97:ba:5b:74:04:4e:b3:a2:61:45:d3:69: 56:d7:65:e1:fc:14:94:c9:ed:15:0b:73:e7:fc:30:1c:d1:db: 0e:80:6f:59 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICGRgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw OTAyNDVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDIyMDIxQzM3NDYwMDEy RENBRTU2Q0I0MDFDMThCNkM3MUY5MUM0REEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTVQeiKA5Z04Ep3zvYmli6yCYMDG9oft4Wuxna9trxTUyAi/Np 5eFmNdb2ch/YCqQejc6U8DubvNxJAV3BSqCy1RSSEoVxQ3Sbza72A0RksJLE5FZJ BfZdLRtsiK9eDp3siemUDoWsK9iUMPUzrzJ3S8ego4N7USYLJnPGXOMZ2fCI2R+q IUKsJEfQZ9jnQbb7vDnGg1A++YNx9IovWZEcbvNKbliNxqNmdmONBQzBLY6Fg5d9 tRSQTdeDDvSzCQAvT+7G5vLzbe3s+daT0q6YUwaKPKK61xu8tz5vh0q2NSSZMoTu ViBytCFTU4xWML3+fqFrJh4W5inq0HYGLPRlAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUIgIcN0YAEtyuVstAHBi2xx+RxNowHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9JZ0ljTjBZQUV0eXVWc3RBSEJp Mnh4LVJ4Tm8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUFy0Uv 4DANBgkqhkiG9w0BAQsFAAOCAQEAviTQNKQHLf+nDp0MVHReRZEVUA23aANirR4E c3/4/EUkl1znOgYzZ0/W9yeMZwnPG80GmMhnl6draHz8wY6V2+dj6Sety+Z+Bwkj q8FtHe3KmM8CxxmqDJpOQwH/wQgPTfLDh3fYEdSLveo9NVqKjuPo7tpeuk+bJwoG FMP9SPaqfriKwnXKxjj3WL0QTTHCfwdQLtBM2zIAsPRr3HlgBYhU9BQPJHy2ELQ5 Rj1WvByikwxS1sa2MbvxA49pMQP9xopaYueuIXI6Mjc+c1kImj3ezuJMBGDcx9IJ XB1Gl7pbdAROs6JhRdNpVtdl4fwUlMntFQtz5/wwHNHbDoBvWQ== -----END CERTIFICATE-----Generated at Fri Sep 5 21:08:04 2025 by rpki-client