$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/LwvlxVbIFAPNuvTl4heOLrBzUWM.roa File: LwvlxVbIFAPNuvTl4heOLrBzUWM.roa (raw, json) Hash identifier: 7fFXwc8nRD1RZ2A/vb82bCWyCQi3hNLkIXtKg+uAgM0= Subject key identifier: 2F:0B:E5:C5:56:C8:14:03:CD:BA:F4:E5:E2:17:8E:2E:B0:73:51:63 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1913 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/LwvlxVbIFAPNuvTl4heOLrBzUWM.roa Signing time: Fri 22 Aug 2025 09:02:44 +0000 ROA not before: Fri 22 Aug 2025 09:02:44 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 3462 IP address blocks: 1.160.0.0/12 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 00:46:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6419 (0x1913) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 22 09:02:44 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2F0BE5C556C81403CDBAF4E5E2178E2EB0735163 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:31:28:7e:fd:ca:35:09:01:56:cf:65:31:b8: 79:c2:e3:25:94:5f:62:ba:e3:6b:6f:45:12:62:e9: 91:48:17:d0:8b:53:f5:47:a5:8a:0b:29:ac:19:19: c8:7a:9a:80:2c:19:52:c4:cc:d2:94:42:64:39:f9: a9:e2:bd:f4:60:9e:37:99:f3:d0:68:1a:a7:d5:2c: 8f:91:26:77:97:b0:02:67:96:0b:f1:31:0f:87:3e: 51:3d:d5:01:d9:69:df:4e:b1:ac:27:49:cd:70:6a: 24:f2:7f:57:5e:95:d8:ac:21:54:0a:ae:74:6e:3f: b1:61:43:b4:8e:a1:67:c1:e8:be:29:40:1e:ac:0e: ff:cf:e5:1b:55:9a:33:d9:29:d0:8c:13:2f:c9:1d: 73:f8:0d:0c:99:0a:63:40:b2:e7:09:90:fb:46:48: 6b:5b:63:03:4e:4b:63:dd:bc:48:f4:8f:30:e7:90: 07:42:d4:df:ad:39:1b:84:3d:3c:c0:81:11:6f:17: 8d:c6:43:f5:ba:9e:e7:8d:20:48:f3:42:09:d7:5d: 5d:23:9d:9d:fd:1b:22:ce:5c:76:ed:ca:4a:dc:e0: fe:e0:65:87:29:30:e0:85:28:ec:58:49:7f:f4:b4: 94:c3:b2:cf:d3:ce:4d:d7:74:fd:e9:f1:b1:e5:38: 6c:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:0B:E5:C5:56:C8:14:03:CD:BA:F4:E5:E2:17:8E:2E:B0:73:51:63 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/LwvlxVbIFAPNuvTl4heOLrBzUWM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 1.160.0.0/12 Signature Algorithm: sha256WithRSAEncryption 6d:d9:6f:97:ad:ba:20:ad:c8:a4:90:3d:c3:1d:e4:ec:d6:48: 1b:c2:64:fa:59:98:b5:3a:28:0a:8a:16:d4:7a:d1:d8:5c:06: 14:41:e4:16:76:07:2f:ec:c0:1e:4a:28:8f:94:b9:f0:a5:d0: eb:e1:f9:58:0d:73:6b:a1:07:81:98:c2:d3:3b:78:0d:fa:52: 48:c6:e1:89:80:21:af:6c:0c:77:35:bb:a4:c5:de:32:b7:29: 65:4f:52:ec:4b:98:e7:2d:d3:fe:ec:16:26:20:68:62:97:f2: 8f:ce:da:e9:b9:0c:4d:db:3b:80:a2:0e:42:76:4d:a0:0c:e6: f4:48:1a:01:c2:10:cc:f1:8a:4c:7b:c3:7d:b6:c9:52:d5:4d: 20:02:06:38:14:37:b1:b7:40:38:a7:8e:8c:53:ed:8e:9a:86: f8:2d:30:0a:ce:a7:9f:fb:5e:f2:d3:d6:bc:66:fe:35:06:0b: cd:53:b8:a1:e0:b6:0f:c1:36:32:85:9e:58:28:b1:31:61:34: 6b:20:45:dd:dd:73:dd:4a:7a:fd:7c:7b:56:f6:70:86:57:3f: 07:49:d8:8f:3c:8d:e2:b8:44:79:fb:2f:b1:34:3a:60:8d:1a: 83:d0:bf:81:75:3a:bd:e1:94:86:e2:9e:24:a1:09:81:2f:f3: 0f:0d:75:cc -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICGRMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw OTAyNDRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDJGMEJFNUM1NTZDODE0 MDNDREJBRjRFNUUyMTc4RTJFQjA3MzUxNjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYMSh+/co1CQFWz2UxuHnC4yWUX2K642tvRRJi6ZFIF9CLU/VH pYoLKawZGch6moAsGVLEzNKUQmQ5+anivfRgnjeZ89BoGqfVLI+RJneXsAJnlgvx MQ+HPlE91QHZad9OsawnSc1waiTyf1deldisIVQKrnRuP7FhQ7SOoWfB6L4pQB6s Dv/P5RtVmjPZKdCMEy/JHXP4DQyZCmNAsucJkPtGSGtbYwNOS2PdvEj0jzDnkAdC 1N+tORuEPTzAgRFvF43GQ/W6nueNIEjzQgnXXV0jnZ39GyLOXHbtykrc4P7gZYcp MOCFKOxYSX/0tJTDss/Tzk3XdP3p8bHlOGxRAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQULwvlxVbIFAPNuvTl4heOLrBzUWMwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9Md3ZseFZiSUZBUE51dlRsNGhl T0xyQnpVV00ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMEAaAw DQYJKoZIhvcNAQELBQADggEBAG3Zb5etuiCtyKSQPcMd5OzWSBvCZPpZmLU6KAqK FtR60dhcBhRB5BZ2By/swB5KKI+UufCl0Ovh+VgNc2uhB4GYwtM7eA36UkjG4YmA Ia9sDHc1u6TF3jK3KWVPUuxLmOct0/7sFiYgaGKX8o/O2um5DE3bO4CiDkJ2TaAM 5vRIGgHCEMzxikx7w322yVLVTSACBjgUN7G3QDinjoxT7Y6ahvgtMArOp5/7XvLT 1rxm/jUGC81TuKHgtg/BNjKFnlgosTFhNGsgRd3dc91Kev18e1b2cIZXPwdJ2I88 jeK4RHn7L7E0OmCNGoPQv4F1Or3hlIbiniShCYEv8w8Ndcw= -----END CERTIFICATE-----Generated at Fri Sep 5 21:10:21 2025 by rpki-client