$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/PWVFhTRXx-6rdNU2W_87GX6OuoE.roa File: PWVFhTRXx-6rdNU2W_87GX6OuoE.roa (raw, json) Hash identifier: ZZ+XRYc2tuO209oMD6RoEUXztBuYd/4HvnNRwj0//m8= Subject key identifier: 3D:65:45:85:34:57:C7:EE:AB:74:D5:36:5B:FF:3B:19:7E:8E:BA:81 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 18B3 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/PWVFhTRXx-6rdNU2W_87GX6OuoE.roa Signing time: Fri 22 Aug 2025 09:02:21 +0000 ROA not before: Fri 22 Aug 2025 09:02:21 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 198949 IP address blocks: 203.66.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 00:46:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6323 (0x18b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 22 09:02:21 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=3D6545853457C7EEAB74D5365BFF3B197E8EBA81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:31:09:a3:97:a2:78:b9:6b:d5:69:5c:55:a1: 33:96:2b:87:93:13:3a:e8:e8:ea:35:ed:88:79:dd: 88:4b:ec:e3:b9:4a:14:0b:eb:85:e1:0d:1f:81:4a: 30:5d:31:bd:1c:d6:24:2a:78:1e:7c:bb:38:c2:3f: dc:65:2c:35:a8:48:55:ca:b9:c5:82:1c:3a:75:64: c8:ba:d3:e0:04:91:75:bf:cb:3e:34:10:eb:06:db: f6:72:31:66:ec:5e:56:c1:1d:fd:af:b1:ec:4d:a2: 25:a3:ac:6b:b8:75:f5:41:eb:7e:25:e4:17:f5:9c: d6:ff:71:c6:01:ba:5d:21:b2:8c:61:b1:55:a7:35: e2:7b:1a:ac:69:d2:88:94:d0:52:9b:e8:04:5a:e4: c6:8a:87:2e:b8:40:c1:9e:39:79:a0:07:39:c5:38: e3:a1:09:2a:e1:c8:59:07:96:a5:17:53:e3:e8:99: 0e:4a:cd:cd:71:09:1d:69:92:3b:0c:5c:11:88:51: d9:44:36:c1:07:70:2b:74:be:da:5a:0f:05:bd:d5: a1:01:ed:25:d7:5a:23:0a:98:18:18:87:bf:1a:fc: fa:2c:6a:3d:1d:10:4e:52:81:6b:fd:56:67:d9:66: 3d:13:aa:fe:89:44:2d:3b:e0:5e:16:5f:1e:21:19: 0a:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:65:45:85:34:57:C7:EE:AB:74:D5:36:5B:FF:3B:19:7E:8E:BA:81 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/PWVFhTRXx-6rdNU2W_87GX6OuoE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.66.126.0/24 Signature Algorithm: sha256WithRSAEncryption 72:f2:c0:f6:ec:de:fb:3f:67:31:b0:b0:31:93:e5:d6:f3:b0: 92:1d:e6:42:0c:a7:b6:ba:3c:dd:10:33:a5:b1:30:4f:32:29: c7:35:23:ef:25:a6:87:79:f0:b5:8c:e2:79:88:4b:16:57:db: 6d:58:a9:78:36:0c:16:80:6b:f5:1b:c1:32:dd:71:6b:20:1e: 49:75:9e:7c:d1:75:12:4d:d8:83:f5:34:db:c4:dd:ec:8b:27: c8:a4:02:af:ae:5a:1b:31:60:1a:6b:57:cd:bb:e8:1e:ff:7d: 00:cb:53:b7:4e:ae:9e:90:e3:7f:d8:a8:67:39:f9:dd:2a:5a: 47:a2:8e:01:73:ac:8e:5c:5b:2b:07:42:9c:2e:aa:23:90:34: 80:92:2d:bc:36:a2:00:81:51:85:84:7a:3e:22:a6:c3:3e:b8: b1:68:da:ef:d1:ee:01:85:fe:dc:29:31:a1:3f:ca:73:c7:fa: c9:16:36:0f:35:e9:6c:01:7b:b0:a6:84:cf:b0:ce:c4:b1:cd: db:8f:33:6f:ac:07:64:77:00:bd:d9:0d:14:1b:cc:50:1b:44: 95:e7:94:19:cb:ff:5c:8e:8c:8a:7a:bc:ad:55:aa:f6:2b:a0: c4:25:43:33:af:01:36:b1:84:b4:3b:10:4b:80:5b:f3:3f:53: 4e:81:73:30 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICGLMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw OTAyMjFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDNENjU0NTg1MzQ1N0M3 RUVBQjc0RDUzNjVCRkYzQjE5N0U4RUJBODEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDiMQmjl6J4uWvVaVxVoTOWK4eTEzro6Oo17Yh53YhL7OO5ShQL 64XhDR+BSjBdMb0c1iQqeB58uzjCP9xlLDWoSFXKucWCHDp1ZMi60+AEkXW/yz40 EOsG2/ZyMWbsXlbBHf2vsexNoiWjrGu4dfVB634l5Bf1nNb/ccYBul0hsoxhsVWn NeJ7Gqxp0oiU0FKb6ARa5MaKhy64QMGeOXmgBznFOOOhCSrhyFkHlqUXU+PomQ5K zc1xCR1pkjsMXBGIUdlENsEHcCt0vtpaDwW91aEB7SXXWiMKmBgYh78a/Posaj0d EE5SgWv9VmfZZj0Tqv6JRC074F4WXx4hGQrFAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUPWVFhTRXx+6rdNU2W/87GX6OuoEwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9QV1ZGaFRSWHgtNnJkTlUyV184 N0dYNk91b0Uucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy0J+ MA0GCSqGSIb3DQEBCwUAA4IBAQBy8sD27N77P2cxsLAxk+XW87CSHeZCDKe2ujzd EDOlsTBPMinHNSPvJaaHefC1jOJ5iEsWV9ttWKl4NgwWgGv1G8Ey3XFrIB5JdZ58 0XUSTdiD9TTbxN3siyfIpAKvrlobMWAaa1fNu+ge/30Ay1O3Tq6ekON/2KhnOfnd KlpHoo4Bc6yOXFsrB0KcLqojkDSAki28NqIAgVGFhHo+IqbDPrixaNrv0e4Bhf7c KTGhP8pzx/rJFjYPNelsAXuwpoTPsM7Esc3bjzNvrAdkdwC92Q0UG8xQG0SV55QZ y/9cjoyKerytVar2K6DEJUMzrwE2sYS0OxBLgFvzP1NOgXMw -----END CERTIFICATE-----Generated at Fri Sep 5 21:15:38 2025 by rpki-client