$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/RSDgfuYjqKCSr186PHL4tVWaYQs.roa File: RSDgfuYjqKCSr186PHL4tVWaYQs.roa (raw, json) Hash identifier: 4FXsrDXewN/ziSJTcy37cDuAft+rmYlDs6ZXZvkKIwA= Subject key identifier: 45:20:E0:7E:E6:23:A8:A0:92:AF:5F:3A:3C:72:F8:B5:55:9A:61:0B Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 18B1 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/RSDgfuYjqKCSr186PHL4tVWaYQs.roa Signing time: Fri 22 Aug 2025 09:02:20 +0000 ROA not before: Fri 22 Aug 2025 09:02:20 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 20940 IP address blocks: 203.74.67.0/25 maxlen: 25 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 00:46:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6321 (0x18b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 22 09:02:20 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=4520E07EE623A8A092AF5F3A3C72F8B5559A610B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:de:e5:b9:fd:2b:e9:00:5f:3a:54:32:5a:11: d6:7c:c5:9b:9a:74:bc:b7:b2:05:d8:8c:0e:bf:33: 90:4a:38:4d:fe:4e:e6:0f:72:1e:4f:21:19:18:83: d0:79:71:42:75:ed:08:22:08:f2:f3:1c:b4:93:92: 65:9a:d8:a7:fc:cd:fa:51:38:75:90:c0:d0:0c:45: 0f:02:30:1d:d5:ad:1c:f1:41:71:68:25:96:87:cd: 5b:fc:22:db:c0:56:ed:36:34:8b:13:0a:8e:ce:6c: 27:ad:22:69:7c:13:78:e8:5e:3a:46:fc:4e:1c:d2: bb:07:e3:c3:47:7a:18:30:ec:ea:ef:8c:d5:36:2c: ad:62:d3:22:e0:93:12:c6:28:b4:53:ec:8e:6d:98: c4:96:cc:79:95:e9:e2:a1:df:bf:18:c8:08:71:eb: 63:02:7f:b8:14:c5:72:67:77:c4:37:c2:65:3f:97: f5:2d:a1:dd:ec:09:9e:57:40:6d:f2:0e:f3:98:92: d8:df:60:c8:7b:d1:34:76:6c:85:c3:0d:e2:0b:a4: 46:b4:f5:48:04:4a:2e:9b:31:b2:f3:8f:d8:6a:c1: b0:e0:a8:a5:de:f5:99:0a:81:f4:03:fb:6d:37:11: 1e:82:b8:79:e0:19:51:05:8b:2b:05:6a:a7:21:f1: b0:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:20:E0:7E:E6:23:A8:A0:92:AF:5F:3A:3C:72:F8:B5:55:9A:61:0B X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/RSDgfuYjqKCSr186PHL4tVWaYQs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.74.67.0/25 Signature Algorithm: sha256WithRSAEncryption 7e:a5:79:6d:cc:c3:85:01:6c:d3:d4:0a:b8:71:9c:b2:d8:a3: 4f:25:38:5e:fb:81:7b:28:b1:0c:b3:62:eb:4b:a5:6c:52:63: 69:3d:c6:6b:b8:9a:f5:8e:0e:2d:4e:4c:97:66:34:dd:1a:94: 45:a9:3d:8c:03:b0:38:fa:8d:c9:1e:ea:56:17:70:3a:09:2c: 30:bb:b9:31:f5:bc:86:2a:33:f4:a8:af:ed:4c:87:07:9a:03: 3b:5e:87:8f:52:8c:47:35:e0:aa:7f:90:ce:2c:e0:c4:1d:3e: 86:ed:f4:42:16:9d:c6:b1:8e:3a:0e:b4:1f:ce:ec:61:d8:33: f7:cf:4f:54:21:9c:b8:20:38:af:df:f5:98:57:51:4c:a6:7d: 6f:c9:47:ee:89:3c:9a:d9:58:89:94:64:ef:78:94:58:a2:dc: a6:28:44:20:e9:ec:d0:5b:d3:76:a4:aa:90:b3:b9:6a:8f:5f: 95:0d:46:8b:1a:49:22:cf:f4:3a:e9:d6:51:da:93:7c:d0:76: f4:3d:33:d2:75:d8:7f:2b:b5:7f:af:3c:a0:eb:aa:ef:7c:f9: a4:a8:a4:7c:ee:e6:fd:52:87:a8:6d:b7:3f:6a:ad:d2:13:b2: 8f:9a:40:42:30:ce:fa:f5:cc:f0:d7:55:17:35:ae:21:56:05: 8d:c1:a2:02 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICGLEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw OTAyMjBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQ1MjBFMDdFRTYyM0E4 QTA5MkFGNUYzQTNDNzJGOEI1NTU5QTYxMEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDh3uW5/SvpAF86VDJaEdZ8xZuadLy3sgXYjA6/M5BKOE3+TuYP ch5PIRkYg9B5cUJ17QgiCPLzHLSTkmWa2Kf8zfpROHWQwNAMRQ8CMB3VrRzxQXFo JZaHzVv8ItvAVu02NIsTCo7ObCetIml8E3joXjpG/E4c0rsH48NHehgw7OrvjNU2 LK1i0yLgkxLGKLRT7I5tmMSWzHmV6eKh378YyAhx62MCf7gUxXJnd8Q3wmU/l/Ut od3sCZ5XQG3yDvOYktjfYMh70TR2bIXDDeILpEa09UgESi6bMbLzj9hqwbDgqKXe 9ZkKgfQD+203ER6CuHngGVEFiysFaqch8bBHAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQURSDgfuYjqKCSr186PHL4tVWaYQswHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9SU0RnZnVZanFLQ1NyMTg2UEhM NHRWV2FZUXMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUHy0pD ADANBgkqhkiG9w0BAQsFAAOCAQEAfqV5bczDhQFs09QKuHGcstijTyU4XvuBeyix DLNi60ulbFJjaT3Ga7ia9Y4OLU5Ml2Y03RqURak9jAOwOPqNyR7qVhdwOgksMLu5 MfW8hioz9Kiv7UyHB5oDO16Hj1KMRzXgqn+QzizgxB0+hu30QhadxrGOOg60H87s Ydgz989PVCGcuCA4r9/1mFdRTKZ9b8lH7ok8mtlYiZRk73iUWKLcpihEIOns0FvT dqSqkLO5ao9flQ1GixpJIs/0OunWUdqTfNB29D0z0nXYfyu1f688oOuq73z5pKik fO7m/VKHqG23P2qt0hOyj5pAQjDO+vXM8NdVFzWuIVYFjcGiAg== -----END CERTIFICATE-----Generated at Fri Sep 5 21:13:25 2025 by rpki-client