$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/Rw2_Tin1i4u7QqPz5o3CTkAQUTs.roa File: Rw2_Tin1i4u7QqPz5o3CTkAQUTs.roa (raw, json) Hash identifier: IMuTQPfUPf32mzpOVkNrImAL5nDXGiOi582TXmI4FCE= Subject key identifier: 47:0D:BF:4E:29:F5:8B:8B:BB:42:A3:F3:E6:8D:C2:4E:40:10:51:3B Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 18D3 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Rw2_Tin1i4u7QqPz5o3CTkAQUTs.roa Signing time: Fri 22 Aug 2025 09:02:30 +0000 ROA not before: Fri 22 Aug 2025 09:02:30 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 3462 IP address blocks: 203.74.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 00:46:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6355 (0x18d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 22 09:02:30 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=470DBF4E29F58B8BBB42A3F3E68DC24E4010513B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:59:4d:81:c1:b8:ce:4f:af:8e:b2:a0:fb:7e: 11:f4:cc:8c:87:f8:f9:99:d2:88:49:cd:f7:50:98: 0d:a0:43:f7:df:3d:26:d7:4d:f3:44:ae:01:da:ad: 11:a9:87:63:1e:b2:60:e1:8a:ae:48:fa:bc:59:0b: 87:b7:b6:71:12:6c:64:a6:1f:ea:fa:b8:d9:7c:fc: c8:69:02:6e:a1:2b:27:97:e9:3e:b8:14:fc:17:4f: ab:bc:da:97:00:f2:01:27:7e:a3:71:8d:d3:9a:fa: 16:1d:aa:f8:0e:c2:cf:67:52:cc:b9:e8:d3:10:70: 84:08:66:e2:ad:36:e6:4e:7e:a8:c4:0a:c2:d2:b5: 84:55:b3:24:fb:22:1f:04:a6:a8:0b:fe:6c:3a:3f: 02:2a:50:9f:ac:ce:bc:86:e5:5c:80:c6:aa:8b:a1: 1c:2c:ba:18:d9:3e:2d:f3:be:8d:e4:d1:3b:db:dc: 2d:a3:4b:16:60:43:d6:09:78:42:d6:6c:f2:f7:64: 27:79:d8:94:29:87:18:2e:b2:16:13:e7:8b:14:de: eb:7a:3b:c7:cc:32:54:16:c2:74:25:cc:3c:96:73: a6:83:49:55:97:90:b3:86:0e:44:1d:d9:17:77:92: c5:28:62:a4:9b:1f:10:6d:20:b2:b3:55:53:46:3e: c3:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:0D:BF:4E:29:F5:8B:8B:BB:42:A3:F3:E6:8D:C2:4E:40:10:51:3B X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Rw2_Tin1i4u7QqPz5o3CTkAQUTs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.74.0.0/16 Signature Algorithm: sha256WithRSAEncryption ae:b4:2b:96:84:c9:31:9c:a0:d1:f7:8a:3f:83:d9:69:d6:dc: 58:b4:13:09:9d:92:d5:20:01:04:d6:ac:88:4f:12:66:6e:10: 7d:c4:60:d6:0f:f8:7a:57:db:3b:a3:be:89:be:10:d4:84:8c: 22:44:c7:ec:93:34:67:95:c3:08:bb:19:b5:3c:db:3c:b8:3a: ca:4e:d4:09:8a:71:ae:22:17:6c:46:84:c8:b5:5d:71:b6:7b: 92:59:38:1c:cd:48:65:29:7b:5e:96:d7:70:3b:53:b7:4f:4f: 98:b5:00:69:33:54:ed:90:8c:6f:1b:5e:94:21:fa:a3:19:14: ef:1f:d8:f3:30:12:cc:e7:a5:63:a4:c2:61:a3:94:af:b7:c3: 0f:83:9d:7e:ac:a1:7a:4f:da:b4:34:36:07:aa:17:73:70:43: 62:a0:f2:f3:39:33:ee:f6:12:98:a9:27:e5:d3:33:d3:e3:8f: ad:55:c4:95:71:d5:b0:b5:d7:ab:d3:24:69:32:60:8b:af:89: eb:6b:41:c2:cd:f6:28:7b:77:da:e4:dd:44:c1:49:96:3a:51: 65:11:5e:81:33:2e:59:6b:d4:ab:6f:8a:a4:d8:ed:e4:d9:77: ab:9d:b6:c4:6a:d6:e3:68:17:d4:62:d0:16:fe:51:54:e1:08: 4f:31:3c:0e -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICGNMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw OTAyMzBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQ3MERCRjRFMjlGNThC OEJCQjQyQTNGM0U2OERDMjRFNDAxMDUxM0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDmWU2BwbjOT6+OsqD7fhH0zIyH+PmZ0ohJzfdQmA2gQ/ffPSbX TfNErgHarRGph2MesmDhiq5I+rxZC4e3tnESbGSmH+r6uNl8/MhpAm6hKyeX6T64 FPwXT6u82pcA8gEnfqNxjdOa+hYdqvgOws9nUsy56NMQcIQIZuKtNuZOfqjECsLS tYRVsyT7Ih8EpqgL/mw6PwIqUJ+szryG5VyAxqqLoRwsuhjZPi3zvo3k0Tvb3C2j SxZgQ9YJeELWbPL3ZCd52JQphxgushYT54sU3ut6O8fMMlQWwnQlzDyWc6aDSVWX kLOGDkQd2Rd3ksUoYqSbHxBtILKzVVNGPsOVAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQURw2/Tin1i4u7QqPz5o3CTkAQUTswHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9SdzJfVGluMWk0dTdRcVB6NW8z Q1RrQVFVVHMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAy0ow DQYJKoZIhvcNAQELBQADggEBAK60K5aEyTGcoNH3ij+D2WnW3Fi0EwmdktUgAQTW rIhPEmZuEH3EYNYP+HpX2zujvom+ENSEjCJEx+yTNGeVwwi7GbU82zy4OspO1AmK ca4iF2xGhMi1XXG2e5JZOBzNSGUpe16W13A7U7dPT5i1AGkzVO2QjG8bXpQh+qMZ FO8f2PMwEsznpWOkwmGjlK+3ww+DnX6soXpP2rQ0NgeqF3NwQ2Kg8vM5M+72Epip J+XTM9Pjj61VxJVx1bC116vTJGkyYIuvietrQcLN9ih7d9rk3UTBSZY6UWURXoEz Lllr1KtviqTY7eTZd6udtsRq1uNoF9Ri0Bb+UVThCE8xPA4= -----END CERTIFICATE-----Generated at Fri Sep 5 21:13:25 2025 by rpki-client