$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/UhDtUVn5O5XzSfIKjQPanwwd2pE.roa File: UhDtUVn5O5XzSfIKjQPanwwd2pE.roa (raw, json) Hash identifier: ZEl100H6xuYnfpLrCQHv+JebEPwKG4VGpTcO8+pQquw= Subject key identifier: 52:10:ED:51:59:F9:3B:95:F3:49:F2:0A:8D:03:DA:9F:0C:1D:DA:91 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 194E Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/UhDtUVn5O5XzSfIKjQPanwwd2pE.roa Signing time: Fri 22 Aug 2025 09:02:58 +0000 ROA not before: Fri 22 Aug 2025 09:02:58 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 3462 IP address blocks: 220.128.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 00:46:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6478 (0x194e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 22 09:02:58 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=5210ED5159F93B95F349F20A8D03DA9F0C1DDA91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:fd:fa:e7:15:9d:57:54:6d:75:4e:87:5d:22: ff:d2:95:d5:ab:84:62:21:55:59:25:f4:fd:14:ff: e2:ea:44:63:5d:a1:61:27:0d:c2:fe:68:7b:98:d6: c0:63:f7:3b:02:d8:4a:b1:60:64:b1:75:1e:5f:6b: e1:a0:22:60:8d:1c:d8:80:00:f4:a4:e0:4d:56:97: 66:d9:4e:72:82:fc:18:d4:49:0e:6d:2a:8e:e1:0b: 6f:92:56:b0:c6:68:34:2e:7b:a2:6e:e9:66:1c:74: 22:8b:75:d4:bc:cf:8e:51:b3:7f:82:72:08:61:e8: db:85:91:62:67:c9:45:86:60:ac:17:b1:b8:8a:be: 78:3a:8d:64:4c:07:35:19:cb:02:cb:d7:f5:72:6e: d5:5b:00:37:a9:ae:31:98:59:bd:25:21:f3:7d:5e: 09:71:40:93:bd:e5:56:79:50:ea:72:85:10:fc:3d: b1:d5:d3:50:04:90:18:bf:ab:ed:67:2f:93:e8:00: 1d:9a:61:45:20:ce:9e:d4:a6:67:af:6d:38:bc:b9: bb:7b:f0:05:f0:a9:31:3b:37:17:26:4f:42:af:88: c1:4f:9a:11:af:cd:43:76:33:93:65:27:d6:2a:a6: c0:58:d3:22:39:ef:32:be:3f:38:81:a4:7b:74:d8: 88:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:10:ED:51:59:F9:3B:95:F3:49:F2:0A:8D:03:DA:9F:0C:1D:DA:91 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/UhDtUVn5O5XzSfIKjQPanwwd2pE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 220.128.67.0/24 Signature Algorithm: sha256WithRSAEncryption d2:6c:3c:b6:27:32:d3:db:24:72:6e:c5:99:70:a1:a2:cf:17: 35:c0:9b:bd:e9:d5:68:1e:c8:f8:62:6e:c5:40:3a:f6:d3:1c: bf:54:4b:67:04:b0:1e:8e:fe:cf:08:ba:08:91:b5:21:9b:cb: ea:0a:18:0f:c7:2b:09:47:f5:33:34:74:a1:46:a8:a2:82:c2: cb:ab:dd:12:a6:b1:df:42:07:b2:8e:ab:a6:2a:74:53:e9:ca: aa:f0:cd:3a:73:ea:d4:5f:48:45:25:e4:95:07:07:54:d0:62: 78:64:8c:87:d8:42:cc:7d:e4:9d:04:e2:14:7d:af:6e:4a:ac: 19:46:48:2e:b8:95:f8:4e:30:5c:bc:48:f1:17:00:47:db:18: 47:2f:72:c8:f0:fc:f2:05:a1:99:9f:c8:31:00:71:6f:0f:b6: bd:c7:0d:c8:52:30:23:f5:09:f2:87:a0:3e:31:16:4b:bb:e0: 25:b3:86:42:ae:64:17:74:db:52:35:ed:57:79:a1:d8:aa:22: ac:9a:09:c8:b5:f0:7c:1c:a2:95:4b:69:4b:94:64:a9:97:cb: 14:38:a7:4d:65:7d:3c:e7:50:db:16:1a:3d:1c:78:3a:0c:68: 66:9b:8b:11:d5:72:52:4e:6d:12:08:b3:c1:c6:8c:db:97:9f: 5a:86:b2:58 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICGU4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw OTAyNThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDUyMTBFRDUxNTlGOTNC OTVGMzQ5RjIwQThEMDNEQTlGMEMxRERBOTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD3/frnFZ1XVG11ToddIv/SldWrhGIhVVkl9P0U/+LqRGNdoWEn DcL+aHuY1sBj9zsC2EqxYGSxdR5fa+GgImCNHNiAAPSk4E1Wl2bZTnKC/BjUSQ5t Ko7hC2+SVrDGaDQue6Ju6WYcdCKLddS8z45Rs3+Ccghh6NuFkWJnyUWGYKwXsbiK vng6jWRMBzUZywLL1/VybtVbADeprjGYWb0lIfN9XglxQJO95VZ5UOpyhRD8PbHV 01AEkBi/q+1nL5PoAB2aYUUgzp7UpmevbTi8ubt78AXwqTE7NxcmT0KviMFPmhGv zUN2M5NlJ9YqpsBY0yI57zK+PziBpHt02IjZAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUUhDtUVn5O5XzSfIKjQPanwwd2pEwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9VaER0VVZuNU81WHpTZklLalFQ YW53d2QycEUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA3IBD MA0GCSqGSIb3DQEBCwUAA4IBAQDSbDy2JzLT2yRybsWZcKGizxc1wJu96dVoHsj4 Ym7FQDr20xy/VEtnBLAejv7PCLoIkbUhm8vqChgPxysJR/UzNHShRqiigsLLq90S prHfQgeyjqumKnRT6cqq8M06c+rUX0hFJeSVBwdU0GJ4ZIyH2ELMfeSdBOIUfa9u SqwZRkguuJX4TjBcvEjxFwBH2xhHL3LI8PzyBaGZn8gxAHFvD7a9xw3IUjAj9Qny h6A+MRZLu+Als4ZCrmQXdNtSNe1XeaHYqiKsmgnItfB8HKKVS2lLlGSpl8sUOKdN ZX0851DbFho9HHg6DGhmm4sR1XJSTm0SCLPBxozbl59ahrJY -----END CERTIFICATE-----Generated at Fri Sep 5 21:13:25 2025 by rpki-client