$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/WcEeNzeMoxCY4oGTF1l6ZUU-CLM.roa File: WcEeNzeMoxCY4oGTF1l6ZUU-CLM.roa (raw, json) Hash identifier: Loyvgo5wS3Ni/VPcvuhXA3AoBSZ0LjSGuqMY2/iDxs0= Subject key identifier: 59:C1:1E:37:37:8C:A3:10:98:E2:81:93:17:59:7A:65:45:3E:08:B3 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 18DC Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WcEeNzeMoxCY4oGTF1l6ZUU-CLM.roa Signing time: Fri 22 Aug 2025 09:02:32 +0000 ROA not before: Fri 22 Aug 2025 09:02:32 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 3462 IP address blocks: 114.30.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 00:46:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6364 (0x18dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 22 09:02:32 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=59C11E37378CA31098E2819317597A65453E08B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:e9:ca:32:5c:65:30:3f:46:c6:bd:5d:61:e7: 56:0c:77:82:19:87:79:38:63:7f:de:58:e9:7a:f6: 21:6f:2c:f6:7c:7a:30:9e:0d:6d:b6:07:17:22:ab: 0f:d9:72:bf:fe:0f:9b:e1:01:86:dd:75:c8:79:d5: 60:79:61:ac:61:6c:2b:28:63:6a:90:fd:1c:03:2e: 12:8e:49:1d:05:3c:1a:62:ea:4b:14:0a:a2:b7:03: 46:86:35:e9:96:59:96:54:2a:4a:a0:a6:66:59:7b: af:f2:31:b3:af:69:db:92:cd:6a:bc:e4:f0:9f:4b: ac:ee:10:d8:db:51:af:09:1b:56:20:1e:99:f3:2d: f5:76:5e:85:f3:52:6f:ca:e4:9c:b4:96:3f:38:eb: b8:1d:5d:06:e8:ed:6c:cb:a8:14:66:8a:98:e3:4e: f4:18:e8:3b:c3:2f:d0:32:15:6e:6b:a0:36:a2:1e: 16:f6:4b:34:ae:a3:60:64:a3:aa:15:c7:21:34:cf: f7:52:26:27:0f:43:98:f9:b2:fd:ec:c7:5f:af:90: af:71:b2:b3:e3:dd:82:5f:c3:0e:91:85:0e:11:ba: 27:12:e5:9c:e8:74:62:dd:eb:b9:80:75:f8:15:31: b2:4b:20:1c:a2:1f:ec:8c:8d:f3:8a:41:40:1b:68: c2:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:C1:1E:37:37:8C:A3:10:98:E2:81:93:17:59:7A:65:45:3E:08:B3 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WcEeNzeMoxCY4oGTF1l6ZUU-CLM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 114.30.44.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:4e:18:a2:d7:cf:c5:a2:e6:fd:cf:12:67:de:a7:88:0a:c8: 49:c7:80:37:f3:6f:a9:f2:3d:e1:4d:6a:d5:b5:00:9f:d7:45: 9f:15:d7:18:9d:a5:1c:db:a6:d5:e9:d9:d9:d4:4e:e9:37:99: 8e:2b:46:22:20:3b:3e:ce:ae:fd:a1:18:ba:57:84:8a:f5:0f: 9d:bf:4d:49:21:5f:5b:40:25:70:32:0a:b5:f3:fe:0e:c0:93: 93:3b:f4:84:c1:de:8a:40:e6:31:19:f4:41:2f:3a:e4:c7:8d: d4:14:62:70:c9:de:dc:38:64:51:65:8a:37:ca:25:7c:0a:98: 91:c3:3d:bb:39:60:41:1d:1c:68:f5:89:a4:3f:07:23:85:f9: 73:b6:4a:36:7c:97:ce:c0:a3:7b:6b:20:65:7d:32:de:4d:f5: a7:d3:3b:7e:ce:df:66:e6:49:34:c8:73:aa:7e:2d:a6:43:6a: 34:01:95:1b:36:57:2d:f4:45:5c:33:d0:00:fc:42:e0:03:58: 81:88:45:8d:29:c4:33:a8:61:2e:6b:17:bd:ac:91:f3:54:78: 51:17:e3:db:5a:5c:55:22:c2:74:20:f4:ef:aa:71:df:1b:ce: 03:f1:02:74:29:4f:4c:fa:b3:1e:fc:6f:6d:b1:4f:34:a9:41: 7d:41:98:9d -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICGNwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw OTAyMzJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDU5QzExRTM3Mzc4Q0Ez MTA5OEUyODE5MzE3NTk3QTY1NDUzRTA4QjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCn6coyXGUwP0bGvV1h51YMd4IZh3k4Y3/eWOl69iFvLPZ8ejCe DW22Bxciqw/Zcr/+D5vhAYbddch51WB5YaxhbCsoY2qQ/RwDLhKOSR0FPBpi6ksU CqK3A0aGNemWWZZUKkqgpmZZe6/yMbOvaduSzWq85PCfS6zuENjbUa8JG1YgHpnz LfV2XoXzUm/K5Jy0lj8467gdXQbo7WzLqBRmipjjTvQY6DvDL9AyFW5roDaiHhb2 SzSuo2Bko6oVxyE0z/dSJicPQ5j5sv3sx1+vkK9xsrPj3YJfww6RhQ4RuicS5Zzo dGLd67mAdfgVMbJLIByiH+yMjfOKQUAbaML1AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUWcEeNzeMoxCY4oGTF1l6ZUU+CLMwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9XY0VlTnplTW94Q1k0b0dURjFs NlpVVS1DTE0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAch4s MA0GCSqGSIb3DQEBCwUAA4IBAQAMThii18/Foub9zxJn3qeICshJx4A382+p8j3h TWrVtQCf10WfFdcYnaUc26bV6dnZ1E7pN5mOK0YiIDs+zq79oRi6V4SK9Q+dv01J IV9bQCVwMgq18/4OwJOTO/SEwd6KQOYxGfRBLzrkx43UFGJwyd7cOGRRZYo3yiV8 CpiRwz27OWBBHRxo9YmkPwcjhflztko2fJfOwKN7ayBlfTLeTfWn0zt+zt9m5kk0 yHOqfi2mQ2o0AZUbNlct9EVcM9AA/ELgA1iBiEWNKcQzqGEuaxe9rJHzVHhRF+Pb WlxVIsJ0IPTvqnHfG84D8QJ0KU9M+rMe/G9tsU80qUF9QZid -----END CERTIFICATE-----Generated at Fri Sep 5 21:16:41 2025 by rpki-client