$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/_d_of40iSI5ByS8Rqfa9VCcCIN8.roa File: _d_of40iSI5ByS8Rqfa9VCcCIN8.roa (raw, json) Hash identifier: gdUuwp1ddHtD5NeW32hxclmtMc8YUzZsq3RLqrpSmrA= Subject key identifier: FD:DF:E8:7F:8D:22:48:8E:41:C9:2F:11:A9:F6:BD:54:27:02:20:DF Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1956 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/_d_of40iSI5ByS8Rqfa9VCcCIN8.roa Signing time: Fri 22 Aug 2025 09:03:00 +0000 ROA not before: Fri 22 Aug 2025 09:03:00 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 3462 IP address blocks: 2001:b000::/23 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 00:46:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6486 (0x1956) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 22 09:03:00 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=FDDFE87F8D22488E41C92F11A9F6BD54270220DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:eb:1e:ae:26:d8:35:12:95:47:04:83:0e:f0: f3:71:0c:2b:dc:af:b2:32:c3:f8:e9:98:f7:b1:ec: fc:15:26:d0:0d:91:98:49:6a:69:92:12:7a:53:35: 10:64:e6:8e:bd:42:a4:48:f5:74:27:76:24:74:0f: 44:eb:11:5d:70:65:5b:16:0d:7b:94:0f:d1:bb:c2: e2:97:79:32:92:36:74:2a:55:b9:b4:c7:9f:ce:39: 07:93:99:92:cb:d8:11:a3:b4:42:d8:48:7c:a3:26: a1:33:37:d0:39:01:97:5d:c4:19:db:25:57:af:d3: 88:7b:b1:75:2d:4d:5a:4b:e0:04:d0:02:5e:4c:78: bb:c2:32:14:32:3c:b3:df:ec:80:9e:b5:ba:a9:7a: d5:8e:1a:33:61:e4:e7:d3:fa:ff:aa:a7:e4:43:b9: 14:9d:5b:3a:0b:de:8d:cf:96:2c:7f:45:de:52:2e: e6:2c:bc:7c:2a:20:17:3c:44:30:a9:58:8f:fc:45: 32:70:c7:af:25:e7:de:e1:f2:24:84:b7:8e:e5:ba: 2b:3b:fd:1a:bb:9b:49:56:64:fd:dc:d9:cf:cd:2f: e6:64:20:89:91:9c:1e:76:44:a6:36:ff:57:d2:51: a3:d0:cd:fc:f9:51:be:71:8f:58:b3:24:a2:11:ef: a3:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:DF:E8:7F:8D:22:48:8E:41:C9:2F:11:A9:F6:BD:54:27:02:20:DF X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/_d_of40iSI5ByS8Rqfa9VCcCIN8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:b000::/23 Signature Algorithm: sha256WithRSAEncryption 5c:38:56:99:3d:33:c3:22:13:44:9d:55:bf:f3:c5:6c:fe:dd: a7:b7:00:47:10:03:ab:6d:42:db:9b:07:bc:e7:60:0a:ba:dc: b6:84:69:66:1f:53:bd:cc:a5:67:0d:d3:b4:47:70:9f:68:34: c9:9a:00:48:e0:d1:91:b5:2c:21:7a:01:ad:ff:63:12:36:b6: cc:e4:b4:77:6f:55:db:b9:57:ff:04:f2:8f:ac:f1:ab:63:2a: 87:42:9a:b6:4a:93:f1:d8:97:83:4c:19:73:e0:ad:a6:f6:6d: aa:90:2c:54:bf:38:6d:54:8e:ef:29:23:d3:8e:7c:72:9a:98: 00:91:79:69:6c:eb:76:8d:55:d0:cc:22:c3:0e:88:34:07:09: 20:e6:6b:35:5b:c8:9a:75:6b:5b:7a:ab:bf:99:34:02:e8:32: e2:78:7c:64:3f:39:86:f8:bb:df:d7:c3:0b:1a:72:a1:a1:ec: 6b:b2:f5:42:b6:b0:3b:15:cd:71:e2:da:33:7a:1f:88:ba:d8: 4e:1d:ba:34:6c:44:fb:75:3f:1e:37:67:18:0e:17:00:38:47: 41:2b:0e:4b:e5:df:19:de:e9:81:55:da:42:89:d4:20:fb:11: 66:56:8d:2d:4c:9a:31:94:91:32:5d:dd:87:1f:e2:a6:75:db: b9:29:ae:89 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICGVYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw OTAzMDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEZEREZFODdGOEQyMjQ4 OEU0MUM5MkYxMUE5RjZCRDU0MjcwMjIwREYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCd6x6uJtg1EpVHBIMO8PNxDCvcr7Iyw/jpmPex7PwVJtANkZhJ ammSEnpTNRBk5o69QqRI9XQndiR0D0TrEV1wZVsWDXuUD9G7wuKXeTKSNnQqVbm0 x5/OOQeTmZLL2BGjtELYSHyjJqEzN9A5AZddxBnbJVev04h7sXUtTVpL4ATQAl5M eLvCMhQyPLPf7ICetbqpetWOGjNh5OfT+v+qp+RDuRSdWzoL3o3Plix/Rd5SLuYs vHwqIBc8RDCpWI/8RTJwx68l597h8iSEt47luis7/Rq7m0lWZP3c2c/NL+ZkIImR nB52RKY2/1fSUaPQzfz5Ub5xj1izJKIR76PJAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU/d/of40iSI5ByS8Rqfa9VCcCIN8wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9fZF9vZjQwaVNJNUJ5UzhScWZh OVZDY0NJTjgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAAjAGAwQBIAGw MA0GCSqGSIb3DQEBCwUAA4IBAQBcOFaZPTPDIhNEnVW/88Vs/t2ntwBHEAOrbULb mwe852AKuty2hGlmH1O9zKVnDdO0R3CfaDTJmgBI4NGRtSwhegGt/2MSNrbM5LR3 b1XbuVf/BPKPrPGrYyqHQpq2SpPx2JeDTBlz4K2m9m2qkCxUvzhtVI7vKSPTjnxy mpgAkXlpbOt2jVXQzCLDDog0Bwkg5ms1W8iadWtbequ/mTQC6DLieHxkPzmG+Lvf 18MLGnKhoexrsvVCtrA7Fc1x4tozeh+IuthOHbo0bET7dT8eN2cYDhcAOEdBKw5L 5d8Z3umBVdpCidQg+xFmVo0tTJoxlJEyXd2HH+Kmddu5Ka6J -----END CERTIFICATE-----Generated at Fri Sep 5 21:06:19 2025 by rpki-client