$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/eHoCUYF1oWOp7ktVi0il_tp-GSM.roa File: eHoCUYF1oWOp7ktVi0il_tp-GSM.roa (raw, json) Hash identifier: qSJY9kNzX9J2wkWXU1QGbvdrexCwc+aECTO5dynEBJ4= Subject key identifier: 78:7A:02:51:81:75:A1:63:A9:EE:4B:55:8B:48:A5:FE:DA:7E:19:23 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1942 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/eHoCUYF1oWOp7ktVi0il_tp-GSM.roa Signing time: Fri 22 Aug 2025 09:02:54 +0000 ROA not before: Fri 22 Aug 2025 09:02:54 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 3462 IP address blocks: 220.128.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 00:46:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6466 (0x1942) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 22 09:02:54 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=787A02518175A163A9EE4B558B48A5FEDA7E1923 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:7b:70:fb:56:7b:de:61:46:7d:b8:c1:d8:4d: cf:d9:55:d7:18:f7:db:32:64:49:ab:56:33:81:9f: 4a:f8:ef:81:16:59:5e:4d:59:2d:20:19:48:39:cf: fe:6f:91:ae:84:13:20:9b:d4:9e:9e:98:6d:ce:8c: 65:96:47:01:6a:dd:80:2a:c2:12:41:3f:80:ea:b1: 1c:b2:cb:71:30:dc:37:d9:4a:90:d8:df:95:4d:8d: ca:da:82:5a:7f:3e:a4:db:5a:7e:1e:27:63:21:65: 84:92:da:46:1a:de:74:2e:55:fe:28:c7:94:cc:9c: c5:db:e0:c4:c8:73:18:01:33:58:f7:b2:7a:61:74: a8:a4:15:2a:60:53:ef:fd:b3:f2:ab:0a:98:d0:e5: 38:1b:46:b2:19:1e:6f:4b:4e:97:93:4f:90:5d:a3: 1d:c3:8c:5f:7d:77:da:91:ea:b0:c8:82:d6:9f:59: 0e:a9:c7:8f:5c:d7:5e:82:47:f9:3d:ef:31:88:20: b5:54:08:6a:e9:23:7e:5a:af:fc:d1:3b:bf:b9:bb: 29:79:8e:40:31:05:79:62:84:af:9d:25:61:c5:ee: be:ad:2f:04:f6:ed:e1:87:23:ed:74:aa:0b:cc:6b: f5:a4:4e:85:25:67:46:21:b6:f5:56:7c:d9:94:a5: dc:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:7A:02:51:81:75:A1:63:A9:EE:4B:55:8B:48:A5:FE:DA:7E:19:23 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/eHoCUYF1oWOp7ktVi0il_tp-GSM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 220.128.128.0/17 Signature Algorithm: sha256WithRSAEncryption 3c:70:f1:02:ef:eb:e8:2a:69:85:f0:b7:cc:23:3c:59:84:98: ab:7d:f9:29:60:d5:ca:4a:9f:83:ae:df:29:76:ed:44:85:a4: 5c:d0:63:96:2f:f7:90:fb:80:e8:6f:46:54:2d:32:e1:2e:3b: ae:be:20:d6:1c:85:1b:65:c7:78:bf:12:42:61:13:30:03:9e: ed:af:aa:66:7d:a8:61:9b:74:c1:d0:4a:ed:08:90:55:82:49: 65:02:be:14:82:a5:ad:1e:48:f8:6e:df:e4:98:28:0c:c4:44: 49:48:b0:8a:10:7f:3a:b8:fb:14:51:11:b7:ea:39:c1:e6:ff: 33:c9:70:29:96:5e:8e:15:a9:1e:ff:96:72:37:1c:3a:84:2b: 4d:62:83:15:5a:8a:bd:33:8a:0b:e8:0e:cd:c3:43:34:97:4b: 47:03:fa:24:8a:e4:d6:4a:8f:6e:86:25:fc:be:d8:6f:46:98: 5a:85:30:32:3f:15:a5:c9:c5:1a:5f:f1:11:ad:09:d8:51:aa: 45:ee:96:e0:1c:38:a9:dc:28:8a:65:d2:93:64:b1:16:ae:b4: f4:8c:7f:a0:b8:c0:c7:f5:28:27:58:cc:54:85:ed:b9:9d:d4: 85:57:5e:68:da:b9:45:50:e0:9b:e0:fb:38:49:ae:51:d4:ce: 7a:56:fb:45 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICGUIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw OTAyNTRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDc4N0EwMjUxODE3NUEx NjNBOUVFNEI1NThCNDhBNUZFREE3RTE5MjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJe3D7VnveYUZ9uMHYTc/ZVdcY99syZEmrVjOBn0r474EWWV5N WS0gGUg5z/5vka6EEyCb1J6emG3OjGWWRwFq3YAqwhJBP4DqsRyyy3Ew3DfZSpDY 35VNjcraglp/PqTbWn4eJ2MhZYSS2kYa3nQuVf4ox5TMnMXb4MTIcxgBM1j3snph dKikFSpgU+/9s/KrCpjQ5TgbRrIZHm9LTpeTT5Bdox3DjF99d9qR6rDIgtafWQ6p x49c116CR/k97zGIILVUCGrpI35ar/zRO7+5uyl5jkAxBXlihK+dJWHF7r6tLwT2 7eGHI+10qgvMa/WkToUlZ0YhtvVWfNmUpdz/AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUeHoCUYF1oWOp7ktVi0il/tp+GSMwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9lSG9DVVlGMW9XT3A3a3RWaTBp bF90cC1HU00ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQH3ICA MA0GCSqGSIb3DQEBCwUAA4IBAQA8cPEC7+voKmmF8LfMIzxZhJirffkpYNXKSp+D rt8pdu1EhaRc0GOWL/eQ+4Dob0ZULTLhLjuuviDWHIUbZcd4vxJCYRMwA57tr6pm fahhm3TB0ErtCJBVgkllAr4UgqWtHkj4bt/kmCgMxERJSLCKEH86uPsUURG36jnB 5v8zyXApll6OFake/5ZyNxw6hCtNYoMVWoq9M4oL6A7Nw0M0l0tHA/okiuTWSo9u hiX8vthvRphahTAyPxWlycUaX/ERrQnYUapF7pbgHDip3CiKZdKTZLEWrrT0jH+g uMDH9SgnWMxUhe25ndSFV15o2rlFUOCb4Ps4Sa5R1M56VvtF -----END CERTIFICATE-----Generated at Fri Sep 5 21:10:58 2025 by rpki-client