$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/i8XHoGI8KA-YIndOt2RoFLPCV1s.roa File: i8XHoGI8KA-YIndOt2RoFLPCV1s.roa (raw, json) Hash identifier: iv+pwROVMcZ6c5YdrEvqL0+Q7ZE981IsfLJjZ3AVVPc= Subject key identifier: 8B:C5:C7:A0:62:3C:28:0F:98:22:77:4E:B7:64:68:14:B3:C2:57:5B Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 191A Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/i8XHoGI8KA-YIndOt2RoFLPCV1s.roa Signing time: Fri 22 Aug 2025 09:02:45 +0000 ROA not before: Fri 22 Aug 2025 09:02:45 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 3462 IP address blocks: 125.224.0.0/13 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 00:46:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6426 (0x191a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 22 09:02:45 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8BC5C7A0623C280F9822774EB7646814B3C2575B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:98:95:37:57:0a:55:5c:5d:ac:d0:2e:80:bc: 6b:9f:08:39:78:84:d2:0b:e9:93:42:14:42:8a:dd: 24:80:a7:b1:1f:c8:aa:02:cc:96:14:b3:13:c5:9a: 0f:34:4f:ad:b1:e4:ac:5e:b3:e6:58:7d:f6:a8:35: 60:8e:d3:49:46:29:52:16:54:fa:58:b5:be:b4:80: 77:c9:fb:9c:0d:6e:0d:36:53:b7:a4:4e:67:ce:e1: 74:4d:94:fc:67:0f:ea:01:f2:e3:11:a3:32:23:57: ec:f7:d8:37:90:d3:0f:d0:33:b6:a9:cc:bc:d8:a2: f4:d4:27:30:57:16:22:45:de:12:18:ff:e1:8a:43: 05:9c:89:f1:e9:ee:f8:a3:c8:2d:d7:3c:e5:4b:df: 2e:02:22:d5:8f:65:2b:ba:9a:2c:86:ae:95:47:69: 43:8e:e3:db:dd:ee:cf:84:a0:8b:6d:a3:96:dc:dc: 48:e1:9c:5b:c9:1e:94:aa:99:0b:0a:62:48:98:62: 0d:28:eb:a7:d9:55:fc:81:e7:41:40:cb:5c:61:cf: 31:27:9c:05:0a:50:d7:1b:18:b7:48:78:de:8c:94: a6:9c:df:3a:95:c0:6f:a4:00:b6:73:97:79:83:46: e5:39:b9:bf:42:9d:01:fd:ef:25:5d:34:46:29:17: dd:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:C5:C7:A0:62:3C:28:0F:98:22:77:4E:B7:64:68:14:B3:C2:57:5B X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/i8XHoGI8KA-YIndOt2RoFLPCV1s.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 125.224.0.0/13 Signature Algorithm: sha256WithRSAEncryption 39:68:60:14:7a:a6:aa:eb:b5:6e:28:52:0f:e9:81:3b:8b:d3: 31:e1:7d:d8:7e:ef:b6:25:79:04:ba:a6:82:c4:d3:af:80:7e: 55:60:3d:1e:35:17:27:cc:64:9c:83:6f:91:7c:62:ff:6e:4e: cd:d4:3e:1f:90:d0:91:2f:e6:8d:88:c0:77:5c:d4:23:c8:45: 81:b0:89:ca:c7:0e:ab:33:4f:31:22:1f:5f:21:b0:57:9c:95: e8:d9:d6:af:4e:42:42:81:4f:fd:e3:18:c4:c5:26:c1:b5:c0: 49:fd:9c:db:0b:e2:c2:0f:6f:d8:20:0f:55:7f:f4:2c:ad:e0: 40:b9:e1:e9:14:02:29:0b:2d:da:fc:17:60:32:28:77:31:88: 3e:e9:e2:eb:66:fb:e8:57:70:b2:72:f5:34:45:fb:24:7a:ef: 9b:40:a6:3b:4b:3e:60:9c:e7:a4:33:2c:24:03:e0:43:65:54: f8:a1:a4:77:17:c7:fa:ec:88:c3:13:b4:1b:44:93:fa:3e:ef: 56:68:fc:56:5d:47:79:8d:ab:ab:50:0e:4e:fe:cf:3d:13:3d: 07:17:39:cc:88:1c:7d:c0:36:fd:4a:16:84:79:0f:4e:df:95: 4a:7d:d9:d1:e9:07:07:d1:c4:00:83:59:c5:bc:ab:ba:cb:b4: 07:c9:ac:6a -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICGRowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw OTAyNDVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDhCQzVDN0EwNjIzQzI4 MEY5ODIyNzc0RUI3NjQ2ODE0QjNDMjU3NUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFmJU3VwpVXF2s0C6AvGufCDl4hNIL6ZNCFEKK3SSAp7EfyKoC zJYUsxPFmg80T62x5Kxes+ZYffaoNWCO00lGKVIWVPpYtb60gHfJ+5wNbg02U7ek TmfO4XRNlPxnD+oB8uMRozIjV+z32DeQ0w/QM7apzLzYovTUJzBXFiJF3hIY/+GK QwWcifHp7vijyC3XPOVL3y4CItWPZSu6miyGrpVHaUOO49vd7s+EoItto5bc3Ejh nFvJHpSqmQsKYkiYYg0o66fZVfyB50FAy1xhzzEnnAUKUNcbGLdIeN6MlKac3zqV wG+kALZzl3mDRuU5ub9CnQH97yVdNEYpF92FAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUi8XHoGI8KA+YIndOt2RoFLPCV1swHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9pOFhIb0dJOEtBLVlJbmRPdDJS b0ZMUENWMXMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMDfeAw DQYJKoZIhvcNAQELBQADggEBADloYBR6pqrrtW4oUg/pgTuL0zHhfdh+77YleQS6 poLE06+AflVgPR41FyfMZJyDb5F8Yv9uTs3UPh+Q0JEv5o2IwHdc1CPIRYGwicrH DqszTzEiH18hsFeclejZ1q9OQkKBT/3jGMTFJsG1wEn9nNsL4sIPb9ggD1V/9Cyt 4EC54ekUAikLLdr8F2AyKHcxiD7p4utm++hXcLJy9TRF+yR675tApjtLPmCc56Qz LCQD4ENlVPihpHcXx/rsiMMTtBtEk/o+71Zo/FZdR3mNq6tQDk7+zz0TPQcXOcyI HH3ANv1KFoR5D07flUp92dHpBwfRxACDWcW8q7rLtAfJrGo= -----END CERTIFICATE-----Generated at Fri Sep 5 21:10:21 2025 by rpki-client