$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/kwCs7uXI0zqRJCZ1dHa088ElfJA.roa File: kwCs7uXI0zqRJCZ1dHa088ElfJA.roa (raw, json) Hash identifier: 3fs9+igzCDzwiaX8F9SkdQAPGcXV1vrIykAUl4qkFzc= Subject key identifier: 93:00:AC:EE:E5:C8:D3:3A:91:24:26:75:74:76:B4:F3:C1:25:7C:90 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 192B Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/kwCs7uXI0zqRJCZ1dHa088ElfJA.roa Signing time: Fri 22 Aug 2025 09:02:50 +0000 ROA not before: Fri 22 Aug 2025 09:02:50 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 198949 IP address blocks: 210.61.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 00:46:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6443 (0x192b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 22 09:02:50 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=9300ACEEE5C8D33A912426757476B4F3C1257C90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:2a:a4:dd:38:df:0c:3c:06:3c:5f:cd:71:f2: 08:9f:fb:1d:d8:a3:36:1e:4d:b0:3a:f5:e4:30:13: c5:18:5f:73:6a:de:6d:cb:86:f9:68:ef:d4:ed:af: 13:08:00:bd:79:09:35:dd:21:11:63:3f:71:bd:ba: 04:b9:b0:8c:d4:87:dc:b3:31:3d:29:f9:26:bb:84: fc:13:cd:8f:19:05:41:a8:4b:cc:4f:19:44:0d:1c: 20:4c:93:de:0b:e5:56:8e:12:f8:19:3e:55:82:14: af:e6:ba:81:f8:7d:cb:8e:da:c7:19:e5:e4:ce:55: 7b:63:77:cc:6e:04:10:06:d7:7b:f4:00:8a:fc:60: 9c:a2:f4:33:dc:a3:8b:97:4f:e2:2b:57:2e:ec:67: df:bb:cc:76:93:81:e5:69:72:8a:f7:7e:9e:2c:da: 0c:db:69:4e:b6:07:58:bf:ff:6f:24:23:b6:36:25: 46:b7:cd:17:87:0c:7f:51:09:f0:83:40:3b:4e:dc: d4:3e:07:c5:5a:5d:fb:5a:84:44:07:8c:d0:f9:0e: 78:22:9f:ed:98:91:d5:02:70:8d:12:2e:a4:78:7d: 29:09:60:f6:a7:e4:d9:40:7b:32:e4:0d:a2:e1:f3: 9c:49:d8:f2:0c:84:03:80:5e:49:67:a2:1e:09:fe: 9f:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:00:AC:EE:E5:C8:D3:3A:91:24:26:75:74:76:B4:F3:C1:25:7C:90 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/kwCs7uXI0zqRJCZ1dHa088ElfJA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.61.3.0/24 Signature Algorithm: sha256WithRSAEncryption 73:80:54:4b:33:95:3a:5d:3f:79:73:5b:76:4a:39:7a:0c:06: 0c:ff:48:09:04:9c:9d:fb:72:04:6c:2e:71:be:6c:5d:d1:6c: 54:84:ae:bd:d2:af:f9:56:46:53:92:49:86:e8:5b:a5:ba:8a: b2:1e:67:f6:a0:ef:52:e5:73:3b:1a:05:9a:d0:7f:09:c9:4c: cf:65:2c:51:4d:12:4b:b5:f9:89:48:38:d3:fc:ee:07:ab:d9: 46:e4:d5:93:67:b1:35:9d:dc:a5:23:d2:a6:d3:90:fa:7f:1c: 4a:06:63:1c:24:ca:9a:b6:b9:e3:a2:94:73:61:5f:c2:3e:c4: 5b:84:66:7f:f0:ea:20:18:1c:ce:f4:c0:6c:01:b4:b8:2d:55: b1:81:0a:93:5e:86:9e:68:b2:2e:ff:9d:71:ab:56:da:7b:61: 4b:c0:09:17:ae:62:62:64:01:af:a7:69:f4:00:1f:64:dc:38: de:db:53:99:15:f0:74:e3:f6:d7:a1:da:a6:79:f9:2c:59:9a: ce:6e:b0:ed:83:89:a9:a4:d6:a8:76:01:dd:2a:76:40:e8:2f: f6:12:fd:92:38:86:32:73:19:79:17:3c:1e:ae:21:e9:91:61: 14:c0:bd:7c:01:65:99:c4:3c:fd:65:62:17:8d:e0:ca:33:e1: 5c:bc:25:8c -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICGSswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw OTAyNTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDkzMDBBQ0VFRTVDOEQz M0E5MTI0MjY3NTc0NzZCNEYzQzEyNTdDOTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDhKqTdON8MPAY8X81x8gif+x3YozYeTbA69eQwE8UYX3Nq3m3L hvlo79TtrxMIAL15CTXdIRFjP3G9ugS5sIzUh9yzMT0p+Sa7hPwTzY8ZBUGoS8xP GUQNHCBMk94L5VaOEvgZPlWCFK/muoH4fcuO2scZ5eTOVXtjd8xuBBAG13v0AIr8 YJyi9DPco4uXT+IrVy7sZ9+7zHaTgeVpcor3fp4s2gzbaU62B1i//28kI7Y2JUa3 zReHDH9RCfCDQDtO3NQ+B8VaXftahEQHjND5Dngin+2YkdUCcI0SLqR4fSkJYPan 5NlAezLkDaLh85xJ2PIMhAOAXklnoh4J/p+jAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUkwCs7uXI0zqRJCZ1dHa088ElfJAwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9rd0NzN3VYSTB6cVJKQ1oxZEhh MDg4RWxmSkEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0j0D MA0GCSqGSIb3DQEBCwUAA4IBAQBzgFRLM5U6XT95c1t2Sjl6DAYM/0gJBJyd+3IE bC5xvmxd0WxUhK690q/5VkZTkkmG6FuluoqyHmf2oO9S5XM7GgWa0H8JyUzPZSxR TRJLtfmJSDjT/O4Hq9lG5NWTZ7E1ndylI9Km05D6fxxKBmMcJMqatrnjopRzYV/C PsRbhGZ/8OogGBzO9MBsAbS4LVWxgQqTXoaeaLIu/51xq1bae2FLwAkXrmJiZAGv p2n0AB9k3Dje21OZFfB04/bXodqmefksWZrObrDtg4mppNaodgHdKnZA6C/2Ev2S OIYycxl5FzweriHpkWEUwL18AWWZxDz9ZWIXjeDKM+FcvCWM -----END CERTIFICATE-----Generated at Fri Sep 5 21:16:41 2025 by rpki-client