$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/pQTsOQb8whiEpIvlEXIE53NYDkY.roa File: pQTsOQb8whiEpIvlEXIE53NYDkY.roa (raw, json) Hash identifier: xZmTp52SoL7PSSjjoo/Cr2bq4eflIzQNyoI2vHivHjo= Subject key identifier: A5:04:EC:39:06:FC:C2:18:84:A4:8B:E5:11:72:04:E7:73:58:0E:46 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 192C Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/pQTsOQb8whiEpIvlEXIE53NYDkY.roa Signing time: Fri 22 Aug 2025 09:02:50 +0000 ROA not before: Fri 22 Aug 2025 09:02:50 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 3462 IP address blocks: 202.39.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 00:46:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6444 (0x192c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 22 09:02:50 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=A504EC3906FCC21884A48BE5117204E773580E46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:2d:7f:6e:f1:ea:80:92:88:8b:3d:88:b7:e9: 6e:f4:5e:4e:3d:23:9c:9d:43:ff:19:b9:fc:ad:ef: 30:e1:09:7c:e7:4d:a5:50:4f:ae:61:86:5f:f2:3d: 83:b8:d4:8b:1b:56:0f:bc:85:b7:15:6c:f4:a5:3b: 5c:3b:16:b6:72:cd:21:05:06:26:6a:7b:9d:b5:61: 3e:df:1a:39:a9:dc:04:68:ef:0a:c4:53:a9:bf:5b: 5a:f4:59:4c:5d:bb:95:a9:2f:f4:73:93:5c:03:03: b3:a5:3e:41:10:c9:ff:71:ad:d1:73:05:73:7d:ab: 26:88:04:ab:ca:9a:8a:38:29:24:83:c6:9d:99:f8: bd:62:81:76:6e:11:d3:88:10:af:b7:71:48:73:b4: d2:c6:79:58:6e:cd:f7:fb:2e:18:38:f4:45:e9:c8: 76:5b:4a:39:ce:5d:4b:9a:2b:b3:45:79:73:60:dd: 27:e0:f8:cc:73:1a:08:74:23:3a:ab:d6:c1:b2:58: b7:c5:6f:aa:94:43:7d:16:85:0b:7f:a1:85:c8:ca: da:88:1b:88:bf:7c:82:82:a4:1c:32:de:c8:6a:49: 20:54:55:33:82:b2:7e:b9:4e:0b:74:c8:f2:c9:44: 80:7d:b1:b2:62:0f:9e:e4:2e:f6:e3:7d:cf:bd:13: 92:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:04:EC:39:06:FC:C2:18:84:A4:8B:E5:11:72:04:E7:73:58:0E:46 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/pQTsOQb8whiEpIvlEXIE53NYDkY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.39.0.0/18 Signature Algorithm: sha256WithRSAEncryption 6c:cb:49:70:22:49:a0:fb:02:f3:6f:65:2a:9c:d6:db:0f:71: 13:63:55:bd:2c:0a:10:32:85:e1:a9:b1:b1:0e:c3:70:8b:58: 2d:71:8f:d7:f8:0a:17:03:34:d4:c0:e4:c5:3c:f7:d3:6c:29: 62:3f:77:2a:66:21:66:46:f8:d2:75:d5:48:ff:ef:01:42:1d: 29:0c:0c:a4:bd:6f:23:99:e3:3d:13:34:76:9c:03:e7:54:29: ba:c6:35:b4:d8:9c:8c:e7:59:ba:22:74:41:f4:1c:0d:fb:f4: 2b:91:a4:b2:ae:ed:16:d6:95:3c:5c:fb:1c:b4:1d:7f:c0:22: 9e:a7:6e:7d:93:70:a6:f6:91:d7:85:d8:bb:8c:a0:d1:4c:72: dd:a0:fe:0b:03:bc:9f:7a:20:95:48:1f:73:86:f1:3e:40:49: 7a:bb:4a:05:b2:aa:5a:69:4a:c8:08:66:fc:ce:93:8b:3d:98: 45:c5:ad:05:d7:6f:e3:04:0d:d0:6e:7b:9f:5f:e8:15:1d:fc: df:cb:36:5d:7e:55:d5:21:8f:78:94:6b:be:93:bb:f8:c2:85: e4:f0:f5:ff:33:28:4c:df:8f:85:40:c8:88:c2:31:83:44:f7: 07:29:98:6f:83:82:88:ab:00:b0:a3:76:84:45:f9:ae:ca:e6: b3:fc:e3:af -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICGSwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw OTAyNTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEE1MDRFQzM5MDZGQ0My MTg4NEE0OEJFNTExNzIwNEU3NzM1ODBFNDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLLX9u8eqAkoiLPYi36W70Xk49I5ydQ/8Zufyt7zDhCXznTaVQ T65hhl/yPYO41IsbVg+8hbcVbPSlO1w7FrZyzSEFBiZqe521YT7fGjmp3ARo7wrE U6m/W1r0WUxdu5WpL/Rzk1wDA7OlPkEQyf9xrdFzBXN9qyaIBKvKmoo4KSSDxp2Z +L1igXZuEdOIEK+3cUhztNLGeVhuzff7Lhg49EXpyHZbSjnOXUuaK7NFeXNg3Sfg +MxzGgh0Izqr1sGyWLfFb6qUQ30WhQt/oYXIytqIG4i/fIKCpBwy3shqSSBUVTOC sn65Tgt0yPLJRIB9sbJiD57kLvbjfc+9E5KZAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUpQTsOQb8whiEpIvlEXIE53NYDkYwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9wUVRzT1FiOHdoaUVwSXZsRVhJ RTUzTllEa1kucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGyicA MA0GCSqGSIb3DQEBCwUAA4IBAQBsy0lwIkmg+wLzb2UqnNbbD3ETY1W9LAoQMoXh qbGxDsNwi1gtcY/X+AoXAzTUwOTFPPfTbCliP3cqZiFmRvjSddVI/+8BQh0pDAyk vW8jmeM9EzR2nAPnVCm6xjW02JyM51m6InRB9BwN+/QrkaSyru0W1pU8XPsctB1/ wCKep259k3Cm9pHXhdi7jKDRTHLdoP4LA7yfeiCVSB9zhvE+QEl6u0oFsqpaaUrI CGb8zpOLPZhFxa0F12/jBA3QbnufX+gVHfzfyzZdflXVIY94lGu+k7v4woXk8PX/ MyhM34+FQMiIwjGDRPcHKZhvg4KIqwCwo3aERfmuyuaz/OOv -----END CERTIFICATE-----Generated at Fri Sep 5 21:15:37 2025 by rpki-client