$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/pXELF7QBV5xED3cQw1HruqkTCPQ.roa File: pXELF7QBV5xED3cQw1HruqkTCPQ.roa (raw, json) Hash identifier: 6OORPA0wBEeDgQJzvxxld2GPgVXdzkEbhzTk2m3kGIk= Subject key identifier: A5:71:0B:17:B4:01:57:9C:44:0F:77:10:C3:51:EB:BA:A9:13:08:F4 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1935 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/pXELF7QBV5xED3cQw1HruqkTCPQ.roa Signing time: Fri 22 Aug 2025 09:02:52 +0000 ROA not before: Fri 22 Aug 2025 09:02:52 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 20940 IP address blocks: 2001:b034:700:580::/64 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 00:46:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6453 (0x1935) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 22 09:02:52 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=A5710B17B401579C440F7710C351EBBAA91308F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:c9:66:a8:2b:c3:07:c1:8a:42:b4:9c:78:10: 9b:f5:95:68:69:fa:ce:a4:d5:9b:f5:a9:41:d0:a2: 4b:7b:70:d1:87:61:52:e9:36:16:c3:e9:e0:97:36: 09:5d:7c:bf:0e:d6:cb:bb:5c:e8:ec:1a:3c:9b:2a: 13:84:22:87:5d:a0:a1:f9:a7:61:9c:0a:b1:09:f9: 5e:4d:72:fa:5c:35:87:79:b0:1b:b0:4c:d7:8b:a5: 5f:12:e1:92:cf:e5:27:59:23:a3:26:53:ac:b8:5a: 0b:cb:d3:0f:14:5b:4b:49:72:03:73:71:d7:78:06: 65:8f:1a:2d:cb:a2:c5:06:d2:70:fc:2d:a7:af:e4: d3:4c:b2:71:17:ca:7e:82:ac:f2:b8:c2:57:f1:e9: d2:d1:09:5f:55:fb:d4:04:b0:af:87:96:aa:90:99: a1:06:9f:4a:35:58:fa:85:cb:bc:12:45:f8:d1:20: 67:7f:bf:8b:b4:88:8e:ea:03:78:68:9d:f5:78:a6: fe:cb:e0:42:36:4a:4a:fb:cc:ed:ae:0f:70:67:e5: 3e:d2:b9:0d:91:dd:e3:7d:cb:ce:67:40:b2:0b:e6: 57:11:06:4c:c8:45:07:e4:a7:e4:34:2d:fd:a0:46: 08:b9:9d:68:ac:61:14:b4:8c:3e:db:d9:b0:ba:e1: 52:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:71:0B:17:B4:01:57:9C:44:0F:77:10:C3:51:EB:BA:A9:13:08:F4 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/pXELF7QBV5xED3cQw1HruqkTCPQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:b034:700:580::/64 Signature Algorithm: sha256WithRSAEncryption 7e:91:06:d7:ce:bd:f3:44:2f:fe:b9:e0:77:69:97:8e:9c:1e: ca:8f:18:53:bf:8a:15:ff:75:e1:34:1a:f5:f6:19:3f:c5:27: 3d:b0:4e:0f:db:09:27:66:0f:cc:58:d1:14:8a:25:1e:30:8d: f1:d6:aa:4c:a6:ad:3b:ba:31:44:de:57:e8:96:65:f8:ae:fe: 91:d2:a7:2e:ce:4b:e5:ae:3a:15:06:52:14:0a:d1:4d:a4:8d: 24:be:0d:2e:98:88:a9:8e:01:d6:d8:c8:45:82:f5:db:c4:fb: b1:58:df:b3:9a:f2:0f:da:84:ad:42:f8:6c:36:f9:15:0f:bd: c2:43:f8:07:3f:ab:35:f3:88:89:da:5b:7b:50:5c:41:0b:97: bd:c9:2d:f7:a2:5c:ed:2e:49:1e:5f:26:ad:73:7e:73:a6:15: ab:91:a1:5b:83:d1:10:84:c7:d5:17:f5:39:fa:c1:6a:b1:4a: ce:c7:c2:70:5c:77:2b:92:ea:56:d9:d2:41:a2:c3:b6:50:2e: 3b:ec:43:d1:e1:6d:0e:6d:04:77:86:e1:e4:c6:6a:5b:d1:38: f3:f5:e0:df:41:00:b8:ea:c1:9b:82:e1:c9:2e:05:f2:ec:32: d8:6d:d4:48:31:65:1d:54:7c:46:ad:4a:04:bf:a7:42:1b:f7: db:30:97:13 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICGTUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw OTAyNTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEE1NzEwQjE3QjQwMTU3 OUM0NDBGNzcxMEMzNTFFQkJBQTkxMzA4RjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSyWaoK8MHwYpCtJx4EJv1lWhp+s6k1Zv1qUHQokt7cNGHYVLp NhbD6eCXNgldfL8O1su7XOjsGjybKhOEIoddoKH5p2GcCrEJ+V5NcvpcNYd5sBuw TNeLpV8S4ZLP5SdZI6MmU6y4WgvL0w8UW0tJcgNzcdd4BmWPGi3LosUG0nD8Laev 5NNMsnEXyn6CrPK4wlfx6dLRCV9V+9QEsK+HlqqQmaEGn0o1WPqFy7wSRfjRIGd/ v4u0iI7qA3honfV4pv7L4EI2Skr7zO2uD3Bn5T7SuQ2R3eN9y85nQLIL5lcRBkzI RQfkp+Q0Lf2gRgi5nWisYRS0jD7b2bC64VIpAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUpXELF7QBV5xED3cQw1HruqkTCPQwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9wWEVMRjdRQlY1eEVEM2NRdzFI cnVxa1RDUFEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCQGCCsGAQUFBwEHAQH/BBUwEzARBAIAAjALAwkAIAGw NAcABYAwDQYJKoZIhvcNAQELBQADggEBAH6RBtfOvfNEL/654Hdpl46cHsqPGFO/ ihX/deE0GvX2GT/FJz2wTg/bCSdmD8xY0RSKJR4wjfHWqkymrTu6MUTeV+iWZfiu /pHSpy7OS+WuOhUGUhQK0U2kjSS+DS6YiKmOAdbYyEWC9dvE+7FY37Oa8g/ahK1C +Gw2+RUPvcJD+Ac/qzXziInaW3tQXEELl73JLfeiXO0uSR5fJq1zfnOmFauRoVuD 0RCEx9UX9Tn6wWqxSs7HwnBcdyuS6lbZ0kGiw7ZQLjvsQ9HhbQ5tBHeG4eTGalvR OPP14N9BALjqwZuC4ckuBfLsMtht1EgxZR1UfEatSgS/p0Ib99swlxM= -----END CERTIFICATE-----Generated at Fri Sep 5 21:08:47 2025 by rpki-client