$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/tqqkgXhi6m_9PKsNR9sV8O0tvnE.roa File: tqqkgXhi6m_9PKsNR9sV8O0tvnE.roa (raw, json) Hash identifier: V3hi1HTRSylO2RFr0uRB32/ONg9rFjdOFBpBOlRieNA= Subject key identifier: B6:AA:A4:81:78:62:EA:6F:FD:3C:AB:0D:47:DB:15:F0:ED:2D:BE:71 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1963 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/tqqkgXhi6m_9PKsNR9sV8O0tvnE.roa Signing time: Fri 22 Aug 2025 09:03:04 +0000 ROA not before: Fri 22 Aug 2025 09:03:04 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 3462 IP address blocks: 103.25.236.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 00:46:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6499 (0x1963) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 22 09:03:04 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B6AAA4817862EA6FFD3CAB0D47DB15F0ED2DBE71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:55:5e:90:b6:c3:2e:8b:79:68:3a:77:c3:78: 95:1d:9e:5b:75:92:a2:91:bf:77:f5:10:66:25:df: 02:b8:51:b7:8d:3f:34:95:bf:15:59:75:27:ed:2f: a5:eb:94:07:93:e6:e3:d1:11:4a:a4:8d:a9:5e:47: 0c:3a:e7:ba:64:b1:c8:55:9e:e5:0e:62:44:7d:16: 05:cc:b6:1d:98:4f:98:83:bb:0c:8c:12:a6:26:ca: f2:75:6f:56:39:0f:8d:44:04:8e:a6:11:3a:26:d8: 12:17:2a:0d:37:41:9b:f8:a1:09:b1:df:9c:3c:50: eb:f4:1a:de:a0:41:57:16:cc:fa:98:92:7c:b2:30: 99:52:38:ba:a1:2e:db:c9:9f:98:20:22:42:57:5a: 88:4d:93:79:df:73:38:90:d4:69:43:6f:b4:1c:03: c0:c1:16:e8:69:38:8d:73:de:ac:b5:52:34:37:69: 30:c8:cf:fd:b4:07:18:87:e5:ed:1a:79:6d:47:46: 85:32:bf:ed:97:6f:c8:fd:43:99:c8:fb:ef:92:68: e4:d2:8d:bc:d3:66:aa:e2:3c:5b:c0:a5:ff:3f:98: 6d:c4:80:3c:8d:ad:20:68:03:ec:07:98:0d:15:29: e2:cd:70:7c:0b:6e:45:f7:70:b2:2a:21:7c:16:58: 83:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:AA:A4:81:78:62:EA:6F:FD:3C:AB:0D:47:DB:15:F0:ED:2D:BE:71 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/tqqkgXhi6m_9PKsNR9sV8O0tvnE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.25.236.0/22 Signature Algorithm: sha256WithRSAEncryption ca:1b:55:6f:73:db:b2:8b:f4:43:81:81:5a:19:19:c5:56:29: f0:9b:cd:2d:61:5a:36:4a:42:49:33:a5:41:b0:6f:71:b6:ae: e9:10:ff:64:ed:65:14:14:9e:e2:84:49:fd:2b:c5:17:ec:82: b1:c5:90:ad:9f:e4:1d:3c:aa:a7:85:7b:9c:ea:17:00:0a:b6: 48:a9:e1:1a:58:c4:4b:89:9a:70:34:b5:93:c2:4c:2b:8d:96: 88:d0:40:07:8c:62:e6:c6:b5:84:b4:c8:9e:88:f4:1c:39:93: cc:e1:b8:52:85:82:e5:af:b3:0f:bd:62:30:26:42:57:aa:d6: c2:3b:2f:f8:85:4f:3a:97:0e:65:d1:9e:01:00:ae:a4:03:71: 43:df:67:08:f3:91:f4:85:04:16:1d:9d:3f:f3:df:2c:af:4e: 92:cc:d0:df:f1:f0:b5:67:b2:08:98:23:85:71:14:22:a7:80: 0c:7b:4b:18:53:74:37:12:b0:38:be:45:85:64:39:77:47:db: 39:26:f0:f8:3b:22:b6:e8:1a:3e:54:ba:36:ea:59:63:86:74: e1:d7:fd:19:50:3d:aa:97:88:c0:58:be:70:c2:64:05:2d:94: fa:42:0c:e1:35:69:58:6f:62:af:c3:7c:c9:9d:fa:1f:90:34: f9:b5:ec:1a -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICGWMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw OTAzMDRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEI2QUFBNDgxNzg2MkVB NkZGRDNDQUIwRDQ3REIxNUYwRUQyREJFNzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLVV6QtsMui3loOnfDeJUdnlt1kqKRv3f1EGYl3wK4UbeNPzSV vxVZdSftL6XrlAeT5uPREUqkjaleRww657pkschVnuUOYkR9FgXMth2YT5iDuwyM EqYmyvJ1b1Y5D41EBI6mETom2BIXKg03QZv4oQmx35w8UOv0Gt6gQVcWzPqYknyy MJlSOLqhLtvJn5ggIkJXWohNk3nfcziQ1GlDb7QcA8DBFuhpOI1z3qy1UjQ3aTDI z/20BxiH5e0aeW1HRoUyv+2Xb8j9Q5nI+++SaOTSjbzTZqriPFvApf8/mG3EgDyN rSBoA+wHmA0VKeLNcHwLbkX3cLIqIXwWWIP7AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUtqqkgXhi6m/9PKsNR9sV8O0tvnEwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC90cXFrZ1hoaTZtXzlQS3NOUjlz VjhPMHR2bkUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZxns MA0GCSqGSIb3DQEBCwUAA4IBAQDKG1Vvc9uyi/RDgYFaGRnFVinwm80tYVo2SkJJ M6VBsG9xtq7pEP9k7WUUFJ7ihEn9K8UX7IKxxZCtn+QdPKqnhXuc6hcACrZIqeEa WMRLiZpwNLWTwkwrjZaI0EAHjGLmxrWEtMieiPQcOZPM4bhShYLlr7MPvWIwJkJX qtbCOy/4hU86lw5l0Z4BAK6kA3FD32cI85H0hQQWHZ0/898sr06SzNDf8fC1Z7II mCOFcRQip4AMe0sYU3Q3ErA4vkWFZDl3R9s5JvD4OyK26Bo+VLo26lljhnTh1/0Z UD2ql4jAWL5wwmQFLZT6QgzhNWlYb2Kvw3zJnfofkDT5tewa -----END CERTIFICATE-----Generated at Fri Sep 5 21:15:35 2025 by rpki-client