$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/u4rmndvztRBYUW-FzQoIGUyzzgI.roa File: u4rmndvztRBYUW-FzQoIGUyzzgI.roa (raw, json) Hash identifier: yROzfchNsOZPPJJrM4BumbLEyx8ZF6Uit64RzJw+MFE= Subject key identifier: BB:8A:E6:9D:DB:F3:B5:10:58:51:6F:85:CD:0A:08:19:4C:B3:CE:02 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 18F0 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/u4rmndvztRBYUW-FzQoIGUyzzgI.roa Signing time: Fri 22 Aug 2025 09:02:38 +0000 ROA not before: Fri 22 Aug 2025 09:02:38 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 3462 IP address blocks: 218.160.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 00:46:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6384 (0x18f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 22 09:02:38 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=BB8AE69DDBF3B51058516F85CD0A08194CB3CE02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:66:97:88:de:cf:3c:9d:59:59:b5:8d:4d:9b: d3:90:c9:7f:3a:f3:a4:78:b6:e9:1a:b6:c9:a8:0b: 34:1b:61:33:45:cb:93:12:90:47:be:26:70:f7:8d: e7:ed:b5:71:b1:17:2d:0f:b6:8f:50:68:d2:d8:ab: d0:c6:04:34:33:41:5e:62:d5:83:a2:b1:1d:1d:68: 67:b9:30:da:3a:b1:c8:23:3c:ca:6a:5c:fb:e5:a3: b4:f0:b8:52:c3:90:d3:95:67:29:e7:75:6b:5a:77: b4:f7:58:24:ab:78:7f:3e:3d:b0:b6:10:35:71:b1: 4b:00:ac:9c:c3:91:9d:1f:99:91:c9:06:ae:c6:25: 96:b3:8a:91:c8:e8:dc:62:ad:51:64:5b:9e:69:5e: 2a:64:2b:3f:e4:89:37:d9:ff:bf:28:b7:30:d1:1c: 82:c5:a8:90:c2:d9:49:40:42:db:5d:30:c4:be:cd: 9e:75:de:cd:01:d8:44:1f:9b:b0:22:ac:f9:cf:00: b8:67:e4:da:cb:e6:6e:2f:6a:4d:e6:58:39:da:43: 6e:8f:3b:c3:7d:8a:d6:84:24:17:6d:8c:e7:5a:0b: 9e:ad:08:48:cb:72:5d:55:eb:3e:03:34:98:f9:e9: c6:05:ff:01:05:47:86:2e:c1:6c:21:32:b6:80:0e: c5:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:8A:E6:9D:DB:F3:B5:10:58:51:6F:85:CD:0A:08:19:4C:B3:CE:02 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/u4rmndvztRBYUW-FzQoIGUyzzgI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 218.160.0.0/14 Signature Algorithm: sha256WithRSAEncryption c4:cc:7e:75:ef:b5:87:f0:64:d5:d5:07:46:5a:ab:a5:5e:9f: 39:76:3c:95:04:c8:43:88:34:ed:9a:af:4f:ec:38:0e:6e:2c: f5:6e:44:2e:83:83:67:6b:a3:49:f7:3d:91:12:f1:1f:8e:fd: 28:fa:50:34:1d:d0:49:e3:4a:b9:e8:d9:b7:3f:ba:51:44:ff: e1:47:40:cc:1e:e3:aa:00:b7:2f:12:d8:44:f9:b4:56:c3:d3: d9:34:dd:d5:0d:b3:0a:f6:7a:58:80:8e:24:0e:87:f6:b6:cd: cd:fd:cd:83:5e:47:06:d7:9e:27:10:65:7e:38:3d:cc:47:c1: 77:bf:d7:e4:b5:92:38:27:e1:93:58:47:33:a5:65:53:ad:bb: 9c:8e:0d:d7:04:dc:b1:a6:38:83:78:eb:e6:44:11:45:fc:9e: 0b:bb:ae:8c:56:c5:b5:f1:78:60:bc:16:c8:c6:cb:3a:bd:df: 4e:c1:80:f4:3f:52:bc:2a:0f:47:65:77:83:85:08:e1:2b:b0: 87:e6:f4:2b:5e:e4:5a:72:9e:e3:3d:e4:f6:7b:f0:f8:ba:80: ce:19:49:6c:fe:6b:f2:5b:27:4e:3a:80:f0:c3:84:5f:08:cf: db:e2:cf:a2:44:fb:de:02:14:50:85:e7:36:43:6d:46:40:92: 60:d9:1a:a3 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICGPAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw OTAyMzhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEJCOEFFNjlEREJGM0I1 MTA1ODUxNkY4NUNEMEEwODE5NENCM0NFMDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRZpeI3s88nVlZtY1Nm9OQyX8686R4tukatsmoCzQbYTNFy5MS kEe+JnD3jefttXGxFy0Pto9QaNLYq9DGBDQzQV5i1YOisR0daGe5MNo6scgjPMpq XPvlo7TwuFLDkNOVZynndWtad7T3WCSreH8+PbC2EDVxsUsArJzDkZ0fmZHJBq7G JZazipHI6NxirVFkW55pXipkKz/kiTfZ/78otzDRHILFqJDC2UlAQttdMMS+zZ51 3s0B2EQfm7AirPnPALhn5NrL5m4vak3mWDnaQ26PO8N9itaEJBdtjOdaC56tCEjL cl1V6z4DNJj56cYF/wEFR4YuwWwhMraADsXhAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUu4rmndvztRBYUW+FzQoIGUyzzgIwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC91NHJtbmR2enRSQllVVy1GelFv SUdVeXp6Z0kucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMC2qAw DQYJKoZIhvcNAQELBQADggEBAMTMfnXvtYfwZNXVB0Zaq6Venzl2PJUEyEOINO2a r0/sOA5uLPVuRC6Dg2dro0n3PZES8R+O/Sj6UDQd0EnjSrno2bc/ulFE/+FHQMwe 46oAty8S2ET5tFbD09k03dUNswr2eliAjiQOh/a2zc39zYNeRwbXnicQZX44PcxH wXe/1+S1kjgn4ZNYRzOlZVOtu5yODdcE3LGmOIN46+ZEEUX8ngu7roxWxbXxeGC8 FsjGyzq9307BgPQ/UrwqD0dld4OFCOErsIfm9Cte5FpynuM95PZ78Pi6gM4ZSWz+ a/JbJ046gPDDhF8Iz9viz6JE+94CFFCF5zZDbUZAkmDZGqM= -----END CERTIFICATE-----Generated at Fri Sep 5 21:15:35 2025 by rpki-client