$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/vAcb0kIhRihu5NxYOtACABwXDp0.roa File: vAcb0kIhRihu5NxYOtACABwXDp0.roa (raw, json) Hash identifier: NpigSV49pskTXEzbcL9TYZt8FEu8fw8cxLGYeaWsbao= Subject key identifier: BC:07:1B:D2:42:21:46:28:6E:E4:DC:58:3A:D0:02:00:1C:17:0E:9D Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 191F Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/vAcb0kIhRihu5NxYOtACABwXDp0.roa Signing time: Fri 22 Aug 2025 09:02:47 +0000 ROA not before: Fri 22 Aug 2025 09:02:47 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 54994 IP address blocks: 61.221.181.128/25 maxlen: 25 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 00:46:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6431 (0x191f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 22 09:02:47 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=BC071BD2422146286EE4DC583AD002001C170E9D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:25:22:0e:74:a3:94:08:4f:2b:2c:c0:eb:1e: d8:f9:53:3a:47:dc:f4:ae:2c:68:91:18:97:14:c2: c7:60:01:0f:3a:5f:51:69:f2:a1:1c:28:e3:a1:58: 52:4b:90:ec:46:fe:ce:e4:1e:05:dd:4f:4e:c0:be: 94:2a:be:ea:e1:d8:1e:34:d6:cc:46:d1:d5:ca:b7: 6c:e1:69:66:15:12:8a:f8:9b:df:ac:2b:74:58:67: 1f:d8:29:d1:d4:17:d4:98:df:1c:7e:d0:97:1b:de: 7d:d2:7a:2b:99:b9:d0:40:1d:ff:fb:4f:64:2a:c6: ef:22:0f:00:e4:ad:e5:7b:42:4c:a9:08:63:26:66: e7:a1:8a:c9:32:77:91:8e:e6:c2:cb:03:74:8f:27: 08:79:84:42:fa:6c:3f:55:aa:39:3a:b4:23:c6:96: e2:0e:ff:78:97:09:5c:da:a5:2a:b9:f1:bc:b4:8f: e6:c7:9b:85:2d:2b:8b:b5:a2:30:47:19:c9:13:d8: 93:d0:97:9d:b3:e3:91:62:10:77:b6:62:14:50:53: 3f:ce:11:a9:7e:2d:65:32:44:67:5a:5a:34:a8:1d: 19:aa:89:5b:4a:0a:c5:10:b5:85:08:b6:3b:b3:53: a4:2c:15:df:e0:38:c9:cf:8f:0e:42:f6:23:99:1b: 85:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:07:1B:D2:42:21:46:28:6E:E4:DC:58:3A:D0:02:00:1C:17:0E:9D X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/vAcb0kIhRihu5NxYOtACABwXDp0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.221.181.128/25 Signature Algorithm: sha256WithRSAEncryption 5c:ce:97:4b:b9:81:c1:51:bd:d8:81:3a:55:4e:96:63:63:b0: f8:05:ef:bb:7f:37:96:3d:fa:f5:92:63:56:87:f5:2a:2c:b1: ea:88:d7:ee:77:b9:c2:f7:1c:f9:90:12:18:e7:1d:d6:e3:d2: 84:27:2c:44:12:01:43:c2:96:7f:a6:82:6f:63:2e:ab:e9:fa: 0a:1c:6b:66:c6:3d:7a:e1:dc:9e:34:b0:86:45:a2:dd:a9:ff: 67:2b:b6:a7:1a:0b:0d:52:9b:2b:b9:b6:02:82:9d:97:c1:5c: bf:e6:8c:d8:46:e5:a4:d4:cc:63:5d:97:97:44:34:cd:6b:6b: 8e:88:58:e6:4a:a6:12:e5:e2:49:28:49:31:06:17:dc:27:d8: 04:2d:2c:09:22:d8:49:a3:08:17:5a:b2:57:6f:cb:52:1d:4f: a7:8f:7f:20:dc:9b:09:ed:a0:65:a6:9f:3d:84:09:94:13:cf: fc:dd:4a:cc:73:5b:11:18:78:97:ad:1a:bb:a6:ee:d7:b7:ab: 73:06:4f:d6:e3:ab:1d:b9:fb:c4:05:80:26:9c:8e:9f:9b:54: a1:01:08:21:ee:e5:13:c6:65:de:4b:53:ed:31:b7:0f:aa:51: 0b:1c:47:4c:49:3f:7e:d4:5f:ab:15:49:03:1f:3a:0b:a9:6e: f1:94:ca:27 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICGR8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw OTAyNDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEJDMDcxQkQyNDIyMTQ2 Mjg2RUU0REM1ODNBRDAwMjAwMUMxNzBFOUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDqJSIOdKOUCE8rLMDrHtj5UzpH3PSuLGiRGJcUwsdgAQ86X1Fp 8qEcKOOhWFJLkOxG/s7kHgXdT07AvpQqvurh2B401sxG0dXKt2zhaWYVEor4m9+s K3RYZx/YKdHUF9SY3xx+0Jcb3n3SeiuZudBAHf/7T2Qqxu8iDwDkreV7QkypCGMm Zuehiskyd5GO5sLLA3SPJwh5hEL6bD9Vqjk6tCPGluIO/3iXCVzapSq58by0j+bH m4UtK4u1ojBHGckT2JPQl52z45FiEHe2YhRQUz/OEal+LWUyRGdaWjSoHRmqiVtK CsUQtYUItjuzU6QsFd/gOMnPjw5C9iOZG4UDAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUvAcb0kIhRihu5NxYOtACABwXDp0wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC92QWNiMGtJaFJpaHU1TnhZT3RB Q0FCd1hEcDAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUHPd21 gDANBgkqhkiG9w0BAQsFAAOCAQEAXM6XS7mBwVG92IE6VU6WY2Ow+AXvu383lj36 9ZJjVof1Kiyx6ojX7ne5wvcc+ZASGOcd1uPShCcsRBIBQ8KWf6aCb2Muq+n6Chxr ZsY9euHcnjSwhkWi3an/Zyu2pxoLDVKbK7m2AoKdl8Fcv+aM2EblpNTMY12Xl0Q0 zWtrjohY5kqmEuXiSShJMQYX3CfYBC0sCSLYSaMIF1qyV2/LUh1Pp49/INybCe2g ZaafPYQJlBPP/N1KzHNbERh4l60au6bu17ercwZP1uOrHbn7xAWAJpyOn5tUoQEI Ie7lE8Zl3ktT7TG3D6pRCxxHTEk/ftRfqxVJAx86C6lu8ZTKJw== -----END CERTIFICATE-----Generated at Fri Sep 5 21:13:24 2025 by rpki-client