$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/yMR82FMgPD6PnHHdPCBL_vIsM_k.roa File: yMR82FMgPD6PnHHdPCBL_vIsM_k.roa (raw, json) Hash identifier: QYAm5fYHFPhMuYozmAI8L8Z6bgLHRdawcuvJ3Wba2A8= Subject key identifier: C8:C4:7C:D8:53:20:3C:3E:8F:9C:71:DD:3C:20:4B:FE:F2:2C:33:F9 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 190C Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/yMR82FMgPD6PnHHdPCBL_vIsM_k.roa Signing time: Fri 22 Aug 2025 09:02:42 +0000 ROA not before: Fri 22 Aug 2025 09:02:42 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 3462 IP address blocks: 211.75.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 00:46:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6412 (0x190c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 22 09:02:42 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C8C47CD853203C3E8F9C71DD3C204BFEF22C33F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:df:9f:f6:12:64:66:ff:48:32:f5:c5:4a:49: 5e:80:f0:a9:63:17:1e:08:94:05:49:8f:85:ed:a1: 3e:6d:ed:6b:fa:87:8b:a1:fd:9d:3d:81:82:9f:0b: a6:49:cc:82:98:20:8c:f2:54:78:77:85:e0:e0:a1: 8a:12:b2:cd:15:03:3e:c9:b6:6a:fb:a2:13:fa:34: ef:ef:be:a1:fc:fe:ac:c6:4c:44:aa:90:25:91:de: 0b:01:6d:24:71:83:35:b5:5d:d2:07:ae:50:11:9c: aa:94:a1:61:76:3c:9d:b0:91:90:c7:0e:7b:d6:17: fb:15:12:ed:ce:bd:6a:f1:c0:27:4c:df:15:a9:08: a5:ec:63:39:a4:f7:ec:2f:82:86:be:09:9a:74:94: 6a:b0:fa:7e:64:f6:f3:cb:64:0b:b6:38:c9:13:ca: 87:a4:df:46:28:ea:81:a1:49:74:0c:5f:fa:4b:04: 0b:ae:49:27:e2:86:9e:bf:8c:1c:4e:83:89:fe:f9: e4:1e:3e:b7:66:8e:15:30:50:75:22:da:4c:0d:9c: d4:fc:d3:70:27:3f:6e:8b:3e:8a:21:a2:05:49:36: f4:db:46:0f:a6:d5:fc:41:92:3c:de:d0:f2:55:f6: 69:3f:3e:06:e1:4e:13:67:b6:7c:9f:12:f3:aa:63: ea:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:C4:7C:D8:53:20:3C:3E:8F:9C:71:DD:3C:20:4B:FE:F2:2C:33:F9 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/yMR82FMgPD6PnHHdPCBL_vIsM_k.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.75.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3a:55:30:2d:eb:77:47:9a:01:99:06:ba:7c:f7:b7:9e:c8:31: 25:ab:59:db:52:58:01:8e:e7:bc:e6:f3:0a:95:93:11:90:ef: 7c:b0:b5:37:c2:5c:c3:a6:82:9e:59:9c:e1:7e:80:15:3d:89: 3f:f9:b1:de:2c:5b:3a:ae:3f:80:ed:9f:8a:14:e5:79:bc:75: 7c:89:33:0e:69:b4:4f:cb:52:7b:5b:ba:9c:8d:d2:56:26:6c: 23:0e:58:0f:4e:1a:85:39:eb:74:0a:17:77:ca:47:3f:10:81: 2a:55:5b:fd:c8:eb:1c:87:ef:d9:9c:77:bf:67:36:1f:fe:16: 26:58:95:5d:6e:d2:15:61:b4:64:2e:e9:7b:94:88:27:a4:34: ed:18:48:23:12:70:f7:36:13:cc:96:eb:7b:24:5a:d5:08:2c: 3d:48:8e:22:64:87:9d:15:e7:37:1f:2e:8f:1b:99:d0:e8:95: f0:93:7a:59:8c:68:c9:86:73:a1:f8:45:37:74:b4:bf:e5:8a: 06:7a:a3:3b:9f:5f:42:ad:61:69:d2:4a:65:a6:ec:bd:ca:72: 52:cd:81:e3:d1:54:25:94:92:c8:dd:7a:97:b1:a8:63:8f:3c: e3:a9:e4:15:7c:38:b1:4c:cc:94:bd:58:eb:42:ee:61:08:60: f9:1e:f2:94 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICGQwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw OTAyNDJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEM4QzQ3Q0Q4NTMyMDND M0U4RjlDNzFERDNDMjA0QkZFRjIyQzMzRjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDd35/2EmRm/0gy9cVKSV6A8KljFx4IlAVJj4XtoT5t7Wv6h4uh /Z09gYKfC6ZJzIKYIIzyVHh3heDgoYoSss0VAz7Jtmr7ohP6NO/vvqH8/qzGTESq kCWR3gsBbSRxgzW1XdIHrlARnKqUoWF2PJ2wkZDHDnvWF/sVEu3OvWrxwCdM3xWp CKXsYzmk9+wvgoa+CZp0lGqw+n5k9vPLZAu2OMkTyoek30Yo6oGhSXQMX/pLBAuu SSfihp6/jBxOg4n++eQePrdmjhUwUHUi2kwNnNT803AnP26LPoohogVJNvTbRg+m 1fxBkjze0PJV9mk/PgbhThNntnyfEvOqY+qLAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUyMR82FMgPD6PnHHdPCBL/vIsM/kwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC95TVI4MkZNZ1BENlBuSEhkUENC TF92SXNNX2sucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMA00sw DQYJKoZIhvcNAQELBQADggEBADpVMC3rd0eaAZkGunz3t57IMSWrWdtSWAGO57zm 8wqVkxGQ73ywtTfCXMOmgp5ZnOF+gBU9iT/5sd4sWzquP4Dtn4oU5Xm8dXyJMw5p tE/LUntbupyN0lYmbCMOWA9OGoU563QKF3fKRz8QgSpVW/3I6xyH79mcd79nNh/+ FiZYlV1u0hVhtGQu6XuUiCekNO0YSCMScPc2E8yW63skWtUILD1IjiJkh50V5zcf Lo8bmdDolfCTelmMaMmGc6H4RTd0tL/ligZ6ozufX0KtYWnSSmWm7L3KclLNgePR VCWUksjdepexqGOPPOOp5BV8OLFMzJS9WOtC7mEIYPke8pQ= -----END CERTIFICATE-----Generated at Fri Sep 5 21:03:48 2025 by rpki-client