$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BWIZ/hqRZcWjWN8WrmwT0V6s3nN5Xz4E.roa File: hqRZcWjWN8WrmwT0V6s3nN5Xz4E.roa (raw, json) Hash identifier: R0BnmauMWKKzP9G7scILSymxCo0aSQMrZ2DKl6lBHAs= Subject key identifier: 86:A4:59:71:68:D6:37:C5:AB:9B:04:F4:57:AB:37:9C:DE:57:CF:81 Certificate issuer: /CN=8FB168EDFD736373CDCC3799ADA0AB3D779E6DA2 Certificate serial: 0D4E Authority key identifier: 8F:B1:68:ED:FD:73:63:73:CD:CC:37:99:AD:A0:AB:3D:77:9E:6D:A2 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/j7Fo7f1zY3PNzDeZraCrPXeebaI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BWIZ/hqRZcWjWN8WrmwT0V6s3nN5Xz4E.roa Signing time: Fri 22 Aug 2025 08:44:12 +0000 ROA not before: Fri 22 Aug 2025 08:44:12 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18415 IP address blocks: 61.57.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/BWIZ/j7Fo7f1zY3PNzDeZraCrPXeebaI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/BWIZ/j7Fo7f1zY3PNzDeZraCrPXeebaI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/j7Fo7f1zY3PNzDeZraCrPXeebaI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3406 (0xd4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FB168EDFD736373CDCC3799ADA0AB3D779E6DA2 Validity Not Before: Aug 22 08:44:12 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=86A4597168D637C5AB9B04F457AB379CDE57CF81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:1d:0a:9f:78:48:2e:8e:02:4d:37:1c:ca:cb: 26:25:2e:97:c7:cc:d6:e2:93:35:c8:e7:ec:02:99: 5b:64:61:bd:e5:b6:a6:e5:99:9c:ad:30:ce:52:17: 76:94:33:f2:74:98:8c:e0:2d:0f:ac:50:6c:bf:87: 33:41:c7:ef:ba:ab:c9:e4:50:df:73:b4:e6:5d:c4: 33:2f:ee:44:f7:88:27:80:d4:68:f5:1a:19:63:43: 78:3f:e5:34:72:42:d2:bf:14:74:72:13:a4:eb:6b: e0:36:46:a3:cc:19:37:4c:61:a1:74:d5:c6:30:23: d0:0d:4f:8d:f2:41:0d:b6:c6:78:d1:1a:12:42:08: 6d:66:cc:19:88:81:5f:82:12:4f:a3:35:ec:86:ea: 4a:ca:f4:5f:0c:a4:8e:92:ce:3b:e8:9d:12:1a:0b: bb:8b:25:94:0a:63:a8:26:b7:d1:91:79:db:29:bb: c5:e3:4a:85:b5:dd:c9:cd:f0:07:68:25:4e:b1:ca: c1:1c:18:b2:be:f8:6a:2f:bd:ed:8c:a8:bb:a0:b3: de:6d:ad:40:25:a0:47:60:36:25:70:49:50:e8:e2: 33:fb:2e:51:d8:7d:2b:14:ba:0a:4c:20:4c:14:2b: b9:5e:b9:9a:a7:b4:3a:7e:99:eb:1b:8e:41:b6:b1: 01:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:A4:59:71:68:D6:37:C5:AB:9B:04:F4:57:AB:37:9C:DE:57:CF:81 X509v3 Authority Key Identifier: keyid:8F:B1:68:ED:FD:73:63:73:CD:CC:37:99:AD:A0:AB:3D:77:9E:6D:A2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BWIZ/j7Fo7f1zY3PNzDeZraCrPXeebaI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/j7Fo7f1zY3PNzDeZraCrPXeebaI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BWIZ/hqRZcWjWN8WrmwT0V6s3nN5Xz4E.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.57.240.0/20 Signature Algorithm: sha256WithRSAEncryption 97:86:67:50:ab:b6:cf:b3:6c:73:1f:b4:2d:94:0b:50:a5:63: 8f:db:96:65:6b:1e:4f:ec:c0:0c:9b:40:17:85:06:b1:26:58: 1a:10:2f:50:aa:6f:3e:15:c5:21:a4:64:27:d2:cb:64:96:79: 6a:fd:90:ce:fa:13:03:23:6d:8d:24:31:6f:31:85:1a:04:b1: 66:da:aa:67:2a:99:92:a1:55:02:12:97:75:10:33:86:47:e0: 09:10:7f:79:f6:de:91:21:0e:42:a8:18:e8:5c:33:1a:c7:99: 62:d1:1b:04:25:b8:10:6e:9e:7a:17:37:12:57:de:71:e4:cb: d6:96:f1:b0:3f:8d:76:6c:78:97:61:7d:8b:0c:45:d3:1a:b0: 46:6e:8b:52:05:96:cb:c0:be:e2:7d:30:2b:e3:b7:ea:b5:4b: e8:09:83:b7:6a:42:f5:cf:23:64:06:b0:e7:05:96:a9:c8:e1: 06:b2:86:14:b3:8a:c1:74:0d:84:a5:d0:e0:32:cb:1b:4b:d3: 95:2c:cd:c2:3e:6b:27:a7:bf:fb:5f:5b:c3:d7:28:c7:9c:d6: 3a:d3:66:76:ff:6f:03:09:65:70:b5:8f:0e:d2:70:17:90:86: 6f:62:d7:77:06:c3:88:87:17:19:30:ab:0b:2b:44:d4:a5:cb: e7:64:37:7c -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDU4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEZC MTY4RURGRDczNjM3M0NEQ0MzNzk5QURBMEFCM0Q3NzlFNkRBMjAeFw0yNTA4MjIw ODQ0MTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDg2QTQ1OTcxNjhENjM3 QzVBQjlCMDRGNDU3QUIzNzlDREU1N0NGODEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCeHQqfeEgujgJNNxzKyyYlLpfHzNbikzXI5+wCmVtkYb3ltqbl mZytMM5SF3aUM/J0mIzgLQ+sUGy/hzNBx++6q8nkUN9ztOZdxDMv7kT3iCeA1Gj1 GhljQ3g/5TRyQtK/FHRyE6Tra+A2RqPMGTdMYaF01cYwI9ANT43yQQ22xnjRGhJC CG1mzBmIgV+CEk+jNeyG6krK9F8MpI6SzjvonRIaC7uLJZQKY6gmt9GRedspu8Xj SoW13cnN8AdoJU6xysEcGLK++Govve2MqLugs95trUAloEdgNiVwSVDo4jP7LlHY fSsUugpMIEwUK7leuZqntDp+mesbjkG2sQFZAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUhqRZcWjWN8WrmwT0V6s3nN5Xz4EwHwYDVR0jBBgwFoAUj7Fo7f1zY3PNzDeZ raCrPXeebaIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQldJWi9q N0ZvN2YxelkzUE56RGVacmFDclBYZWViYUkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2o3Rm83ZjF6WTNQTnpEZVpyYUNyUFhlZWJhSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0JXSVovaHFSWmNXaldOOFdybXdUMFY2czNu TjVYejRFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBD058DAN BgkqhkiG9w0BAQsFAAOCAQEAl4ZnUKu2z7Nscx+0LZQLUKVjj9uWZWseT+zADJtA F4UGsSZYGhAvUKpvPhXFIaRkJ9LLZJZ5av2QzvoTAyNtjSQxbzGFGgSxZtqqZyqZ kqFVAhKXdRAzhkfgCRB/efbekSEOQqgY6FwzGseZYtEbBCW4EG6eehc3ElfeceTL 1pbxsD+Ndmx4l2F9iwxF0xqwRm6LUgWWy8C+4n0wK+O36rVL6AmDt2pC9c8jZAaw 5wWWqcjhBrKGFLOKwXQNhKXQ4DLLG0vTlSzNwj5rJ6e/+19bw9cox5zWOtNmdv9v AwllcLWPDtJwF5CGb2LXdwbDiIcXGTCrCytE1KXL52Q3fA== -----END CERTIFICATE-----Generated at Sun Aug 24 11:40:32 2025 by rpki-client