$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/HUa4sb_EelFLN_3kCMr8Ck2qrpQ.roa File: HUa4sb_EelFLN_3kCMr8Ck2qrpQ.roa (raw, json) Hash identifier: GZOiQH8JNnEvuUYCkmePFQXlEyLDaT6cJ5U70187DD8= Subject key identifier: 1D:46:B8:B1:BF:C4:7A:51:4B:37:FD:E4:08:CA:FC:0A:4D:AA:AE:94 Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Certificate serial: 1085 Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/HUa4sb_EelFLN_3kCMr8Ck2qrpQ.roa Signing time: Fri 22 Aug 2025 08:57:51 +0000 ROA not before: Fri 22 Aug 2025 08:57:51 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131641 IP address blocks: 2404:8cc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4229 (0x1085) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Validity Not Before: Aug 22 08:57:51 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1D46B8B1BFC47A514B37FDE408CAFC0A4DAAAE94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d4:a1:3a:12:a0:8b:78:79:0c:ee:8d:de:91: d0:9f:d2:b8:ec:1b:44:2e:4f:5e:6e:08:9f:58:0f: b7:27:94:d0:72:15:fa:13:e2:20:b9:e4:93:fe:b2: 05:42:0b:1f:cd:0e:bb:d5:79:8e:4b:70:02:96:b0: c5:da:24:cd:21:11:4a:3f:95:2b:94:80:44:46:83: 27:36:c8:2d:5b:d9:9b:4c:30:1d:54:47:4e:ab:88: 84:71:37:3d:f8:68:08:b0:c8:3f:fc:e4:9d:1f:0e: a8:1d:b8:9e:42:10:c4:b3:b0:5c:29:82:62:d1:14: bf:9b:d1:95:9e:b9:63:c7:5b:c5:cf:9c:cf:2d:0a: 74:e9:b1:f2:03:ed:ac:a7:2e:46:d7:0a:e7:2e:0d: 66:ae:54:01:62:be:bd:bc:a4:66:79:ea:f0:92:30: a9:25:03:a4:c7:ed:1e:78:e2:f1:6e:8b:fe:5a:23: a3:64:1f:ae:70:ae:df:c4:8e:9b:70:d5:aa:f4:8e: 55:e8:cf:e3:f8:13:c7:44:98:9c:33:f0:21:4d:be: 44:6e:67:78:2e:dd:07:67:ff:6f:19:a5:91:62:d4: ba:31:25:3d:4c:9a:9e:b8:2e:b4:03:e8:41:7f:9c: 4d:62:01:0d:11:a5:da:bb:ac:49:6b:9a:fa:28:c5: b4:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:46:B8:B1:BF:C4:7A:51:4B:37:FD:E4:08:CA:FC:0A:4D:AA:AE:94 X509v3 Authority Key Identifier: keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/HUa4sb_EelFLN_3kCMr8Ck2qrpQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2404:8cc0::/32 Signature Algorithm: sha256WithRSAEncryption b5:f2:6e:11:05:24:0f:b1:94:23:fb:88:56:98:96:b2:3d:95: 96:58:4d:f4:49:17:55:16:28:2b:f3:fb:bf:41:05:56:bb:00: 7d:88:40:32:9c:c7:12:c0:b3:24:00:ff:e9:a4:77:9c:c7:1d: f2:25:cf:bd:0d:db:4f:ea:a9:97:e5:43:32:68:47:b4:e2:33: 50:d7:f6:eb:a1:24:47:11:87:5f:94:50:a7:58:6a:c5:03:c6: 86:cc:c6:b7:3a:eb:33:61:82:94:34:cb:80:07:6f:33:62:5d: c7:f2:1c:24:36:cc:6f:43:f0:31:56:ee:2f:5e:83:e3:63:25: 0f:e3:dd:b3:c5:9c:f4:58:03:64:b5:92:e9:4f:da:de:fd:c7: 5f:dc:ab:6c:5b:19:0d:4d:26:81:2f:7f:d0:c7:c2:57:5f:40: 18:05:39:d4:a8:99:d5:6a:63:41:d3:ca:4c:40:fc:d9:5e:4a: 23:fe:16:95:eb:c2:fb:66:29:3a:50:22:6e:c7:b6:d1:ad:74: 6d:b5:cd:b2:30:6b:82:09:51:c8:5a:92:ea:d5:f2:c9:59:c0: a7:d2:cd:08:24:70:03:89:96:b5:a1:7b:11:b9:18:0d:33:07: 89:cf:17:62:6d:e0:1f:c7:44:fe:ba:90:33:b6:40:bf:dd:31: 22:f9:24:6d -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICEIUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDRG MEREMEY0RkI4MDEwMjVENTg2RUY5OTlDNUVFRTAyRDdDMjA1OTAeFw0yNTA4MjIw ODU3NTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDFENDZCOEIxQkZDNDdB NTE0QjM3RkRFNDA4Q0FGQzBBNERBQUFFOTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDA1KE6EqCLeHkM7o3ekdCf0rjsG0QuT15uCJ9YD7cnlNByFfoT 4iC55JP+sgVCCx/NDrvVeY5LcAKWsMXaJM0hEUo/lSuUgERGgyc2yC1b2ZtMMB1U R06riIRxNz34aAiwyD/85J0fDqgduJ5CEMSzsFwpgmLRFL+b0ZWeuWPHW8XPnM8t CnTpsfID7aynLkbXCucuDWauVAFivr28pGZ56vCSMKklA6TH7R544vFui/5aI6Nk H65wrt/Ejptw1ar0jlXoz+P4E8dEmJwz8CFNvkRuZ3gu3Qdn/28ZpZFi1LoxJT1M mp64LrQD6EF/nE1iAQ0Rpdq7rElrmvooxbRTAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUHUa4sb/EelFLN/3kCMr8Ck2qrpQwHwYDVR0jBBgwFoAU1PDdD0+4AQJdWG75 mcXu4C18IFkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULzFQ RGREMC00QVFKZFdHNzVtY1h1NEMxOElGay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev MVBEZEQwLTRBUUpkV0c3NW1jWHU0QzE4SUZrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRFdUL0hVYTRzYl9FZWxGTE5fM2tDTXI4Q2sy cXJwUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBIzAMA0G CSqGSIb3DQEBCwUAA4IBAQC18m4RBSQPsZQj+4hWmJayPZWWWE30SRdVFigr8/u/ QQVWuwB9iEAynMcSwLMkAP/ppHecxx3yJc+9DdtP6qmX5UMyaEe04jNQ1/broSRH EYdflFCnWGrFA8aGzMa3OuszYYKUNMuAB28zYl3H8hwkNsxvQ/AxVu4vXoPjYyUP 492zxZz0WANktZLpT9re/cdf3KtsWxkNTSaBL3/Qx8JXX0AYBTnUqJnVamNB08pM QPzZXkoj/haV68L7Zik6UCJux7bRrXRttc2yMGuCCVHIWpLq1fLJWcCn0s0IJHAD iZa1oXsRuRgNMweJzxdibeAfx0T+upAztkC/3TEi+SRt -----END CERTIFICATE-----Generated at Sun Aug 24 09:43:38 2025 by rpki-client