$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/hIXqqGZPwSAGSgEQ8Z70iIFKePM.roa File: hIXqqGZPwSAGSgEQ8Z70iIFKePM.roa (raw, json) Hash identifier: a/sucm14l8DEXHnD5Nm8NbpXqE5kkXg+hEtN2euu6zs= Subject key identifier: 84:85:EA:A8:66:4F:C1:20:06:4A:01:10:F1:9E:F4:88:81:4A:78:F3 Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0E88 Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/hIXqqGZPwSAGSgEQ8Z70iIFKePM.roa Signing time: Fri 22 Aug 2025 09:03:21 +0000 ROA not before: Fri 22 Aug 2025 09:03:21 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9584 IP address blocks: 113.21.184.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 02:44:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3720 (0xe88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Aug 22 09:03:21 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8485EAA8664FC120064A0110F19EF488814A78F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:88:99:92:79:4b:d8:8a:da:73:c9:1b:32:72: 1a:f2:aa:a3:cb:2e:23:9e:77:1f:d3:66:b9:76:30: 38:98:c0:e3:a1:8b:e0:ac:e4:66:94:49:f3:1d:95: bb:ce:fd:49:8f:1d:fc:5f:8f:df:f3:38:40:f4:da: 14:32:fb:d1:da:5f:ef:b8:c6:45:a0:26:77:7e:96: 8c:68:58:4e:46:12:5c:68:b8:09:cc:82:ba:7a:0b: 08:62:53:17:96:d8:79:db:5b:01:66:7a:a6:fe:d7: 60:06:67:b3:ee:d8:26:31:97:f7:19:89:92:20:76: 38:40:f5:86:53:00:60:74:ee:87:6c:26:8b:4a:64: 3d:47:1a:7c:4a:2f:45:4f:28:ac:29:c4:e2:f2:ac: e9:75:3e:d5:7e:e4:9e:82:43:c2:96:5c:d8:a6:6e: 4c:13:af:ab:23:f9:97:c4:c8:a2:c1:3b:67:17:f6: 08:98:55:0e:97:98:be:0d:25:26:d6:fa:92:ab:b4: 29:a6:86:79:07:0e:6b:61:67:04:3c:92:71:87:04: ab:3c:ee:52:de:4f:3c:4a:6f:10:eb:83:95:10:ba: ca:d0:89:65:fb:c2:3c:05:69:51:3d:80:e4:f3:96: f1:14:05:a1:6d:41:ff:d7:5e:39:36:2d:a7:67:17: 21:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:85:EA:A8:66:4F:C1:20:06:4A:01:10:F1:9E:F4:88:81:4A:78:F3 X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/hIXqqGZPwSAGSgEQ8Z70iIFKePM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.21.184.0/22 Signature Algorithm: sha256WithRSAEncryption 32:0d:81:89:f8:6b:77:87:73:b4:3a:b9:ee:9e:46:61:d3:9b: 18:36:a3:af:14:ff:5a:9f:eb:0d:6c:20:c8:79:1f:13:66:d9: bb:47:00:9d:3b:03:57:12:fa:c5:f2:8c:8a:c5:e4:72:7e:72: 78:b2:40:ba:4e:80:ea:d7:0e:a6:5a:24:ea:17:e1:53:47:c7: 5f:13:99:49:ef:3d:e0:5a:88:aa:9c:de:48:a5:4a:82:9a:53: df:12:99:e1:5b:3e:0e:51:7a:d2:ad:bd:9e:95:bd:77:6d:82: 83:f1:b8:df:d2:9a:1d:3d:84:b8:c7:71:9c:ad:1e:17:34:7b: 36:13:dc:65:5e:8a:35:5e:e0:8f:d3:4f:ea:0d:e5:86:ee:50: fa:00:a8:ca:34:41:48:ea:c8:dc:2b:fd:f4:66:dc:a9:32:e4: 17:82:5b:b4:de:c2:e2:61:58:d9:1f:c9:a3:2a:17:ed:1e:5f: 19:95:62:b3:ca:3e:22:18:c3:8e:e2:fe:d3:10:12:98:83:bf: b2:aa:ad:f7:ba:d6:a0:fd:9f:72:70:bb:64:3a:f7:76:1b:4d: 78:3b:98:c8:ae:57:2c:9d:3e:47:14:69:21:5d:e9:27:05:3f: 58:5a:58:e1:21:cf:8e:31:99:02:71:44:c6:29:fb:d8:1d:39: 98:74:86:ed -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDogwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yNTA4MjIw OTAzMjFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDg0ODVFQUE4NjY0RkMx MjAwNjRBMDExMEYxOUVGNDg4ODE0QTc4RjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0iJmSeUvYitpzyRsychryqqPLLiOedx/TZrl2MDiYwOOhi+Cs 5GaUSfMdlbvO/UmPHfxfj9/zOED02hQy+9HaX++4xkWgJnd+loxoWE5GElxouAnM grp6CwhiUxeW2HnbWwFmeqb+12AGZ7Pu2CYxl/cZiZIgdjhA9YZTAGB07odsJotK ZD1HGnxKL0VPKKwpxOLyrOl1PtV+5J6CQ8KWXNimbkwTr6sj+ZfEyKLBO2cX9giY VQ6XmL4NJSbW+pKrtCmmhnkHDmthZwQ8knGHBKs87lLeTzxKbxDrg5UQusrQiWX7 wjwFaVE9gOTzlvEUBaFtQf/XXjk2LadnFyEjAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUhIXqqGZPwSAGSgEQ8Z70iIFKePMwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL2hJWHFxR1pQd1NBR1NnRVE4 WjcwaUlGS2VQTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJx FbgwDQYJKoZIhvcNAQELBQADggEBADINgYn4a3eHc7Q6ue6eRmHTmxg2o68U/1qf 6w1sIMh5HxNm2btHAJ07A1cS+sXyjIrF5HJ+cniyQLpOgOrXDqZaJOoX4VNHx18T mUnvPeBaiKqc3kilSoKaU98SmeFbPg5RetKtvZ6VvXdtgoPxuN/Smh09hLjHcZyt Hhc0ezYT3GVeijVe4I/TT+oN5YbuUPoAqMo0QUjqyNwr/fRm3Kky5BeCW7TewuJh WNkfyaMqF+0eXxmVYrPKPiIYw47i/tMQEpiDv7Kqrfe61qD9n3Jwu2Q693YbTXg7 mMiuVyydPkcUaSFd6ScFP1haWOEhz44xmQJxRMYp+9gdOZh0hu0= -----END CERTIFICATE-----Generated at Mon Aug 25 01:28:36 2025 by rpki-client