$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/HW-k_s4SYvlpYUuQVZUKGLse044.roa File: HW-k_s4SYvlpYUuQVZUKGLse044.roa (raw, json) Hash identifier: 8aHzW9vsTcGrQ7Kclw0NUWxysUnCTPJsap+3ck0I9ig= Subject key identifier: 1D:6F:A4:FE:CE:12:62:F9:69:61:4B:90:55:95:0A:18:BB:1E:D3:8E Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 13EA Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/HW-k_s4SYvlpYUuQVZUKGLse044.roa Signing time: Fri 22 Aug 2025 08:59:52 +0000 ROA not before: Fri 22 Aug 2025 08:59:52 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131142 IP address blocks: 222.251.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5098 (0x13ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 08:59:52 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1D6FA4FECE1262F969614B9055950A18BB1ED38E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:9e:e6:10:ce:c8:2e:2e:1e:f0:61:d8:72:48: 91:c1:a9:4e:a4:19:22:ce:2a:b5:36:26:09:94:8f: 69:e2:17:b6:43:7e:b0:1d:0b:a5:5a:f7:e4:61:5b: 8a:d9:b2:6d:f9:cc:9d:78:4b:5e:03:5b:2a:48:3f: 75:71:19:e4:a1:54:67:ec:e6:eb:07:e1:35:02:3a: 32:db:37:35:71:a3:d8:e1:40:4a:31:c2:47:43:4c: 1f:ce:f6:82:a6:e6:6a:83:1a:42:31:dc:53:7b:bb: 7e:c4:e5:97:4c:73:f4:f2:26:37:6e:81:a3:f2:cb: 67:d4:52:77:ef:5d:f4:aa:cb:e1:a9:87:00:84:08: 82:43:c6:da:63:e0:79:6a:48:db:2c:8f:29:c0:98: 65:22:46:31:e3:86:44:72:cd:6e:b9:3d:d3:08:21: 6e:01:e3:c4:79:8b:8e:95:59:ef:39:ad:59:ce:64: 64:e9:be:8d:56:20:70:00:7d:28:34:bd:48:38:22: d3:5a:e8:69:97:39:f1:d3:da:c5:9b:5a:3e:2e:b4: 17:5a:07:37:c2:e4:4c:40:29:6d:56:18:6c:b9:59: 42:c3:b1:53:77:51:a4:67:1a:8f:3d:d2:03:f5:b3: 43:c8:c4:3a:2b:a9:c8:7f:31:cd:43:8b:97:2f:95: b1:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:6F:A4:FE:CE:12:62:F9:69:61:4B:90:55:95:0A:18:BB:1E:D3:8E X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/HW-k_s4SYvlpYUuQVZUKGLse044.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 222.251.0.0/18 Signature Algorithm: sha256WithRSAEncryption 12:f9:a3:6b:66:82:99:69:08:0f:2a:18:14:f2:f9:db:c1:c2: 60:7b:ef:d3:3b:42:d5:b9:28:6d:8a:8b:8a:b8:03:57:c8:23: f8:bb:64:de:9e:fd:6d:bd:32:3e:f7:fb:f7:9b:7e:c7:04:d6: a7:e1:8f:da:4e:ea:93:b4:fe:5f:11:e7:94:03:be:d5:2e:3e: db:43:7e:a6:5e:52:87:44:8b:6d:6f:ce:9f:12:52:7b:39:5f: 31:a5:5d:8b:a6:d4:17:1a:1d:df:ac:14:33:f4:5c:c8:e6:c8: a2:cf:ca:34:7a:ae:d5:a4:25:28:02:8c:53:62:32:40:c5:be: 36:6d:ca:77:97:94:62:a8:fd:81:33:0d:f4:66:f3:a2:e0:11: 72:9c:11:43:b9:72:97:b9:c9:39:31:a6:49:ca:f6:21:88:d5: 83:63:cd:5a:27:8a:90:91:cd:cf:09:95:7a:01:61:fa:d9:20: 6a:36:8a:73:67:e4:1f:0b:ff:86:f2:ef:5b:d1:28:42:b9:83: e4:d8:24:81:4e:20:a6:81:1b:b0:9a:34:c2:32:74:85:2f:20: b8:8f:a1:5a:ad:69:09:ff:e8:63:e7:25:7b:a8:0d:75:03:0d: 80:1a:2b:76:0d:af:b7:a0:5f:7b:08:ff:46:f8:06:2b:18:51: 55:8d:9f:2a -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICE+owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw ODU5NTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDFENkZBNEZFQ0UxMjYy Rjk2OTYxNEI5MDU1OTUwQTE4QkIxRUQzOEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwnuYQzsguLh7wYdhySJHBqU6kGSLOKrU2JgmUj2niF7ZDfrAd C6Va9+RhW4rZsm35zJ14S14DWypIP3VxGeShVGfs5usH4TUCOjLbNzVxo9jhQEox wkdDTB/O9oKm5mqDGkIx3FN7u37E5ZdMc/TyJjdugaPyy2fUUnfvXfSqy+GphwCE CIJDxtpj4HlqSNssjynAmGUiRjHjhkRyzW65PdMIIW4B48R5i46VWe85rVnOZGTp vo1WIHAAfSg0vUg4ItNa6GmXOfHT2sWbWj4utBdaBzfC5ExAKW1WGGy5WULDsVN3 UaRnGo890gP1s0PIxDorqch/Mc1Di5cvlbGXAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUHW+k/s4SYvlpYUuQVZUKGLse044wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0hXLWtfczRTWXZscFlVdVFWWlVLR0xz ZTA0NC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbe+wAwDQYJ KoZIhvcNAQELBQADggEBABL5o2tmgplpCA8qGBTy+dvBwmB779M7QtW5KG2Ki4q4 A1fII/i7ZN6e/W29Mj73+/ebfscE1qfhj9pO6pO0/l8R55QDvtUuPttDfqZeUodE i21vzp8SUns5XzGlXYum1BcaHd+sFDP0XMjmyKLPyjR6rtWkJSgCjFNiMkDFvjZt yneXlGKo/YEzDfRm86LgEXKcEUO5cpe5yTkxpknK9iGI1YNjzVonipCRzc8JlXoB YfrZIGo2inNn5B8L/4by71vRKEK5g+TYJIFOIKaBG7CaNMIydIUvILiPoVqtaQn/ 6GPnJXuoDXUDDYAaK3YNr7egX3sI/0b4BisYUVWNnyo= -----END CERTIFICATE-----Generated at Sun Aug 24 14:20:12 2025 by rpki-client