$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/7AY-ldtSIvy1jtIWNaETTpLR-xY.roa File: 7AY-ldtSIvy1jtIWNaETTpLR-xY.roa (raw, json) Hash identifier: Er/+zj+uhdLJ9MAqsepvyMApjdVrNjpWFoUBna8lIWk= Subject key identifier: EC:06:3E:95:DB:52:22:FC:B5:8E:D2:16:35:A1:13:4E:92:D1:FB:16 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 194D Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/7AY-ldtSIvy1jtIWNaETTpLR-xY.roa Signing time: Fri 22 Aug 2025 09:02:58 +0000 ROA not before: Fri 22 Aug 2025 09:02:58 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131660 IP address blocks: 114.25.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6477 (0x194d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 22 09:02:58 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=EC063E95DB5222FCB58ED21635A1134E92D1FB16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:04:99:3e:a8:7b:a4:e1:b9:d8:6b:c2:5f:33: f7:d0:d9:c2:d2:d9:df:c7:4c:fa:c9:07:15:20:db: f9:3c:3c:4a:8d:91:eb:0a:47:e4:fc:47:51:19:34: ab:f9:91:f0:59:bc:33:f8:7f:9c:b0:db:ec:25:bc: ec:ad:7a:6b:40:3a:a8:be:7c:34:54:94:7b:5c:d7: 1e:b9:ed:12:d6:ff:b0:6b:0a:1f:ad:f0:bf:32:af: fe:3c:4f:2f:40:0d:21:21:78:94:98:18:e7:9e:aa: aa:0d:5b:55:66:85:d9:0c:98:32:d3:a3:ec:21:10: 4c:0f:21:a9:3c:f9:c6:6a:45:6d:b3:04:bd:e0:06: f2:57:b7:b5:e4:f9:45:e8:fe:ec:3a:eb:10:a2:98: 41:3d:f3:91:ac:c1:b2:02:b9:2a:59:cd:58:98:f6: 69:e0:53:68:12:04:0b:75:9f:cc:25:74:a6:84:6a: a3:91:3e:34:de:21:aa:40:bf:fc:fb:88:b1:73:29: bb:38:b3:34:4e:5b:77:d9:a9:95:d3:07:bb:c5:3a: 68:ac:db:a1:ed:0b:2f:51:30:0a:7c:71:ac:ac:a2: ea:40:f8:9c:1c:f4:ee:c5:a3:de:8b:a3:cc:55:bd: 6d:2b:2c:5f:d6:2b:7e:7c:79:80:4f:78:1a:2c:c1: 43:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:06:3E:95:DB:52:22:FC:B5:8E:D2:16:35:A1:13:4E:92:D1:FB:16 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/7AY-ldtSIvy1jtIWNaETTpLR-xY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 114.25.250.0/24 Signature Algorithm: sha256WithRSAEncryption b8:58:9e:68:9f:4e:8a:44:ef:ac:87:3a:03:e1:05:c9:68:73: ca:0c:6e:78:42:ac:9e:d8:96:da:7d:04:6a:bb:a1:08:d4:40: c8:df:19:d2:38:69:aa:f6:41:ff:ce:fe:53:fa:37:59:e5:6d: 09:dd:87:2a:0b:5e:19:fa:87:49:ea:2e:6e:2d:60:f7:11:a6: a7:86:98:f7:3a:d1:2c:7c:d7:e2:33:ed:84:31:64:68:f4:97: 18:74:c5:22:aa:0b:ef:e9:c9:6b:e2:2c:75:2e:00:b6:b7:67: f7:ad:8a:64:33:8e:3e:1b:03:c5:82:5a:4a:8c:97:83:50:b2: 9a:90:17:be:4f:70:8f:bf:6f:7a:7f:96:6b:2e:d4:e0:cd:55: 61:74:4c:fa:e3:a9:a8:82:d8:1a:03:65:9c:ca:93:11:94:f2: d2:6e:8e:ee:cf:76:29:b4:ad:5c:c0:26:00:92:c0:0e:52:86: 26:9b:e2:d0:e5:92:dc:07:2f:de:d3:8f:da:88:52:43:47:2e: 90:2f:22:90:ec:86:27:74:85:6f:d8:bd:39:94:35:80:ba:3d: 37:71:21:67:3f:af:b1:12:7a:96:82:16:9c:21:5f:28:0e:6a: 8d:b1:7f:54:31:2f:0f:aa:bd:17:2e:c7:81:64:6d:dc:7b:09: 93:68:80:b3 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICGU0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw OTAyNThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEVDMDYzRTk1REI1MjIy RkNCNThFRDIxNjM1QTExMzRFOTJEMUZCMTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCVBJk+qHuk4bnYa8JfM/fQ2cLS2d/HTPrJBxUg2/k8PEqNkesK R+T8R1EZNKv5kfBZvDP4f5yw2+wlvOytemtAOqi+fDRUlHtc1x657RLW/7BrCh+t 8L8yr/48Ty9ADSEheJSYGOeeqqoNW1VmhdkMmDLTo+whEEwPIak8+cZqRW2zBL3g BvJXt7Xk+UXo/uw66xCimEE985GswbICuSpZzViY9mngU2gSBAt1n8wldKaEaqOR PjTeIapAv/z7iLFzKbs4szROW3fZqZXTB7vFOmis26HtCy9RMAp8caysoupA+Jwc 9O7Fo96Lo8xVvW0rLF/WK358eYBPeBoswUMfAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU7AY+ldtSIvy1jtIWNaETTpLR+xYwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC83QVktbGR0U0l2eTFqdElXTmFF VFRwTFIteFkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAchn6 MA0GCSqGSIb3DQEBCwUAA4IBAQC4WJ5on06KRO+shzoD4QXJaHPKDG54Qqye2Jba fQRqu6EI1EDI3xnSOGmq9kH/zv5T+jdZ5W0J3YcqC14Z+odJ6i5uLWD3Eaanhpj3 OtEsfNfiM+2EMWRo9JcYdMUiqgvv6clr4ix1LgC2t2f3rYpkM44+GwPFglpKjJeD ULKakBe+T3CPv296f5ZrLtTgzVVhdEz646mogtgaA2WcypMRlPLSbo7uz3YptK1c wCYAksAOUoYmm+LQ5ZLcBy/e04/aiFJDRy6QLyKQ7IYndIVv2L05lDWAuj03cSFn P6+xEnqWghacIV8oDmqNsX9UMS8Pqr0XLseBZG3cewmTaICz -----END CERTIFICATE-----Generated at Sun Aug 24 09:44:56 2025 by rpki-client