$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/7cVVHXlXDYxKLxEGae78tmmnPGA.roa File: 7cVVHXlXDYxKLxEGae78tmmnPGA.roa (raw, json) Hash identifier: Pc5R+Phny9S0KTji+KxAQKXoznXvvOOnKVwGC9BMLIk= Subject key identifier: ED:C5:55:1D:79:57:0D:8C:4A:2F:11:06:69:EE:FC:B6:69:A7:3C:60 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 195A Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/7cVVHXlXDYxKLxEGae78tmmnPGA.roa Signing time: Fri 22 Aug 2025 09:03:01 +0000 ROA not before: Fri 22 Aug 2025 09:03:01 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 33717 IP address blocks: 220.128.51.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6490 (0x195a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 22 09:03:01 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=EDC5551D79570D8C4A2F110669EEFCB669A73C60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:d3:1e:e2:e6:15:51:3d:24:06:f8:ae:eb:b4: ec:b2:bd:ec:67:c6:ad:31:2a:be:75:ac:d8:36:1c: db:f8:f1:4d:d3:81:5e:6d:42:93:ad:26:c3:a8:47: 4e:21:01:f4:5f:2f:c7:0d:ba:51:d3:01:bf:e0:f3: 01:ff:d1:e8:5d:5e:f6:0a:d2:3d:53:45:23:9f:eb: 9f:0f:d3:b0:83:a2:57:b1:f6:07:f5:ec:1a:37:7e: 2e:f3:90:c7:3e:6a:e2:1b:5c:30:a2:14:fd:4e:d4: e0:1a:09:b7:18:4c:2d:07:46:bf:28:e5:90:65:68: 8a:13:4d:18:98:3c:38:2d:2d:80:d8:ca:4b:44:28: c8:3f:8c:99:b4:25:3f:2f:cd:39:76:ea:92:23:a0: 73:dd:6a:e1:e8:f2:b9:6f:66:c5:0b:98:44:62:37: 16:d7:bd:08:8c:16:29:49:a4:e1:47:28:55:6c:5f: 2c:eb:68:a2:87:c2:11:09:b5:10:9f:31:d7:0f:8b: 90:0e:35:3a:c4:87:2f:9c:71:dd:41:a5:48:ac:4f: 75:ca:fb:fa:39:a0:2d:94:5a:36:43:e5:d3:e9:86: e3:73:1d:78:bb:c4:05:6a:06:bc:27:a1:91:e8:59: 8b:09:d3:78:ca:c4:2f:c1:bd:b7:dd:6f:3f:23:05: 47:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:C5:55:1D:79:57:0D:8C:4A:2F:11:06:69:EE:FC:B6:69:A7:3C:60 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/7cVVHXlXDYxKLxEGae78tmmnPGA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 220.128.51.0/24 Signature Algorithm: sha256WithRSAEncryption 06:81:f7:c8:b7:c0:6b:ac:c3:d6:48:1e:b0:c4:42:ec:63:1b: 67:db:ea:e0:c2:ee:0a:7e:cf:11:4c:67:d1:12:1f:19:64:bd: dd:0b:30:5d:ff:b6:f3:f9:80:9d:22:c1:7b:c5:00:93:e1:71: 0a:fa:12:07:de:75:7b:ee:ae:de:ae:f0:f2:c2:bd:9d:a8:c8: 13:f8:59:48:ee:22:14:bb:8e:99:89:4a:74:13:56:bd:bb:b3: 47:7b:44:d8:c9:6e:32:e2:cc:98:3e:f6:20:65:04:20:3f:5e: 20:47:a5:0e:cb:84:40:88:82:7e:7d:f9:55:b5:3c:e0:6d:64: 22:9a:85:3d:bf:07:c1:43:0b:25:d8:33:7c:f5:66:74:af:95: da:39:dd:3b:c0:90:ae:4a:32:82:72:a1:12:f4:d6:ba:4f:0a: 81:00:e3:ce:1d:b5:8d:3d:f9:c2:5e:f2:d4:e6:04:55:47:7b: c2:c1:b3:87:91:1b:e5:ec:10:2a:37:9f:0f:b3:17:08:5e:79: 32:4d:a8:63:81:1c:b7:76:e0:29:8b:a5:59:d7:0d:01:d3:39: 9a:07:d7:21:59:2f:d6:44:d2:c9:9a:ab:ca:15:d0:51:5e:a6: 2b:3f:17:31:ed:51:da:45:18:ba:42:bb:88:5e:04:e0:27:ac: b0:d2:5d:26 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICGVowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw OTAzMDFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEVEQzU1NTFENzk1NzBE OEM0QTJGMTEwNjY5RUVGQ0I2NjlBNzNDNjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDW0x7i5hVRPSQG+K7rtOyyvexnxq0xKr51rNg2HNv48U3TgV5t QpOtJsOoR04hAfRfL8cNulHTAb/g8wH/0ehdXvYK0j1TRSOf658P07CDolex9gf1 7Bo3fi7zkMc+auIbXDCiFP1O1OAaCbcYTC0HRr8o5ZBlaIoTTRiYPDgtLYDYyktE KMg/jJm0JT8vzTl26pIjoHPdauHo8rlvZsULmERiNxbXvQiMFilJpOFHKFVsXyzr aKKHwhEJtRCfMdcPi5AONTrEhy+ccd1BpUisT3XK+/o5oC2UWjZD5dPphuNzHXi7 xAVqBrwnoZHoWYsJ03jKxC/Bvbfdbz8jBUcFAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU7cVVHXlXDYxKLxEGae78tmmnPGAwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC83Y1ZWSFhsWERZeEtMeEVHYWU3 OHRtbW5QR0Eucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA3IAz MA0GCSqGSIb3DQEBCwUAA4IBAQAGgffIt8BrrMPWSB6wxELsYxtn2+rgwu4Kfs8R TGfREh8ZZL3dCzBd/7bz+YCdIsF7xQCT4XEK+hIH3nV77q7ervDywr2dqMgT+FlI 7iIUu46ZiUp0E1a9u7NHe0TYyW4y4syYPvYgZQQgP14gR6UOy4RAiIJ+fflVtTzg bWQimoU9vwfBQwsl2DN89WZ0r5XaOd07wJCuSjKCcqES9Na6TwqBAOPOHbWNPfnC XvLU5gRVR3vCwbOHkRvl7BAqN58PsxcIXnkyTahjgRy3duApi6VZ1w0B0zmaB9ch WS/WRNLJmqvKFdBRXqYrPxcx7VHaRRi6QruIXgTgJ6yw0l0m -----END CERTIFICATE-----Generated at Sun Aug 24 11:07:15 2025 by rpki-client