$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/B6r_twOhKSnbKMbfY0BL8Hmy3RM.roa File: B6r_twOhKSnbKMbfY0BL8Hmy3RM.roa (raw, json) Hash identifier: Ubt1E1rsugQcffqeiLO0YWVmBp1PV+x6OITXNDeP41w= Subject key identifier: 07:AA:FF:B7:03:A1:29:29:DB:28:C6:DF:63:40:4B:F0:79:B2:DD:13 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 192E Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/B6r_twOhKSnbKMbfY0BL8Hmy3RM.roa Signing time: Fri 22 Aug 2025 09:02:50 +0000 ROA not before: Fri 22 Aug 2025 09:02:50 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9505 IP address blocks: 203.160.224.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6446 (0x192e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 22 09:02:50 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=07AAFFB703A12929DB28C6DF63404BF079B2DD13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:25:24:b7:bb:ec:ed:9d:cd:87:4c:fd:c0:03: 48:2f:34:d9:ed:6b:4b:61:69:e8:34:35:92:cd:cb: a0:fa:3b:73:49:7c:57:5f:c1:0f:7a:8b:be:8f:81: 8d:e0:41:1b:dc:2a:39:5f:fd:df:3e:7f:5d:3f:d4: 0b:13:25:73:e3:07:f8:77:eb:73:64:c6:5e:36:f0: 95:da:e3:88:20:b8:f8:c6:c1:b7:95:86:48:38:77: 17:73:a4:f1:d4:ae:fb:1c:ec:b0:cc:bf:77:ee:13: b9:3f:f4:65:cd:d6:14:6a:d2:cd:1f:48:b3:56:0c: 44:69:b1:61:5b:c9:ad:0e:32:5d:58:1d:a5:be:c7: 85:47:59:8e:35:5d:8b:d3:f5:70:77:5d:d9:f1:d1: 3a:36:83:a5:63:3c:e3:70:94:ed:dd:83:3b:e9:49: 46:a4:fd:63:8e:e1:9f:0a:ab:d4:29:c7:03:02:72: 5d:cb:78:53:00:50:7e:9e:ae:ac:1a:ac:5c:7c:58: 75:f1:a8:32:e3:12:fe:35:78:24:ba:cf:d9:7f:29: e8:1e:87:4a:15:21:43:c4:ad:33:a4:bc:fd:4d:07: 92:03:c6:43:ab:b8:17:cb:aa:1d:d4:20:30:0d:e6: 38:6d:ce:94:1b:87:6e:b8:a9:89:92:82:e4:74:07: 5c:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:AA:FF:B7:03:A1:29:29:DB:28:C6:DF:63:40:4B:F0:79:B2:DD:13 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/B6r_twOhKSnbKMbfY0BL8Hmy3RM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.160.224.0/20 Signature Algorithm: sha256WithRSAEncryption d2:d6:92:5a:da:43:49:1f:db:c6:ee:44:e3:bf:33:b4:8d:86: c5:78:04:46:d2:3e:a3:33:ff:31:2f:47:a7:2a:ea:6c:5f:0f: 1c:18:2f:9c:8f:e6:0d:f9:85:39:ad:ae:90:46:c9:b8:b1:51: 37:8c:fc:77:4c:92:9e:51:d2:ac:05:8c:d0:a0:71:0b:7a:79: 53:34:75:1c:59:f1:17:dd:da:d1:5a:1b:41:5a:1f:e8:ad:1d: 98:c5:37:b0:3a:85:8c:8a:5a:3f:77:6c:18:73:6a:d6:e2:52: 0e:91:12:03:da:cb:d5:81:59:d8:7a:a9:0c:bb:b8:0c:ff:59: ff:10:8c:6d:53:e2:03:c9:46:48:44:01:2e:94:6a:e6:96:50: 95:d3:3b:72:b1:20:1e:19:e6:59:52:a1:11:6a:cf:95:1b:20: 70:37:24:3e:30:14:88:fa:1e:4a:75:de:3f:97:bc:2a:6f:fd: f0:08:16:ae:5c:4e:1e:30:53:79:eb:15:11:97:07:78:1b:4d: 0b:1d:64:ce:43:56:06:20:b3:cd:ae:35:48:f0:6b:60:8c:33: 26:c8:80:cb:31:89:79:22:ff:d6:ca:7d:42:ca:9c:b0:a8:99: 02:c3:b6:d6:fa:91:18:d6:af:f3:1c:a2:3e:f9:f8:5d:32:4c: 7a:26:b8:d6 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICGS4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw OTAyNTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDA3QUFGRkI3MDNBMTI5 MjlEQjI4QzZERjYzNDA0QkYwNzlCMkREMTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDpJSS3u+ztnc2HTP3AA0gvNNnta0thaeg0NZLNy6D6O3NJfFdf wQ96i76PgY3gQRvcKjlf/d8+f10/1AsTJXPjB/h363Nkxl428JXa44gguPjGwbeV hkg4dxdzpPHUrvsc7LDMv3fuE7k/9GXN1hRq0s0fSLNWDERpsWFbya0OMl1YHaW+ x4VHWY41XYvT9XB3Xdnx0To2g6VjPONwlO3dgzvpSUak/WOO4Z8Kq9QpxwMCcl3L eFMAUH6erqwarFx8WHXxqDLjEv41eCS6z9l/Kegeh0oVIUPErTOkvP1NB5IDxkOr uBfLqh3UIDAN5jhtzpQbh264qYmSguR0B1yvAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUB6r/twOhKSnbKMbfY0BL8Hmy3RMwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9CNnJfdHdPaEtTbmJLTWJmWTBC TDhIbXkzUk0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEy6Dg MA0GCSqGSIb3DQEBCwUAA4IBAQDS1pJa2kNJH9vG7kTjvzO0jYbFeARG0j6jM/8x L0enKupsXw8cGC+cj+YN+YU5ra6QRsm4sVE3jPx3TJKeUdKsBYzQoHELenlTNHUc WfEX3drRWhtBWh/orR2YxTewOoWMilo/d2wYc2rW4lIOkRID2svVgVnYeqkMu7gM /1n/EIxtU+IDyUZIRAEulGrmllCV0ztysSAeGeZZUqERas+VGyBwNyQ+MBSI+h5K dd4/l7wqb/3wCBauXE4eMFN56xURlwd4G00LHWTOQ1YGILPNrjVI8GtgjDMmyIDL MYl5Iv/Wyn1CypywqJkCw7bW+pEY1q/zHKI++fhdMkx6JrjW -----END CERTIFICATE-----Generated at Sun Aug 24 11:40:30 2025 by rpki-client