$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/HB9yxwY8W65sUfU9Q4Rof6WQqqo.roa File: HB9yxwY8W65sUfU9Q4Rof6WQqqo.roa (raw, json) Hash identifier: JYnoonj26uMEPmMs1SdLh9rCJ3R85DGVwg3qcLHRhxY= Subject key identifier: 1C:1F:72:C7:06:3C:5B:AE:6C:51:F5:3D:43:84:68:7F:A5:90:AA:AA Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 18B8 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/HB9yxwY8W65sUfU9Q4Rof6WQqqo.roa Signing time: Fri 22 Aug 2025 09:02:23 +0000 ROA not before: Fri 22 Aug 2025 09:02:23 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9505 IP address blocks: 2001:b200::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6328 (0x18b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 22 09:02:23 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1C1F72C7063C5BAE6C51F53D4384687FA590AAAA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c9:15:0f:36:cb:46:96:9d:a8:82:13:46:ec: 52:ed:14:b0:8d:4e:4a:9b:70:f1:c9:d5:43:e0:ca: e9:c5:d9:89:3b:61:68:36:20:83:15:1e:27:9f:a0: a2:9e:73:1a:c7:ca:96:3e:56:4a:63:d8:d9:5c:42: bb:e4:7e:5f:e8:24:33:90:06:d4:4a:e4:39:cf:1e: b6:85:4d:f6:1f:7e:02:20:6a:89:63:4a:41:b0:91: 6b:db:02:f7:9d:70:7e:9c:50:a5:07:d2:1e:5d:44: e8:71:09:9c:86:ea:77:3d:67:ac:db:19:16:30:fc: 24:58:ac:87:d5:eb:48:5f:d4:2b:7b:b8:50:57:3a: 4a:8c:7f:e2:01:d7:7c:5f:9b:66:bd:6f:2c:cf:27: f7:a4:6f:2f:9c:e6:91:97:4f:8c:ac:29:72:be:85: 81:f2:9a:fe:0f:1c:cd:0a:23:62:1c:f0:a6:e4:b7: f1:9b:b6:b5:45:20:de:0c:25:57:41:1e:1a:de:1c: 8a:46:05:ce:6c:f4:fd:e1:8f:4a:3b:40:88:85:66: 5b:c7:c1:bc:36:04:28:81:13:4d:30:54:ad:65:ee: e1:58:a6:e3:21:5b:6a:18:c4:98:32:ea:24:f2:48: 7a:23:f3:10:a3:11:92:7d:ed:14:45:2f:5c:08:4b: cc:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:1F:72:C7:06:3C:5B:AE:6C:51:F5:3D:43:84:68:7F:A5:90:AA:AA X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/HB9yxwY8W65sUfU9Q4Rof6WQqqo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:b200::/32 Signature Algorithm: sha256WithRSAEncryption 74:ba:b3:5d:bf:37:9f:24:97:88:2c:bf:54:35:56:48:26:b8: ca:f4:82:e5:7a:47:7c:ee:91:11:1e:b3:20:47:0f:81:7b:02: 1d:74:c9:a1:27:3c:04:cf:6f:df:dd:1e:b0:3a:b7:f4:ec:61: 66:45:b3:d0:b6:20:3c:7f:78:a3:ce:d2:d4:e0:fe:4c:4a:55: e1:0d:f4:ce:18:22:fb:3b:0d:b3:2c:a1:53:60:b1:03:37:da: 0e:bc:da:f1:11:c3:46:fc:48:d6:8e:b1:6e:fa:47:f3:cf:a5: 0a:5d:e5:cd:d5:ad:e6:ad:72:94:53:b6:30:f5:83:a2:e5:0d: a0:64:94:61:4b:e4:dd:84:fb:f2:65:16:e6:3e:50:07:cc:6e: b1:27:cc:4f:56:8d:0f:1e:ed:00:f7:a3:50:8d:14:d5:89:24: d5:57:c3:51:b6:21:9a:12:16:91:c0:0c:e1:29:ba:97:ec:3b: 4c:77:ef:b6:dd:04:e0:15:04:fb:5a:d2:d1:2d:a5:c0:ed:26: 9a:37:65:bb:cf:48:a6:48:de:e4:8e:7e:d5:a9:7a:3d:6b:bb: 75:c6:be:37:33:f2:06:9c:37:25:22:ae:d8:0a:eb:05:87:bf: 52:29:b7:13:8c:fc:8c:4b:ef:eb:b7:41:29:51:74:43:07:8b: a8:c9:d5:7c -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICGLgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw OTAyMjNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDFDMUY3MkM3MDYzQzVC QUU2QzUxRjUzRDQzODQ2ODdGQTU5MEFBQUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvyRUPNstGlp2oghNG7FLtFLCNTkqbcPHJ1UPgyunF2Yk7YWg2 IIMVHiefoKKecxrHypY+Vkpj2NlcQrvkfl/oJDOQBtRK5DnPHraFTfYffgIgaolj SkGwkWvbAvedcH6cUKUH0h5dROhxCZyG6nc9Z6zbGRYw/CRYrIfV60hf1Ct7uFBX OkqMf+IB13xfm2a9byzPJ/ekby+c5pGXT4ysKXK+hYHymv4PHM0KI2Ic8Kbkt/Gb trVFIN4MJVdBHhreHIpGBc5s9P3hj0o7QIiFZlvHwbw2BCiBE00wVK1l7uFYpuMh W2oYxJgy6iTySHoj8xCjEZJ97RRFL1wIS8ylAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUHB9yxwY8W65sUfU9Q4Rof6WQqqowHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9IQjl5eHdZOFc2NXNVZlU5UTRS b2Y2V1FxcW8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAIAGy ADANBgkqhkiG9w0BAQsFAAOCAQEAdLqzXb83nySXiCy/VDVWSCa4yvSC5XpHfO6R ER6zIEcPgXsCHXTJoSc8BM9v390esDq39OxhZkWz0LYgPH94o87S1OD+TEpV4Q30 zhgi+zsNsyyhU2CxAzfaDrza8RHDRvxI1o6xbvpH88+lCl3lzdWt5q1ylFO2MPWD ouUNoGSUYUvk3YT78mUW5j5QB8xusSfMT1aNDx7tAPejUI0U1Ykk1VfDUbYhmhIW kcAM4Sm6l+w7THfvtt0E4BUE+1rS0S2lwO0mmjdlu89Ipkje5I5+1al6PWu7dca+ NzPyBpw3JSKu2ArrBYe/Uim3E4z8jEvv67dBKVF0QweLqMnVfA== -----END CERTIFICATE-----Generated at Sun Aug 24 11:45:09 2025 by rpki-client