$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/MpLTnbc0FooPxQfbFhmBCEWCA6A.roa File: MpLTnbc0FooPxQfbFhmBCEWCA6A.roa (raw, json) Hash identifier: s0oR+7mUZT2+Yl2Pto62H8NGr2pZeNTDzGards/Q9jc= Subject key identifier: 32:92:D3:9D:B7:34:16:8A:0F:C5:07:DB:16:19:81:08:45:82:03:A0 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 18E2 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/MpLTnbc0FooPxQfbFhmBCEWCA6A.roa Signing time: Fri 22 Aug 2025 09:02:34 +0000 ROA not before: Fri 22 Aug 2025 09:02:34 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131661 IP address blocks: 210.62.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6370 (0x18e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 22 09:02:34 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=3292D39DB734168A0FC507DB16198108458203A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:23:55:39:6c:38:3a:95:fc:4f:0e:9e:dc:eb: 8d:87:c9:9f:1d:55:b2:74:3a:46:75:92:27:93:92: df:9c:74:cd:5a:ba:01:f7:74:84:32:c8:c2:ec:65: 28:0a:9a:09:da:78:54:48:da:df:a8:b4:3a:07:3f: 46:db:e7:cb:59:aa:12:9a:82:47:83:b1:4e:62:0f: 6b:c5:78:f9:d8:f1:ba:d0:4a:26:c5:dc:2b:4c:16: 1b:96:81:dc:7e:03:30:46:ab:05:41:80:d8:29:14: e3:1c:5d:41:f6:70:24:1d:a7:ca:6f:8d:8d:a3:f4: 8e:65:2d:ee:78:32:2a:24:db:42:e0:0a:60:39:08: 69:62:29:65:64:50:5e:74:49:73:ab:23:7b:04:79: 19:5a:84:d6:fa:a7:81:d6:83:29:8c:51:92:4c:62: 11:21:1e:d6:ab:28:c3:07:1c:c4:31:ef:5a:52:58: 5e:d4:3e:a0:1a:e5:b8:2e:99:8a:1e:84:c9:31:35: 28:65:96:8b:74:3f:92:db:61:d7:0d:af:c8:97:df: 6b:e1:47:df:72:ce:52:c4:9e:bb:ce:4a:aa:30:fa: d2:24:de:50:ef:5b:16:88:44:a2:f8:97:53:60:89: 2f:f9:58:0c:74:ce:7d:7f:5a:3f:91:76:c4:e0:62: 2c:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:92:D3:9D:B7:34:16:8A:0F:C5:07:DB:16:19:81:08:45:82:03:A0 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/MpLTnbc0FooPxQfbFhmBCEWCA6A.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.62.250.0/24 Signature Algorithm: sha256WithRSAEncryption 47:ff:d8:97:cf:0d:ff:28:32:17:e1:26:1d:e9:6c:41:68:4a: 0f:90:6c:78:d5:b2:2d:e8:06:e0:c0:dd:b0:76:0b:f0:32:7d: b4:a4:b6:bb:a8:6d:4c:96:9d:5d:1c:7a:fb:92:c2:22:c7:64: d7:1d:6a:c8:ad:35:1c:09:43:56:00:a9:88:35:28:5f:31:01: ff:cd:96:da:d8:a9:10:9d:29:7e:7d:54:5c:9e:16:7d:f3:2c: c0:ff:a4:af:1e:67:76:4f:8e:1b:01:9c:af:29:9a:9b:0f:02: 9c:20:bc:39:00:0a:08:8b:82:a6:9d:7c:b7:bc:84:65:18:d4: 87:01:9a:db:f1:6b:13:0f:03:94:7f:fe:c3:f5:51:29:e3:d8: e1:2c:61:c5:ec:dd:98:a6:45:44:77:2a:21:c9:da:c8:cc:79: d7:5c:2c:77:59:1e:52:b5:3d:f7:33:71:f1:7e:f8:c4:a4:49: 6a:c8:cb:d7:53:1b:6f:ca:4c:2b:f2:ba:17:fe:6d:0c:eb:19: 4f:b7:64:e7:aa:e6:0e:52:2f:be:5c:28:cd:a4:39:79:75:49: 4f:b6:5b:9f:56:d1:f2:b3:0f:f9:1b:0d:f4:e0:3c:a5:0a:32: 1a:cd:76:4e:ef:09:37:17:10:3c:ef:8f:81:e4:96:c0:6c:f4: 97:73:ad:a7 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICGOIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw OTAyMzRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDMyOTJEMzlEQjczNDE2 OEEwRkM1MDdEQjE2MTk4MTA4NDU4MjAzQTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbI1U5bDg6lfxPDp7c642HyZ8dVbJ0OkZ1kieTkt+cdM1augH3 dIQyyMLsZSgKmgnaeFRI2t+otDoHP0bb58tZqhKagkeDsU5iD2vFePnY8brQSibF 3CtMFhuWgdx+AzBGqwVBgNgpFOMcXUH2cCQdp8pvjY2j9I5lLe54Miok20LgCmA5 CGliKWVkUF50SXOrI3sEeRlahNb6p4HWgymMUZJMYhEhHtarKMMHHMQx71pSWF7U PqAa5bgumYoehMkxNShllot0P5LbYdcNr8iX32vhR99yzlLEnrvOSqow+tIk3lDv WxaIRKL4l1NgiS/5WAx0zn1/Wj+RdsTgYizvAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUMpLTnbc0FooPxQfbFhmBCEWCA6AwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9NcExUbmJjMEZvb1B4UWZiRmht QkNFV0NBNkEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0j76 MA0GCSqGSIb3DQEBCwUAA4IBAQBH/9iXzw3/KDIX4SYd6WxBaEoPkGx41bIt6Abg wN2wdgvwMn20pLa7qG1Mlp1dHHr7ksIix2TXHWrIrTUcCUNWAKmINShfMQH/zZba 2KkQnSl+fVRcnhZ98yzA/6SvHmd2T44bAZyvKZqbDwKcILw5AAoIi4KmnXy3vIRl GNSHAZrb8WsTDwOUf/7D9VEp49jhLGHF7N2YpkVEdyohydrIzHnXXCx3WR5StT33 M3HxfvjEpElqyMvXUxtvykwr8roX/m0M6xlPt2TnquYOUi++XCjNpDl5dUlPtluf VtHysw/5Gw304DylCjIazXZO7wk3FxA874+B5JbAbPSXc62n -----END CERTIFICATE-----Generated at Sun Aug 24 09:45:10 2025 by rpki-client