$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/WezKePvPh7CC6eK4dtuULyJiHPY.roa File: WezKePvPh7CC6eK4dtuULyJiHPY.roa (raw, json) Hash identifier: kA53piE0q9Zj0nOLTgNr5NPHzUk/UVkXoEOwBKsEPGY= Subject key identifier: 59:EC:CA:78:FB:CF:87:B0:82:E9:E2:B8:76:DB:94:2F:22:62:1C:F6 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 198E Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WezKePvPh7CC6eK4dtuULyJiHPY.roa Signing time: Thu 16 Oct 2025 13:12:10 +0000 ROA not before: Thu 16 Oct 2025 13:12:10 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131660 IP address blocks: 2001:b000:571::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 17:56:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6542 (0x198e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Oct 16 13:12:10 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=59ECCA78FBCF87B082E9E2B876DB942F22621CF6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:40:5c:01:68:03:93:60:5c:ef:00:cf:c3:19: 35:88:d8:e8:2c:4b:3b:76:99:a8:01:e9:cd:5c:b6: 83:6d:cf:35:ea:b0:63:37:58:c5:c9:78:ab:c2:a1: d7:9e:28:b8:b1:66:74:2e:03:e3:45:84:ae:dd:aa: be:30:b5:cc:fb:31:3b:03:96:58:44:21:a0:43:85: 67:a8:97:f5:0b:ff:7c:83:b0:62:31:d2:f1:2b:47: 42:b8:dd:27:3e:74:ae:57:b0:01:2b:bb:65:5f:c5: cf:ad:d4:b7:df:d0:66:0f:d8:05:c1:f2:3c:f9:4a: 60:99:1d:e1:c3:e2:85:b7:57:74:5b:20:7a:15:3e: f5:f9:28:f8:08:16:42:97:43:1a:75:33:ff:fa:fa: 46:18:fb:0f:2f:00:eb:05:a1:75:1b:b5:52:f7:9b: 4f:94:35:25:ad:41:15:7b:08:1e:09:58:93:5f:15: 6d:48:8d:ec:8c:37:28:f9:a2:35:db:79:ba:2c:14: 0d:ed:fa:41:97:1e:6f:3a:08:c2:86:7d:b9:5c:07: dd:00:85:63:e8:93:b8:c8:e2:ad:ef:a2:e0:62:3e: 12:2f:02:d2:d7:23:5c:d9:dd:ea:04:d9:47:c4:4a: fb:05:1d:59:b9:7f:86:65:25:10:4f:7a:d9:e0:11: 3a:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:EC:CA:78:FB:CF:87:B0:82:E9:E2:B8:76:DB:94:2F:22:62:1C:F6 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WezKePvPh7CC6eK4dtuULyJiHPY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:b000:571::/48 Signature Algorithm: sha256WithRSAEncryption 54:e9:93:58:36:10:97:2e:ad:a7:37:86:4e:f5:46:e5:9a:1b: 39:ad:a6:4f:0c:d7:b3:99:94:cc:35:b7:5b:44:b9:ad:5b:a5: f1:64:95:31:f8:d3:4e:b7:46:11:a8:9c:ee:f8:49:f0:37:af: 30:30:b9:f5:38:77:d6:92:c4:23:d1:24:31:1b:86:12:0e:b8: 18:5a:f0:0d:26:13:b0:9c:23:16:ed:db:98:2d:e3:2a:3c:00: 3c:fe:41:e5:87:54:af:6c:c1:7a:00:4a:12:eb:62:99:e3:30: 1c:ae:dc:c9:09:c1:c8:00:66:95:e3:95:89:bf:80:d6:8b:5b: c0:3a:2d:60:94:6b:a1:93:f4:24:39:00:a4:4c:e2:60:1e:03: b4:20:c5:15:ad:d3:51:b3:13:d6:ec:ca:a0:c2:3b:56:b2:5d: df:71:9d:81:70:19:74:2e:d0:3f:dd:7e:0c:0e:23:17:87:6d: 30:03:8d:b6:6e:00:d0:41:a6:e1:3d:a6:8e:d8:37:e7:0e:40: 2b:60:5e:52:db:eb:c1:92:bc:80:00:55:70:e7:7e:67:c7:f7: 90:25:3d:4f:90:20:c2:03:19:ee:31:ad:eb:f8:73:ed:c8:a3: 86:02:23:78:3e:d7:17:6a:66:7f:ad:4a:bc:bc:12:0f:6f:d7: 56:b6:c2:fd -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICGY4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTEwMTYx MzEyMTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDU5RUNDQTc4RkJDRjg3 QjA4MkU5RTJCODc2REI5NDJGMjI2MjFDRjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRQFwBaAOTYFzvAM/DGTWI2OgsSzt2magB6c1ctoNtzzXqsGM3 WMXJeKvCodeeKLixZnQuA+NFhK7dqr4wtcz7MTsDllhEIaBDhWeol/UL/3yDsGIx 0vErR0K43Sc+dK5XsAEru2Vfxc+t1Lff0GYP2AXB8jz5SmCZHeHD4oW3V3RbIHoV PvX5KPgIFkKXQxp1M//6+kYY+w8vAOsFoXUbtVL3m0+UNSWtQRV7CB4JWJNfFW1I jeyMNyj5ojXbebosFA3t+kGXHm86CMKGfblcB90AhWPok7jI4q3vouBiPhIvAtLX I1zZ3eoE2UfESvsFHVm5f4ZlJRBPetngETo1AgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUWezKePvPh7CC6eK4dtuULyJiHPYwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9XZXpLZVB2UGg3Q0M2ZUs0ZHR1 VUx5SmlIUFkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAGw AAVxMA0GCSqGSIb3DQEBCwUAA4IBAQBU6ZNYNhCXLq2nN4ZO9Ublmhs5raZPDNez mZTMNbdbRLmtW6XxZJUx+NNOt0YRqJzu+EnwN68wMLn1OHfWksQj0SQxG4YSDrgY WvANJhOwnCMW7duYLeMqPAA8/kHlh1SvbMF6AEoS62KZ4zAcrtzJCcHIAGaV45WJ v4DWi1vAOi1glGuhk/QkOQCkTOJgHgO0IMUVrdNRsxPW7MqgwjtWsl3fcZ2BcBl0 LtA/3X4MDiMXh20wA422bgDQQabhPaaO2DfnDkArYF5S2+vBkryAAFVw535nx/eQ JT1PkCDCAxnuMa3r+HPtyKOGAiN4PtcXamZ/rUq8vBIPb9dWtsL9 -----END CERTIFICATE-----Generated at Mon Oct 20 16:29:31 2025 by rpki-client