$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/c4Nig98ul4Tfd02WeGvzGXNpG3E.roa File: c4Nig98ul4Tfd02WeGvzGXNpG3E.roa (raw, json) Hash identifier: qdJWbnpfnH/VSfArC05+JoYijJWfwwPQ2CtcgdTREhY= Subject key identifier: 73:83:62:83:DF:2E:97:84:DF:77:4D:96:78:6B:F3:19:73:69:1B:71 Certificate issuer: /CN=5876E4B8DFAA224C019D246931FC3CD7A4FEED2A Certificate serial: 0EC5 Authority key identifier: 58:76:E4:B8:DF:AA:22:4C:01:9D:24:69:31:FC:3C:D7:A4:FE:ED:2A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/c4Nig98ul4Tfd02WeGvzGXNpG3E.roa Signing time: Fri 22 Aug 2025 09:03:08 +0000 ROA not before: Fri 22 Aug 2025 09:03:08 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9680 IP address blocks: 168.95.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WHbkuN-qIkwBnSRpMfw816T-7So.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WHbkuN-qIkwBnSRpMfw816T-7So.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3781 (0xec5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5876E4B8DFAA224C019D246931FC3CD7A4FEED2A Validity Not Before: Aug 22 09:03:08 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=73836283DF2E9784DF774D96786BF31973691B71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:d4:fe:ad:6d:a6:de:d4:e2:79:d0:ad:3f:7b: a9:0e:57:1a:8d:d8:89:e2:cd:3c:ff:3d:9d:4f:7f: ce:d5:f2:7e:50:5d:06:39:aa:67:4d:ff:24:1b:f0: 07:ac:3e:45:96:3a:2d:9d:7e:92:2a:dd:cc:9e:2a: 9a:42:27:1b:aa:04:bc:4d:cb:58:c9:c1:a4:00:15: f5:4f:c5:48:e1:02:09:80:f1:b2:0d:13:12:14:26: e1:a7:ea:ea:bd:e3:89:8d:d9:3f:a5:57:6f:04:36: 0e:b0:0c:52:f5:c7:0d:22:fe:93:aa:0e:f0:2b:9a: 1f:83:e3:3d:46:fd:72:a3:16:59:7d:c0:6f:55:7c: 5b:f8:52:8a:a6:9b:92:13:f2:ee:99:0d:b4:87:17: 25:67:c3:3f:0d:ce:e0:25:9c:36:6a:55:21:f5:c3: de:e2:0c:be:9b:b1:6c:54:c2:5c:4a:4f:e5:99:45: 6b:1f:76:c0:d2:6f:4f:30:86:2d:ff:b9:29:a2:15: 48:96:60:17:32:eb:cc:ed:c7:72:56:81:38:6b:aa: 3b:11:95:7b:f3:79:d2:3a:0c:47:c2:39:d6:d8:b4: 50:37:cc:6f:f2:24:d6:85:8e:f6:8f:0b:9e:e7:27: 78:68:16:0d:c6:ff:74:83:f0:9b:98:a1:5b:86:7b: c6:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:83:62:83:DF:2E:97:84:DF:77:4D:96:78:6B:F3:19:73:69:1B:71 X509v3 Authority Key Identifier: keyid:58:76:E4:B8:DF:AA:22:4C:01:9D:24:69:31:FC:3C:D7:A4:FE:ED:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WHbkuN-qIkwBnSRpMfw816T-7So.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/c4Nig98ul4Tfd02WeGvzGXNpG3E.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 168.95.246.0/24 Signature Algorithm: sha256WithRSAEncryption 66:9f:44:c5:5c:e0:25:66:fe:3d:99:ca:26:41:40:77:b1:86: 73:6f:af:bd:02:b9:d5:b3:e9:0e:dc:d6:4e:32:ce:b5:e9:4f: 3c:7d:21:a2:79:9b:4b:16:11:1c:93:ed:da:41:24:c4:0e:75: 0d:36:78:26:e2:1a:8e:e8:8e:b9:e6:49:6d:c4:6c:fc:8e:45: dd:19:0d:04:9c:1c:a5:b8:96:14:7e:fd:ef:46:be:0f:af:55: e1:c4:08:ae:52:f1:06:51:ae:7d:bf:62:e7:66:83:fd:1f:b9: 91:5b:b8:7a:a2:a8:49:ac:dd:64:5c:4c:33:7f:05:b3:89:61: 53:6c:3d:0f:50:ce:63:d1:63:65:c0:d3:7b:2d:fe:01:f3:07: 70:09:66:a6:28:fe:e0:40:16:10:5b:a4:36:09:d8:11:b3:57: 39:7d:29:9e:fa:f2:c1:6b:87:d3:5e:9a:a3:9f:2e:a2:9d:81: b1:b2:79:37:68:dc:62:b0:d3:00:ef:43:01:86:d9:3b:26:00: 24:40:7e:89:96:63:91:56:37:3e:a0:6a:79:3c:d2:08:bf:64: e7:d8:27:22:01:38:ec:99:78:c2:91:12:8c:4e:c1:21:d8:bc: 2e:00:b4:c2:3a:04:11:a4:41:d6:4a:62:19:32:82:73:49:85: 68:a6:4d:31 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDsUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTg3 NkU0QjhERkFBMjI0QzAxOUQyNDY5MzFGQzNDRDdBNEZFRUQyQTAeFw0yNTA4MjIw OTAzMDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDczODM2MjgzREYyRTk3 ODRERjc3NEQ5Njc4NkJGMzE5NzM2OTFCNzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDK1P6tbabe1OJ50K0/e6kOVxqN2InizTz/PZ1Pf87V8n5QXQY5 qmdN/yQb8AesPkWWOi2dfpIq3cyeKppCJxuqBLxNy1jJwaQAFfVPxUjhAgmA8bIN ExIUJuGn6uq944mN2T+lV28ENg6wDFL1xw0i/pOqDvArmh+D4z1G/XKjFll9wG9V fFv4Uoqmm5IT8u6ZDbSHFyVnwz8NzuAlnDZqVSH1w97iDL6bsWxUwlxKT+WZRWsf dsDSb08whi3/uSmiFUiWYBcy68ztx3JWgThrqjsRlXvzedI6DEfCOdbYtFA3zG/y JNaFjvaPC57nJ3hoFg3G/3SD8JuYoVuGe8apAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUc4Nig98ul4Tfd02WeGvzGXNpG3EwHwYDVR0jBBgwFoAUWHbkuN+qIkwBnSRp Mfw816T+7SowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv V0hia3VOLXFJa3dCblNScE1mdzgxNlQtN1NvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9XSGJrdU4tcUlrd0JuU1JwTWZ3ODE2VC03U28uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9jNE5pZzk4dWw0VGZkMDJXZUd2 ekdYTnBHM0Uucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAqF/2 MA0GCSqGSIb3DQEBCwUAA4IBAQBmn0TFXOAlZv49mcomQUB3sYZzb6+9ArnVs+kO 3NZOMs616U88fSGieZtLFhEck+3aQSTEDnUNNngm4hqO6I655kltxGz8jkXdGQ0E nByluJYUfv3vRr4Pr1XhxAiuUvEGUa59v2LnZoP9H7mRW7h6oqhJrN1kXEwzfwWz iWFTbD0PUM5j0WNlwNN7Lf4B8wdwCWamKP7gQBYQW6Q2CdgRs1c5fSme+vLBa4fT Xpqjny6inYGxsnk3aNxisNMA70MBhtk7JgAkQH6JlmORVjc+oGp5PNIIv2Tn2Cci ATjsmXjCkRKMTsEh2LwuALTCOgQRpEHWSmIZMoJzSYVopk0x -----END CERTIFICATE-----Generated at Sun Aug 24 09:42:36 2025 by rpki-client