$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/engPfo8TfsL5LBlxNEhFb5jJqko.roa File: engPfo8TfsL5LBlxNEhFb5jJqko.roa (raw, json) Hash identifier: xSSuH4PaxNMlj5l3VfVCnQCgOSU6zOUcX3vfhBnSKc4= Subject key identifier: 7A:78:0F:7E:8F:13:7E:C2:F9:2C:19:71:34:48:45:6F:98:C9:AA:4A Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1943 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/engPfo8TfsL5LBlxNEhFb5jJqko.roa Signing time: Fri 22 Aug 2025 09:02:55 +0000 ROA not before: Fri 22 Aug 2025 09:02:55 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17421 IP address blocks: 2001:b400::/23 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6467 (0x1943) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 22 09:02:55 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7A780F7E8F137EC2F92C19713448456F98C9AA4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:37:87:aa:ec:ef:d8:79:a6:bf:7d:97:0e:f9: 6d:3b:e4:ed:08:c3:54:52:b2:b8:13:2e:b3:04:08: 07:c4:1c:e9:a3:d4:93:6a:e0:b1:63:f1:65:eb:63: 8e:52:ff:86:72:b0:4c:40:47:44:6d:3d:ee:bb:b6: 9f:2d:3f:ad:0c:9b:c3:a2:03:34:b6:f9:4d:1e:6e: 4a:6e:b2:ef:f9:07:63:9b:16:44:8d:23:94:7d:97: 59:5d:6a:2e:9d:ba:d0:55:0f:68:dc:dd:ce:a4:29: e3:65:44:23:e3:61:b6:c5:84:06:9e:f0:10:cb:e9: a7:7d:44:29:be:62:0b:fa:1c:d2:17:47:ca:65:6c: a6:72:21:58:c0:db:06:a3:7d:f5:97:d3:df:15:f3: 00:bf:6f:06:ea:a4:2c:40:65:38:71:97:63:1c:90: 8a:e9:4b:d4:81:7f:db:cb:aa:9d:5e:77:07:e8:52: 60:e1:64:dd:41:9c:8c:99:24:f9:64:a0:20:19:1e: b0:26:0b:b9:be:73:8c:bf:bb:d6:6b:f1:a2:22:97: e1:0c:48:22:82:83:22:d3:3d:43:e5:4a:94:be:d9: e7:9d:9e:2b:c4:3c:a7:fa:c5:37:c7:d4:1e:09:6a: 82:b0:29:1a:eb:1d:68:06:97:06:68:3b:dd:22:a3: 2d:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:78:0F:7E:8F:13:7E:C2:F9:2C:19:71:34:48:45:6F:98:C9:AA:4A X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/engPfo8TfsL5LBlxNEhFb5jJqko.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:b400::/23 Signature Algorithm: sha256WithRSAEncryption 7e:cd:89:48:59:87:78:19:25:83:65:89:6c:a1:d4:9d:ea:29: 51:c9:83:28:9c:97:b7:cf:04:8e:ff:5f:da:f9:5f:75:9b:4a: 1d:3f:ff:06:e1:40:5f:54:df:ae:8f:e1:e6:c6:7d:3b:75:7e: 63:04:7b:e8:6d:13:73:e9:09:9f:86:f5:7e:3d:9e:2d:bd:27: 53:90:c9:93:3f:5b:a1:c6:02:07:8f:c1:1f:93:82:8d:5e:6d: 9a:ae:bd:9d:b2:20:e1:76:fc:7b:a4:d8:9c:78:d7:a6:a6:c6: 4b:80:eb:a4:89:6e:9f:01:05:38:97:a1:e3:92:03:58:9f:df: ca:b6:61:7e:92:4e:83:71:8d:22:96:52:b3:aa:45:a9:06:4b: cb:d2:3d:1d:37:b4:aa:c1:c7:af:78:93:e9:0d:5f:0f:59:c2: d0:a9:27:13:6a:b1:d3:84:28:84:d8:ce:64:88:c1:2a:8f:96: 7b:e5:8d:47:2a:1c:bb:6c:68:ad:ea:be:58:ee:88:ec:86:00: 33:e3:92:df:a9:e5:b1:f7:b7:e4:6a:97:68:18:67:1b:1b:2f: 64:c6:d9:43:38:22:09:44:4d:a4:05:f3:b3:c7:3c:db:21:bb: 17:e0:4d:55:3b:fb:c7:b3:9e:aa:83:0d:b0:46:91:cf:23:f9: 37:97:dd:75 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICGUMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw OTAyNTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDdBNzgwRjdFOEYxMzdF QzJGOTJDMTk3MTM0NDg0NTZGOThDOUFBNEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9N4eq7O/Yeaa/fZcO+W075O0Iw1RSsrgTLrMECAfEHOmj1JNq 4LFj8WXrY45S/4ZysExAR0RtPe67tp8tP60Mm8OiAzS2+U0ebkpusu/5B2ObFkSN I5R9l1ldai6dutBVD2jc3c6kKeNlRCPjYbbFhAae8BDL6ad9RCm+Ygv6HNIXR8pl bKZyIVjA2wajffWX098V8wC/bwbqpCxAZThxl2MckIrpS9SBf9vLqp1edwfoUmDh ZN1BnIyZJPlkoCAZHrAmC7m+c4y/u9Zr8aIil+EMSCKCgyLTPUPlSpS+2eednivE PKf6xTfH1B4JaoKwKRrrHWgGlwZoO90ioy2HAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUengPfo8TfsL5LBlxNEhFb5jJqkowHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9lbmdQZm84VGZzTDVMQmx4TkVo RmI1akpxa28ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAAjAGAwQBIAG0 MA0GCSqGSIb3DQEBCwUAA4IBAQB+zYlIWYd4GSWDZYlsodSd6ilRyYMonJe3zwSO /1/a+V91m0odP/8G4UBfVN+uj+Hmxn07dX5jBHvobRNz6QmfhvV+PZ4tvSdTkMmT P1uhxgIHj8Efk4KNXm2arr2dsiDhdvx7pNiceNempsZLgOukiW6fAQU4l6HjkgNY n9/KtmF+kk6DcY0illKzqkWpBkvL0j0dN7SqwceveJPpDV8PWcLQqScTarHThCiE 2M5kiMEqj5Z75Y1HKhy7bGit6r5Y7ojshgAz45LfqeWx97fkapdoGGcbGy9kxtlD OCIJRE2kBfOzxzzbIbsX4E1VO/vHs56qgw2wRpHPI/k3l911 -----END CERTIFICATE-----Generated at Sun Aug 24 09:43:15 2025 by rpki-client