$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/f9R2kVFjAKoT1sjzipbE8qr-0rg.roa File: f9R2kVFjAKoT1sjzipbE8qr-0rg.roa (raw, json) Hash identifier: uts1uhrgwQefnpdX96Y65NRXkwl3B6Nw6nB1p1pl4z4= Subject key identifier: 7F:D4:76:91:51:63:00:AA:13:D6:C8:F3:8A:96:C4:F2:AA:FE:D2:B8 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 198C Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/f9R2kVFjAKoT1sjzipbE8qr-0rg.roa Signing time: Thu 16 Oct 2025 13:11:01 +0000 ROA not before: Thu 16 Oct 2025 13:11:01 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131660 IP address blocks: 2001:b000:570::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 03:26:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6540 (0x198c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Oct 16 13:11:01 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7FD47691516300AA13D6C8F38A96C4F2AAFED2B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:5d:2e:6e:96:59:c3:be:23:9d:77:36:5f:eb: ef:bb:e7:75:e0:c6:c7:6e:40:df:ba:07:58:37:7c: 88:16:1d:d5:0d:ef:40:36:d9:27:47:c8:15:91:22: 96:33:be:94:3b:29:d8:99:0a:00:65:1f:fb:17:56: 87:9d:d7:eb:46:eb:6d:4a:84:1f:e1:fa:bc:6f:35: 65:5e:6a:0e:60:c6:88:51:d1:3b:be:81:20:f8:96: 7d:8f:21:ea:dc:26:26:2d:7e:f6:a5:19:bd:d0:1b: 3a:35:24:c2:27:67:6c:42:fb:18:d1:11:59:67:93: 0d:5a:32:ee:5f:d6:b1:c2:98:9c:d4:54:65:e5:64: ff:02:45:5c:f9:8b:7a:24:44:4a:18:9b:fd:8d:a9: 39:31:18:d0:cc:3c:49:ae:88:b9:12:bd:16:02:ad: 71:8d:90:26:45:b0:42:82:fb:f7:f8:7c:03:81:01: af:12:9a:49:ca:b9:e8:50:85:c5:af:de:e2:43:20: 62:72:76:d6:91:ad:88:ae:11:f5:75:71:66:d6:14: 25:8c:82:cd:cf:f9:fc:73:ba:f3:3e:12:4e:40:64: 66:21:ad:be:10:59:a7:96:d7:f4:55:1a:86:aa:f1: d7:a3:ee:0f:6d:44:7f:9f:0d:48:c5:78:7b:95:13: a5:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:D4:76:91:51:63:00:AA:13:D6:C8:F3:8A:96:C4:F2:AA:FE:D2:B8 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/f9R2kVFjAKoT1sjzipbE8qr-0rg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:b000:570::/48 Signature Algorithm: sha256WithRSAEncryption 0c:9d:fe:17:50:24:e1:0f:72:16:4d:c1:53:be:57:2a:ad:8b: e0:5f:b0:59:46:4c:d1:15:5a:27:1e:3f:ca:08:ae:e6:89:a3: f5:78:61:01:6a:b4:fa:4b:a1:22:9c:c5:e4:e8:06:fc:be:9a: 16:e8:03:e8:57:76:67:42:f5:10:a3:5a:ff:1f:e8:f4:77:46: 90:c8:85:79:31:6a:e4:2d:5f:a6:80:82:ee:d5:f1:ed:00:85: c5:da:93:0b:d9:fc:da:4a:50:5d:42:1d:5c:94:1f:d0:de:d5: ef:73:0a:3e:51:f0:6d:19:be:3e:3f:a0:c1:ae:58:03:f4:98: 65:c8:31:29:07:2e:50:67:4c:8a:a6:a2:cf:e9:e3:b1:6a:83: 96:63:30:07:4c:22:61:91:3c:aa:ac:f9:d0:07:a7:02:ad:37: be:d5:9b:b6:2f:ec:a1:fd:3e:89:d8:77:d7:82:cd:21:c8:11: ea:e9:0c:01:ae:56:e7:9b:d3:fd:7b:ff:1c:1d:b8:cf:a9:55: d4:26:e8:ab:c1:0e:90:3d:2b:c4:e0:9f:30:c5:2b:b9:50:56: 63:b9:f5:c8:42:32:91:b4:5f:d6:75:cb:56:f4:1a:6d:d1:51: 8b:d1:42:d6:89:b6:7c:bd:51:f1:af:86:66:a7:1e:73:90:4b: c9:2e:e5:25 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICGYwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTEwMTYx MzExMDFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDdGRDQ3NjkxNTE2MzAw QUExM0Q2QzhGMzhBOTZDNEYyQUFGRUQyQjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDyXS5ullnDviOddzZf6++753XgxsduQN+6B1g3fIgWHdUN70A2 2SdHyBWRIpYzvpQ7KdiZCgBlH/sXVoed1+tG621KhB/h+rxvNWVeag5gxohR0Tu+ gSD4ln2PIercJiYtfvalGb3QGzo1JMInZ2xC+xjREVlnkw1aMu5f1rHCmJzUVGXl ZP8CRVz5i3okREoYm/2NqTkxGNDMPEmuiLkSvRYCrXGNkCZFsEKC+/f4fAOBAa8S mknKuehQhcWv3uJDIGJydtaRrYiuEfV1cWbWFCWMgs3P+fxzuvM+Ek5AZGYhrb4Q WaeW1/RVGoaq8dej7g9tRH+fDUjFeHuVE6XlAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUf9R2kVFjAKoT1sjzipbE8qr+0rgwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9mOVIya1ZGakFLb1Qxc2p6aXBi RThxci0wcmcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAGw AAVwMA0GCSqGSIb3DQEBCwUAA4IBAQAMnf4XUCThD3IWTcFTvlcqrYvgX7BZRkzR FVonHj/KCK7miaP1eGEBarT6S6EinMXk6Ab8vpoW6APoV3ZnQvUQo1r/H+j0d0aQ yIV5MWrkLV+mgILu1fHtAIXF2pML2fzaSlBdQh1clB/Q3tXvcwo+UfBtGb4+P6DB rlgD9JhlyDEpBy5QZ0yKpqLP6eOxaoOWYzAHTCJhkTyqrPnQB6cCrTe+1Zu2L+yh /T6J2HfXgs0hyBHq6QwBrlbnm9P9e/8cHbjPqVXUJuirwQ6QPSvE4J8wxSu5UFZj ufXIQjKRtF/WdctW9Bpt0VGL0ULWibZ8vVHxr4Zmpx5zkEvJLuUl -----END CERTIFICATE-----Generated at Tue Oct 21 02:19:12 2025 by rpki-client