$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/h9sR5WkGhYrBtILMnT93aB0efR4.roa File: h9sR5WkGhYrBtILMnT93aB0efR4.roa (raw, json) Hash identifier: 0d7fmqaAtCgVSL2t8vmEIHoW3LjFX2lLbq2rkuBcHPA= Subject key identifier: 87:DB:11:E5:69:06:85:8A:C1:B4:82:CC:9D:3F:77:68:1D:1E:7D:1E Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 18FC Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/h9sR5WkGhYrBtILMnT93aB0efR4.roa Signing time: Fri 22 Aug 2025 09:02:40 +0000 ROA not before: Fri 22 Aug 2025 09:02:40 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9505 IP address blocks: 175.111.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6396 (0x18fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 22 09:02:40 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=87DB11E56906858AC1B482CC9D3F77681D1E7D1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:12:c1:6e:74:83:c6:f5:e9:b3:c0:73:54:cc: c3:5f:88:14:b7:e3:f3:51:59:6f:61:e5:d3:e8:9a: 27:10:da:da:e8:f5:a8:94:02:87:51:67:bf:86:e9: b5:3c:4f:5e:d3:96:cb:bb:4e:20:cb:09:f5:0a:1a: 2d:d0:c8:84:8d:bf:2d:6c:f2:59:15:29:be:bb:e0: 0c:d2:ae:9e:8a:76:9f:04:59:75:35:60:52:4b:87: ef:bb:a2:d3:5a:74:5c:20:12:a1:e6:f5:aa:7a:42: 94:46:0c:b9:17:d5:e1:17:2d:57:74:e3:6c:99:e6: d2:84:35:92:d4:00:6c:52:d6:9e:14:4d:1d:f6:cb: 95:36:35:7f:f6:1f:15:58:82:ea:64:43:2a:91:b7: 18:35:8f:94:00:64:46:7d:86:31:3c:34:f6:4a:a1: 66:38:1f:fb:8d:1c:ba:ce:b2:40:db:18:38:28:d1: a0:61:e7:19:6c:c8:e1:e5:ae:5f:4c:df:54:19:ca: 0b:09:b0:87:12:72:3b:b4:3a:01:e4:6f:07:dc:2e: a7:e6:33:8f:21:3d:17:02:eb:df:7b:1b:57:40:e4: b6:1e:15:9c:c3:e7:21:af:e5:cf:b6:16:3f:a4:55: e6:74:69:a3:8d:d3:52:a7:1a:a4:4b:de:35:a2:fe: a4:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:DB:11:E5:69:06:85:8A:C1:B4:82:CC:9D:3F:77:68:1D:1E:7D:1E X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/h9sR5WkGhYrBtILMnT93aB0efR4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 175.111.237.0/24 Signature Algorithm: sha256WithRSAEncryption 83:a3:7b:9d:5a:d3:20:b7:21:d5:a1:d9:0f:2b:02:d6:a6:7f: 7b:8d:4e:9e:94:1a:c1:14:50:dd:d4:47:dd:9e:84:63:50:45: 15:96:b4:46:5a:58:3c:47:7b:2a:3e:7e:9a:8e:29:d8:bd:c6: 58:41:b1:26:3b:19:3b:b4:64:1b:33:27:ef:b3:9e:90:6d:f5: 6a:d4:5b:ae:ad:b2:fd:59:6b:28:85:17:1e:db:53:9d:9f:27: f0:62:df:8a:91:6a:0b:88:9b:7a:ae:de:78:df:87:c9:eb:37: 8a:c3:cc:a0:b5:8c:5d:7e:d3:c0:f8:92:35:c5:68:55:ba:2f: de:90:72:e4:d7:21:fc:a0:a1:8c:56:ab:be:c8:cd:13:d8:25: 4f:fc:84:36:85:e8:a2:61:fa:c7:e5:53:ee:e4:b0:05:b7:ea: d7:f2:c7:ac:76:33:9d:cb:88:cc:96:40:5e:a1:4a:b9:40:76: ab:90:60:56:1e:69:97:7b:32:47:e1:ec:5d:ec:b3:f3:0b:1b: b0:ed:4f:ee:62:9f:c4:0a:be:38:4c:a7:52:9d:0a:e7:68:74: f5:00:d9:da:f1:aa:67:b0:2c:1b:64:00:9d:3a:bf:34:35:da: dd:19:f0:a0:a1:8f:d1:5b:20:cc:35:61:51:78:ab:9f:75:19: 28:d8:61:cc -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICGPwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw OTAyNDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDg3REIxMUU1NjkwNjg1 OEFDMUI0ODJDQzlEM0Y3NzY4MUQxRTdEMUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDgEsFudIPG9emzwHNUzMNfiBS34/NRWW9h5dPomicQ2tro9aiU AodRZ7+G6bU8T17Tlsu7TiDLCfUKGi3QyISNvy1s8lkVKb674AzSrp6Kdp8EWXU1 YFJLh++7otNadFwgEqHm9ap6QpRGDLkX1eEXLVd042yZ5tKENZLUAGxS1p4UTR32 y5U2NX/2HxVYgupkQyqRtxg1j5QAZEZ9hjE8NPZKoWY4H/uNHLrOskDbGDgo0aBh 5xlsyOHlrl9M31QZygsJsIcScju0OgHkbwfcLqfmM48hPRcC6997G1dA5LYeFZzD 5yGv5c+2Fj+kVeZ0aaON01KnGqRL3jWi/qRnAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUh9sR5WkGhYrBtILMnT93aB0efR4wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9oOXNSNVdrR2hZckJ0SUxNblQ5 M2FCMGVmUjQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAr2/t MA0GCSqGSIb3DQEBCwUAA4IBAQCDo3udWtMgtyHVodkPKwLWpn97jU6elBrBFFDd 1EfdnoRjUEUVlrRGWlg8R3sqPn6ajinYvcZYQbEmOxk7tGQbMyfvs56QbfVq1Fuu rbL9WWsohRce21OdnyfwYt+KkWoLiJt6rt5434fJ6zeKw8ygtYxdftPA+JI1xWhV ui/ekHLk1yH8oKGMVqu+yM0T2CVP/IQ2heiiYfrH5VPu5LAFt+rX8sesdjOdy4jM lkBeoUq5QHarkGBWHmmXezJH4exd7LPzCxuw7U/uYp/ECr44TKdSnQrnaHT1ANna 8apnsCwbZACdOr80NdrdGfCgoY/RWyDMNWFReKufdRko2GHM -----END CERTIFICATE-----Generated at Sun Aug 24 11:44:01 2025 by rpki-client