$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/huegbHXd7RHKghcBf9-zcp--XOc.roa File: huegbHXd7RHKghcBf9-zcp--XOc.roa (raw, json) Hash identifier: iesTXQWWKbxONy/gM87YLrIoW+NDhQNS+HDKhAihxWc= Subject key identifier: 86:E7:A0:6C:75:DD:ED:11:CA:82:17:01:7F:DF:B3:72:9F:BE:5C:E7 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1937 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/huegbHXd7RHKghcBf9-zcp--XOc.roa Signing time: Fri 22 Aug 2025 09:02:52 +0000 ROA not before: Fri 22 Aug 2025 09:02:52 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 8068 IP address blocks: 61.220.60.200/29 maxlen: 29 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6455 (0x1937) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 22 09:02:52 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=86E7A06C75DDED11CA8217017FDFB3729FBE5CE7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:91:80:ee:f4:bd:88:66:d5:46:0e:27:58:fe: b9:53:f6:34:c5:79:ad:63:c5:8f:29:ab:9f:7c:a3: 23:7f:59:52:e2:04:9c:5d:20:c1:35:47:d2:12:a3: c0:87:de:4a:48:b1:f0:e3:82:3f:ee:9c:3a:87:75: a8:e3:ec:65:14:4b:04:9b:a3:37:ec:bf:89:3c:07: 45:e5:64:f0:f5:d7:a7:8c:9c:9a:02:c8:84:b4:84: b3:68:b0:82:ae:90:c1:db:67:f5:4b:49:e9:76:69: 6f:ae:88:eb:0d:c6:00:f4:67:cb:8a:14:e1:00:24: 1e:57:d0:d7:f2:38:de:6d:f2:95:79:4d:a5:e0:2c: 40:11:19:0f:16:c2:a1:6d:a9:dd:37:db:c0:cc:02: 74:c1:2d:58:9a:68:47:b2:e6:fa:ff:cc:d4:38:c6: 90:77:63:2f:fd:b3:00:81:8f:ce:c0:b0:dc:36:ea: e5:44:6f:27:30:9b:83:2e:17:d7:a8:47:9f:68:2e: ea:d1:58:31:d0:20:16:48:3f:d9:de:0e:84:47:92: af:de:fc:af:5a:69:ae:4b:89:b6:b4:70:9d:7f:ac: 9d:20:1d:1b:a8:b3:3c:6b:54:ce:b3:fc:31:60:13: 56:45:cb:61:7d:76:ef:ca:28:da:f6:31:0d:56:a9: 04:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:E7:A0:6C:75:DD:ED:11:CA:82:17:01:7F:DF:B3:72:9F:BE:5C:E7 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/huegbHXd7RHKghcBf9-zcp--XOc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.220.60.200/29 Signature Algorithm: sha256WithRSAEncryption 70:27:2e:7d:13:6c:fa:f8:30:7b:e8:93:ab:46:8c:ae:4c:29: 74:17:f0:74:f1:8d:37:83:41:56:2a:e4:b5:92:80:57:82:05: 35:85:e5:03:f7:2e:e3:21:9b:27:1d:5c:b8:9a:84:4b:69:08: 05:5a:03:e4:2d:74:96:61:50:ff:e8:18:b1:57:8b:60:3c:8e: 16:b9:73:17:0b:57:27:58:f9:5b:3a:d1:b6:ca:94:73:98:16: 36:07:00:35:1e:3b:72:6c:5c:4a:7d:4f:95:c9:eb:4b:88:44: 99:5f:68:bd:a4:7e:2e:5f:ba:26:57:e1:bf:eb:c7:f6:83:98: d7:d6:1b:8d:eb:55:56:de:d5:5f:da:bc:5f:94:87:ae:ef:1f: 67:29:bd:b8:c7:fc:04:00:dd:a3:b9:d9:20:0b:5c:85:dd:09: 88:cb:90:74:32:c4:c2:74:94:e2:e7:2b:ab:1f:60:ad:9d:f1: 4a:7b:79:8e:64:ae:18:97:e8:a3:a3:0c:38:53:88:25:56:b2: 9d:2f:21:68:a7:e6:35:db:fd:56:88:28:e0:ca:cf:69:26:74: 0f:15:e8:a2:2d:a9:9e:bf:5d:26:00:76:97:96:dd:db:7a:82: 91:65:e9:b6:8f:79:44:a4:9b:5b:ec:83:c4:62:d9:0b:16:94: ab:a5:c8:48 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICGTcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw OTAyNTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDg2RTdBMDZDNzVEREVE MTFDQTgyMTcwMTdGREZCMzcyOUZCRTVDRTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCkYDu9L2IZtVGDidY/rlT9jTFea1jxY8pq598oyN/WVLiBJxd IME1R9ISo8CH3kpIsfDjgj/unDqHdajj7GUUSwSbozfsv4k8B0XlZPD116eMnJoC yIS0hLNosIKukMHbZ/VLSel2aW+uiOsNxgD0Z8uKFOEAJB5X0NfyON5t8pV5TaXg LEARGQ8WwqFtqd0328DMAnTBLViaaEey5vr/zNQ4xpB3Yy/9swCBj87AsNw26uVE bycwm4MuF9eoR59oLurRWDHQIBZIP9neDoRHkq/e/K9aaa5Liba0cJ1/rJ0gHRuo szxrVM6z/DFgE1ZFy2F9du/KKNr2MQ1WqQRxAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUhuegbHXd7RHKghcBf9+zcp++XOcwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9odWVnYkhYZDdSSEtnaGNCZjkt emNwLS1YT2Mucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUDPdw8 yDANBgkqhkiG9w0BAQsFAAOCAQEAcCcufRNs+vgwe+iTq0aMrkwpdBfwdPGNN4NB VirktZKAV4IFNYXlA/cu4yGbJx1cuJqES2kIBVoD5C10lmFQ/+gYsVeLYDyOFrlz FwtXJ1j5WzrRtsqUc5gWNgcANR47cmxcSn1PlcnrS4hEmV9ovaR+Ll+6Jlfhv+vH 9oOY19YbjetVVt7VX9q8X5SHru8fZym9uMf8BADdo7nZIAtchd0JiMuQdDLEwnSU 4ucrqx9grZ3xSnt5jmSuGJfoo6MMOFOIJVaynS8haKfmNdv9Vogo4MrPaSZ0DxXo oi2pnr9dJgB2l5bd23qCkWXpto95RKSbW+yDxGLZCxaUq6XISA== -----END CERTIFICATE-----Generated at Sun Aug 24 07:05:11 2025 by rpki-client