$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/kq0yi77iCD25nra5kD6SOdxwpVA.roa File: kq0yi77iCD25nra5kD6SOdxwpVA.roa (raw, json) Hash identifier: ktsrPuNnp4cMt217P1TELejHGe6nWnlEqC8q4cm8I7U= Subject key identifier: 92:AD:32:8B:BE:E2:08:3D:B9:9E:B6:B9:90:3E:92:39:DC:70:A5:50 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1960 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/kq0yi77iCD25nra5kD6SOdxwpVA.roa Signing time: Fri 22 Aug 2025 09:03:03 +0000 ROA not before: Fri 22 Aug 2025 09:03:03 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131660 IP address blocks: 2001:b000:591::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6496 (0x1960) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 22 09:03:03 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=92AD328BBEE2083DB99EB6B9903E9239DC70A550 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:14:ca:c3:d4:86:a7:fb:86:06:90:16:4f:47: 71:6c:e2:f6:70:79:de:c6:84:e8:c4:93:f0:fe:d8: 56:61:e1:31:2b:a8:61:d2:c9:e2:4e:75:72:be:43: 7c:7a:79:59:a8:e2:b1:31:67:7a:a7:76:40:2d:d0: ae:0e:d0:e3:ad:0e:9f:20:2d:e7:ff:9e:d5:44:83: d5:43:06:04:84:f1:b5:a5:32:f5:a3:0b:d9:13:75: 34:26:8e:d8:b2:a6:b1:3e:ba:8d:1a:76:05:8c:3d: ae:19:53:0f:4c:ed:6c:05:41:20:ae:5f:c1:78:94: bf:30:05:4b:f3:80:ee:13:07:3a:ab:88:22:5f:df: 5c:2f:ff:a0:fe:3c:6a:75:3f:27:68:d9:13:6a:58: 61:1c:f9:0b:92:d8:01:41:4f:ed:66:cd:10:ac:b1: c3:46:46:09:85:b4:b0:0c:8d:8e:4e:ed:a8:b4:4d: 2e:97:f4:91:96:00:30:b7:78:92:e0:db:c1:5c:cb: f2:24:b9:63:ff:03:5a:84:b9:bb:ce:48:38:46:e5: ae:c4:74:30:61:70:5a:83:a7:a2:78:72:19:1f:ed: 3a:df:72:af:66:d9:34:13:61:8a:aa:08:66:26:33: 25:f4:a8:37:41:43:08:35:e2:03:d3:25:3d:0e:51: ca:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:AD:32:8B:BE:E2:08:3D:B9:9E:B6:B9:90:3E:92:39:DC:70:A5:50 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/kq0yi77iCD25nra5kD6SOdxwpVA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:b000:591::/48 Signature Algorithm: sha256WithRSAEncryption 5b:7a:66:f4:bb:ee:d7:02:65:60:a4:34:1b:c2:30:20:52:64: a6:2c:ce:bf:d8:bf:d4:2f:b0:b1:69:c6:3a:df:07:24:27:cf: 01:ce:f5:43:22:da:c8:a6:0b:cc:8c:38:f2:0a:88:17:61:a8: 98:c0:5d:fa:7d:97:41:a2:24:d8:9d:d6:b1:04:f4:7e:4c:30: b3:a5:49:d5:ea:07:ee:a7:87:4b:d7:fd:ff:5e:0b:92:e6:a8: cc:76:75:eb:92:bc:5e:15:3a:27:35:66:ff:57:9f:81:d8:d2: 5a:06:a1:b7:79:f3:47:89:a4:25:18:e8:7d:31:62:61:d9:79: 87:58:7e:f2:9e:09:ef:c9:55:7f:64:37:7a:06:2a:f6:21:f2: 52:d6:88:57:80:92:66:bd:92:01:7f:0d:7c:ba:fe:4d:b4:51: 8e:a5:fe:29:9b:86:b1:43:28:c0:df:9d:1e:b6:27:e3:44:db: 5b:ad:69:02:d3:30:9e:b2:c1:6e:3b:39:8f:27:b9:f5:4c:39: 18:89:bd:1d:65:97:d2:2b:8f:f5:f4:c6:fe:7b:35:07:4c:3b: 38:72:e0:c2:5c:21:36:0b:9b:85:36:0e:24:36:62:7c:f4:c1: e2:37:5e:5b:d0:e6:e8:3e:e6:8c:9e:4f:ad:73:0d:91:6e:26: 24:b3:9b:98 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICGWAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw OTAzMDNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDkyQUQzMjhCQkVFMjA4 M0RCOTlFQjZCOTkwM0U5MjM5REM3MEE1NTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDpFMrD1Ian+4YGkBZPR3Fs4vZwed7GhOjEk/D+2FZh4TErqGHS yeJOdXK+Q3x6eVmo4rExZ3qndkAt0K4O0OOtDp8gLef/ntVEg9VDBgSE8bWlMvWj C9kTdTQmjtiyprE+uo0adgWMPa4ZUw9M7WwFQSCuX8F4lL8wBUvzgO4TBzqriCJf 31wv/6D+PGp1Pydo2RNqWGEc+QuS2AFBT+1mzRCsscNGRgmFtLAMjY5O7ai0TS6X 9JGWADC3eJLg28Fcy/IkuWP/A1qEubvOSDhG5a7EdDBhcFqDp6J4chkf7Trfcq9m 2TQTYYqqCGYmMyX0qDdBQwg14gPTJT0OUcoFAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUkq0yi77iCD25nra5kD6SOdxwpVAwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9rcTB5aTc3aUNEMjVucmE1a0Q2 U09keHdwVkEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAGw AAWRMA0GCSqGSIb3DQEBCwUAA4IBAQBbemb0u+7XAmVgpDQbwjAgUmSmLM6/2L/U L7CxacY63wckJ88BzvVDItrIpgvMjDjyCogXYaiYwF36fZdBoiTYndaxBPR+TDCz pUnV6gfup4dL1/3/XguS5qjMdnXrkrxeFTonNWb/V5+B2NJaBqG3efNHiaQlGOh9 MWJh2XmHWH7yngnvyVV/ZDd6Bir2IfJS1ohXgJJmvZIBfw18uv5NtFGOpf4pm4ax QyjA350etifjRNtbrWkC0zCessFuOzmPJ7n1TDkYib0dZZfSK4/19Mb+ezUHTDs4 cuDCXCE2C5uFNg4kNmJ89MHiN15b0OboPuaMnk+tcw2RbiYks5uY -----END CERTIFICATE-----Generated at Sun Aug 24 09:42:23 2025 by rpki-client