$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/lA1OZoCpI_PZwUGGoH8ra-YYgyM.roa File: lA1OZoCpI_PZwUGGoH8ra-YYgyM.roa (raw, json) Hash identifier: mU+bOXjLnzTSYev5kkM/UtWfeZLgcO1+U5ICXYMOThw= Subject key identifier: 94:0D:4E:66:80:A9:23:F3:D9:C1:41:86:A0:7F:2B:6B:E6:18:83:23 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 18BE Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/lA1OZoCpI_PZwUGGoH8ra-YYgyM.roa Signing time: Fri 22 Aug 2025 09:02:24 +0000 ROA not before: Fri 22 Aug 2025 09:02:24 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 15133 IP address blocks: 61.221.181.64/26 maxlen: 26 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6334 (0x18be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 22 09:02:24 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=940D4E6680A923F3D9C14186A07F2B6BE6188323 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:92:59:3d:8b:ed:a5:58:1f:55:42:24:c6:fd: 36:d4:c9:e8:62:5c:65:c0:d3:f8:b7:64:d0:e4:02: 3e:37:e2:ec:6d:29:9b:59:9e:22:1e:3b:c2:e5:19: 71:6c:cc:b9:5f:a2:3a:69:85:35:dc:75:40:77:ec: f6:8b:86:04:30:03:e6:c4:4b:38:6f:18:4d:d1:9e: 6b:80:21:13:9d:97:51:1b:1d:1c:d2:8c:16:75:23: bf:68:14:bc:93:10:82:d7:a0:3c:80:be:48:20:1a: 0c:a6:ab:7e:ea:52:d9:e3:52:86:c4:84:6d:ff:29: b9:9b:29:47:df:ab:6a:a7:b6:3a:13:ca:61:7f:d9: b2:49:d4:00:e8:fe:c4:44:a8:00:66:8a:25:1a:32: b7:1c:73:c4:dc:e7:7f:bf:19:e1:2e:0f:41:8d:09: 3c:80:db:15:d6:86:55:30:7f:d0:ce:6b:e0:b4:6b: 3f:de:83:d2:e8:b4:29:3b:d9:69:ba:a4:0d:13:4d: c7:77:49:95:fe:b5:99:0e:9c:bb:00:20:03:4c:95: 9d:4a:54:3e:7a:61:7a:f6:25:d5:26:c0:a2:49:4e: 75:0b:7e:cc:66:50:78:f2:9b:40:b4:cb:db:0e:18: b7:60:33:66:b1:52:27:61:63:54:63:22:08:97:72: c4:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:0D:4E:66:80:A9:23:F3:D9:C1:41:86:A0:7F:2B:6B:E6:18:83:23 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/lA1OZoCpI_PZwUGGoH8ra-YYgyM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.221.181.64/26 Signature Algorithm: sha256WithRSAEncryption c0:9d:7e:9e:8f:9e:1a:63:79:ff:18:f8:ff:1b:9a:dd:62:70: 0d:4d:bf:f5:88:e1:45:45:de:4b:4c:2e:33:08:ca:dd:50:ab: d3:f2:18:17:36:69:4e:fb:33:2a:5f:d8:63:ee:34:56:0b:3e: a1:ed:1a:45:51:36:a7:f2:e6:fe:98:72:0a:ab:f3:0b:93:94: 93:0e:2b:f5:3a:77:c1:24:0b:86:f4:65:22:f3:1f:3f:ab:c1: fc:4e:05:9a:fe:9a:df:97:02:95:3f:94:c9:d7:c8:b1:58:47: 96:ab:34:df:86:ad:65:c7:b2:59:5c:83:05:05:32:85:73:05: c9:38:5e:d9:6e:0f:08:5d:60:ca:d4:ca:a9:78:0b:a6:7e:25: 4a:47:14:6a:cc:06:49:e6:c4:ce:b9:95:66:d6:d2:5f:c3:d0: 35:05:2f:a5:c8:3a:35:6a:a9:17:a5:e0:85:bb:15:76:9c:29: b6:17:21:f6:01:d8:0e:11:43:a7:8d:8f:5d:31:6c:25:59:5a: 55:22:07:61:0f:ef:d0:c8:57:a2:6a:3c:84:90:f1:33:80:1d: 08:d5:1c:eb:01:bc:52:d4:0d:e7:72:d1:01:9d:3f:2b:90:84: 0f:28:16:6e:bc:5b:e0:f0:65:b7:e4:2a:58:37:3b:97:dd:be: a9:fd:58:87 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICGL4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw OTAyMjRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDk0MEQ0RTY2ODBBOTIz RjNEOUMxNDE4NkEwN0YyQjZCRTYxODgzMjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD4klk9i+2lWB9VQiTG/TbUyehiXGXA0/i3ZNDkAj434uxtKZtZ niIeO8LlGXFszLlfojpphTXcdUB37PaLhgQwA+bESzhvGE3RnmuAIROdl1EbHRzS jBZ1I79oFLyTEILXoDyAvkggGgymq37qUtnjUobEhG3/KbmbKUffq2qntjoTymF/ 2bJJ1ADo/sREqABmiiUaMrccc8Tc53+/GeEuD0GNCTyA2xXWhlUwf9DOa+C0az/e g9LotCk72Wm6pA0TTcd3SZX+tZkOnLsAIANMlZ1KVD56YXr2JdUmwKJJTnULfsxm UHjym0C0y9sOGLdgM2axUidhY1RjIgiXcsRJAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUlA1OZoCpI/PZwUGGoH8ra+YYgyMwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9sQTFPWm9DcElfUFp3VUdHb0g4 cmEtWVlneU0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUGPd21 QDANBgkqhkiG9w0BAQsFAAOCAQEAwJ1+no+eGmN5/xj4/xua3WJwDU2/9YjhRUXe S0wuMwjK3VCr0/IYFzZpTvszKl/YY+40Vgs+oe0aRVE2p/Lm/phyCqvzC5OUkw4r 9Tp3wSQLhvRlIvMfP6vB/E4Fmv6a35cClT+UydfIsVhHlqs034atZceyWVyDBQUy hXMFyThe2W4PCF1gytTKqXgLpn4lSkcUaswGSebEzrmVZtbSX8PQNQUvpcg6NWqp F6XghbsVdpwpthch9gHYDhFDp42PXTFsJVlaVSIHYQ/v0MhXomo8hJDxM4AdCNUc 6wG8UtQN53LRAZ0/K5CEDygWbrxb4PBlt+QqWDc7l92+qf1Yhw== -----END CERTIFICATE-----Generated at Sun Aug 24 09:44:59 2025 by rpki-client