$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/t7JqV218pcI1ctj3OoDxFIfgLhI.roa File: t7JqV218pcI1ctj3OoDxFIfgLhI.roa (raw, json) Hash identifier: 3qaN36pgsDbGodQqvIQwmMEWE7ijsZI3k7LMgnsHLVM= Subject key identifier: B7:B2:6A:57:6D:7C:A5:C2:35:72:D8:F7:3A:80:F1:14:87:E0:2E:12 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 18F5 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/t7JqV218pcI1ctj3OoDxFIfgLhI.roa Signing time: Fri 22 Aug 2025 09:02:39 +0000 ROA not before: Fri 22 Aug 2025 09:02:39 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 15133 IP address blocks: 2001:b032:c101::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6389 (0x18f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 22 09:02:39 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B7B26A576D7CA5C23572D8F73A80F11487E02E12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:25:f5:f6:80:2b:46:96:56:68:03:57:98:8d: e6:5d:b6:16:95:4d:51:36:ec:2e:a2:a6:83:69:be: 47:91:5f:33:c1:75:a2:2d:4f:6a:a9:ff:3a:e8:f8: e6:53:76:85:dd:81:2b:2b:52:30:6f:de:a8:ea:63: cb:4e:a0:38:cf:b0:e5:2e:a0:42:1f:ee:bc:0b:ed: ba:b4:6f:f1:a6:a8:f9:19:23:dc:82:e6:7d:06:1a: 8d:fa:43:c0:45:42:30:7a:ee:17:45:dc:44:4f:2a: b5:15:c1:8a:f1:7f:13:51:8a:e7:d3:78:58:ae:c5: 6b:c5:2d:41:e6:83:78:af:20:a4:58:72:57:5d:11: 0a:04:82:3a:2f:86:fe:49:81:46:b9:5d:5c:ae:01: 42:d3:21:c0:8f:2d:0d:10:87:d6:d5:21:bf:51:7e: b2:f9:ef:3c:75:0e:cd:e4:ac:c5:16:1b:82:44:33: c2:85:58:e6:64:99:45:d1:f2:78:6b:b4:ca:1b:a9: 9f:e7:71:ef:f7:0b:d7:1e:42:bb:36:6d:71:34:b7: 4e:24:bf:e8:18:2c:10:61:d5:03:04:44:71:d4:84: b3:2c:53:9c:6d:fe:8d:9f:9d:ce:5a:62:11:a0:23: 53:63:2b:be:55:73:81:d9:c5:fe:a8:a4:34:f5:8e: 13:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:B2:6A:57:6D:7C:A5:C2:35:72:D8:F7:3A:80:F1:14:87:E0:2E:12 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/t7JqV218pcI1ctj3OoDxFIfgLhI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:b032:c101::/48 Signature Algorithm: sha256WithRSAEncryption 2a:73:36:81:65:d5:e7:0f:15:bf:45:5a:48:d4:d1:09:56:0f: 61:e5:79:92:e1:e2:a6:64:9d:7c:68:41:cb:38:4b:54:6a:36: 0b:05:7b:83:85:6d:9c:d5:d4:02:da:9c:85:60:9d:f1:96:4c: b3:e6:d1:ba:28:78:11:ec:38:0a:5d:95:1b:bd:75:80:a7:2f: 21:31:d9:95:d7:b1:9a:58:5e:5d:25:d0:b0:96:88:41:0d:86: 3d:3b:0d:42:b9:39:c1:c8:38:78:b1:0a:0c:41:82:bb:03:78: 36:6f:38:38:dc:36:4d:41:2d:bd:c5:bf:35:48:4d:f0:d0:d1: 54:1f:dc:4b:7e:52:1c:8f:fd:ca:ea:ff:42:cc:aa:29:79:26: cb:67:b9:2f:cb:11:97:2a:d5:7d:7c:98:e9:4a:97:84:c9:bc: e0:25:66:b8:5a:5b:6f:4d:59:db:05:3a:0b:79:5d:b2:a0:70: 1b:ea:39:93:02:6c:24:b8:36:30:17:40:13:cb:4f:9d:a6:7b: e0:52:4d:b6:5c:68:a2:44:0c:f2:af:15:2f:3d:a8:6e:8c:f1: eb:a0:69:b9:73:fb:6e:85:67:ce:b5:89:82:6f:50:2d:e9:c1: 43:85:82:43:6b:ea:71:9c:2d:21:58:81:0a:4f:92:4a:59:c5: 27:e8:b6:83 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICGPUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw OTAyMzlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEI3QjI2QTU3NkQ3Q0E1 QzIzNTcyRDhGNzNBODBGMTE0ODdFMDJFMTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDwJfX2gCtGllZoA1eYjeZdthaVTVE27C6ipoNpvkeRXzPBdaIt T2qp/zro+OZTdoXdgSsrUjBv3qjqY8tOoDjPsOUuoEIf7rwL7bq0b/GmqPkZI9yC 5n0GGo36Q8BFQjB67hdF3ERPKrUVwYrxfxNRiufTeFiuxWvFLUHmg3ivIKRYcldd EQoEgjovhv5JgUa5XVyuAULTIcCPLQ0Qh9bVIb9RfrL57zx1Ds3krMUWG4JEM8KF WOZkmUXR8nhrtMobqZ/nce/3C9ceQrs2bXE0t04kv+gYLBBh1QMERHHUhLMsU5xt /o2fnc5aYhGgI1NjK75Vc4HZxf6opDT1jhOBAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUt7JqV218pcI1ctj3OoDxFIfgLhIwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC90N0pxVjIxOHBjSTFjdGozT29E eEZJZmdMaEkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAGw MsEBMA0GCSqGSIb3DQEBCwUAA4IBAQAqczaBZdXnDxW/RVpI1NEJVg9h5XmS4eKm ZJ18aEHLOEtUajYLBXuDhW2c1dQC2pyFYJ3xlkyz5tG6KHgR7DgKXZUbvXWApy8h MdmV17GaWF5dJdCwlohBDYY9Ow1CuTnByDh4sQoMQYK7A3g2bzg43DZNQS29xb81 SE3w0NFUH9xLflIcj/3K6v9CzKopeSbLZ7kvyxGXKtV9fJjpSpeEybzgJWa4Wltv TVnbBToLeV2yoHAb6jmTAmwkuDYwF0ATy0+dpnvgUk22XGiiRAzyrxUvPahujPHr oGm5c/tuhWfOtYmCb1At6cFDhYJDa+pxnC0hWIEKT5JKWcUn6LaD -----END CERTIFICATE-----Generated at Sun Aug 24 11:44:03 2025 by rpki-client