$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/vbsb6_xEc-sL1ArleaCARICTrc4.roa File: vbsb6_xEc-sL1ArleaCARICTrc4.roa (raw, json) Hash identifier: Ik9sP3p0Vn+kBNZlBsP5XZh+kteOqtA/w8PbX5D/Nv4= Subject key identifier: BD:BB:1B:EB:FC:44:73:EB:0B:D4:0A:E5:79:A0:80:44:80:93:AD:CE Certificate issuer: /CN=5876E4B8DFAA224C019D246931FC3CD7A4FEED2A Certificate serial: 0EC2 Authority key identifier: 58:76:E4:B8:DF:AA:22:4C:01:9D:24:69:31:FC:3C:D7:A4:FE:ED:2A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/vbsb6_xEc-sL1ArleaCARICTrc4.roa Signing time: Fri 22 Aug 2025 09:03:08 +0000 ROA not before: Fri 22 Aug 2025 09:03:08 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131660 IP address blocks: 168.95.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WHbkuN-qIkwBnSRpMfw816T-7So.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WHbkuN-qIkwBnSRpMfw816T-7So.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3778 (0xec2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5876E4B8DFAA224C019D246931FC3CD7A4FEED2A Validity Not Before: Aug 22 09:03:08 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=BDBB1BEBFC4473EB0BD40AE579A080448093ADCE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:22:95:66:ac:b8:bf:3b:9b:31:ec:e4:5c:95: 94:bb:ab:7a:ac:fd:d4:67:16:6a:07:a1:bf:f6:d0: a6:84:0e:a3:3f:9e:e9:bd:57:00:99:f3:0e:17:54: 88:2d:44:ed:0e:af:83:09:39:9b:40:64:a4:fa:60: 37:a6:56:20:b4:0c:fb:ec:e6:30:9d:f7:0a:1f:af: 74:e8:c9:e6:f2:c8:1d:c2:a7:97:3a:d5:5a:6c:d9: 55:ae:4a:58:4c:e2:67:d8:f9:df:7e:49:94:2f:35: eb:1a:b5:3b:1a:74:59:65:1e:11:b6:b1:92:52:46: e3:2e:7e:ef:50:11:b7:28:72:93:75:c7:67:91:18: 00:f6:1d:72:3a:bc:8c:ee:80:ef:8c:8b:78:fe:6f: 39:49:f5:c3:5b:ac:37:75:9f:d1:05:e7:fb:70:26: 5e:40:b9:e1:65:a7:e1:1b:ab:b4:14:3f:c1:83:bd: 01:73:e4:9d:1d:8e:78:88:bd:08:d9:a1:fb:05:03: 6f:dc:bc:78:76:a1:3d:14:be:83:95:12:ef:8f:a5: b6:d8:c6:4b:d2:09:d7:2c:2c:37:85:33:00:43:b3: f6:dd:95:a4:1e:df:d8:d2:20:1f:41:3c:00:01:42: ed:72:a3:5b:81:42:36:cf:3c:ea:b9:19:e7:62:5d: 31:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:BB:1B:EB:FC:44:73:EB:0B:D4:0A:E5:79:A0:80:44:80:93:AD:CE X509v3 Authority Key Identifier: keyid:58:76:E4:B8:DF:AA:22:4C:01:9D:24:69:31:FC:3C:D7:A4:FE:ED:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WHbkuN-qIkwBnSRpMfw816T-7So.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/vbsb6_xEc-sL1ArleaCARICTrc4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 168.95.245.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:f7:92:ea:4f:f8:50:5c:9c:06:d5:4b:41:f7:76:7f:c9:98: 84:06:24:79:06:9d:4a:db:66:9e:19:00:0e:6f:d9:17:8f:75: c0:43:0d:d4:65:78:71:b8:8b:f9:22:f2:6b:1a:45:06:ee:ca: 94:b2:24:49:8a:8b:c1:51:cb:79:f8:b3:99:8c:80:3e:65:ff: 77:17:1f:90:29:4c:79:d2:76:06:70:62:83:31:a2:14:69:67: f6:1b:1d:d0:bd:97:51:37:65:57:4a:30:4a:5d:6c:20:dd:31: a7:20:fc:18:df:36:80:0e:a0:2e:0b:d2:8b:55:f1:0f:23:d5: 1a:a3:c0:6a:1b:6f:1a:74:9b:20:60:fa:1b:ac:d3:3c:16:d9: 1b:a5:f8:46:b7:b6:81:d9:25:9a:96:61:66:74:29:ec:06:53: d8:b4:ab:2e:3d:ac:56:c5:a9:43:bd:5c:d6:0c:b3:ba:5a:5b: d1:5c:46:6b:86:99:19:6a:a3:6c:0f:27:d1:0b:31:b2:1c:02: 69:3b:55:76:2c:f9:c2:c0:2a:48:83:d2:79:d2:6c:5d:4b:6f: fc:6a:ad:b6:e3:12:d1:36:17:f4:87:03:82:a9:2f:31:be:ad: 05:6c:e9:b0:cd:d8:c1:b4:d9:b3:b4:67:e7:46:2c:3d:28:8b: 86:f5:45:54 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDsIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTg3 NkU0QjhERkFBMjI0QzAxOUQyNDY5MzFGQzNDRDdBNEZFRUQyQTAeFw0yNTA4MjIw OTAzMDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEJEQkIxQkVCRkM0NDcz RUIwQkQ0MEFFNTc5QTA4MDQ0ODA5M0FEQ0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCTIpVmrLi/O5sx7ORclZS7q3qs/dRnFmoHob/20KaEDqM/num9 VwCZ8w4XVIgtRO0Or4MJOZtAZKT6YDemViC0DPvs5jCd9wofr3ToyebyyB3Cp5c6 1Vps2VWuSlhM4mfY+d9+SZQvNesatTsadFllHhG2sZJSRuMufu9QEbcocpN1x2eR GAD2HXI6vIzugO+Mi3j+bzlJ9cNbrDd1n9EF5/twJl5AueFlp+Ebq7QUP8GDvQFz 5J0djniIvQjZofsFA2/cvHh2oT0UvoOVEu+PpbbYxkvSCdcsLDeFMwBDs/bdlaQe 39jSIB9BPAABQu1yo1uBQjbPPOq5GediXTHzAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUvbsb6/xEc+sL1ArleaCARICTrc4wHwYDVR0jBBgwFoAUWHbkuN+qIkwBnSRp Mfw816T+7SowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv V0hia3VOLXFJa3dCblNScE1mdzgxNlQtN1NvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9XSGJrdU4tcUlrd0JuU1JwTWZ3ODE2VC03U28uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC92YnNiNl94RWMtc0wxQXJsZWFD QVJJQ1RyYzQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAqF/1 MA0GCSqGSIb3DQEBCwUAA4IBAQBK95LqT/hQXJwG1UtB93Z/yZiEBiR5Bp1K22ae GQAOb9kXj3XAQw3UZXhxuIv5IvJrGkUG7sqUsiRJiovBUct5+LOZjIA+Zf93Fx+Q KUx50nYGcGKDMaIUaWf2Gx3QvZdRN2VXSjBKXWwg3TGnIPwY3zaADqAuC9KLVfEP I9Uao8BqG28adJsgYPobrNM8FtkbpfhGt7aB2SWalmFmdCnsBlPYtKsuPaxWxalD vVzWDLO6WlvRXEZrhpkZaqNsDyfRCzGyHAJpO1V2LPnCwCpIg9J50mxdS2/8aq22 4xLRNhf0hwOCqS8xvq0FbOmwzdjBtNmztGfnRiw9KIuG9UVU -----END CERTIFICATE-----Generated at Sun Aug 24 07:41:29 2025 by rpki-client