$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/w8I8qconzhF9-yGgTIrdU4NiyXw.roa File: w8I8qconzhF9-yGgTIrdU4NiyXw.roa (raw, json) Hash identifier: 91VvG2wK+Ku34JydMj7LFzxXUlquhwMqmjP1Y9Lu2sI= Subject key identifier: C3:C2:3C:A9:CA:27:CE:11:7D:FB:21:A0:4C:8A:DD:53:83:62:C9:7C Certificate issuer: /CN=5876E4B8DFAA224C019D246931FC3CD7A4FEED2A Certificate serial: 0EC3 Authority key identifier: 58:76:E4:B8:DF:AA:22:4C:01:9D:24:69:31:FC:3C:D7:A4:FE:ED:2A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/w8I8qconzhF9-yGgTIrdU4NiyXw.roa Signing time: Fri 22 Aug 2025 09:03:08 +0000 ROA not before: Fri 22 Aug 2025 09:03:08 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131660 IP address blocks: 168.95.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WHbkuN-qIkwBnSRpMfw816T-7So.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WHbkuN-qIkwBnSRpMfw816T-7So.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3779 (0xec3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5876E4B8DFAA224C019D246931FC3CD7A4FEED2A Validity Not Before: Aug 22 09:03:08 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C3C23CA9CA27CE117DFB21A04C8ADD538362C97C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:76:55:5f:27:3e:9c:67:44:94:ac:e3:92:d0: 6d:80:a8:ac:53:45:fd:01:36:7b:c3:17:6f:96:39: 49:39:66:86:e8:47:0e:ab:d8:65:0f:57:9d:65:4d: 36:06:49:79:45:58:46:af:a4:d4:fe:d9:23:69:92: 14:60:e4:46:8a:10:a8:2e:3b:11:28:1c:70:00:4d: 68:16:b9:0d:fc:05:83:51:fd:6f:44:01:f8:4e:c3: 9d:c3:a4:37:b1:7f:43:74:49:b7:ad:6e:86:3e:ea: d5:42:9e:c9:be:6f:f4:4c:5a:4a:66:1a:83:ac:ca: a3:5a:21:26:c9:2f:7a:38:0f:b8:50:86:de:04:1c: d6:27:5f:ab:bc:d1:83:24:c0:30:a5:bd:bb:2d:52: e2:f9:17:f4:50:b6:47:b7:fb:b6:80:b8:78:61:2b: 95:4d:08:8c:08:60:be:67:db:fc:70:08:c2:58:cb: 20:1c:40:3c:bd:8e:6e:1f:20:00:64:97:12:e3:e3: 38:23:32:58:2c:ec:0a:12:3f:35:9a:a8:a1:a5:5f: ac:46:26:8f:e6:7a:57:af:78:48:a6:ba:6a:23:c4: 85:bf:eb:55:cb:ed:00:f1:b5:c3:59:34:33:4d:54: 9b:7b:3d:d2:79:b1:30:27:10:b5:75:63:a5:57:b3: c4:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:C2:3C:A9:CA:27:CE:11:7D:FB:21:A0:4C:8A:DD:53:83:62:C9:7C X509v3 Authority Key Identifier: keyid:58:76:E4:B8:DF:AA:22:4C:01:9D:24:69:31:FC:3C:D7:A4:FE:ED:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WHbkuN-qIkwBnSRpMfw816T-7So.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/w8I8qconzhF9-yGgTIrdU4NiyXw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 168.95.246.0/24 Signature Algorithm: sha256WithRSAEncryption 03:1a:53:5a:3e:79:f5:58:03:1a:8e:d4:c2:1b:8e:cb:4c:a2: b0:1b:7a:67:43:bf:b1:72:09:6e:16:c0:f6:70:34:60:fe:d7: a8:0a:46:07:11:6e:d0:0f:14:6a:e9:97:9f:1b:ea:61:fa:cb: a3:4c:e4:73:3c:4c:70:24:7f:ae:cb:12:8c:05:96:40:36:d6: 95:b8:38:b2:13:63:47:56:06:d7:4e:0b:6a:e7:2a:1a:23:96: 0c:e0:3e:13:d0:9a:3c:99:88:1b:f9:87:8b:e9:1e:ad:b5:0b: 92:97:8d:cf:60:29:57:95:b2:4e:17:10:ec:82:9e:31:ed:e0: 1e:3d:74:27:eb:10:d2:23:3d:27:eb:a7:a3:2f:17:a7:8b:c2: 83:e6:79:e9:29:90:c1:40:b9:28:30:c6:e4:a6:a4:1e:e6:e6: aa:ce:20:d0:e5:f3:05:48:2c:7b:19:1d:f6:ad:8e:61:88:33: d4:8d:86:b0:61:c5:0a:29:14:06:0d:0d:18:14:29:69:94:7a: 0c:45:96:07:3d:7f:c2:eb:e4:55:51:80:74:d3:7b:6c:45:00: 55:9e:00:48:67:90:81:9d:fa:dd:f0:36:0d:49:54:d1:da:00: 69:1f:4e:18:09:5a:fd:30:20:15:e7:12:8b:13:aa:c1:a4:a2: 3c:f9:80:d2 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDsMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTg3 NkU0QjhERkFBMjI0QzAxOUQyNDY5MzFGQzNDRDdBNEZFRUQyQTAeFw0yNTA4MjIw OTAzMDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEMzQzIzQ0E5Q0EyN0NF MTE3REZCMjFBMDRDOEFERDUzODM2MkM5N0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+dlVfJz6cZ0SUrOOS0G2AqKxTRf0BNnvDF2+WOUk5ZoboRw6r 2GUPV51lTTYGSXlFWEavpNT+2SNpkhRg5EaKEKguOxEoHHAATWgWuQ38BYNR/W9E AfhOw53DpDexf0N0SbetboY+6tVCnsm+b/RMWkpmGoOsyqNaISbJL3o4D7hQht4E HNYnX6u80YMkwDClvbstUuL5F/RQtke3+7aAuHhhK5VNCIwIYL5n2/xwCMJYyyAc QDy9jm4fIABklxLj4zgjMlgs7AoSPzWaqKGlX6xGJo/meleveEimumojxIW/61XL 7QDxtcNZNDNNVJt7PdJ5sTAnELV1Y6VXs8QZAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUw8I8qconzhF9+yGgTIrdU4NiyXwwHwYDVR0jBBgwFoAUWHbkuN+qIkwBnSRp Mfw816T+7SowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv V0hia3VOLXFJa3dCblNScE1mdzgxNlQtN1NvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9XSGJrdU4tcUlrd0JuU1JwTWZ3ODE2VC03U28uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC93OEk4cWNvbnpoRjkteUdnVEly ZFU0Tml5WHcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAqF/2 MA0GCSqGSIb3DQEBCwUAA4IBAQADGlNaPnn1WAMajtTCG47LTKKwG3pnQ7+xcglu FsD2cDRg/teoCkYHEW7QDxRq6ZefG+ph+sujTORzPExwJH+uyxKMBZZANtaVuDiy E2NHVgbXTgtq5yoaI5YM4D4T0Jo8mYgb+YeL6R6ttQuSl43PYClXlbJOFxDsgp4x 7eAePXQn6xDSIz0n66ejLxeni8KD5nnpKZDBQLkoMMbkpqQe5uaqziDQ5fMFSCx7 GR32rY5hiDPUjYawYcUKKRQGDQ0YFClplHoMRZYHPX/C6+RVUYB003tsRQBVngBI Z5CBnfrd8DYNSVTR2gBpH04YCVr9MCAV5xKLE6rBpKI8+YDS -----END CERTIFICATE-----Generated at Sun Aug 24 09:44:57 2025 by rpki-client