$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/yTDaecIo0Zzlu6Y0OSfI64AICys.roa File: yTDaecIo0Zzlu6Y0OSfI64AICys.roa (raw, json) Hash identifier: 4luNGbA9Md3Nz9wG1Kf9ftcag02Z0VNM1f5+mV1P1jg= Subject key identifier: C9:30:DA:79:C2:28:D1:9C:E5:BB:A6:34:39:27:C8:EB:80:08:0B:2B Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1903 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/yTDaecIo0Zzlu6Y0OSfI64AICys.roa Signing time: Fri 22 Aug 2025 09:02:41 +0000 ROA not before: Fri 22 Aug 2025 09:02:41 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17714 IP address blocks: 175.111.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6403 (0x1903) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 22 09:02:41 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C930DA79C228D19CE5BBA6343927C8EB80080B2B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:f1:1c:29:7b:8a:a5:a4:b9:b7:e6:d8:33:e7: 75:7b:1f:9a:69:9e:2f:fc:9c:fa:ee:27:34:0e:22: 1b:ed:79:ec:7b:e1:6f:61:37:be:d6:a6:6a:79:85: 85:fd:6f:fd:9c:70:fb:b4:b2:6d:cb:91:15:f2:e2: b7:0a:29:00:60:4a:43:b5:7a:a4:f3:ad:d5:b4:c7: a2:1a:a2:66:4c:6c:b9:61:12:8e:36:77:23:05:a7: 17:b7:a2:9f:ef:78:5f:fc:a5:8e:f2:8a:1f:f6:0e: db:39:7e:02:84:78:0e:76:84:06:e0:59:01:ed:95: d5:45:40:ef:fa:a4:cc:98:79:a7:06:7f:34:f6:50: 67:d8:7f:06:46:0b:e5:35:9f:f4:4f:ad:48:da:4e: ef:db:d8:f6:12:3b:7b:14:8d:76:f7:60:ff:35:2f: c3:e2:a6:ec:0c:4f:d9:41:05:cf:42:4f:d5:98:89: ba:b6:52:89:ad:c6:70:ef:6d:a2:8e:8e:6d:51:1b: e1:9f:1b:eb:39:a6:17:f8:b4:75:63:4e:06:f0:c9: ef:cc:b0:0c:b0:bc:6f:6a:f9:82:8c:73:59:bb:a1: e9:2c:58:02:95:5f:47:92:e2:94:2b:5c:8c:ca:3f: 2e:d8:ad:06:39:cf:de:20:a1:45:eb:7b:92:27:c5: 66:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:30:DA:79:C2:28:D1:9C:E5:BB:A6:34:39:27:C8:EB:80:08:0B:2B X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/yTDaecIo0Zzlu6Y0OSfI64AICys.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 175.111.252.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:e0:cc:20:18:94:b8:0f:04:63:24:2e:c6:1d:da:1a:45:5f: bd:85:4f:36:24:15:18:6b:62:99:41:fe:2a:65:eb:a7:4d:de: 1d:48:be:43:a2:12:33:25:a9:e2:5b:52:c1:da:43:34:59:26: dd:11:83:0b:97:33:89:03:f1:d2:f0:38:e2:a6:26:f2:39:cd: 54:5d:96:2c:46:42:ef:2d:e6:c5:ac:39:de:83:55:86:fa:2c: ad:7d:c0:c5:d8:fb:c3:51:ba:03:a4:91:60:36:8c:3b:f8:16: 6d:08:31:a2:1a:54:cc:10:75:d6:50:f0:97:82:8b:f3:30:ea: a3:2b:08:24:83:7c:9f:37:12:44:74:76:4e:fa:74:d5:fb:90: 08:94:6b:bb:73:f3:32:98:e2:d0:68:f0:d3:af:b3:c4:8f:f3: 5c:0b:c6:a2:19:56:dd:38:d5:89:00:ec:3b:6a:a6:84:a1:4a: e7:da:1b:8e:56:96:d5:6e:f6:9b:ae:6d:a7:1c:0c:1a:b0:48: c9:01:59:bb:78:7c:1a:e0:16:f8:d6:5c:00:58:81:73:7d:ed: 83:da:3e:4c:86:ab:14:f9:8d:b9:4c:e9:91:75:ac:00:82:29: 1e:a6:41:2a:d3:11:69:ff:4f:76:f8:b1:92:0d:9d:7f:1b:e9: 88:34:5b:47 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICGQMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw OTAyNDFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEM5MzBEQTc5QzIyOEQx OUNFNUJCQTYzNDM5MjdDOEVCODAwODBCMkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDd8Rwpe4qlpLm35tgz53V7H5ppni/8nPruJzQOIhvteex74W9h N77Wpmp5hYX9b/2ccPu0sm3LkRXy4rcKKQBgSkO1eqTzrdW0x6IaomZMbLlhEo42 dyMFpxe3op/veF/8pY7yih/2Dts5fgKEeA52hAbgWQHtldVFQO/6pMyYeacGfzT2 UGfYfwZGC+U1n/RPrUjaTu/b2PYSO3sUjXb3YP81L8PipuwMT9lBBc9CT9WYibq2 UomtxnDvbaKOjm1RG+GfG+s5phf4tHVjTgbwye/MsAywvG9q+YKMc1m7oeksWAKV X0eS4pQrXIzKPy7YrQY5z94goUXre5InxWYfAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUyTDaecIo0Zzlu6Y0OSfI64AICyswHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC95VERhZWNJbzBaemx1NlkwT1Nm STY0QUlDeXMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAr2/8 MA0GCSqGSIb3DQEBCwUAA4IBAQAr4MwgGJS4DwRjJC7GHdoaRV+9hU82JBUYa2KZ Qf4qZeunTd4dSL5DohIzJaniW1LB2kM0WSbdEYMLlzOJA/HS8DjipibyOc1UXZYs RkLvLebFrDneg1WG+iytfcDF2PvDUboDpJFgNow7+BZtCDGiGlTMEHXWUPCXgovz MOqjKwgkg3yfNxJEdHZO+nTV+5AIlGu7c/MymOLQaPDTr7PEj/NcC8aiGVbdONWJ AOw7aqaEoUrn2huOVpbVbvabrm2nHAwasEjJAVm7eHwa4Bb41lwAWIFzfe2D2j5M hqsU+Y25TOmRdawAgikepkEq0xFp/092+LGSDZ1/G+mINFtH -----END CERTIFICATE-----Generated at Sun Aug 24 09:42:29 2025 by rpki-client