$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/ywh9dUVunpopxyfZNXTFhE-8bic.roa File: ywh9dUVunpopxyfZNXTFhE-8bic.roa (raw, json) Hash identifier: sjR3f3Soh+W7k6q9d1J/PgI3PUWWw22m0/blBRi8pX0= Subject key identifier: CB:08:7D:75:45:6E:9E:9A:29:C7:27:D9:35:74:C5:84:4F:BC:6E:27 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 195D Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ywh9dUVunpopxyfZNXTFhE-8bic.roa Signing time: Fri 22 Aug 2025 09:03:02 +0000 ROA not before: Fri 22 Aug 2025 09:03:02 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 10126 IP address blocks: 114.30.32.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6493 (0x195d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 22 09:03:02 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=CB087D75456E9E9A29C727D93574C5844FBC6E27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:be:a2:fb:b1:0b:86:85:10:27:dc:04:63:91: eb:af:e7:d4:9d:50:b6:c7:63:b2:02:42:e7:5d:89: f4:16:51:66:1f:f5:f8:16:30:68:66:e4:3f:06:34: 51:e8:c0:06:36:d9:95:c0:7c:a9:8a:a7:38:8f:a7: b6:ae:bb:5b:42:80:7d:0f:45:91:a7:76:07:37:58: e7:92:1d:55:52:79:fa:ce:27:7b:27:8a:89:22:8f: b0:9e:d2:7a:3a:33:48:79:e4:a4:5a:5b:bc:93:25: fe:24:43:f5:d6:9f:18:7f:57:b8:4a:69:2e:82:4f: 6e:51:38:8b:7f:28:83:4e:83:d0:1a:bb:b1:ab:4b: 4d:3e:d8:84:61:0d:73:2d:87:70:e0:a1:df:ca:38: 93:1e:77:df:84:17:fd:5c:4f:e7:b8:7a:86:1c:74: 46:9c:21:df:46:ef:3b:a2:02:8a:f2:87:4b:ca:5a: a0:6a:3f:88:f7:d3:65:66:20:02:a6:9f:fc:ee:27: fc:39:f0:d7:92:4d:e4:6e:33:af:ea:46:16:9c:d5: e3:f1:76:ff:17:25:a8:f9:b3:cb:7e:3f:9d:f8:0b: 8c:51:9f:f0:94:d8:d8:df:c6:be:89:61:16:53:ee: 64:71:de:7d:89:b3:d7:f2:75:1b:34:90:6c:91:b3: be:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:08:7D:75:45:6E:9E:9A:29:C7:27:D9:35:74:C5:84:4F:BC:6E:27 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ywh9dUVunpopxyfZNXTFhE-8bic.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 114.30.32.0/20 Signature Algorithm: sha256WithRSAEncryption 80:08:cf:a6:44:53:7c:f5:c5:2b:08:ba:d6:48:03:d8:f7:58: 65:7c:a4:46:9a:f2:f8:4d:e3:7d:8f:f9:0f:75:ab:ad:74:46: 1e:06:fe:c6:a8:28:22:5a:d2:d8:a1:14:03:76:75:39:1e:46: a1:2e:54:35:bf:f8:ea:48:07:e9:e7:31:d1:5d:5d:11:d1:b1: de:bf:0e:ad:ef:e2:2e:8b:8c:0c:47:c1:c9:ca:a9:ec:46:fc: 05:07:77:69:3c:08:ad:c9:50:a3:d0:05:41:2b:29:f3:5f:04: 82:8e:0e:cb:a1:e1:90:6a:8d:9c:e3:55:b3:76:74:86:58:40: 98:eb:16:35:3b:12:85:32:cc:59:51:70:12:b4:46:8a:f7:c7: 44:a0:89:be:21:aa:c2:4c:76:14:5c:78:92:20:b5:2c:e7:8e: a9:48:a4:aa:38:fe:fe:0f:bc:91:23:3e:68:9e:31:38:88:8a: c7:61:d3:82:9e:bd:58:b7:a1:dc:12:5d:c2:d5:6c:e8:2f:08: 10:ed:03:f7:ae:02:43:4b:dd:eb:6e:46:b4:68:e4:83:72:bc: e5:6c:99:14:92:39:83:9d:9b:76:22:89:d3:76:e4:73:31:e3: b5:99:96:5d:f6:77:8f:aa:41:11:13:88:0a:6b:02:ac:7c:e4: 03:dc:69:08 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICGV0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw OTAzMDJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKENCMDg3RDc1NDU2RTlF OUEyOUM3MjdEOTM1NzRDNTg0NEZCQzZFMjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuvqL7sQuGhRAn3ARjkeuv59SdULbHY7ICQuddifQWUWYf9fgW MGhm5D8GNFHowAY22ZXAfKmKpziPp7auu1tCgH0PRZGndgc3WOeSHVVSefrOJ3sn iokij7Ce0no6M0h55KRaW7yTJf4kQ/XWnxh/V7hKaS6CT25ROIt/KINOg9Aau7Gr S00+2IRhDXMth3Dgod/KOJMed9+EF/1cT+e4eoYcdEacId9G7zuiAoryh0vKWqBq P4j302VmIAKmn/zuJ/w58NeSTeRuM6/qRhac1ePxdv8XJaj5s8t+P534C4xRn/CU 2Njfxr6JYRZT7mRx3n2Js9fydRs0kGyRs76nAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUywh9dUVunpopxyfZNXTFhE+8bicwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC95d2g5ZFVWdW5wb3B4eWZaTlhU RmhFLThiaWMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEch4g MA0GCSqGSIb3DQEBCwUAA4IBAQCACM+mRFN89cUrCLrWSAPY91hlfKRGmvL4TeN9 j/kPdautdEYeBv7GqCgiWtLYoRQDdnU5HkahLlQ1v/jqSAfp5zHRXV0R0bHevw6t 7+Iui4wMR8HJyqnsRvwFB3dpPAityVCj0AVBKynzXwSCjg7LoeGQao2c41WzdnSG WECY6xY1OxKFMsxZUXAStEaK98dEoIm+IarCTHYUXHiSILUs546pSKSqOP7+D7yR Iz5onjE4iIrHYdOCnr1Yt6HcEl3C1WzoLwgQ7QP3rgJDS93rbka0aOSDcrzlbJkU kjmDnZt2IonTduRzMeO1mZZd9nePqkERE4gKawKsfOQD3GkI -----END CERTIFICATE-----Generated at Sun Aug 24 13:44:07 2025 by rpki-client