$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/zuFmt5u2ypPV46LBj0RX-D4vQeE.roa File: zuFmt5u2ypPV46LBj0RX-D4vQeE.roa (raw, json) Hash identifier: cPYyhd2ZWhBDtxsZIl8ESq/UN0uLUSwfuAHnxXiXRdE= Subject key identifier: CE:E1:66:B7:9B:B6:CA:93:D5:E3:A2:C1:8F:44:57:F8:3E:2F:41:E1 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1908 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/zuFmt5u2ypPV46LBj0RX-D4vQeE.roa Signing time: Fri 22 Aug 2025 09:02:42 +0000 ROA not before: Fri 22 Aug 2025 09:02:42 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 10126 IP address blocks: 203.160.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6408 (0x1908) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 22 09:02:42 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=CEE166B79BB6CA93D5E3A2C18F4457F83E2F41E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:d4:c1:be:3f:8e:d2:07:33:5f:0a:13:a7:b8: 26:69:62:93:be:af:b3:fa:3c:5f:49:c7:72:ae:64: 23:18:2e:01:a6:21:a6:11:cf:25:81:2c:bd:2b:51: 5a:a0:91:17:05:8c:78:f7:06:61:d7:bb:63:5d:6e: 3c:dd:46:10:30:64:e6:73:81:a5:fa:97:b9:4e:14: 01:85:46:cc:a4:85:79:52:2d:0d:cc:c6:a2:0d:20: c2:d6:d0:4a:83:bc:67:43:0e:42:5e:8b:fe:3e:22: 8f:f5:99:c7:d4:b0:9a:94:ad:36:f1:9f:66:30:28: 7e:b7:c8:c3:07:3e:af:98:cd:35:a5:3d:3b:f6:63: 69:51:80:1d:a2:ac:73:62:26:87:12:c4:4c:df:52: 1c:43:51:e2:c1:75:7d:0e:40:d8:aa:41:ae:41:85: fc:67:57:8c:22:6b:c6:80:68:c3:c3:28:f6:61:84: 00:bc:22:c1:11:d3:93:aa:93:dc:0c:88:33:0d:1e: 07:4c:ab:6a:16:db:7e:f3:79:13:6b:31:75:6e:f5: b4:c2:53:a0:08:e8:cd:0f:f7:31:c5:7c:49:82:ff: 5b:de:54:14:25:86:16:28:f3:ec:fa:31:2b:05:5e: 93:48:c6:d5:1b:cc:c8:4b:bb:1b:0a:ad:80:d7:be: a3:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:E1:66:B7:9B:B6:CA:93:D5:E3:A2:C1:8F:44:57:F8:3E:2F:41:E1 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/zuFmt5u2ypPV46LBj0RX-D4vQeE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.160.240.0/20 Signature Algorithm: sha256WithRSAEncryption 21:92:f0:1c:80:b8:72:1a:c5:5b:31:36:63:4d:e3:41:44:5d: 9d:50:1f:c2:65:84:8a:6a:40:05:5b:36:b1:4e:f3:80:8c:56: 10:2e:44:d1:89:da:c3:26:b4:34:8b:eb:6c:ee:43:c0:b4:ed: 81:ec:71:e6:d4:d8:df:dd:99:3b:fd:18:61:9e:be:cd:c6:0e: 06:51:a2:54:0c:f4:54:46:57:91:a5:c8:52:4e:ad:cc:b8:20: 1e:c6:82:59:8a:92:74:0c:78:31:6d:ea:e9:8e:83:d3:11:76: e2:d1:8c:77:2c:db:56:a0:ea:73:c7:79:5c:7f:f1:46:1a:84: 12:39:3c:d8:e9:7a:32:ca:ad:9b:59:a1:8d:3f:a7:33:e6:66: cd:2a:6a:d1:cd:f3:09:a3:21:84:7e:78:67:36:6c:0e:bc:32: e8:88:16:64:6a:e2:fc:c2:be:53:e2:47:d0:f5:f5:ef:71:0f: 8a:93:d8:12:f9:00:69:4a:2b:84:a6:d2:c6:5b:2d:21:b4:63: 40:b2:09:6d:c2:ce:f8:a8:ed:20:ee:02:e2:87:fb:76:98:b9: 31:b8:b1:a1:27:e1:08:f5:de:2b:b8:b4:a6:7a:aa:15:13:c7: 28:b2:cb:f5:a3:31:b9:21:36:9e:2a:6d:28:8f:e2:4b:9e:fe: 81:3b:39:68 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICGQgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw OTAyNDJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKENFRTE2NkI3OUJCNkNB OTNENUUzQTJDMThGNDQ1N0Y4M0UyRjQxRTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDa1MG+P47SBzNfChOnuCZpYpO+r7P6PF9Jx3KuZCMYLgGmIaYR zyWBLL0rUVqgkRcFjHj3BmHXu2NdbjzdRhAwZOZzgaX6l7lOFAGFRsykhXlSLQ3M xqINIMLW0EqDvGdDDkJei/4+Io/1mcfUsJqUrTbxn2YwKH63yMMHPq+YzTWlPTv2 Y2lRgB2irHNiJocSxEzfUhxDUeLBdX0OQNiqQa5BhfxnV4wia8aAaMPDKPZhhAC8 IsER05Oqk9wMiDMNHgdMq2oW237zeRNrMXVu9bTCU6AI6M0P9zHFfEmC/1veVBQl hhYo8+z6MSsFXpNIxtUbzMhLuxsKrYDXvqMTAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUzuFmt5u2ypPV46LBj0RX+D4vQeEwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC96dUZtdDV1MnlwUFY0NkxCajBS WC1ENHZRZUUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEy6Dw MA0GCSqGSIb3DQEBCwUAA4IBAQAhkvAcgLhyGsVbMTZjTeNBRF2dUB/CZYSKakAF WzaxTvOAjFYQLkTRidrDJrQ0i+ts7kPAtO2B7HHm1Njf3Zk7/Rhhnr7Nxg4GUaJU DPRURleRpchSTq3MuCAexoJZipJ0DHgxberpjoPTEXbi0Yx3LNtWoOpzx3lcf/FG GoQSOTzY6Xoyyq2bWaGNP6cz5mbNKmrRzfMJoyGEfnhnNmwOvDLoiBZkauL8wr5T 4kfQ9fXvcQ+Kk9gS+QBpSiuEptLGWy0htGNAsgltws74qO0g7gLih/t2mLkxuLGh J+EI9d4ruLSmeqoVE8cossv1ozG5ITaeKm0oj+JLnv6BOzlo -----END CERTIFICATE-----Generated at Sun Aug 24 13:42:11 2025 by rpki-client