$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/52ut3In-YXQQoi-JtjiMWQ9hecA.roa File: 52ut3In-YXQQoi-JtjiMWQ9hecA.roa (raw, json) Hash identifier: yv/NORMRzHfHSbjTau202LX+6lWyLCcYpGSKn+HJTdU= Subject key identifier: E7:6B:AD:DC:89:FE:61:74:10:A2:2F:89:B6:38:8C:59:0F:61:79:C0 Certificate issuer: /CN=BB88A91785A782C8EA3CDDED3E7C1F09DA79F647 Certificate serial: 012F Authority key identifier: BB:88:A9:17:85:A7:82:C8:EA:3C:DD:ED:3E:7C:1F:09:DA:79:F6:47 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/u4ipF4WngsjqPN3tPnwfCdp59kc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/52ut3In-YXQQoi-JtjiMWQ9hecA.roa Signing time: Fri 22 Aug 2025 08:58:52 +0000 ROA not before: Fri 22 Aug 2025 08:58:52 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9678 IP address blocks: 2.58.242.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/u4ipF4WngsjqPN3tPnwfCdp59kc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/u4ipF4WngsjqPN3tPnwfCdp59kc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/u4ipF4WngsjqPN3tPnwfCdp59kc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0dL1XCbbKFIKeZb_cu0BBCAHmKI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0dL1XCbbKFIKeZb_cu0BBCAHmKI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0dL1XCbbKFIKeZb_cu0BBCAHmKI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 12:44:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 303 (0x12f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB88A91785A782C8EA3CDDED3E7C1F09DA79F647 Validity Not Before: Aug 22 08:58:52 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E76BADDC89FE617410A22F89B6388C590F6179C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:31:a7:ae:a7:13:c2:4b:44:5a:8b:ac:7d:d7: 79:3f:79:a1:6b:7d:b7:50:fe:0f:fa:80:3c:6c:72: 4b:e7:4c:b4:88:71:4e:76:27:54:1a:7b:a7:ea:28: e7:5d:43:13:61:38:0a:aa:64:cb:b6:ee:e1:8e:20: 77:9d:3a:55:31:ff:c4:76:21:9b:c1:9f:21:be:4a: 96:cb:cb:ff:fa:1f:88:41:7c:91:ff:96:1f:ac:67: c5:fb:ad:af:73:5f:c6:77:94:09:99:4c:b5:69:1d: 78:2d:e4:0c:7d:bb:05:84:c3:6e:32:10:ca:b1:e8: 65:41:68:93:92:21:32:0f:79:12:0e:37:ce:f5:62: 4a:22:30:18:f5:db:31:02:1d:2e:00:d6:dc:d8:dc: 0c:36:5e:ce:9f:75:4b:32:8f:c1:29:9d:4e:64:32: d6:29:50:a9:6e:7d:75:98:8d:74:a5:3a:02:4c:db: 17:d1:74:ee:f6:ff:cc:06:60:d9:e0:dd:36:38:22: c5:47:61:3e:3d:22:9c:ff:37:44:6b:f5:9f:54:b0: 96:e2:7f:7e:32:b1:e5:e8:9b:8e:7f:c1:c4:36:48: a7:31:a6:9d:1d:c0:23:1c:3a:5e:ba:36:93:fd:30: b0:c6:7f:79:fd:97:91:be:27:5d:49:c2:32:38:3a: ee:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:6B:AD:DC:89:FE:61:74:10:A2:2F:89:B6:38:8C:59:0F:61:79:C0 X509v3 Authority Key Identifier: keyid:BB:88:A9:17:85:A7:82:C8:EA:3C:DD:ED:3E:7C:1F:09:DA:79:F6:47 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/u4ipF4WngsjqPN3tPnwfCdp59kc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/u4ipF4WngsjqPN3tPnwfCdp59kc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/52ut3In-YXQQoi-JtjiMWQ9hecA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 2.58.242.0/24 Signature Algorithm: sha256WithRSAEncryption 69:39:c2:57:c7:6c:51:3e:ef:1b:57:23:1a:0b:a5:d2:7b:b9: d7:ee:c4:99:d5:d1:15:63:a3:93:11:59:24:ad:27:85:dd:9f: 17:cb:60:29:98:8f:28:f6:ff:43:81:21:6a:08:e6:29:d7:9a: dd:0b:90:6b:be:83:96:0e:58:2f:d8:3e:72:cb:74:76:cd:3f: b6:18:bb:40:07:21:ba:cd:3b:eb:a6:b9:6d:9d:e5:db:f5:fe: c7:df:08:02:d9:84:60:2e:e5:2a:9f:d1:a6:96:22:46:85:12: a8:08:03:83:d7:91:01:ff:10:c1:99:a7:12:9f:0a:58:bf:7b: 5c:be:53:f9:51:2d:5c:d4:55:65:08:2c:bc:59:b1:69:94:1f: ca:da:d7:31:8f:a7:09:a8:f1:ca:cd:15:80:38:5a:aa:e0:1a: 46:d5:e2:8c:50:1d:3e:17:9f:83:a7:72:51:c5:a2:be:1e:76: 78:41:94:59:1e:ce:c8:69:76:61:9d:90:30:fb:d5:b2:c2:05: 0d:9a:d8:0d:23:88:41:a0:64:37:12:b4:32:a8:6f:5e:5b:38: 2a:48:3c:7d:7c:42:b8:9c:43:0a:9b:13:f7:49:ef:39:d2:12: 28:d3:04:14:52:59:b6:96:f8:18:1f:95:f0:6b:b9:ae:3b:cc: b3:13:1a:6f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICAS8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkI4 OEE5MTc4NUE3ODJDOEVBM0NEREVEM0U3QzFGMDlEQTc5RjY0NzAeFw0yNTA4MjIw ODU4NTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEU3NkJBRERDODlGRTYx NzQxMEEyMkY4OUI2Mzg4QzU5MEY2MTc5QzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPMaeupxPCS0Rai6x913k/eaFrfbdQ/g/6gDxsckvnTLSIcU52 J1Qae6fqKOddQxNhOAqqZMu27uGOIHedOlUx/8R2IZvBnyG+SpbLy//6H4hBfJH/ lh+sZ8X7ra9zX8Z3lAmZTLVpHXgt5Ax9uwWEw24yEMqx6GVBaJOSITIPeRION871 YkoiMBj12zECHS4A1tzY3Aw2Xs6fdUsyj8EpnU5kMtYpUKlufXWYjXSlOgJM2xfR dO72/8wGYNng3TY4IsVHYT49Ipz/N0Rr9Z9UsJbif34yseXom45/wcQ2SKcxpp0d wCMcOl66NpP9MLDGf3n9l5G+J11JwjI4Ou6lAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU52ut3In+YXQQoi+JtjiMWQ9hecAwHwYDVR0jBBgwFoAUu4ipF4WngsjqPN3t PnwfCdp59kcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElO L3U0aXBGNFduZ3NqcVBOM3RQbndmQ2RwNTlrYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvdTRpcEY0V25nc2pxUE4zdFBud2ZDZHA1OWtjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElOLzUydXQzSW4tWVhRUW9pLUp0 amlNV1E5aGVjQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAC OvIwDQYJKoZIhvcNAQELBQADggEBAGk5wlfHbFE+7xtXIxoLpdJ7udfuxJnV0RVj o5MRWSStJ4XdnxfLYCmYjyj2/0OBIWoI5inXmt0LkGu+g5YOWC/YPnLLdHbNP7YY u0AHIbrNO+umuW2d5dv1/sffCALZhGAu5Sqf0aaWIkaFEqgIA4PXkQH/EMGZpxKf Cli/e1y+U/lRLVzUVWUILLxZsWmUH8ra1zGPpwmo8crNFYA4WqrgGkbV4oxQHT4X n4OnclHFor4ednhBlFkezshpdmGdkDD71bLCBQ2a2A0jiEGgZDcStDKob15bOCpI PH18QricQwqbE/dJ7znSEijTBBRSWbaW+BgflfBrua47zLMTGm8= -----END CERTIFICATE-----Generated at Sun Aug 24 09:44:47 2025 by rpki-client