$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/88dWmlI19qyWt2XW84Qm9g3a7lM.roa File: 88dWmlI19qyWt2XW84Qm9g3a7lM.roa (raw, json) Hash identifier: 55hAf7LVBaSU6FF/o58mzxfoknoy6+GPfHvjsN+IbDI= Subject key identifier: F3:C7:56:9A:52:35:F6:AC:96:B7:65:D6:F3:84:26:F6:0D:DA:EE:53 Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C Certificate serial: 07F8 Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/88dWmlI19qyWt2XW84Qm9g3a7lM.roa Signing time: Fri 22 Aug 2025 08:58:47 +0000 ROA not before: Fri 22 Aug 2025 08:58:47 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9678 IP address blocks: 2401:95c0:101::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2040 (0x7f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C Validity Not Before: Aug 22 08:58:47 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F3C7569A5235F6AC96B765D6F38426F60DDAEE53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:61:a6:61:18:74:23:de:99:b6:73:e3:f8:7c: 87:a4:d8:1b:37:73:30:1b:27:4b:ec:5a:b9:74:af: c7:98:15:6c:aa:73:6f:d3:01:85:f0:48:bc:39:1d: 78:52:9c:fa:31:f5:6e:32:a5:c3:82:64:de:d9:a1: 98:bb:86:0a:e9:e9:79:94:f2:76:4d:d9:c5:4c:0e: ef:fc:a6:a2:2c:f7:35:e9:19:d7:8b:2c:7b:4f:20: 44:d5:c3:01:87:94:03:bc:db:47:d2:c2:16:55:47: b5:c1:25:d5:39:16:c1:7f:6a:fc:39:f8:a8:16:c3: fb:cb:b3:b5:aa:d1:8b:05:4c:df:7c:70:27:1b:d3: 4e:f8:b9:d3:ee:f5:27:54:0a:12:b5:7e:4f:71:53: 73:f1:27:f4:ac:4f:59:a4:b1:6b:19:b5:a7:3e:90: 4a:0d:33:30:ae:d0:b7:24:c0:dd:c3:6b:c8:6c:ee: b2:e8:de:53:f6:4c:44:70:f5:72:3d:8b:e1:ec:0b: 12:9e:28:96:a3:39:ea:a2:29:5c:d1:de:89:53:dd: 13:68:a3:67:49:1a:52:98:0f:d8:fe:2f:58:00:a2: 37:68:02:1c:8f:c0:b8:11:ae:28:15:9f:9b:df:a2: 14:00:71:af:2a:27:1d:7f:cd:1b:f0:fb:4a:af:a0: ed:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:C7:56:9A:52:35:F6:AC:96:B7:65:D6:F3:84:26:F6:0D:DA:EE:53 X509v3 Authority Key Identifier: keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/88dWmlI19qyWt2XW84Qm9g3a7lM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:95c0:101::/48 Signature Algorithm: sha256WithRSAEncryption cd:63:08:e7:99:39:4a:71:c1:9f:06:32:7e:d6:7b:b0:b6:51: 34:bd:00:ad:4d:a0:07:50:47:14:63:6c:5c:d0:71:ff:28:45: bf:cb:ed:14:f4:dc:aa:bf:98:55:79:6a:64:ff:4f:27:13:a7: 5c:e6:05:f2:93:6e:9e:db:01:d6:0f:fc:3d:ca:16:e3:49:47: b9:c6:18:b6:1d:7c:85:af:48:dc:88:0d:8b:77:b4:85:3d:b2: ae:1a:1d:d2:8e:0d:4b:43:3f:8f:c9:d2:17:ab:43:81:4c:5e: 30:94:6c:5e:57:59:f8:a9:80:9f:c0:91:4f:53:28:53:bf:ed: 20:b5:44:99:05:e5:0c:47:3f:15:7a:db:ee:69:14:2a:c1:13: 7a:8a:74:27:9d:48:b2:40:9f:83:58:ea:fb:a8:89:d7:ac:2b: d0:a6:5a:0f:2c:78:79:78:26:63:23:9d:f3:39:3c:38:f7:58: d8:bf:8e:d8:22:98:86:d3:d0:ad:81:0e:76:d8:89:35:f7:fd: d7:09:bf:7d:d7:35:4c:7f:40:97:8f:74:23:d3:57:99:f6:66: 8d:87:25:71:8c:b1:66:ae:1f:ed:e5:fa:41:56:a5:c2:53:2f: f8:84:8a:7b:88:9b:99:be:98:4c:0c:5a:2a:00:0b:07:44:56: 36:f2:91:24 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICB/gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJF RDI4RkZDQzA0MEUzNjAzMkM0MjYxNTQ5NTU2MkJDQzZFRjQ1QzAeFw0yNTA4MjIw ODU4NDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEYzQzc1NjlBNTIzNUY2 QUM5NkI3NjVENkYzODQyNkY2MEREQUVFNTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDkYaZhGHQj3pm2c+P4fIek2Bs3czAbJ0vsWrl0r8eYFWyqc2/T AYXwSLw5HXhSnPox9W4ypcOCZN7ZoZi7hgrp6XmU8nZN2cVMDu/8pqIs9zXpGdeL LHtPIETVwwGHlAO820fSwhZVR7XBJdU5FsF/avw5+KgWw/vLs7Wq0YsFTN98cCcb 0074udPu9SdUChK1fk9xU3PxJ/SsT1mksWsZtac+kEoNMzCu0LckwN3Da8hs7rLo 3lP2TERw9XI9i+HsCxKeKJajOeqiKVzR3olT3RNoo2dJGlKYD9j+L1gAojdoAhyP wLgRrigVn5vfohQAca8qJx1/zRvw+0qvoO1XAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU88dWmlI19qyWt2XW84Qm9g3a7lMwHwYDVR0jBBgwFoAUq+0o/8wEDjYDLEJh VJVWK8xu9FwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElO L3EtMG9fOHdFRGpZRExFSmhWSlZXSzh4dTlGdy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvcS0wb184d0VEallETEVKaFZKVldLOHh1OUZ3LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElOLzg4ZFdtbEkxOXF5V3QyWFc4 NFFtOWczYTdsTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk AZXAAQEwDQYJKoZIhvcNAQELBQADggEBAM1jCOeZOUpxwZ8GMn7We7C2UTS9AK1N oAdQRxRjbFzQcf8oRb/L7RT03Kq/mFV5amT/TycTp1zmBfKTbp7bAdYP/D3KFuNJ R7nGGLYdfIWvSNyIDYt3tIU9sq4aHdKODUtDP4/J0herQ4FMXjCUbF5XWfipgJ/A kU9TKFO/7SC1RJkF5QxHPxV62+5pFCrBE3qKdCedSLJAn4NY6vuoidesK9CmWg8s eHl4JmMjnfM5PDj3WNi/jtgimIbT0K2BDnbYiTX3/dcJv33XNUx/QJePdCPTV5n2 Zo2HJXGMsWauH+3l+kFWpcJTL/iEinuIm5m+mEwMWioACwdEVjbykSQ= -----END CERTIFICATE-----Generated at Sun Aug 24 09:21:12 2025 by rpki-client