$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/HkDv6JRmv3EUd0VuTcitV8iuAoc.roa File: HkDv6JRmv3EUd0VuTcitV8iuAoc.roa (raw, json) Hash identifier: ZLa5vFMilTLvMaHqpus8c0iR++yiqKOTufQvKaJhc7I= Subject key identifier: 1E:40:EF:E8:94:66:BF:71:14:77:45:6E:4D:C8:AD:57:C8:AE:02:87 Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C Certificate serial: 07F7 Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/HkDv6JRmv3EUd0VuTcitV8iuAoc.roa Signing time: Fri 22 Aug 2025 08:58:47 +0000 ROA not before: Fri 22 Aug 2025 08:58:47 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9678 IP address blocks: 211.76.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2039 (0x7f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C Validity Not Before: Aug 22 08:58:47 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1E40EFE89466BF711477456E4DC8AD57C8AE0287 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:81:8d:de:e3:19:aa:d7:fe:9d:25:2e:df:9e: db:99:45:29:a8:12:3d:b5:49:d6:15:e3:fa:99:67: 7b:c7:d2:2a:e3:c3:7c:2d:a6:9d:6c:68:ab:3b:01: 5c:73:f0:23:c4:7b:6a:dd:e1:f2:e5:a8:f2:b3:e4: 25:cf:d3:5e:a6:13:17:ba:5b:c4:48:a7:ad:86:13: f5:36:39:30:47:6b:a8:ce:f2:d1:c1:14:a6:12:48: 26:99:ee:ab:d4:93:71:b7:cf:00:5f:b6:0a:27:e3: 7f:7e:ad:0d:33:b9:0b:76:53:6e:f8:df:86:2f:73: 2d:48:35:e6:fa:dd:a2:ab:e9:ef:b4:a8:e3:16:7e: 5d:27:6d:99:87:9c:f1:12:ad:b3:00:cf:c6:e5:5d: 99:fd:91:26:0b:cb:f5:11:ac:0d:2b:ea:50:34:1f: cd:f7:df:2b:22:18:71:4c:b8:6e:fa:e1:d2:70:27: f2:26:55:cb:7f:aa:5e:7a:0b:73:4e:94:cc:09:29: 64:30:e4:18:b8:15:7e:3c:8d:e3:0d:0c:b4:e8:3d: fe:11:37:a4:bc:46:65:dd:6f:52:f1:f3:28:c2:6b: 9e:64:71:45:3c:d7:83:18:5a:ee:61:e1:ce:f9:74: 11:9d:17:8e:23:8f:55:32:c7:bc:d8:32:f4:8d:16: fb:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:40:EF:E8:94:66:BF:71:14:77:45:6E:4D:C8:AD:57:C8:AE:02:87 X509v3 Authority Key Identifier: keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/HkDv6JRmv3EUd0VuTcitV8iuAoc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.179.0/24 Signature Algorithm: sha256WithRSAEncryption 62:0a:bf:f9:c4:54:03:9b:41:36:cc:c8:3e:f2:af:f8:3f:b9: c7:ed:53:6e:b2:24:ef:69:1f:2d:5d:d5:22:69:87:b2:c4:c5: 55:98:d2:ef:96:5d:c9:8e:09:b4:a9:88:09:96:4a:56:00:84: 56:1f:a2:2c:69:aa:54:4f:4c:52:1e:50:90:1f:96:d4:2b:35: 55:6f:df:e2:57:aa:73:b6:48:f8:c9:12:08:65:63:da:8e:0a: fe:75:58:29:49:5a:85:02:93:be:94:66:04:81:6f:70:02:48: e7:98:4c:9c:bf:86:c3:81:45:67:3a:fa:28:a4:07:b6:36:c7: f7:4c:b6:7b:d6:48:f7:5e:80:f6:38:34:96:ee:c1:aa:f8:b0: 95:72:4b:42:00:1b:51:25:25:af:b3:8d:de:04:c5:28:4d:69: 99:b3:67:d3:50:f5:87:81:09:28:46:0c:e8:88:ba:5e:8c:89: cf:69:6d:0f:01:a4:38:68:d4:df:41:9c:11:a5:96:9d:62:7f: 71:e3:d0:85:06:2c:6b:59:97:ff:c3:41:f9:ea:77:cf:45:d3: 8c:cc:1d:f2:ad:ff:02:02:ef:69:c6:fe:01:05:b5:4d:a1:2b: 2c:30:b2:85:49:0e:7b:5e:8e:1e:31:7f:76:b5:07:06:5a:b7: 44:04:61:85 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICB/cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJF RDI4RkZDQzA0MEUzNjAzMkM0MjYxNTQ5NTU2MkJDQzZFRjQ1QzAeFw0yNTA4MjIw ODU4NDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDFFNDBFRkU4OTQ2NkJG NzExNDc3NDU2RTREQzhBRDU3QzhBRTAyODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8gY3e4xmq1/6dJS7fntuZRSmoEj21SdYV4/qZZ3vH0irjw3wt pp1saKs7AVxz8CPEe2rd4fLlqPKz5CXP016mExe6W8RIp62GE/U2OTBHa6jO8tHB FKYSSCaZ7qvUk3G3zwBftgon439+rQ0zuQt2U27434Yvcy1INeb63aKr6e+0qOMW fl0nbZmHnPESrbMAz8blXZn9kSYLy/URrA0r6lA0H8333ysiGHFMuG764dJwJ/Im Vct/ql56C3NOlMwJKWQw5Bi4FX48jeMNDLToPf4RN6S8RmXdb1Lx8yjCa55kcUU8 14MYWu5h4c75dBGdF44jj1Uyx7zYMvSNFvujAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUHkDv6JRmv3EUd0VuTcitV8iuAocwHwYDVR0jBBgwFoAUq+0o/8wEDjYDLEJh VJVWK8xu9FwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElO L3EtMG9fOHdFRGpZRExFSmhWSlZXSzh4dTlGdy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvcS0wb184d0VEallETEVKaFZKVldLOHh1OUZ3LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElOL0hrRHY2SlJtdjNFVWQwVnVU Y2l0VjhpdUFvYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADT TLMwDQYJKoZIhvcNAQELBQADggEBAGIKv/nEVAObQTbMyD7yr/g/ucftU26yJO9p Hy1d1SJph7LExVWY0u+WXcmOCbSpiAmWSlYAhFYfoixpqlRPTFIeUJAfltQrNVVv 3+JXqnO2SPjJEghlY9qOCv51WClJWoUCk76UZgSBb3ACSOeYTJy/hsOBRWc6+iik B7Y2x/dMtnvWSPdegPY4NJbuwar4sJVyS0IAG1ElJa+zjd4ExShNaZmzZ9NQ9YeB CShGDOiIul6Mic9pbQ8BpDho1N9BnBGllp1if3Hj0IUGLGtZl//DQfnqd89F04zM HfKt/wIC72nG/gEFtU2hKywwsoVJDntejh4xf3a1BwZat0QEYYU= -----END CERTIFICATE-----Generated at Sun Aug 24 09:17:49 2025 by rpki-client