$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/LruPk8SFILGVDu8P988mDNMEoIQ.roa File: LruPk8SFILGVDu8P988mDNMEoIQ.roa (raw, json) Hash identifier: 84u4i8yBhiyTXI67FVMuZjP9O04VH8/EbdX0D4IhFHE= Subject key identifier: 2E:BB:8F:93:C4:85:20:B1:95:0E:EF:0F:F7:CF:26:0C:D3:04:A0:84 Certificate issuer: /CN=BB88A91785A782C8EA3CDDED3E7C1F09DA79F647 Certificate serial: 012E Authority key identifier: BB:88:A9:17:85:A7:82:C8:EA:3C:DD:ED:3E:7C:1F:09:DA:79:F6:47 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/u4ipF4WngsjqPN3tPnwfCdp59kc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/LruPk8SFILGVDu8P988mDNMEoIQ.roa Signing time: Fri 22 Aug 2025 08:58:52 +0000 ROA not before: Fri 22 Aug 2025 08:58:52 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9678 IP address blocks: 2.58.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/u4ipF4WngsjqPN3tPnwfCdp59kc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/u4ipF4WngsjqPN3tPnwfCdp59kc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/u4ipF4WngsjqPN3tPnwfCdp59kc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0dL1XCbbKFIKeZb_cu0BBCAHmKI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0dL1XCbbKFIKeZb_cu0BBCAHmKI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0dL1XCbbKFIKeZb_cu0BBCAHmKI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 12:44:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 302 (0x12e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB88A91785A782C8EA3CDDED3E7C1F09DA79F647 Validity Not Before: Aug 22 08:58:52 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2EBB8F93C48520B1950EEF0FF7CF260CD304A084 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:bd:95:2a:89:e6:0d:49:be:28:ad:11:3f:31: ae:68:7f:69:f5:87:33:57:df:2c:d4:e5:84:c2:18: 77:4f:6d:b2:1a:91:64:02:c3:8d:03:b5:39:25:8f: 11:12:c2:cf:0e:1d:9e:de:e1:cc:e8:b2:02:1b:0e: f7:d7:aa:27:0b:1b:f1:01:0d:48:47:99:0d:47:dc: 84:e6:b2:b2:02:ac:b3:1f:cb:f2:56:6d:53:ff:41: b4:2e:7a:28:ec:c8:5b:12:6e:09:78:23:96:bf:f1: f0:95:61:26:e5:f8:51:75:ed:27:be:f0:83:6d:32: b9:71:92:91:29:f7:59:52:91:4c:9b:71:91:6c:27: d8:9e:11:01:a3:3f:d2:5c:b0:fb:83:29:5d:83:8d: 80:be:5c:c5:e3:40:60:a9:91:15:d2:04:0d:3c:93: 28:0b:8a:ce:cc:aa:de:4f:a2:42:6a:78:26:5f:6e: aa:62:6f:2f:a1:79:d6:32:07:0d:f5:3b:d4:58:57: 57:c6:78:f3:af:23:84:6e:5d:9e:08:98:d3:ba:02: 97:43:e9:53:8e:4c:9b:a2:8e:fc:b3:d6:ef:0f:80: 9b:1c:99:f0:3a:3e:11:66:cd:a2:ac:47:9e:87:2c: 45:eb:08:c0:37:52:87:43:5e:a2:5f:a6:8b:60:21: 95:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:BB:8F:93:C4:85:20:B1:95:0E:EF:0F:F7:CF:26:0C:D3:04:A0:84 X509v3 Authority Key Identifier: keyid:BB:88:A9:17:85:A7:82:C8:EA:3C:DD:ED:3E:7C:1F:09:DA:79:F6:47 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/u4ipF4WngsjqPN3tPnwfCdp59kc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/u4ipF4WngsjqPN3tPnwfCdp59kc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/LruPk8SFILGVDu8P988mDNMEoIQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 2.58.243.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:e2:e6:da:2e:ea:9e:f7:7f:88:28:9a:ac:c0:70:bc:f6:83: 2f:fb:6e:6c:6f:aa:10:35:e0:67:ff:81:95:73:c9:87:59:f4: 1d:48:d8:f8:cb:3b:38:6d:dd:68:b8:b6:0f:56:f2:51:55:7b: b6:1d:db:f5:39:a8:f0:d8:fd:0e:e9:3e:ec:69:bb:83:6c:c4: 80:35:c5:9e:0a:fd:d4:8d:1c:f1:2d:6d:3f:f9:c6:60:27:3e: 19:58:a7:2b:25:3a:c9:14:42:37:9b:53:a2:ed:12:fb:a1:7a: a0:05:77:8b:bb:8d:4a:58:f0:84:1d:85:ae:b9:8f:6b:fe:11: f2:2a:0d:aa:3c:17:ab:ae:8f:85:96:1b:4b:6b:3b:fa:74:50: 53:99:a7:63:e1:2e:85:d3:92:b7:bb:ad:6d:c8:89:f7:98:62: 12:ea:ab:37:c0:20:23:8d:ef:fe:d0:c8:fb:fe:0c:8e:76:1a: 7f:41:1d:36:99:b3:d1:eb:58:af:08:99:92:28:49:58:bf:32: 16:e3:1a:a1:13:45:46:eb:e9:5c:d0:13:c5:71:3c:af:74:09: 4f:dd:c7:8e:40:d3:d1:f8:19:d2:09:dc:a5:fd:00:f8:38:6a: 9c:a8:bf:c2:f0:31:3a:59:34:f6:f0:75:77:09:b8:2b:96:cc: 33:7f:93:af -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICAS4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkI4 OEE5MTc4NUE3ODJDOEVBM0NEREVEM0U3QzFGMDlEQTc5RjY0NzAeFw0yNTA4MjIw ODU4NTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDJFQkI4RjkzQzQ4NTIw QjE5NTBFRUYwRkY3Q0YyNjBDRDMwNEEwODQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvvZUqieYNSb4orRE/Ma5of2n1hzNX3yzU5YTCGHdPbbIakWQC w40DtTkljxESws8OHZ7e4czosgIbDvfXqicLG/EBDUhHmQ1H3ITmsrICrLMfy/JW bVP/QbQueijsyFsSbgl4I5a/8fCVYSbl+FF17Se+8INtMrlxkpEp91lSkUybcZFs J9ieEQGjP9JcsPuDKV2DjYC+XMXjQGCpkRXSBA08kygLis7Mqt5PokJqeCZfbqpi by+hedYyBw31O9RYV1fGePOvI4RuXZ4ImNO6ApdD6VOOTJuijvyz1u8PgJscmfA6 PhFmzaKsR56HLEXrCMA3UodDXqJfpotgIZWFAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQULruPk8SFILGVDu8P988mDNMEoIQwHwYDVR0jBBgwFoAUu4ipF4WngsjqPN3t PnwfCdp59kcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElO L3U0aXBGNFduZ3NqcVBOM3RQbndmQ2RwNTlrYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvdTRpcEY0V25nc2pxUE4zdFBud2ZDZHA1OWtjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElOL0xydVBrOFNGSUxHVkR1OFA5 ODhtRE5NRW9JUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAC OvMwDQYJKoZIhvcNAQELBQADggEBAEzi5tou6p73f4gomqzAcLz2gy/7bmxvqhA1 4Gf/gZVzyYdZ9B1I2PjLOzht3Wi4tg9W8lFVe7Yd2/U5qPDY/Q7pPuxpu4NsxIA1 xZ4K/dSNHPEtbT/5xmAnPhlYpyslOskUQjebU6LtEvuheqAFd4u7jUpY8IQdha65 j2v+EfIqDao8F6uuj4WWG0trO/p0UFOZp2PhLoXTkre7rW3IifeYYhLqqzfAICON 7/7QyPv+DI52Gn9BHTaZs9HrWK8ImZIoSVi/MhbjGqETRUbr6VzQE8VxPK90CU/d x45A09H4GdIJ3KX9APg4apyov8LwMTpZNPbwdXcJuCuWzDN/k68= -----END CERTIFICATE-----Generated at Sun Aug 24 09:45:04 2025 by rpki-client