$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/NqPoQSZZ4x4VcAJRTM0_ZIBWIc0.roa File: NqPoQSZZ4x4VcAJRTM0_ZIBWIc0.roa (raw, json) Hash identifier: x4fWI7aJqKfK4EReYWkxiMYa3/Zm5/TNfNV3Qs48hSY= Subject key identifier: 36:A3:E8:41:26:59:E3:1E:15:70:02:51:4C:CD:3F:64:80:56:21:CD Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C Certificate serial: 07F9 Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/NqPoQSZZ4x4VcAJRTM0_ZIBWIc0.roa Signing time: Fri 22 Aug 2025 08:58:48 +0000 ROA not before: Fri 22 Aug 2025 08:58:48 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9678 IP address blocks: 2401:95c0:808::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2041 (0x7f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C Validity Not Before: Aug 22 08:58:48 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=36A3E8412659E31E157002514CCD3F64805621CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:55:6a:b0:9c:b9:5b:e4:5d:b3:a6:3b:2a:9e: fa:7b:f2:a3:19:22:12:75:69:a1:0f:d6:64:5d:75: 92:61:85:92:a5:9f:17:34:40:53:f1:45:1b:ca:f6: 13:7a:a2:91:86:0b:af:fc:db:37:f5:17:98:80:e4: 2e:ad:0b:a5:45:67:9e:e7:b6:2d:5d:ea:78:5e:ea: cc:1f:27:59:93:ce:04:cf:92:6f:d8:9e:3d:16:0a: 33:f8:11:ab:f9:9c:7a:e4:fd:e9:89:34:e2:64:98: 77:17:a7:19:06:ac:fa:72:9b:5b:4a:af:7b:2c:09: 32:64:77:61:92:f5:4d:e3:e1:94:21:b1:4c:08:ee: 00:42:b3:69:ad:39:28:5a:79:76:6a:db:98:d1:69: 24:8b:a3:5c:d6:fb:a3:22:7f:8e:50:f3:25:34:23: 74:55:60:f2:5b:a0:11:31:d3:f3:ea:5d:e8:85:2a: 1f:13:6f:29:b4:26:13:bd:03:f2:25:67:7d:8f:b3: d4:21:35:54:62:30:36:b2:11:5f:22:d8:24:07:31: 90:94:f5:1d:41:4f:c4:5e:cc:f5:d0:cf:c6:9a:e2: c4:09:27:d2:0d:31:15:37:45:64:31:cc:fa:c9:50: d0:43:bc:b2:4c:e2:ee:44:3a:80:11:d4:f5:b0:40: 01:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:A3:E8:41:26:59:E3:1E:15:70:02:51:4C:CD:3F:64:80:56:21:CD X509v3 Authority Key Identifier: keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/NqPoQSZZ4x4VcAJRTM0_ZIBWIc0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:95c0:808::/48 Signature Algorithm: sha256WithRSAEncryption df:eb:5c:41:38:0f:af:42:72:75:c0:90:ed:0b:39:23:33:f6: c1:f1:cb:f2:a2:81:c0:54:12:74:80:79:c7:82:59:00:37:ee: d7:b8:7c:04:99:00:78:39:ed:65:d9:11:41:6c:c4:bc:76:23: 3c:88:37:9e:3b:3d:28:0a:73:e0:5c:cd:32:3c:67:32:bf:6f: 56:ad:57:7d:bd:91:b0:e7:30:d5:4f:2c:12:d8:7c:bc:37:1b: 67:76:2e:17:d7:21:36:4b:fe:15:7c:6d:6f:00:66:9f:17:18: cc:1c:1a:5c:db:08:39:bb:55:a2:57:76:53:b4:1c:30:30:f2: 7e:8d:48:33:17:fc:40:c8:eb:07:b2:12:43:e1:9f:75:0a:97: 00:d4:78:d6:8e:81:6e:20:4e:80:b2:0b:9c:cb:59:3d:22:7e: b4:9e:f9:1e:35:3a:8f:c2:ef:91:07:70:08:45:47:be:c6:87: a1:9e:d9:1c:e5:d2:be:2d:07:e2:9e:fd:7d:7a:63:ca:04:a7: e9:b5:f2:18:e0:69:d3:c8:33:d3:73:0f:00:fa:20:f6:3b:35: 27:2a:b7:46:8a:d7:bd:68:88:92:48:01:3c:08:9f:6e:b4:ab: 45:c9:57:15:ce:6e:cf:3a:ce:ab:9a:9a:3f:fa:21:91:cb:fb: 7a:38:e2:da -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICB/kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJF RDI4RkZDQzA0MEUzNjAzMkM0MjYxNTQ5NTU2MkJDQzZFRjQ1QzAeFw0yNTA4MjIw ODU4NDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDM2QTNFODQxMjY1OUUz MUUxNTcwMDI1MTRDQ0QzRjY0ODA1NjIxQ0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSVWqwnLlb5F2zpjsqnvp78qMZIhJ1aaEP1mRddZJhhZKlnxc0 QFPxRRvK9hN6opGGC6/82zf1F5iA5C6tC6VFZ57nti1d6nhe6swfJ1mTzgTPkm/Y nj0WCjP4Eav5nHrk/emJNOJkmHcXpxkGrPpym1tKr3ssCTJkd2GS9U3j4ZQhsUwI 7gBCs2mtOShaeXZq25jRaSSLo1zW+6Mif45Q8yU0I3RVYPJboBEx0/PqXeiFKh8T bym0JhO9A/IlZ32Ps9QhNVRiMDayEV8i2CQHMZCU9R1BT8RezPXQz8aa4sQJJ9IN MRU3RWQxzPrJUNBDvLJM4u5EOoAR1PWwQAErAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUNqPoQSZZ4x4VcAJRTM0/ZIBWIc0wHwYDVR0jBBgwFoAUq+0o/8wEDjYDLEJh VJVWK8xu9FwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElO L3EtMG9fOHdFRGpZRExFSmhWSlZXSzh4dTlGdy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvcS0wb184d0VEallETEVKaFZKVldLOHh1OUZ3LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElOL05xUG9RU1paNHg0VmNBSlJU TTBfWklCV0ljMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk AZXACAgwDQYJKoZIhvcNAQELBQADggEBAN/rXEE4D69CcnXAkO0LOSMz9sHxy/Ki gcBUEnSAeceCWQA37te4fASZAHg57WXZEUFsxLx2IzyIN547PSgKc+BczTI8ZzK/ b1atV329kbDnMNVPLBLYfLw3G2d2LhfXITZL/hV8bW8AZp8XGMwcGlzbCDm7VaJX dlO0HDAw8n6NSDMX/EDI6weyEkPhn3UKlwDUeNaOgW4gToCyC5zLWT0ifrSe+R41 Oo/C75EHcAhFR77Gh6Ge2Rzl0r4tB+Ke/X16Y8oEp+m18hjgadPIM9NzDwD6IPY7 NScqt0aK171oiJJIATwIn260q0XJVxXObs86zquamj/6IZHL+3o44to= -----END CERTIFICATE-----Generated at Sun Aug 24 09:16:28 2025 by rpki-client