$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/QmspA3o7EFmJUCDnLzODvmUWYB4.roa File: QmspA3o7EFmJUCDnLzODvmUWYB4.roa (raw, json) Hash identifier: UrSR6CmDgr//cqTlkRevhIXCWr0eQetrrcLdair8v28= Subject key identifier: 42:6B:29:03:7A:3B:10:59:89:50:20:E7:2F:33:83:BE:65:16:60:1E Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C Certificate serial: 0803 Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/QmspA3o7EFmJUCDnLzODvmUWYB4.roa Signing time: Fri 22 Aug 2025 08:58:50 +0000 ROA not before: Fri 22 Aug 2025 08:58:50 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9678 IP address blocks: 2401:95c0:2d03::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2051 (0x803) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C Validity Not Before: Aug 22 08:58:50 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=426B29037A3B1059895020E72F3383BE6516601E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:87:d2:17:0e:30:3d:8b:d3:a7:e9:08:c2:38: 40:94:d0:98:a3:f1:be:98:57:bc:cf:9c:c2:e9:9e: d5:93:09:a2:6b:25:af:d5:52:4e:4a:0f:82:f7:9d: d1:bc:c3:38:9d:d7:21:45:eb:ff:80:3b:54:de:11: e5:e5:ae:3b:1a:f7:3c:30:2a:46:d6:80:a3:5c:66: 9b:06:41:6f:e1:2d:9e:5a:88:be:d8:ac:75:c5:fc: 4c:dc:38:33:57:4b:7d:b9:be:8e:67:a8:78:fb:dd: 14:83:10:c4:59:c0:c4:e2:4a:5c:b0:7d:35:b3:b1: f5:99:0e:24:d6:51:a9:85:2d:e0:86:6c:4a:49:65: c4:56:33:f6:89:58:a5:0e:86:aa:1b:58:6d:38:55: 31:0d:45:e3:88:f1:b6:63:97:34:72:ed:1d:28:75: 60:1e:84:0b:52:07:09:ba:83:4e:05:08:56:6e:e9: 40:b3:c1:90:6f:27:96:14:59:4f:01:18:78:a9:0e: a5:c8:b3:e6:ca:0b:5b:d2:6f:98:b3:d6:2f:bb:8e: f6:d6:b6:12:b9:38:dc:6d:e5:1d:f1:44:74:04:3e: 4e:c4:e6:a2:5e:de:be:9e:b5:e7:86:80:30:e1:91: fc:a6:37:96:46:c2:68:1d:e4:04:a9:e5:d3:73:12: e7:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:6B:29:03:7A:3B:10:59:89:50:20:E7:2F:33:83:BE:65:16:60:1E X509v3 Authority Key Identifier: keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/QmspA3o7EFmJUCDnLzODvmUWYB4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:95c0:2d03::/48 Signature Algorithm: sha256WithRSAEncryption ac:93:f3:48:2e:91:b9:08:9a:0e:dc:01:f1:8b:4d:14:15:d2: 22:b1:88:1f:b5:8c:13:5b:2d:e0:55:49:8e:f9:c9:31:5e:f1: ae:b5:45:0a:33:d8:c5:39:7e:7f:19:27:9c:c4:27:ea:fa:06: 4e:d6:fb:28:42:55:41:db:a4:57:aa:9f:d7:35:14:ab:24:5b: 25:ac:d3:df:de:cf:a0:03:cc:88:69:5d:cb:58:26:8f:12:a3: d6:44:88:7e:ae:5d:43:49:28:c9:68:c1:e0:a0:2f:bd:4e:c3: f3:33:95:8c:ab:5f:89:c7:e4:b0:ec:8d:fb:a4:f4:7c:af:ff: f8:9d:7a:73:0a:e0:f5:f2:7d:9e:4f:eb:71:ad:44:f2:b5:28: 3e:e2:7e:9f:63:80:83:af:77:4b:1c:09:76:87:31:38:75:80: c8:b5:4b:7d:bb:c9:3f:9c:5e:8d:66:f2:75:6c:dd:1f:8e:6f: 9a:d3:cb:4a:bd:d3:88:af:29:49:66:f2:a9:15:56:1c:06:30: 9c:21:8d:3d:f7:32:c8:6e:23:21:90:32:42:ec:65:e4:e4:08: 76:ad:f7:73:fc:83:28:b2:58:6e:92:4c:8c:d9:2c:da:67:6c: 84:cd:a5:e8:75:d7:5d:8c:12:b1:1f:98:a4:aa:36:7b:c2:6b: 00:1f:0e:5c -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICCAMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJF RDI4RkZDQzA0MEUzNjAzMkM0MjYxNTQ5NTU2MkJDQzZFRjQ1QzAeFw0yNTA4MjIw ODU4NTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQyNkIyOTAzN0EzQjEw NTk4OTUwMjBFNzJGMzM4M0JFNjUxNjYwMUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMh9IXDjA9i9On6QjCOECU0Jij8b6YV7zPnMLpntWTCaJrJa/V Uk5KD4L3ndG8wzid1yFF6/+AO1TeEeXlrjsa9zwwKkbWgKNcZpsGQW/hLZ5aiL7Y rHXF/EzcODNXS325vo5nqHj73RSDEMRZwMTiSlywfTWzsfWZDiTWUamFLeCGbEpJ ZcRWM/aJWKUOhqobWG04VTENReOI8bZjlzRy7R0odWAehAtSBwm6g04FCFZu6UCz wZBvJ5YUWU8BGHipDqXIs+bKC1vSb5iz1i+7jvbWthK5ONxt5R3xRHQEPk7E5qJe 3r6eteeGgDDhkfymN5ZGwmgd5ASp5dNzEuf3AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUQmspA3o7EFmJUCDnLzODvmUWYB4wHwYDVR0jBBgwFoAUq+0o/8wEDjYDLEJh VJVWK8xu9FwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElO L3EtMG9fOHdFRGpZRExFSmhWSlZXSzh4dTlGdy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvcS0wb184d0VEallETEVKaFZKVldLOHh1OUZ3LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElOL1Ftc3BBM283RUZtSlVDRG5M ek9Edm1VV1lCNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk AZXALQMwDQYJKoZIhvcNAQELBQADggEBAKyT80gukbkImg7cAfGLTRQV0iKxiB+1 jBNbLeBVSY75yTFe8a61RQoz2MU5fn8ZJ5zEJ+r6Bk7W+yhCVUHbpFeqn9c1FKsk WyWs09/ez6ADzIhpXctYJo8So9ZEiH6uXUNJKMloweCgL71Ow/MzlYyrX4nH5LDs jfuk9Hyv//idenMK4PXyfZ5P63GtRPK1KD7ifp9jgIOvd0scCXaHMTh1gMi1S327 yT+cXo1m8nVs3R+Ob5rTy0q904ivKUlm8qkVVhwGMJwhjT33MshuIyGQMkLsZeTk CHat93P8gyiyWG6STIzZLNpnbITNpeh1112MErEfmKSqNnvCawAfDlw= -----END CERTIFICATE-----Generated at Sun Aug 24 09:20:35 2025 by rpki-client