$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HYA/Htxl_uoKAitIQFAJGQAgxPhPNvk.roa File: Htxl_uoKAitIQFAJGQAgxPhPNvk.roa (raw, json) Hash identifier: 4PmV98CZgMZWAzeosi+ZZUuYXqKRNzTjh9rXffo9sH0= Subject key identifier: 1E:DC:65:FE:EA:0A:02:2B:48:40:50:09:19:00:20:C4:F8:4F:36:F9 Certificate issuer: /CN=0EAE2D331F2C4280C16AA8BAFE16FDDCCE3715B4 Certificate serial: 0D95 Authority key identifier: 0E:AE:2D:33:1F:2C:42:80:C1:6A:A8:BA:FE:16:FD:DC:CE:37:15:B4 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Dq4tMx8sQoDBaqi6_hb93M43FbQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HYA/Htxl_uoKAitIQFAJGQAgxPhPNvk.roa Signing time: Fri 22 Aug 2025 08:52:55 +0000 ROA not before: Fri 22 Aug 2025 08:52:55 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131602 IP address blocks: 114.29.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HYA/Dq4tMx8sQoDBaqi6_hb93M43FbQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HYA/Dq4tMx8sQoDBaqi6_hb93M43FbQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Dq4tMx8sQoDBaqi6_hb93M43FbQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3477 (0xd95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0EAE2D331F2C4280C16AA8BAFE16FDDCCE3715B4 Validity Not Before: Aug 22 08:52:55 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1EDC65FEEA0A022B48405009190020C4F84F36F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:29:79:66:51:21:72:da:d5:3c:b3:ce:ae:e6: 3b:da:a4:a8:12:b2:9f:7b:a9:fb:15:f1:d1:13:21: d4:39:48:e6:53:8d:98:44:ff:5b:98:b0:f3:4f:20: 2e:e9:17:b8:b3:f0:71:6d:7f:51:11:c0:f4:2f:fd: ce:bd:01:8e:27:99:34:16:00:2f:54:43:22:2a:a9: 2e:ef:db:a6:7e:df:1e:05:2e:4f:b7:5f:e2:3d:06: 2e:96:1f:b3:99:cc:ee:87:ca:05:39:db:32:3b:67: 17:d9:8a:c4:61:2c:ae:d6:a4:7f:e1:4a:35:99:81: 7b:f8:a7:46:5a:b2:83:48:17:78:bd:4c:63:48:33: e6:03:62:1a:cd:60:68:bc:05:e7:57:21:90:db:ef: 9d:72:01:64:8b:41:83:76:5f:37:86:f9:9f:be:63: a1:91:fe:66:c9:05:28:db:54:af:14:5c:33:60:b2: 98:0a:67:f2:bd:fe:78:bc:af:a5:77:a7:92:97:69: f4:44:97:be:ef:60:dc:e7:e9:46:64:da:7a:09:09: 71:e6:0c:05:54:ee:dc:26:40:f2:e6:af:47:ca:67: 71:32:2c:dd:f0:c8:4f:41:bf:a8:31:8d:c1:fd:15: da:07:95:5d:25:96:92:7c:06:7b:ae:be:0a:4d:09: f7:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:DC:65:FE:EA:0A:02:2B:48:40:50:09:19:00:20:C4:F8:4F:36:F9 X509v3 Authority Key Identifier: keyid:0E:AE:2D:33:1F:2C:42:80:C1:6A:A8:BA:FE:16:FD:DC:CE:37:15:B4 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HYA/Dq4tMx8sQoDBaqi6_hb93M43FbQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Dq4tMx8sQoDBaqi6_hb93M43FbQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HYA/Htxl_uoKAitIQFAJGQAgxPhPNvk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 114.29.240.0/22 Signature Algorithm: sha256WithRSAEncryption 88:b5:a6:60:ca:e5:f3:2a:3d:d2:86:b9:dd:d6:8c:1f:69:49: a8:7e:42:78:cb:8c:10:e6:fd:56:fb:0c:a7:f5:d0:97:ce:1e: 20:be:af:58:be:b0:c6:0c:69:43:fc:f6:94:4e:e2:ae:a6:5f: 19:38:29:6b:7a:f6:4c:00:40:39:81:48:7a:dd:25:5a:ff:98: 4c:d5:95:14:6e:68:68:35:d7:96:f7:d3:0b:f5:a3:0f:5f:cf: f6:42:d2:04:be:b2:94:75:7a:cc:9b:5e:00:e4:4c:9d:86:65: 00:e4:b2:93:e7:ce:fe:f1:c1:85:0b:1a:92:da:88:1e:c9:8b: c8:50:b4:72:f4:f3:fc:93:3d:0b:d7:8e:7e:6b:f8:4d:03:95: 7a:5b:76:83:39:1f:7f:d4:29:8d:86:08:04:54:e1:5b:97:6a: 0e:ed:2c:47:67:1e:78:3d:79:66:85:77:24:21:cc:70:5f:17: 17:68:94:4e:57:12:b4:15:f9:56:a8:19:e3:43:69:76:81:f7: d5:db:72:ad:1d:e5:64:34:27:df:24:2e:df:f5:c9:1e:a2:0c: 2d:89:4c:0f:65:4b:9c:49:b8:85:c0:54:f6:5b:2a:ef:b9:4e: 2f:56:27:b0:99:b0:fd:be:bc:b3:5b:1b:47:07:2c:39:87:54: 80:c6:7d:cf -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDZUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEVB RTJEMzMxRjJDNDI4MEMxNkFBOEJBRkUxNkZERENDRTM3MTVCNDAeFw0yNTA4MjIw ODUyNTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDFFREM2NUZFRUEwQTAy MkI0ODQwNTAwOTE5MDAyMEM0Rjg0RjM2RjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEKXlmUSFy2tU8s86u5jvapKgSsp97qfsV8dETIdQ5SOZTjZhE /1uYsPNPIC7pF7iz8HFtf1ERwPQv/c69AY4nmTQWAC9UQyIqqS7v26Z+3x4FLk+3 X+I9Bi6WH7OZzO6HygU52zI7ZxfZisRhLK7WpH/hSjWZgXv4p0ZasoNIF3i9TGNI M+YDYhrNYGi8BedXIZDb751yAWSLQYN2XzeG+Z++Y6GR/mbJBSjbVK8UXDNgspgK Z/K9/ni8r6V3p5KXafREl77vYNzn6UZk2noJCXHmDAVU7twmQPLmr0fKZ3EyLN3w yE9Bv6gxjcH9FdoHlV0llpJ8BnuuvgpNCfeRAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUHtxl/uoKAitIQFAJGQAgxPhPNvkwHwYDVR0jBBgwFoAUDq4tMx8sQoDBaqi6 /hb93M43FbQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSFlBL0Rx NHRNeDhzUW9EQmFxaTZfaGI5M000M0ZiUS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev RHE0dE14OHNRb0RCYXFpNl9oYjkzTTQzRmJRLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvSFlBL0h0eGxfdW9LQWl0SVFGQUpHUUFneFBo UE52ay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJyHfAwDQYJ KoZIhvcNAQELBQADggEBAIi1pmDK5fMqPdKGud3WjB9pSah+QnjLjBDm/Vb7DKf1 0JfOHiC+r1i+sMYMaUP89pRO4q6mXxk4KWt69kwAQDmBSHrdJVr/mEzVlRRuaGg1 15b30wv1ow9fz/ZC0gS+spR1esybXgDkTJ2GZQDkspPnzv7xwYULGpLaiB7Ji8hQ tHL08/yTPQvXjn5r+E0DlXpbdoM5H3/UKY2GCARU4VuXag7tLEdnHng9eWaFdyQh zHBfFxdolE5XErQV+VaoGeNDaXaB99Xbcq0d5WQ0J98kLt/1yR6iDC2JTA9lS5xJ uIXAVPZbKu+5Ti9WJ7CZsP2+vLNbG0cHLDmHVIDGfc8= -----END CERTIFICATE-----Generated at Sun Aug 24 09:17:39 2025 by rpki-client