$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NARL/HIn29CGuAQNtrj9OXBhIijXsgBE.roa File: HIn29CGuAQNtrj9OXBhIijXsgBE.roa (raw, json) Hash identifier: PcZYhGaMl/1BgPxPji5pTYLO5Gaswp9aGi2I5xIZSgc= Subject key identifier: 1C:89:F6:F4:21:AE:01:03:6D:AE:3F:4E:5C:18:48:8A:35:EC:80:11 Certificate issuer: /CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0 Certificate serial: 0DE9 Authority key identifier: 45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/HIn29CGuAQNtrj9OXBhIijXsgBE.roa Signing time: Fri 22 Aug 2025 09:01:24 +0000 ROA not before: Fri 22 Aug 2025 09:01:24 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 7539 IP address blocks: 203.145.200.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/RR75NZqYT2pM-R_pAE6usImphMA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/RR75NZqYT2pM-R_pAE6usImphMA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3561 (0xde9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0 Validity Not Before: Aug 22 09:01:24 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1C89F6F421AE01036DAE3F4E5C18488A35EC8011 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:13:59:22:04:a8:31:7d:a7:ed:ae:2b:47:40: 8a:0a:77:49:57:2c:fb:07:69:37:12:17:72:97:2f: a6:29:3d:b8:eb:87:7a:d2:dd:10:4e:ce:c6:df:14: 3d:27:42:cd:28:cf:58:93:0f:d5:5f:28:23:87:c0: 58:41:b2:8a:12:e9:37:df:84:11:de:48:03:de:36: fe:7a:95:a0:64:48:12:81:20:90:26:35:e5:42:74: 66:ac:aa:d0:ff:d7:11:fe:73:1c:aa:68:2d:d7:70: 16:a0:fd:18:76:e9:c4:f2:a8:46:61:c2:83:47:af: c8:b1:29:68:b4:75:c4:16:6a:e3:db:1d:80:a3:9a: 78:54:a4:80:dc:77:f2:1f:7b:5d:96:85:eb:ec:f1: ac:b4:c4:6d:37:97:17:f8:21:50:a4:91:28:cc:03: 34:d4:37:64:af:d5:9b:1a:22:c2:88:97:6e:71:52: d7:78:a7:05:66:7f:d6:16:88:b2:1e:91:61:08:e1: 40:ba:ed:25:24:26:3b:7f:f7:59:93:17:b8:0a:2a: a7:43:cb:e8:9d:6a:f1:e9:77:6d:95:be:7c:68:38: 64:96:69:82:0f:59:36:7c:b3:db:73:04:b5:1f:66: 22:74:45:f1:3b:c5:5f:84:c3:69:4b:4a:cd:0e:d3: ca:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:89:F6:F4:21:AE:01:03:6D:AE:3F:4E:5C:18:48:8A:35:EC:80:11 X509v3 Authority Key Identifier: keyid:45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/RR75NZqYT2pM-R_pAE6usImphMA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/HIn29CGuAQNtrj9OXBhIijXsgBE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.145.200.0/21 Signature Algorithm: sha256WithRSAEncryption 61:b0:f4:02:ef:c0:d9:aa:8f:b4:91:42:59:6f:81:a0:dd:75: ed:b6:98:d8:9b:0d:4b:1d:ec:06:93:98:a2:a3:5f:79:9e:e3: d8:19:07:4f:c5:76:d6:d7:73:56:3d:2b:4e:b7:ea:63:a4:d0: d6:e9:f5:e7:a6:1a:69:fb:5d:a2:09:b2:12:8f:f3:9b:78:b3: c0:30:7e:25:e9:a2:5c:44:cd:7f:94:92:40:b7:2b:ea:41:c1: 2e:62:8a:cc:4e:c6:5a:bb:4a:d4:e8:68:27:cf:4d:2b:ba:1a: f9:99:37:7b:d0:39:12:2c:5e:d1:31:cb:fc:98:e0:ff:65:05: 9d:bb:aa:00:47:5b:d2:50:f6:c9:e8:c5:c6:57:ce:17:bc:d0: e4:df:bf:dc:61:79:97:46:cd:7f:51:61:2e:41:a9:41:fc:5d: 97:e6:02:20:98:b3:0f:64:87:dc:28:48:c9:99:73:0d:5d:f8: 72:14:fe:4d:4a:4a:6a:62:77:87:c2:19:eb:f9:29:d8:d2:95: 47:0e:54:17:52:25:79:d4:0f:ca:9c:87:79:e8:f0:c9:ba:5a: 10:13:cd:85:a9:97:5a:ff:b1:f4:4b:c9:ee:08:9a:df:8c:c2: 38:ac:17:bb:a9:df:f4:9a:ec:c9:24:08:ab:ef:10:12:d0:81: ee:2c:42:94 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDekwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDUx RUY5MzU5QTk4NEY2QTRDRjkxRkU5MDA0RUFFQjA4OUE5ODRDMDAeFw0yNTA4MjIw OTAxMjRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDFDODlGNkY0MjFBRTAx MDM2REFFM0Y0RTVDMTg0ODhBMzVFQzgwMTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEE1kiBKgxfaftritHQIoKd0lXLPsHaTcSF3KXL6YpPbjrh3rS 3RBOzsbfFD0nQs0oz1iTD9VfKCOHwFhBsooS6TffhBHeSAPeNv56laBkSBKBIJAm NeVCdGasqtD/1xH+cxyqaC3XcBag/Rh26cTyqEZhwoNHr8ixKWi0dcQWauPbHYCj mnhUpIDcd/Ife12Whevs8ay0xG03lxf4IVCkkSjMAzTUN2Sv1ZsaIsKIl25xUtd4 pwVmf9YWiLIekWEI4UC67SUkJjt/91mTF7gKKqdDy+idavHpd22VvnxoOGSWaYIP WTZ8s9tzBLUfZiJ0RfE7xV+Ew2lLSs0O08qZAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUHIn29CGuAQNtrj9OXBhIijXsgBEwHwYDVR0jBBgwFoAURR75NZqYT2pM+R/p AE6usImphMAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkFSTC9S Ujc1TlpxWVQycE0tUl9wQUU2dXNJbXBoTUEuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L1JSNzVOWnFZVDJwTS1SX3BBRTZ1c0ltcGhNQS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05BUkwvSEluMjlDR3VBUU50cmo5T1hCaElp alhzZ0JFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8uRyDAN BgkqhkiG9w0BAQsFAAOCAQEAYbD0Au/A2aqPtJFCWW+BoN117baY2JsNSx3sBpOY oqNfeZ7j2BkHT8V21tdzVj0rTrfqY6TQ1un156YaaftdogmyEo/zm3izwDB+Jemi XETNf5SSQLcr6kHBLmKKzE7GWrtK1OhoJ89NK7oa+Zk3e9A5Eixe0THL/Jjg/2UF nbuqAEdb0lD2yejFxlfOF7zQ5N+/3GF5l0bNf1FhLkGpQfxdl+YCIJizD2SH3ChI yZlzDV34chT+TUpKamJ3h8IZ6/kp2NKVRw5UF1IledQPypyHeejwybpaEBPNhamX Wv+x9EvJ7gia34zCOKwXu6nf9JrsySQIq+8QEtCB7ixClA== -----END CERTIFICATE-----Generated at Sun Aug 24 14:05:20 2025 by rpki-client