$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/HqsxWG6_ClGo8ZIXBCLFRn8pGzY.roa File: HqsxWG6_ClGo8ZIXBCLFRn8pGzY.roa (raw, json) Hash identifier: eSVWGFqFoftWNmrh5HnSknxfv4du/sBLZFqyyikzzDY= Subject key identifier: 1E:AB:31:58:6E:BF:0A:51:A8:F1:92:17:04:22:C5:46:7F:29:1B:36 Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Certificate serial: 0E19 Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/HqsxWG6_ClGo8ZIXBCLFRn8pGzY.roa Signing time: Fri 22 Aug 2025 08:51:02 +0000 ROA not before: Fri 22 Aug 2025 08:51:02 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18182 IP address blocks: 2404:80::/28 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3609 (0xe19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Validity Not Before: Aug 22 08:51:02 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1EAB31586EBF0A51A8F192170422C5467F291B36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:72:e4:ee:d8:e2:96:3f:d6:18:92:04:8d:30: da:31:a7:86:6a:c6:fb:b0:43:4a:28:f7:d1:df:9a: 46:20:5a:92:ae:28:08:b2:e7:b4:f9:8d:db:f2:d2: 6e:7e:6a:d0:8c:95:79:c9:95:e4:48:9a:3c:c8:fd: d7:cd:5f:95:46:42:e8:c5:56:c1:9b:08:b6:b9:f6: a6:ff:4e:b2:8d:c4:1b:e0:33:92:9e:73:56:ef:64: 6f:ec:01:8d:ef:12:99:6d:c4:bc:33:44:87:8d:52: 23:19:76:95:05:d4:68:4a:54:59:bf:92:d6:c6:52: 91:55:a7:a5:72:f7:a4:04:f2:7a:31:ff:01:10:0f: b5:63:fc:14:23:e2:b0:db:b1:74:99:f1:94:16:14: bc:7d:1e:22:59:ff:16:97:52:db:d7:81:b8:06:a2: fc:d5:90:9a:8c:0c:5e:24:d6:a1:1b:a9:b8:18:cf: 29:fc:de:c6:2b:51:d7:3b:92:f0:24:6f:e9:fb:25: c7:00:18:e4:b9:b8:37:9c:83:57:3c:9b:a3:24:ac: 7e:49:ef:d4:04:b8:17:37:6f:55:0d:59:17:e1:e1: d5:9e:0e:be:8b:c4:82:70:0f:82:da:c1:60:00:7e: 1c:b9:0d:fd:22:46:2b:b8:df:51:e1:c2:cf:bd:a4: df:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:AB:31:58:6E:BF:0A:51:A8:F1:92:17:04:22:C5:46:7F:29:1B:36 X509v3 Authority Key Identifier: keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/HqsxWG6_ClGo8ZIXBCLFRn8pGzY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2404:80::/28 Signature Algorithm: sha256WithRSAEncryption 1b:2c:7c:23:8f:47:98:b4:dd:a4:fe:8f:85:f5:83:80:7f:72: b7:a2:14:ed:1f:11:08:18:0c:53:ed:69:72:2e:84:c1:7a:70: a9:fb:f6:72:1f:b8:e9:69:cf:63:bd:6c:13:ab:d2:c5:8e:b0: 1c:79:81:d9:eb:06:51:45:c2:4a:69:e5:b4:60:c1:4e:31:7b: 1e:0f:a8:84:6a:fd:26:85:e7:ae:43:e1:bb:60:c2:90:8b:0f: 4a:45:02:15:1c:99:4c:16:ff:4b:db:7f:0a:44:37:48:98:b8: 7a:3b:a3:ba:05:38:ae:69:b2:30:da:93:1c:0f:30:75:0e:de: 16:94:df:34:d8:0d:2a:a8:d7:95:34:a0:e5:92:ad:2c:16:f7: d3:68:b7:6f:10:df:dd:de:a8:72:28:ac:70:4d:cf:2d:18:df: 63:56:27:bb:3f:f5:03:61:98:7a:ba:7a:60:fa:a8:5e:e4:37: fb:3f:a4:2c:68:64:6f:75:07:be:9c:6a:4a:4c:56:1f:09:cb: 40:64:19:4b:44:6c:00:73:c2:d1:17:4a:27:2d:72:66:6f:07: 0e:20:b7:db:e9:ce:b9:1e:1b:be:f2:b9:da:1c:9a:e4:e6:0a: 7c:ec:ee:27:3c:92:56:3e:9d:1b:b0:ea:d8:3d:1f:2b:76:ab: 49:87:05:cd -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICDhkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0NC NTQ1NDE1M0FDQ0VDRTg1MjBEMzM5MDdENTRFNTZDNUNBOUE0QjAeFw0yNTA4MjIw ODUxMDJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDFFQUIzMTU4NkVCRjBB NTFBOEYxOTIxNzA0MjJDNTQ2N0YyOTFCMzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCecuTu2OKWP9YYkgSNMNoxp4ZqxvuwQ0oo99HfmkYgWpKuKAiy 57T5jdvy0m5+atCMlXnJleRImjzI/dfNX5VGQujFVsGbCLa59qb/TrKNxBvgM5Ke c1bvZG/sAY3vEpltxLwzRIeNUiMZdpUF1GhKVFm/ktbGUpFVp6Vy96QE8nox/wEQ D7Vj/BQj4rDbsXSZ8ZQWFLx9HiJZ/xaXUtvXgbgGovzVkJqMDF4k1qEbqbgYzyn8 3sYrUdc7kvAkb+n7JccAGOS5uDecg1c8m6MkrH5J79QEuBc3b1UNWRfh4dWeDr6L xIJwD4LawWAAfhy5Df0iRiu431Hhws+9pN/tAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUHqsxWG6/ClGo8ZIXBCLFRn8pGzYwHwYDVR0jBBgwFoAUzLVFQVOszs6FINM5 B9VOVsXKmkswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU09ORVQv ekxWRlFWT3N6czZGSU5NNUI5Vk9Wc1hLbWtzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS96TFZGUVZPc3pzNkZJTk01QjlWT1ZzWEtta3MuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TT05FVC9IcXN4V0c2X0NsR284WklYQkNM RlJuOHBHelkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUEJAQA gDANBgkqhkiG9w0BAQsFAAOCAQEAGyx8I49HmLTdpP6PhfWDgH9yt6IU7R8RCBgM U+1pci6EwXpwqfv2ch+46WnPY71sE6vSxY6wHHmB2esGUUXCSmnltGDBTjF7Hg+o hGr9JoXnrkPhu2DCkIsPSkUCFRyZTBb/S9t/CkQ3SJi4ejujugU4rmmyMNqTHA8w dQ7eFpTfNNgNKqjXlTSg5ZKtLBb302i3bxDf3d6ociiscE3PLRjfY1Ynuz/1A2GY erp6YPqoXuQ3+z+kLGhkb3UHvpxqSkxWHwnLQGQZS0RsAHPC0RdKJy1yZm8HDiC3 2+nOuR4bvvK52hya5OYKfOzuJzySVj6dG7Dq2D0fK3arSYcFzQ== -----END CERTIFICATE-----Generated at Sun Aug 24 13:40:15 2025 by rpki-client