$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SYSNET/-Hv-iEdNKHce7mTgezWvXXwrnzY.roa File: -Hv-iEdNKHce7mTgezWvXXwrnzY.roa (raw, json) Hash identifier: PLDvKNfhYgxSvZk6JYm/2Ga9ltT+eUUE5yvnhkBEdck= Subject key identifier: F8:7B:FE:88:47:4D:28:77:1E:EE:64:E0:7B:35:AF:5D:7C:2B:9F:36 Certificate issuer: /CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC Certificate serial: 0DD9 Authority key identifier: 96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/-Hv-iEdNKHce7mTgezWvXXwrnzY.roa Signing time: Fri 22 Aug 2025 08:55:12 +0000 ROA not before: Fri 22 Aug 2025 08:55:12 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4783 IP address blocks: 2405:a00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3545 (0xdd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC Validity Not Before: Aug 22 08:55:12 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F87BFE88474D28771EEE64E07B35AF5D7C2B9F36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:06:a8:be:f1:91:8a:df:17:5f:9f:e1:40:7c: 76:88:14:fe:02:0a:6d:0f:9f:87:6a:22:1e:a7:09: 5c:f4:34:8b:63:10:d4:02:99:69:da:92:b5:31:ef: 2b:0a:35:f1:95:65:89:70:43:3d:f8:f0:29:86:8a: d5:b6:f3:2b:09:4f:98:78:14:ca:db:cd:4e:19:ad: 5f:ee:59:c5:c9:7b:bd:d4:b9:6b:1a:5d:36:93:99: 7c:a4:bf:6d:1d:77:07:8f:65:56:1c:59:f4:67:8e: c2:a1:60:15:28:0b:4b:d3:c9:bd:0f:01:dd:ea:29: 9a:0c:8b:95:14:30:74:ba:8f:a2:8a:76:1f:70:96: 37:02:ca:57:96:ca:27:b2:95:84:50:34:f2:1b:a2: cf:34:d4:a3:6d:7e:64:d2:c9:95:bf:0c:51:a3:ba: e8:8e:ea:c1:c3:c6:c0:9a:66:6a:b5:4b:34:29:eb: 5f:ff:a6:e9:ec:c5:be:32:94:c3:a6:e0:55:f3:b0: 0d:ae:46:6f:45:3d:52:76:ad:b2:18:1a:a4:22:60: 88:68:ce:a5:bc:eb:35:5d:a8:ac:01:a7:97:6f:43: 51:9f:79:9a:01:df:4d:fe:a0:62:3a:35:5d:5a:16: 1f:f9:b0:cd:dc:aa:28:42:c8:07:68:44:62:c1:90: ae:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:7B:FE:88:47:4D:28:77:1E:EE:64:E0:7B:35:AF:5D:7C:2B:9F:36 X509v3 Authority Key Identifier: keyid:96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/-Hv-iEdNKHce7mTgezWvXXwrnzY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2405:a00::/32 Signature Algorithm: sha256WithRSAEncryption 18:81:a8:20:a8:b7:61:d5:1c:bf:6e:8a:65:c0:7f:aa:91:a0: aa:b3:5c:cf:12:e3:65:df:17:80:dd:de:98:e7:1b:18:51:04: 01:7f:f5:3e:0e:78:0c:ab:60:b2:87:fa:1a:e8:7c:4a:9d:44: cd:9d:41:90:50:09:5b:5f:91:5e:b4:95:36:72:18:03:5b:30: 4a:04:62:5c:b6:0b:68:21:a4:46:1c:7c:14:a9:cf:39:e6:94: 32:03:86:d5:dc:80:4f:49:6c:27:59:b1:74:99:9c:8b:a1:9d: 97:6d:74:df:70:ae:9b:5f:93:94:61:bd:c6:e5:bf:54:f3:75: ca:11:59:86:84:4d:f7:2b:ae:8e:38:63:d6:b3:99:97:17:32: 39:d5:35:02:b9:e3:5f:6c:1e:bb:1b:b2:37:13:a6:66:4b:50: 39:51:81:1c:3c:ae:33:5f:d3:10:14:da:15:04:97:aa:07:26: c6:16:d4:f1:98:48:1f:6a:e7:40:6b:23:17:03:31:7f:23:41: 8e:09:44:2c:cc:8f:42:67:c9:39:1f:d9:2a:45:00:1d:ab:19: 15:4b:7b:a8:6a:f8:3f:83:4b:f1:63:87:48:f9:54:2e:91:28: f4:53:7a:ac:33:25:6e:03:3d:cc:db:b2:df:e0:1a:22:c8:e4: 90:23:a6:ab -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICDdkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTZC Qjk0QjQ1N0Y5RDgyQTI5QjVCMkZEOUYzQTQ0MTg4OTlFNzFFQzAeFw0yNTA4MjIw ODU1MTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEY4N0JGRTg4NDc0RDI4 NzcxRUVFNjRFMDdCMzVBRjVEN0MyQjlGMzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqBqi+8ZGK3xdfn+FAfHaIFP4CCm0Pn4dqIh6nCVz0NItjENQC mWnakrUx7ysKNfGVZYlwQz348CmGitW28ysJT5h4FMrbzU4ZrV/uWcXJe73UuWsa XTaTmXykv20ddwePZVYcWfRnjsKhYBUoC0vTyb0PAd3qKZoMi5UUMHS6j6KKdh9w ljcCyleWyieylYRQNPIbos801KNtfmTSyZW/DFGjuuiO6sHDxsCaZmq1SzQp61// punsxb4ylMOm4FXzsA2uRm9FPVJ2rbIYGqQiYIhozqW86zVdqKwBp5dvQ1GfeZoB 303+oGI6NV1aFh/5sM3cqihCyAdoRGLBkK7hAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQU+Hv+iEdNKHce7mTgezWvXXwrnzYwHwYDVR0jBBgwFoAUlruUtFf52CoptbL9 nzpEGImecewwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1lTTkVU L2xydVV0RmY1MkNvcHRiTDluenBFR0ltZWNldy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbHJ1VXRGZjUyQ29wdGJMOW56cEVHSW1lY2V3LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1lTTkVULy1Idi1pRWROS0hjZTdtVGdl eld2WFh3cm56WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAk BQoAMA0GCSqGSIb3DQEBCwUAA4IBAQAYgaggqLdh1Ry/boplwH+qkaCqs1zPEuNl 3xeA3d6Y5xsYUQQBf/U+DngMq2Cyh/oa6HxKnUTNnUGQUAlbX5FetJU2chgDWzBK BGJctgtoIaRGHHwUqc855pQyA4bV3IBPSWwnWbF0mZyLoZ2XbXTfcK6bX5OUYb3G 5b9U83XKEVmGhE33K66OOGPWs5mXFzI51TUCueNfbB67G7I3E6ZmS1A5UYEcPK4z X9MQFNoVBJeqBybGFtTxmEgfaudAayMXAzF/I0GOCUQszI9CZ8k5H9kqRQAdqxkV S3uoavg/g0vxY4dI+VQukSj0U3qsMyVuAz3M27Lf4BoiyOSQI6ar -----END CERTIFICATE-----Generated at Sun Aug 24 13:38:07 2025 by rpki-client