$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/hV41naxCDH_lEePq6WGfw2BlPM8.roa File: hV41naxCDH_lEePq6WGfw2BlPM8.roa (raw, json) Hash identifier: mHv8hyIMi33EE6exR7EwDsSSqmu1Ma3m3FCF3Zy5AMA= Subject key identifier: 85:5E:35:9D:AC:42:0C:7F:E5:11:E3:EA:E9:61:9F:C3:60:65:3C:CF Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Certificate serial: 0E60 Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/hV41naxCDH_lEePq6WGfw2BlPM8.roa Signing time: Fri 22 Aug 2025 08:58:13 +0000 ROA not before: Fri 22 Aug 2025 08:58:13 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131596 IP address blocks: 2405:9200::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3680 (0xe60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Validity Not Before: Aug 22 08:58:13 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=855E359DAC420C7FE511E3EAE9619FC360653CCF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:36:27:27:16:16:dc:a0:08:1e:e0:e9:7c:dc: 23:27:33:ce:97:0d:7d:e5:5d:db:02:c7:15:04:9d: b8:cf:ce:09:7a:e0:23:e2:fa:3c:3c:d1:c7:6e:d7: ee:b7:88:e1:93:e8:e6:f5:2a:d5:c5:7f:be:f6:34: d8:6f:8d:c9:b2:81:01:da:f4:df:b0:c3:82:28:c3: b9:f7:c6:d5:fc:36:f0:c0:35:96:d1:e5:ab:32:19: d7:6c:ec:40:bc:5c:9a:b9:36:c8:02:10:b1:e0:40: 16:d0:6b:40:46:ee:13:45:17:6f:c4:e5:c5:d9:80: 67:d1:9c:d2:e3:6f:dd:cb:97:af:78:a9:72:88:0f: 1f:12:b1:8c:45:71:1a:90:b3:2d:36:63:2b:ac:d9: df:04:fb:c5:ca:b1:3d:3f:f8:51:b2:e1:85:09:1d: 56:37:49:a7:21:76:69:4e:03:66:4d:3e:a2:0d:5b: cd:08:c6:fa:8d:42:5c:d9:79:16:d5:97:5e:1b:36: e5:28:b7:33:7f:72:93:d3:26:4d:e4:4b:5d:5e:ac: 85:6f:ca:3b:83:08:12:43:91:3e:42:44:10:e3:18: c1:bb:b7:88:f2:91:38:11:c4:07:2f:6a:2a:b3:99: 04:63:91:57:ea:18:7f:cc:a9:d4:af:63:59:a0:d8: 8a:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:5E:35:9D:AC:42:0C:7F:E5:11:E3:EA:E9:61:9F:C3:60:65:3C:CF X509v3 Authority Key Identifier: keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/hV41naxCDH_lEePq6WGfw2BlPM8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2405:9200::/32 Signature Algorithm: sha256WithRSAEncryption 88:5c:72:42:ce:0b:0b:6d:e5:05:0c:b4:14:bf:8b:3e:51:2a: 82:6d:43:84:c3:6f:c1:8f:f3:35:3c:fa:49:ee:e5:6c:8c:af: 5e:85:08:a2:6c:ed:27:cc:e6:1e:82:33:dd:aa:a8:20:79:8c: 74:9f:15:e2:d7:d4:a4:6a:7c:c7:65:08:fa:16:87:61:b8:72: d4:a4:01:4b:e0:e8:11:66:c0:b2:a7:1a:d1:1d:74:23:9a:f0: b8:8c:f8:94:ad:e9:45:96:7e:e3:62:8a:5d:92:6a:8c:04:ed: 54:f6:d3:c7:97:d3:d6:e8:ec:5c:bb:4d:11:c9:f0:88:98:ff: 74:77:1d:ce:c6:54:0e:31:3d:e8:1a:24:3f:4a:2a:7a:f9:49: fe:b7:3e:8d:8a:b8:34:85:f1:60:7f:13:f1:b7:2f:87:f8:21: 03:85:7f:82:1d:1e:1a:a3:5e:c5:67:fb:6a:4b:1d:48:bb:e3: 07:0e:18:35:55:e6:dc:4f:50:47:51:af:39:53:a8:c2:02:47: 12:cb:6b:d9:e5:78:7a:77:ac:e6:7e:53:45:37:d5:cd:9d:5b: cb:cd:0c:4b:80:32:f6:5e:3f:0f:fe:40:e6:c5:13:3b:06:b5: ea:a0:8b:ea:46:0b:11:fd:5b:c8:23:39:97:c8:18:3d:2a:dc: ef:9a:85:14 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICDmAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yNTA4MjIw ODU4MTNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDg1NUUzNTlEQUM0MjBD N0ZFNTExRTNFQUU5NjE5RkMzNjA2NTNDQ0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuNicnFhbcoAge4Ol83CMnM86XDX3lXdsCxxUEnbjPzgl64CPi +jw80cdu1+63iOGT6Ob1KtXFf772NNhvjcmygQHa9N+ww4Iow7n3xtX8NvDANZbR 5asyGdds7EC8XJq5NsgCELHgQBbQa0BG7hNFF2/E5cXZgGfRnNLjb93Ll694qXKI Dx8SsYxFcRqQsy02Yyus2d8E+8XKsT0/+FGy4YUJHVY3SachdmlOA2ZNPqINW80I xvqNQlzZeRbVl14bNuUotzN/cpPTJk3kS11erIVvyjuDCBJDkT5CRBDjGMG7t4jy kTgRxAcvaiqzmQRjkVfqGH/MqdSvY1mg2IoHAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUhV41naxCDH/lEePq6WGfw2BlPM8wHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS9oVjQxbmF4Q0RIX2xFZVBxNldH ZncyQmxQTTgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAWS ADANBgkqhkiG9w0BAQsFAAOCAQEAiFxyQs4LC23lBQy0FL+LPlEqgm1DhMNvwY/z NTz6Se7lbIyvXoUIomztJ8zmHoIz3aqoIHmMdJ8V4tfUpGp8x2UI+haHYbhy1KQB S+DoEWbAsqca0R10I5rwuIz4lK3pRZZ+42KKXZJqjATtVPbTx5fT1ujsXLtNEcnw iJj/dHcdzsZUDjE96BokP0oqevlJ/rc+jYq4NIXxYH8T8bcvh/ghA4V/gh0eGqNe xWf7aksdSLvjBw4YNVXm3E9QR1GvOVOowgJHEstr2eV4enes5n5TRTfVzZ1by80M S4Ay9l4/D/5A5sUTOwa16qCL6kYLEf1byCM5l8gYPSrc75qFFA== -----END CERTIFICATE-----Generated at Sun Aug 24 09:17:49 2025 by rpki-client