$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/hxz_AsMum7zWhYDb7_3TZltffZQ.roa File: hxz_AsMum7zWhYDb7_3TZltffZQ.roa (raw, json) Hash identifier: NhTrPNe/SQiTSvDOSF5K51cW3Yxcye7EbDZpBKILqE8= Subject key identifier: 87:1C:FF:02:C3:2E:9B:BC:D6:85:80:DB:EF:FD:D3:66:5B:5F:7D:94 Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214 Certificate serial: 0DE5 Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/hxz_AsMum7zWhYDb7_3TZltffZQ.roa Signing time: Fri 22 Aug 2025 08:52:08 +0000 ROA not before: Fri 22 Aug 2025 08:52:08 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131618 IP address blocks: 61.58.41.128/29 maxlen: 29 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3557 (0xde5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214 Validity Not Before: Aug 22 08:52:08 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=871CFF02C32E9BBCD68580DBEFFDD3665B5F7D94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:76:a8:fb:7c:d2:9f:3c:4c:c9:bf:05:0f:94: e2:69:c8:4d:7a:a5:3b:bb:f2:48:c9:d3:79:84:0a: 9b:d9:ee:b0:e0:53:26:de:67:13:30:67:7f:0e:5f: cb:25:0e:e8:19:ea:b7:49:d2:51:60:be:f2:df:4c: a1:7a:b4:e6:98:24:47:f5:11:b6:b6:17:f8:c1:da: 04:b8:f0:b9:d4:7e:aa:cb:cb:06:d8:40:a3:e2:2e: cf:09:3f:45:9a:3f:da:68:fd:8d:3f:27:0d:d5:40: f5:8a:b2:d1:18:bf:8b:97:78:c2:0a:d3:87:0a:ea: 8e:93:9a:5d:53:68:5d:c8:94:39:72:ba:97:1a:86: 04:7c:98:d0:b7:cc:ca:8b:b9:87:e9:79:5d:8f:d3: 2b:64:d9:58:3c:7f:09:73:4c:49:86:02:f2:30:14: f9:0f:cd:a2:ae:a3:57:c6:12:5b:cf:8a:b9:e7:e9: 8a:93:08:dc:d0:ab:60:ca:cb:38:7c:01:d5:bb:aa: ce:02:20:6c:f3:d3:9e:22:9f:17:7c:f8:d5:52:59: 78:f8:18:14:67:05:6c:11:bb:6d:8a:14:c5:ed:63: ee:50:e2:27:88:88:e1:41:40:ab:9a:6c:ce:c2:07: 47:1c:33:dc:a1:f7:37:b6:f5:58:39:29:0c:7d:6c: a6:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:1C:FF:02:C3:2E:9B:BC:D6:85:80:DB:EF:FD:D3:66:5B:5F:7D:94 X509v3 Authority Key Identifier: keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/hxz_AsMum7zWhYDb7_3TZltffZQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.58.41.128/29 Signature Algorithm: sha256WithRSAEncryption 5a:c5:3b:47:f1:38:54:08:b2:79:e0:33:c1:6a:47:1d:01:95: 1a:e4:58:4e:f4:28:e7:f7:75:cd:b2:2c:37:12:ba:d7:ee:5e: 88:db:c3:c1:9d:8e:29:6e:15:63:79:35:47:56:be:20:d3:cd: 7b:48:21:85:90:85:08:2f:c9:b9:50:e4:6c:7c:04:1b:ed:01: 64:38:40:05:b9:f5:f4:15:eb:ad:00:4f:23:b0:c1:ce:e1:48: f1:49:6a:bc:54:b1:f1:a5:8f:0d:29:f8:78:06:9e:83:ff:04: fd:7d:31:7d:22:48:ff:67:be:bd:c5:37:29:83:4e:4a:91:74: 05:a0:b9:48:69:95:36:75:61:cf:54:81:38:54:52:d5:4c:3b: ca:3e:22:29:07:67:07:a0:c9:12:09:a8:6c:77:31:13:69:21: ce:6f:7e:cd:6d:b3:d3:ab:1f:97:e6:ee:52:6b:fe:4f:45:ee: 8e:ef:62:fa:de:7b:50:1b:b5:95:21:9c:a9:80:14:26:d2:92: e5:d3:23:44:11:88:4f:9f:9d:65:ef:95:d6:cc:9f:9d:f4:c5: 7f:7d:f5:8e:a0:bb:6f:b2:56:e2:e6:ec:cf:09:e7:76:cc:f8: da:43:d0:64:4b:0b:99:8e:04:20:a6:a5:41:45:e4:79:4d:fe: cd:cb:e3:42 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICDeUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUUy Njk3RkE3MDI1MkY4M0Y0MUQxMjFFQzBCNUNCNDU4QjZGRjIxNDAeFw0yNTA4MjIw ODUyMDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDg3MUNGRjAyQzMyRTlC QkNENjg1ODBEQkVGRkREMzY2NUI1RjdEOTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxdqj7fNKfPEzJvwUPlOJpyE16pTu78kjJ03mECpvZ7rDgUybe ZxMwZ38OX8slDugZ6rdJ0lFgvvLfTKF6tOaYJEf1Eba2F/jB2gS48LnUfqrLywbY QKPiLs8JP0WaP9po/Y0/Jw3VQPWKstEYv4uXeMIK04cK6o6Tml1TaF3IlDlyupca hgR8mNC3zMqLuYfpeV2P0ytk2Vg8fwlzTEmGAvIwFPkPzaKuo1fGElvPirnn6YqT CNzQq2DKyzh8AdW7qs4CIGzz054inxd8+NVSWXj4GBRnBWwRu22KFMXtY+5Q4ieI iOFBQKuabM7CB0ccM9yh9ze29Vg5KQx9bKalAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUhxz/AsMum7zWhYDb7/3TZltffZQwHwYDVR0jBBgwFoAUniaX+nAlL4P0HRIe wLXLRYtv8hQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOVFQv bmlhWC1uQWxMNFAwSFJJZXdMWExSWXR2OGhRLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9uaWFYLW5BbEw0UDBIUklld0xYTFJZdHY4aFEuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05UVC9oeHpfQXNNdW03eldoWURiN18z VFpsdGZmWlEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUDPTop gDANBgkqhkiG9w0BAQsFAAOCAQEAWsU7R/E4VAiyeeAzwWpHHQGVGuRYTvQo5/d1 zbIsNxK61+5eiNvDwZ2OKW4VY3k1R1a+INPNe0ghhZCFCC/JuVDkbHwEG+0BZDhA Bbn19BXrrQBPI7DBzuFI8UlqvFSx8aWPDSn4eAaeg/8E/X0xfSJI/2e+vcU3KYNO SpF0BaC5SGmVNnVhz1SBOFRS1Uw7yj4iKQdnB6DJEgmobHcxE2khzm9+zW2z06sf l+buUmv+T0Xuju9i+t57UBu1lSGcqYAUJtKS5dMjRBGIT5+dZe+V1syfnfTFf331 jqC7b7JW4ubszwnndsz42kPQZEsLmY4EIKalQUXkeU3+zcvjQg== -----END CERTIFICATE-----Generated at Sun Aug 24 11:42:02 2025 by rpki-client