$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/3C0ca6oljVIaZ6xyZ4FZNj-fnVA.roa File: 3C0ca6oljVIaZ6xyZ4FZNj-fnVA.roa (raw, json) Hash identifier: MvLS7LsPllDkkbkpLtZVMfILCWIdmWV8zjwUPNXRLw4= Subject key identifier: DC:2D:1C:6B:AA:25:8D:52:1A:67:AC:72:67:81:59:36:3F:9F:9D:50 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 18C6 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/3C0ca6oljVIaZ6xyZ4FZNj-fnVA.roa Signing time: Fri 22 Aug 2025 09:02:27 +0000 ROA not before: Fri 22 Aug 2025 09:02:27 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9505 IP address blocks: 220.128.48.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 16:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6342 (0x18c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 22 09:02:27 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=DC2D1C6BAA258D521A67AC72678159363F9F9D50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:2d:2b:e1:57:2d:3c:a2:f2:f1:9e:bb:63:4b: d4:88:39:cb:f5:8f:bb:da:58:ab:0b:b0:59:06:11: 88:2c:94:3e:11:d9:b5:f3:08:64:62:53:28:dd:b7: f3:28:7f:81:fc:29:09:65:b7:48:ee:65:55:bd:af: c0:ea:fc:a7:ee:eb:b1:c1:e0:89:3a:01:1c:1b:65: 47:c6:a3:cb:cb:ca:72:3a:55:29:38:aa:01:1f:9e: 76:cc:9a:69:d2:97:91:b8:cc:bd:f8:c3:fe:6b:67: 5c:14:16:77:6f:9d:4c:6b:19:a8:db:7a:76:da:8e: 8a:55:e1:e1:4f:9f:30:20:cb:3e:ca:6a:88:32:82: 80:fe:ff:fc:76:e7:20:9e:76:1a:86:2b:43:6e:83: 18:36:e0:a5:a6:54:7b:64:45:80:86:d8:7e:47:22: d4:bc:2f:fa:98:44:57:0d:3a:9d:58:9b:36:31:65: c0:02:79:24:12:7d:35:c3:a9:b6:37:f6:25:25:96: 09:c9:db:0c:76:4d:68:4d:10:c7:84:24:47:44:f2: 1a:d3:f3:e2:8a:50:31:9e:31:33:5e:00:15:0f:07: 44:8a:c5:e8:58:89:38:a0:5e:1a:7a:aa:70:73:34: cd:e8:3d:07:c7:89:f8:88:b2:39:95:01:42:d9:7a: 2a:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:2D:1C:6B:AA:25:8D:52:1A:67:AC:72:67:81:59:36:3F:9F:9D:50 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/3C0ca6oljVIaZ6xyZ4FZNj-fnVA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 220.128.48.0/21 Signature Algorithm: sha256WithRSAEncryption 52:c7:85:9a:55:b8:6c:f0:68:07:6a:14:25:e1:e1:1a:56:95: 17:bf:de:f7:e0:51:37:03:d1:2c:b0:66:6a:88:99:06:af:12: 5b:cb:ef:05:57:10:4b:9c:85:b7:30:25:1d:64:2d:d0:bd:44: 4f:ce:ec:88:7a:36:09:bd:e4:56:1c:77:37:e7:75:ec:dd:1f: 9a:7b:ee:84:45:1d:90:be:6a:3e:4c:68:4d:41:38:a6:c2:2d: c5:34:0a:4d:49:e0:bc:a5:c5:14:6e:59:88:95:d1:69:63:0d: df:b2:29:53:af:62:ff:37:83:d7:8e:cc:ed:80:8d:9f:5c:3f: 64:6a:0c:bb:68:6e:30:f1:0c:34:4b:4e:55:50:23:49:29:13: 83:15:8a:32:51:36:64:95:78:7e:f9:1e:7b:75:5a:9c:81:09: 77:8f:7a:da:8a:9c:41:d3:56:d9:3a:1e:a5:12:37:43:86:d4: c5:f8:89:f4:2a:c6:8b:10:6d:80:43:d8:6d:1e:86:68:3e:ab: 82:5b:b0:4f:8b:44:09:53:f8:ef:9a:56:2c:0f:06:f0:1f:fc: c3:c2:c9:69:16:50:42:9a:49:90:b4:47:8c:72:04:72:14:ea: 59:42:b4:84:a6:1e:2f:72:bd:39:d8:4a:f7:b3:3e:53:ac:39: a1:1f:f1:48 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICGMYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw OTAyMjdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKERDMkQxQzZCQUEyNThE NTIxQTY3QUM3MjY3ODE1OTM2M0Y5RjlENTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDILSvhVy08ovLxnrtjS9SIOcv1j7vaWKsLsFkGEYgslD4R2bXz CGRiUyjdt/Mof4H8KQllt0juZVW9r8Dq/Kfu67HB4Ik6ARwbZUfGo8vLynI6VSk4 qgEfnnbMmmnSl5G4zL34w/5rZ1wUFndvnUxrGajbenbajopV4eFPnzAgyz7Kaogy goD+//x25yCedhqGK0Nugxg24KWmVHtkRYCG2H5HItS8L/qYRFcNOp1YmzYxZcAC eSQSfTXDqbY39iUllgnJ2wx2TWhNEMeEJEdE8hrT8+KKUDGeMTNeABUPB0SKxehY iTigXhp6qnBzNM3oPQfHifiIsjmVAULZeipLAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU3C0ca6oljVIaZ6xyZ4FZNj+fnVAwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC8zQzBjYTZvbGpWSWFaNnh5WjRG Wk5qLWZuVkEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQD3IAw MA0GCSqGSIb3DQEBCwUAA4IBAQBSx4WaVbhs8GgHahQl4eEaVpUXv9734FE3A9Es sGZqiJkGrxJby+8FVxBLnIW3MCUdZC3QvURPzuyIejYJveRWHHc353Xs3R+ae+6E RR2Qvmo+TGhNQTimwi3FNApNSeC8pcUUblmIldFpYw3fsilTr2L/N4PXjsztgI2f XD9kagy7aG4w8Qw0S05VUCNJKRODFYoyUTZklXh++R57dVqcgQl3j3raipxB01bZ Oh6lEjdDhtTF+In0KsaLEG2AQ9htHoZoPquCW7BPi0QJU/jvmlYsDwbwH/zDwslp FlBCmkmQtEeMcgRyFOpZQrSEph4vcr052Er3sz5TrDmhH/FI -----END CERTIFICATE-----Generated at Wed Nov 5 15:35:50 2025 by rpki-client