$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/AZ4AH1v0yoUG2oDbB-PiJqtPmEU.roa File: AZ4AH1v0yoUG2oDbB-PiJqtPmEU.roa (raw, json) Hash identifier: 9VFjLiAWb383A9N4EXe+zfzc9Y3TKFqRq0lvDHtUOgs= Subject key identifier: 01:9E:00:1F:5B:F4:CA:85:06:DA:80:DB:07:E3:E2:26:AB:4F:98:45 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1A05 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/AZ4AH1v0yoUG2oDbB-PiJqtPmEU.roa Signing time: Tue 07 Apr 2026 05:42:04 +0000 ROA not before: Tue 07 Apr 2026 05:42:04 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131660 IP address blocks: 203.66.210.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 17 Apr 2026 06:33:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6661 (0x1a05) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Apr 7 05:42:04 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=019E001F5BF4CA8506DA80DB07E3E226AB4F9845 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:2d:f4:b7:72:0a:be:d1:87:30:9d:50:6c:71: e8:0f:60:09:7e:cd:0b:78:f5:3c:f2:c1:2c:e6:2d: f9:e0:fd:24:74:eb:f5:98:5a:07:c2:e4:6b:1f:78: 9b:f6:7c:2a:64:35:82:d2:85:5a:5f:3d:fb:69:a5: 6e:dd:1c:ee:10:bf:bd:4e:50:0e:49:32:21:f3:2f: 16:44:cc:fc:26:39:a7:b6:82:24:cb:58:11:09:c9: c3:ce:29:dd:88:df:58:c2:36:0e:0e:aa:4d:a5:96: 9f:fa:97:50:1c:f2:ff:0d:32:a1:f8:5d:08:ad:0c: f8:85:6e:ad:24:d7:09:28:86:ae:99:e0:79:06:67: 78:89:74:c8:ac:ad:81:1d:88:ba:9f:67:6c:a3:4d: db:17:c2:fc:1d:27:49:77:d4:d9:fe:ac:a4:4d:40: 70:ab:b3:e3:a4:ad:39:d5:e3:4a:81:4f:fa:71:54: 99:59:c9:f1:34:8a:6b:44:64:c3:99:09:72:d6:f9: 45:d1:f9:b9:bc:40:98:64:f5:5c:bc:28:d1:0d:d0: a1:e4:3b:ac:89:84:11:77:53:94:02:18:01:88:ee: c7:35:34:7d:4d:b8:27:42:69:28:ab:e5:45:64:03: 19:4f:e2:e5:ae:5d:78:97:15:1e:0a:78:1d:0e:24: 2f:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:9E:00:1F:5B:F4:CA:85:06:DA:80:DB:07:E3:E2:26:AB:4F:98:45 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/AZ4AH1v0yoUG2oDbB-PiJqtPmEU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.66.210.0/23 Signature Algorithm: sha256WithRSAEncryption 6a:27:3e:66:df:26:04:41:9c:1f:30:3f:d3:0a:0c:3d:01:ee: e9:70:68:f8:60:64:b0:ae:ff:12:0d:a2:ae:67:6f:76:79:eb: 57:bc:d1:45:03:14:8c:3c:27:ed:59:01:cb:64:99:a9:0d:d4: 26:30:94:5b:da:a2:b7:6d:73:97:c7:dd:19:82:19:40:a0:d5: fd:22:10:51:61:d0:1e:3d:2a:f3:5f:cd:11:65:91:3e:a2:aa: ed:a1:ba:35:31:b6:52:78:63:5e:e2:a2:7f:4c:a4:9d:ee:65: b5:2b:5c:47:c6:db:e8:f1:10:b6:4f:2b:e0:1e:8f:a2:a6:d2: ab:95:99:bc:3b:73:81:e8:51:ac:bd:7b:73:68:1d:c8:94:95: 49:9e:d3:74:80:1c:31:80:04:36:28:0d:28:51:47:2d:4f:7f: 4a:d8:b7:36:4b:fc:e5:0b:42:50:81:17:92:51:84:ce:69:e3: c7:fb:b0:16:5e:20:3c:b6:3b:d3:67:b2:ee:5a:87:f6:92:0f: 6e:71:ea:10:ed:b4:ee:b0:99:bb:7a:83:8b:89:98:8c:25:31: d7:b6:5d:8f:2c:94:14:13:f0:d6:b5:d6:a1:55:91:51:df:9c: 8d:13:48:48:01:5d:38:35:92:80:04:e7:e2:d3:5d:67:71:25: db:9b:f9:1e -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICGgUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNjA0MDcw NTQyMDRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDAxOUUwMDFGNUJGNENB ODUwNkRBODBEQjA3RTNFMjI2QUI0Rjk4NDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDlLfS3cgq+0YcwnVBscegPYAl+zQt49TzywSzmLfng/SR06/WY WgfC5GsfeJv2fCpkNYLShVpfPftppW7dHO4Qv71OUA5JMiHzLxZEzPwmOae2giTL WBEJycPOKd2I31jCNg4Oqk2llp/6l1Ac8v8NMqH4XQitDPiFbq0k1wkohq6Z4HkG Z3iJdMisrYEdiLqfZ2yjTdsXwvwdJ0l31Nn+rKRNQHCrs+OkrTnV40qBT/pxVJlZ yfE0imtEZMOZCXLW+UXR+bm8QJhk9Vy8KNEN0KHkO6yJhBF3U5QCGAGI7sc1NH1N uCdCaSir5UVkAxlP4uWuXXiXFR4KeB0OJC/jAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUAZ4AH1v0yoUG2oDbB+PiJqtPmEUwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9BWjRBSDF2MHlvVUcyb0RiQi1Q aUpxdFBtRVUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBy0LS MA0GCSqGSIb3DQEBCwUAA4IBAQBqJz5m3yYEQZwfMD/TCgw9Ae7pcGj4YGSwrv8S DaKuZ292eetXvNFFAxSMPCftWQHLZJmpDdQmMJRb2qK3bXOXx90ZghlAoNX9IhBR YdAePSrzX80RZZE+oqrtobo1MbZSeGNe4qJ/TKSd7mW1K1xHxtvo8RC2TyvgHo+i ptKrlZm8O3OB6FGsvXtzaB3IlJVJntN0gBwxgAQ2KA0oUUctT39K2Lc2S/zlC0JQ gReSUYTOaePH+7AWXiA8tjvTZ7LuWof2kg9uceoQ7bTusJm7eoOLiZiMJTHXtl2P LJQUE/DWtdahVZFR35yNE0hIAV04NZKABOfi011ncSXbm/ke -----END CERTIFICATE-----Generated at Fri Apr 17 05:20:12 2026 by rpki-client