$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/KRW2GYD3pFs8LIUjK05MpRtzXlU.roa File: KRW2GYD3pFs8LIUjK05MpRtzXlU.roa (raw, json) Hash identifier: Cg4UvSHWuYvqh827VUqQEx7AbklkpyGocHb9MdBwZzI= Subject key identifier: 29:15:B6:19:80:F7:A4:5B:3C:2C:85:23:2B:4E:4C:A5:1B:73:5E:55 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1901 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/KRW2GYD3pFs8LIUjK05MpRtzXlU.roa Signing time: Fri 22 Aug 2025 09:02:41 +0000 ROA not before: Fri 22 Aug 2025 09:02:41 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 3462 IP address blocks: 111.240.0.0/12 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 11:29:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6401 (0x1901) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 22 09:02:41 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2915B61980F7A45B3C2C85232B4E4CA51B735E55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:3d:13:eb:84:56:e8:2c:3e:bf:58:16:98:48: 8d:9a:c4:89:0f:6c:cb:c8:61:41:a2:a3:42:a6:51: 14:e4:f4:85:30:ff:f9:2d:4e:65:fd:b5:7c:54:cf: 65:b4:f7:f8:65:69:ae:3e:c2:c4:0a:0d:db:d3:d5: db:73:65:08:a2:cd:7f:a6:ad:c3:c2:3d:20:1e:c7: 05:2b:dd:6b:5f:21:97:7f:7e:9d:6c:96:85:72:1e: d9:86:33:d3:4f:04:76:7f:b2:0f:39:f9:c4:17:37: 34:f9:40:7b:5f:c0:25:71:3d:75:58:44:6d:41:76: b8:6a:bb:9c:dd:ac:bc:71:a1:1f:c6:5b:0d:53:4a: f0:39:3b:58:08:dc:88:7f:c0:01:88:a3:a7:44:07: be:c1:46:72:2c:65:0a:03:f7:88:71:96:3a:92:6b: 61:ff:bb:21:56:63:08:4b:a4:c5:b0:8b:2c:11:80: 02:d4:91:c1:6f:1f:a6:26:a5:ca:c5:ab:a1:02:74: e1:ef:94:2d:7c:b7:b4:c9:ef:3d:3a:19:43:cd:a9: dd:be:33:66:f6:59:dd:83:87:09:76:dd:a5:a3:fb: 88:21:a9:6b:68:e0:a7:03:3a:71:25:33:57:3f:bf: 77:d7:c3:10:c7:24:bb:46:e0:10:89:16:da:40:2a: f2:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:15:B6:19:80:F7:A4:5B:3C:2C:85:23:2B:4E:4C:A5:1B:73:5E:55 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/KRW2GYD3pFs8LIUjK05MpRtzXlU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 111.240.0.0/12 Signature Algorithm: sha256WithRSAEncryption 52:91:d3:7a:83:9e:7d:90:ec:a5:af:64:d4:77:51:bf:08:8f: a8:1b:f9:09:c1:4a:10:33:a2:7b:f2:31:00:a1:ca:3f:d3:a5: ef:75:10:95:9d:59:6f:0d:96:cf:54:15:0f:50:b1:a8:e1:36: bf:ad:03:6b:eb:cd:76:d5:79:85:8c:f5:96:7e:c7:83:e0:e9: 52:a4:79:7f:0e:ec:25:1b:7b:5d:8d:37:71:b2:97:03:be:58: 2a:16:6a:50:4c:69:f9:bc:f4:e7:c7:cd:b4:27:e2:dd:9f:c0: 9e:9c:12:81:cb:f2:3b:bc:fb:c1:00:60:73:02:71:5e:0e:bb: 28:82:ef:e4:69:a7:4f:c4:78:12:d0:0f:a1:fe:a1:8f:f7:c7: ee:3a:75:83:5c:e8:4a:6d:7b:86:ff:19:74:74:b1:d0:a8:30: 70:dd:1d:45:f4:4e:7c:62:24:88:91:2b:0e:04:68:81:71:dd: 90:b3:13:3a:85:d3:29:09:18:f5:4a:b3:6b:7e:31:11:f3:87: 6c:2d:96:bf:05:05:02:9e:cb:fc:86:03:02:f4:ff:ba:fc:f8: 20:3b:32:46:3e:da:f2:ff:46:8d:59:c0:0d:66:90:5d:62:7f: 2f:b3:d7:e6:19:91:cf:ca:3e:d6:1e:5a:62:41:a6:fc:03:bb: 16:99:1b:75 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICGQEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw OTAyNDFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDI5MTVCNjE5ODBGN0E0 NUIzQzJDODUyMzJCNEU0Q0E1MUI3MzVFNTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDePRPrhFboLD6/WBaYSI2axIkPbMvIYUGio0KmURTk9IUw//kt TmX9tXxUz2W09/hlaa4+wsQKDdvT1dtzZQiizX+mrcPCPSAexwUr3WtfIZd/fp1s loVyHtmGM9NPBHZ/sg85+cQXNzT5QHtfwCVxPXVYRG1Bdrhqu5zdrLxxoR/GWw1T SvA5O1gI3Ih/wAGIo6dEB77BRnIsZQoD94hxljqSa2H/uyFWYwhLpMWwiywRgALU kcFvH6YmpcrFq6ECdOHvlC18t7TJ7z06GUPNqd2+M2b2Wd2Dhwl23aWj+4ghqWto 4KcDOnElM1c/v3fXwxDHJLtG4BCJFtpAKvJLAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUKRW2GYD3pFs8LIUjK05MpRtzXlUwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9LUlcyR1lEM3BGczhMSVVqSzA1 TXBSdHpYbFUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMEb/Aw DQYJKoZIhvcNAQELBQADggEBAFKR03qDnn2Q7KWvZNR3Ub8Ij6gb+QnBShAzonvy MQChyj/Tpe91EJWdWW8Nls9UFQ9QsajhNr+tA2vrzXbVeYWM9ZZ+x4Pg6VKkeX8O 7CUbe12NN3GylwO+WCoWalBMafm89OfHzbQn4t2fwJ6cEoHL8ju8+8EAYHMCcV4O uyiC7+Rpp0/EeBLQD6H+oY/3x+46dYNc6Epte4b/GXR0sdCoMHDdHUX0TnxiJIiR Kw4EaIFx3ZCzEzqF0ykJGPVKs2t+MRHzh2wtlr8FBQKey/yGAwL0/7r8+CA7MkY+ 2vL/Ro1ZwA1mkF1ify+z1+YZkc/KPtYeWmJBpvwDuxaZG3U= -----END CERTIFICATE-----Generated at Wed Nov 5 08:07:05 2025 by rpki-client