$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/oHHPS5iRCjqlVSCvaTAoVPcdxFM.roa File: oHHPS5iRCjqlVSCvaTAoVPcdxFM.roa (raw, json) Hash identifier: reHNNTvfNeek6cQtOm1Ag9uoLCZdV6Tn8kF5P158sc0= Subject key identifier: A0:71:CF:4B:98:91:0A:3A:A5:55:20:AF:69:30:28:54:F7:1D:C4:53 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1928 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/oHHPS5iRCjqlVSCvaTAoVPcdxFM.roa Signing time: Fri 22 Aug 2025 09:02:49 +0000 ROA not before: Fri 22 Aug 2025 09:02:49 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 3462 IP address blocks: 59.112.0.0/13 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 11:29:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6440 (0x1928) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 22 09:02:49 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=A071CF4B98910A3AA55520AF69302854F71DC453 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:15:6a:3e:7f:96:fa:f6:69:ed:89:73:3d:1f: db:fe:80:84:76:04:2c:6e:71:5e:67:7f:eb:76:d8: 44:0b:aa:a9:0b:58:4b:30:e4:79:95:51:ec:eb:0c: 39:69:a6:9b:4f:62:d5:8c:59:55:19:4f:c9:c4:62: bf:a6:e7:69:10:09:e6:81:31:2b:e9:44:1a:67:b1: f2:14:39:2d:10:99:6d:8e:54:cc:8f:6f:42:ea:84: e3:b7:f2:07:12:c9:93:8d:65:af:39:b5:7f:de:25: e5:5d:c2:b9:dd:3a:a1:00:7b:f0:37:60:0a:0f:62: 9f:76:e3:eb:a8:c5:28:2a:a0:dd:03:be:30:c8:a1: cc:b0:25:46:fd:bf:7b:b3:4c:a2:2d:50:d4:5f:d4: 7e:fb:3b:e9:3e:40:71:af:9b:24:39:5b:86:46:7d: aa:22:86:ad:54:da:d5:6c:7f:95:da:75:02:0a:b9: 5e:b7:fd:4a:8a:b8:f4:97:9d:b7:84:f1:31:47:14: ea:75:a5:11:2f:16:8e:3c:fc:09:b4:24:57:38:5a: c6:07:09:26:9b:dd:6e:44:20:f2:e5:0d:7b:e8:4e: 8f:26:6d:35:70:0e:1f:f4:1b:ed:00:fb:5b:e5:6e: 54:32:fa:3d:31:aa:68:39:c4:e4:c6:32:04:f0:09: 7b:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:71:CF:4B:98:91:0A:3A:A5:55:20:AF:69:30:28:54:F7:1D:C4:53 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/oHHPS5iRCjqlVSCvaTAoVPcdxFM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 59.112.0.0/13 Signature Algorithm: sha256WithRSAEncryption 34:69:1c:58:c0:31:d9:d1:be:18:78:d8:5e:93:bc:ee:32:1a: 32:5c:e3:8c:a3:fc:d7:4a:86:51:3b:94:4c:81:3f:59:75:67: 75:68:5f:17:37:35:a1:ad:ea:6d:c6:66:3c:90:3b:15:cb:73: 95:7f:e1:15:fb:15:9f:ea:af:2d:28:4e:b4:7b:69:d5:22:7c: 56:6e:37:41:fa:50:8b:a9:65:78:61:76:e2:73:5f:60:38:fc: 75:f3:03:94:9e:e8:78:de:b7:d7:fb:b2:58:86:a7:c2:7c:da: 9c:63:05:8b:3f:0d:4c:c1:2d:03:3d:28:a0:1c:dc:4c:80:75: e8:c6:15:0d:c7:c5:3f:40:a8:ac:10:87:52:b8:be:a7:7e:6c: 1c:c7:31:ee:db:79:d7:0f:a6:15:1f:58:a9:27:c9:f7:ec:3d: 48:89:9f:8f:16:f8:22:5f:40:77:6e:27:42:9d:85:8b:d3:5d: 32:cb:7a:ed:82:2c:6b:50:5e:70:ad:0b:6d:ab:5e:0d:05:51: 29:4a:68:4d:7b:47:b1:24:aa:ee:d9:06:04:1b:a7:aa:d0:09: 2d:b0:3c:e2:19:75:cf:af:ef:4f:fa:27:cc:24:4e:ac:fb:a2: 46:9c:9c:b9:e2:1c:67:a5:46:c4:41:2b:62:f0:42:15:f3:1e: a2:a2:27:c7 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICGSgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw OTAyNDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEEwNzFDRjRCOTg5MTBB M0FBNTU1MjBBRjY5MzAyODU0RjcxREM0NTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/FWo+f5b69mntiXM9H9v+gIR2BCxucV5nf+t22EQLqqkLWEsw 5HmVUezrDDlppptPYtWMWVUZT8nEYr+m52kQCeaBMSvpRBpnsfIUOS0QmW2OVMyP b0LqhOO38gcSyZONZa85tX/eJeVdwrndOqEAe/A3YAoPYp924+uoxSgqoN0DvjDI ocywJUb9v3uzTKItUNRf1H77O+k+QHGvmyQ5W4ZGfaoihq1U2tVsf5XadQIKuV63 /UqKuPSXnbeE8TFHFOp1pREvFo48/Am0JFc4WsYHCSab3W5EIPLlDXvoTo8mbTVw Dh/0G+0A+1vlblQy+j0xqmg5xOTGMgTwCXuTAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUoHHPS5iRCjqlVSCvaTAoVPcdxFMwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9vSEhQUzVpUkNqcWxWU0N2YVRB b1ZQY2R4Rk0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMDO3Aw DQYJKoZIhvcNAQELBQADggEBADRpHFjAMdnRvhh42F6TvO4yGjJc44yj/NdKhlE7 lEyBP1l1Z3VoXxc3NaGt6m3GZjyQOxXLc5V/4RX7FZ/qry0oTrR7adUifFZuN0H6 UIupZXhhduJzX2A4/HXzA5Se6Hjet9f7sliGp8J82pxjBYs/DUzBLQM9KKAc3EyA dejGFQ3HxT9AqKwQh1K4vqd+bBzHMe7bedcPphUfWKknyffsPUiJn48W+CJfQHdu J0KdhYvTXTLLeu2CLGtQXnCtC22rXg0FUSlKaE17R7Ekqu7ZBgQbp6rQCS2wPOIZ dc+v70/6J8wkTqz7okacnLniHGelRsRBK2LwQhXzHqKiJ8c= -----END CERTIFICATE-----Generated at Wed Nov 5 09:39:51 2025 by rpki-client