$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/oqH7k2Ch3FiPUr7NsRSokJCdDlQ.roa File: oqH7k2Ch3FiPUr7NsRSokJCdDlQ.roa (raw, json) Hash identifier: DgPS4u/1+8D3tw80s9W1KU3V2hFnGwZuxO/DWwnwUQY= Subject key identifier: A2:A1:FB:93:60:A1:DC:58:8F:52:BE:CD:B1:14:A8:90:90:9D:0E:54 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 193C Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/oqH7k2Ch3FiPUr7NsRSokJCdDlQ.roa Signing time: Fri 22 Aug 2025 09:02:53 +0000 ROA not before: Fri 22 Aug 2025 09:02:53 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 3462 IP address blocks: 210.61.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 11:29:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6460 (0x193c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 22 09:02:53 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=A2A1FB9360A1DC588F52BECDB114A890909D0E54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:19:80:e7:c1:57:08:53:89:7a:88:f5:c6:4c: 82:a9:a0:a6:02:3e:31:89:f0:3f:3d:13:b0:28:bc: 46:3d:b3:5c:16:54:6f:a5:7c:51:69:83:4b:a7:d6: f1:36:96:e9:65:2c:91:49:7b:8d:9d:65:e5:79:0c: aa:68:41:85:27:96:e2:50:2c:57:10:12:25:07:57: a8:5e:3c:6d:40:26:ce:ad:2b:05:66:11:ce:9d:bd: f1:24:b8:1c:78:08:6e:d3:36:55:1f:34:72:78:c9: 63:05:1d:66:3d:90:b6:3b:d0:47:c3:93:a2:0a:33: 2d:62:16:34:4c:f3:f2:a8:4a:13:2b:e8:2c:59:00: 80:de:7d:72:d1:8a:2f:77:89:c2:4a:57:17:c5:05: c7:d5:f7:c1:1b:dc:63:6d:8f:21:b1:93:4b:dd:4e: 39:a4:3b:6e:f6:56:a4:56:8d:bd:92:b6:7b:27:db: 29:64:a5:7e:ef:48:d4:98:98:d8:15:fa:ce:ea:d2: 13:ba:ca:59:f4:0a:4e:70:c9:d8:32:c4:ab:1b:c7: 16:9f:18:44:cf:22:48:ba:61:bf:68:f1:cb:24:c4: e3:0e:39:f4:a6:74:9f:1e:3a:9e:6e:c4:5e:62:d6: 6d:af:12:7d:cc:d1:05:10:fb:92:13:a6:5a:a7:7b: d9:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:A1:FB:93:60:A1:DC:58:8F:52:BE:CD:B1:14:A8:90:90:9D:0E:54 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/oqH7k2Ch3FiPUr7NsRSokJCdDlQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.61.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8f:2e:2d:22:c0:29:24:f8:53:9f:4c:2f:e9:27:19:18:50:c9: 13:a7:ae:ba:e4:1e:1d:99:3b:eb:ed:f1:e6:ff:61:40:e3:55: 3e:90:6d:0c:22:3d:7f:4d:88:89:4e:9f:cf:2d:b5:02:4b:3c: 45:35:3d:b4:c5:9c:1e:a8:fe:e0:7b:2e:00:6f:69:c9:eb:03: 4b:e3:e1:26:b0:f7:33:bc:18:07:60:bf:f3:a3:95:43:35:3d: 23:6f:dc:a3:e3:bd:25:92:52:41:5d:9e:60:73:10:01:5c:74: a6:ce:47:de:ef:0d:c9:07:20:60:c0:87:43:62:0d:fd:5e:69: 6d:71:81:ad:ba:12:34:27:bd:3f:8a:ee:96:c4:d0:86:e2:6c: 1c:1c:78:d4:4c:c3:d9:53:3e:39:27:50:9b:c1:8b:9d:3e:25: 55:cd:58:99:f4:2b:19:0b:83:4f:cc:94:93:0a:32:21:2b:ec: bd:dd:ae:9d:52:fd:08:e0:78:39:5c:b7:5e:7c:c0:01:c1:a2: c1:6e:68:20:5d:f0:7f:7f:d7:64:c4:cd:50:cf:45:3d:dd:18: 80:aa:e2:0d:51:2f:5f:03:8a:ef:89:09:ec:16:27:78:5c:fc: e9:35:0c:ce:81:13:0c:75:8c:5b:30:3d:77:8b:05:8d:d8:0a: c8:d0:39:4e -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICGTwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw OTAyNTNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEEyQTFGQjkzNjBBMURD NTg4RjUyQkVDREIxMTRBODkwOTA5RDBFNTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCnGYDnwVcIU4l6iPXGTIKpoKYCPjGJ8D89E7AovEY9s1wWVG+l fFFpg0un1vE2lullLJFJe42dZeV5DKpoQYUnluJQLFcQEiUHV6hePG1AJs6tKwVm Ec6dvfEkuBx4CG7TNlUfNHJ4yWMFHWY9kLY70EfDk6IKMy1iFjRM8/KoShMr6CxZ AIDefXLRii93icJKVxfFBcfV98Eb3GNtjyGxk0vdTjmkO272VqRWjb2Stnsn2ylk pX7vSNSYmNgV+s7q0hO6yln0Ck5wydgyxKsbxxafGETPIki6Yb9o8cskxOMOOfSm dJ8eOp5uxF5i1m2vEn3M0QUQ+5ITplqne9nbAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUoqH7k2Ch3FiPUr7NsRSokJCdDlQwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9vcUg3azJDaDNGaVBVcjdOc1JT b2tKQ2REbFEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMA0j0w DQYJKoZIhvcNAQELBQADggEBAI8uLSLAKST4U59ML+knGRhQyROnrrrkHh2ZO+vt 8eb/YUDjVT6QbQwiPX9NiIlOn88ttQJLPEU1PbTFnB6o/uB7LgBvacnrA0vj4Saw 9zO8GAdgv/OjlUM1PSNv3KPjvSWSUkFdnmBzEAFcdKbOR97vDckHIGDAh0NiDf1e aW1xga26EjQnvT+K7pbE0IbibBwceNRMw9lTPjknUJvBi50+JVXNWJn0KxkLg0/M lJMKMiEr7L3drp1S/QjgeDlct158wAHBosFuaCBd8H9/12TEzVDPRT3dGICq4g1R L18Diu+JCewWJ3hc/Ok1DM6BEwx1jFswPXeLBY3YCsjQOU4= -----END CERTIFICATE-----Generated at Wed Nov 5 08:08:07 2025 by rpki-client