$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/-pYnypMtrhufvrm-UsdSa-FPF2E.roa File: -pYnypMtrhufvrm-UsdSa-FPF2E.roa (raw, json) Hash identifier: iCF+Ge1tIgsDlvwcmF9ri2nTEi0PsjfAn99kT6VmUp4= Subject key identifier: FA:96:27:CA:93:2D:AE:1B:9F:BE:B9:BE:52:C7:52:6B:E1:4F:17:61 Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C Certificate serial: 07C5 Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/-pYnypMtrhufvrm-UsdSa-FPF2E.roa Signing time: Thu 19 Jun 2025 07:19:52 +0000 ROA not before: Thu 19 Jun 2025 07:19:52 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9678 IP address blocks: 211.76.178.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 07:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1989 (0x7c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C Validity Not Before: Jun 19 07:19:52 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=FA9627CA932DAE1B9FBEB9BE52C7526BE14F1761 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:87:6a:19:6e:be:de:17:b6:f2:f8:7c:b1:94: 54:19:e5:a7:8a:4d:77:79:4a:a1:01:49:78:71:52: 07:5f:a7:9f:90:03:58:47:81:9e:65:c7:9b:b9:94: 18:5d:aa:9e:2c:9e:fb:e8:fe:a4:b1:f7:1c:8d:61: 87:33:0f:83:36:e4:98:0b:21:98:3f:65:53:2d:48: e9:0c:83:58:b3:f5:3a:bf:09:de:f3:b8:63:d0:d1: bb:6e:fb:bd:3a:9b:bb:6a:75:54:0f:1d:1d:05:60: 8f:73:d2:56:01:6c:01:47:62:04:14:ee:87:fc:a3: 51:e5:a6:85:13:67:de:3b:70:47:9b:f1:59:a9:05: 1b:11:da:40:e7:ee:c9:77:2e:5b:86:ea:cd:ba:81: 3a:92:62:e0:84:73:47:79:b9:78:ac:5d:04:67:1a: b5:ab:46:47:77:d1:35:b5:86:c1:d1:05:1c:5a:d9: a5:9f:fc:75:59:80:64:1e:90:88:c5:3d:8b:3d:53: c4:eb:d9:9d:5e:48:32:9d:ce:9f:34:09:31:c6:bb: d9:b3:c1:e4:eb:99:56:ea:3c:8a:f9:c5:7b:12:d8: 4a:e0:dd:9a:ac:56:55:43:5a:c0:89:96:ee:36:d6: fb:76:d8:10:13:81:76:79:b7:10:ea:95:76:c9:db: 34:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:96:27:CA:93:2D:AE:1B:9F:BE:B9:BE:52:C7:52:6B:E1:4F:17:61 X509v3 Authority Key Identifier: keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/-pYnypMtrhufvrm-UsdSa-FPF2E.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.178.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:76:00:9d:79:c2:99:b1:e9:0b:6b:e1:e3:28:f2:1f:2d:03: 25:05:2a:28:99:62:c2:ed:11:7c:ed:83:15:03:b5:22:0f:a2: 69:ca:6c:70:3a:71:2d:7f:e3:a5:52:28:85:59:29:57:5d:45: 53:09:f1:6b:90:06:26:a8:d5:40:f8:10:0c:05:80:bf:cd:10: 7f:c5:e3:3c:97:96:80:fe:de:13:3a:d4:70:c2:55:c8:14:d7: d3:e1:bb:fd:2a:01:52:34:1d:ac:1e:65:35:f1:b8:38:69:ef: b4:4b:6c:24:de:59:f0:b4:b3:c1:4f:fd:2b:c0:08:3e:a1:f3: 70:75:36:87:ba:e5:cf:13:02:90:51:b2:59:0c:1a:30:09:fc: 3a:c2:60:4e:90:2b:48:f2:10:03:d4:85:5b:b4:34:41:02:61: 98:38:00:e9:75:c1:b0:61:4b:d7:3e:dc:9e:64:3a:c2:0e:23: 85:c5:0f:73:23:47:ed:67:07:ed:33:1f:ff:0c:0d:4d:2f:41: 65:f0:37:c5:e4:99:4c:86:a6:f4:6b:01:4b:c5:65:eb:b4:ee: 00:57:78:cf:9d:9e:f8:e5:04:5f:80:5a:8f:da:99:f1:29:73: f0:06:25:6c:7b:85:dd:49:5a:29:50:66:c6:4b:d3:af:a0:fe: d2:0b:56:02 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICB8UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJF RDI4RkZDQzA0MEUzNjAzMkM0MjYxNTQ5NTU2MkJDQzZFRjQ1QzAeFw0yNTA2MTkw NzE5NTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZBOTYyN0NBOTMyREFF MUI5RkJFQjlCRTUyQzc1MjZCRTE0RjE3NjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5h2oZbr7eF7by+HyxlFQZ5aeKTXd5SqEBSXhxUgdfp5+QA1hH gZ5lx5u5lBhdqp4snvvo/qSx9xyNYYczD4M25JgLIZg/ZVMtSOkMg1iz9Tq/Cd7z uGPQ0btu+706m7tqdVQPHR0FYI9z0lYBbAFHYgQU7of8o1HlpoUTZ947cEeb8Vmp BRsR2kDn7sl3LluG6s26gTqSYuCEc0d5uXisXQRnGrWrRkd30TW1hsHRBRxa2aWf /HVZgGQekIjFPYs9U8Tr2Z1eSDKdzp80CTHGu9mzweTrmVbqPIr5xXsS2Erg3Zqs VlVDWsCJlu421vt22BATgXZ5txDqlXbJ2zS5AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU+pYnypMtrhufvrm+UsdSa+FPF2EwHwYDVR0jBBgwFoAUq+0o/8wEDjYDLEJh VJVWK8xu9FwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElO L3EtMG9fOHdFRGpZRExFSmhWSlZXSzh4dTlGdy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvcS0wb184d0VEallETEVKaFZKVldLOHh1OUZ3LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElOLy1wWW55cE10cmh1ZnZybS1V c2RTYS1GUEYyRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADT TLIwDQYJKoZIhvcNAQELBQADggEBAI92AJ15wpmx6Qtr4eMo8h8tAyUFKiiZYsLt EXztgxUDtSIPomnKbHA6cS1/46VSKIVZKVddRVMJ8WuQBiao1UD4EAwFgL/NEH/F 4zyXloD+3hM61HDCVcgU19Phu/0qAVI0HaweZTXxuDhp77RLbCTeWfC0s8FP/SvA CD6h83B1Noe65c8TApBRslkMGjAJ/DrCYE6QK0jyEAPUhVu0NEECYZg4AOl1wbBh S9c+3J5kOsIOI4XFD3MjR+1nB+0zH/8MDU0vQWXwN8XkmUyGpvRrAUvFZeu07gBX eM+dnvjlBF+AWo/amfEpc/AGJWx7hd1JWilQZsZL06+g/tILVgI= -----END CERTIFICATE-----Generated at Wed Jun 25 03:29:24 2025 by rpki-client