$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/3f63BadjGAUYs1x3v4BGWhdZApY.roa File: 3f63BadjGAUYs1x3v4BGWhdZApY.roa (raw, json) Hash identifier: tkPlWwXkwcu1oG6vW9aQalv5LL5xGga44ht1lPbEm40= Subject key identifier: DD:FE:B7:05:A7:63:18:05:18:B3:5C:77:BF:80:46:5A:17:59:02:96 Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C Certificate serial: 0834 Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/3f63BadjGAUYs1x3v4BGWhdZApY.roa Signing time: Sun 26 Oct 2025 14:51:08 +0000 ROA not before: Sun 26 Oct 2025 14:51:08 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9678 IP address blocks: 223.26.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 01:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2100 (0x834) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C Validity Not Before: Oct 26 14:51:08 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=DDFEB705A763180518B35C77BF80465A17590296 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:fb:46:03:1d:4b:f9:94:a5:31:90:88:85:ed: 99:1c:22:5e:9a:b0:25:ce:61:0b:52:69:e5:03:c5: c5:02:36:0f:30:29:dc:73:46:15:53:d4:cf:29:52: c3:ba:04:1d:7e:72:ee:0a:84:28:d2:25:3f:13:d1: fd:ff:c2:3d:27:0d:63:6a:42:b9:88:72:d1:67:cd: c8:2a:b6:2a:b7:99:ae:0d:42:87:c3:82:75:25:09: e4:20:53:e9:b0:de:87:81:a1:72:a6:73:c3:25:ce: 18:58:c2:1c:96:8d:d9:eb:b0:44:29:31:96:a2:d5: cb:6a:86:ab:54:0c:40:63:3f:30:db:0f:c9:df:41: f6:2c:71:80:87:06:92:86:d3:bb:d3:0e:17:85:39: 41:b1:ab:de:fc:b6:7d:a0:40:4a:f9:f5:b9:6c:83: 40:4d:6a:bb:73:d5:4f:28:00:81:92:a8:52:ac:ee: c2:f6:2f:3e:f1:8e:50:18:56:98:e7:31:5f:20:f2: 66:4a:af:f9:88:89:f6:5b:ef:48:10:d8:a5:23:9f: 1b:45:c1:98:57:71:02:ee:99:56:8c:5c:4a:ac:83: 13:ca:72:28:50:73:4b:16:b7:ef:c3:8f:60:e8:68: b3:24:65:3c:16:ac:cc:21:df:57:5c:d4:f7:74:77: ac:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:FE:B7:05:A7:63:18:05:18:B3:5C:77:BF:80:46:5A:17:59:02:96 X509v3 Authority Key Identifier: keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/3f63BadjGAUYs1x3v4BGWhdZApY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.26.1.0/24 Signature Algorithm: sha256WithRSAEncryption 98:ab:62:9d:ce:44:48:0c:36:48:12:08:f0:a1:63:0e:92:02: 94:3a:20:0d:95:02:45:cb:3b:06:69:bf:35:0c:5f:c6:24:b1: 95:b7:34:01:3a:29:20:a1:ea:1e:25:46:25:1c:b3:0e:86:ae: 0c:c6:f1:ba:d7:be:3f:47:cb:8d:d9:53:36:c0:23:7f:3f:38: 85:3a:4f:b3:fb:30:6a:26:36:96:b7:3d:ae:3b:d8:6c:75:31: 36:7f:2f:fe:ab:6c:ac:a1:da:9b:a8:a6:b9:a4:67:f5:0d:ac: 9e:fa:b4:b7:91:27:07:77:7a:e9:a5:d1:4c:b2:eb:ab:ef:fd: 4b:33:ab:db:5e:4a:a8:2a:02:95:0a:f3:21:cd:14:b9:6d:60: 8a:9f:ad:a1:a7:bf:fd:57:b7:5c:a6:fd:5d:22:e3:64:de:1f: 92:fd:8d:b2:81:a4:36:fa:41:81:e6:7f:ce:57:f8:59:1b:53: fa:19:35:a1:6b:a0:e6:43:31:b8:76:aa:20:3f:fa:27:42:a5: b0:a6:dd:e2:cb:00:27:38:e6:8c:8c:08:ad:74:c8:71:a5:5a: 71:05:d1:92:8b:72:57:6a:bd:4e:3e:ac:c4:a3:38:23:7a:52: d4:3e:27:84:f7:2a:82:1e:07:8b:db:dd:88:88:b4:ae:ed:66: 17:b4:b4:c8 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICCDQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJF RDI4RkZDQzA0MEUzNjAzMkM0MjYxNTQ5NTU2MkJDQzZFRjQ1QzAeFw0yNTEwMjYx NDUxMDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKERERkVCNzA1QTc2MzE4 MDUxOEIzNUM3N0JGODA0NjVBMTc1OTAyOTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDO+0YDHUv5lKUxkIiF7ZkcIl6asCXOYQtSaeUDxcUCNg8wKdxz RhVT1M8pUsO6BB1+cu4KhCjSJT8T0f3/wj0nDWNqQrmIctFnzcgqtiq3ma4NQofD gnUlCeQgU+mw3oeBoXKmc8MlzhhYwhyWjdnrsEQpMZai1ctqhqtUDEBjPzDbD8nf QfYscYCHBpKG07vTDheFOUGxq978tn2gQEr59blsg0BNartz1U8oAIGSqFKs7sL2 Lz7xjlAYVpjnMV8g8mZKr/mIifZb70gQ2KUjnxtFwZhXcQLumVaMXEqsgxPKcihQ c0sWt+/Dj2DoaLMkZTwWrMwh31dc1Pd0d6xzAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU3f63BadjGAUYs1x3v4BGWhdZApYwHwYDVR0jBBgwFoAUq+0o/8wEDjYDLEJh VJVWK8xu9FwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElO L3EtMG9fOHdFRGpZRExFSmhWSlZXSzh4dTlGdy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvcS0wb184d0VEallETEVKaFZKVldLOHh1OUZ3LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElOLzNmNjNCYWRqR0FVWXMxeDN2 NEJHV2hkWkFwWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADf GgEwDQYJKoZIhvcNAQELBQADggEBAJirYp3OREgMNkgSCPChYw6SApQ6IA2VAkXL OwZpvzUMX8YksZW3NAE6KSCh6h4lRiUcsw6GrgzG8brXvj9Hy43ZUzbAI38/OIU6 T7P7MGomNpa3Pa472Gx1MTZ/L/6rbKyh2puoprmkZ/UNrJ76tLeRJwd3euml0Uyy 66vv/Uszq9teSqgqApUK8yHNFLltYIqfraGnv/1Xt1ym/V0i42TeH5L9jbKBpDb6 QYHmf85X+FkbU/oZNaFroOZDMbh2qiA/+idCpbCm3eLLACc45oyMCK10yHGlWnEF 0ZKLcldqvU4+rMSjOCN6UtQ+J4T3KoIeB4vb3YiItK7tZhe0tMg= -----END CERTIFICATE-----Generated at Wed Nov 5 21:24:17 2025 by rpki-client