$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/K8ksitWPafOyM9wqmG7JfC5auNw.roa File: K8ksitWPafOyM9wqmG7JfC5auNw.roa (raw, json) Hash identifier: k2nJVTiSJzPglHT5eQJ3PRwNRFtXTeSAw2FQFf0OuY8= Subject key identifier: 2B:C9:2C:8A:D5:8F:69:F3:B2:33:DC:2A:98:6E:C9:7C:2E:5A:B8:DC Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C Certificate serial: 07C7 Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/K8ksitWPafOyM9wqmG7JfC5auNw.roa Signing time: Thu 19 Jun 2025 07:20:07 +0000 ROA not before: Thu 19 Jun 2025 07:20:07 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9678 IP address blocks: 211.76.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 07:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1991 (0x7c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C Validity Not Before: Jun 19 07:20:07 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2BC92C8AD58F69F3B233DC2A986EC97C2E5AB8DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:64:14:fa:62:83:ed:2d:dd:44:4d:05:11:dd: ca:75:3a:f3:7e:01:54:ee:7d:e6:b5:ea:9c:13:3e: 08:46:6a:17:a2:54:d2:fb:49:00:5d:c8:b1:22:51: ee:68:d4:43:58:9f:6e:cb:3d:ec:0e:97:99:1f:f8: c7:23:ab:88:73:a2:1d:3d:42:aa:f1:b6:ab:f0:c0: 64:f8:3d:e3:10:fa:a0:c0:91:69:7f:b3:fd:7d:0c: bb:6b:bf:95:74:e7:c4:0e:9c:a4:bb:7e:d5:03:5c: bf:68:ec:bb:be:89:ac:7e:2b:28:c1:23:99:25:e9: fe:75:89:08:60:33:fc:eb:fd:05:e2:14:cc:97:5b: a3:8b:93:94:c2:40:ee:a1:33:fa:74:46:68:07:7d: b9:24:43:44:54:36:96:5c:57:e5:52:0d:1d:9d:a8: 0d:35:8c:ec:4a:4f:8e:8d:bf:53:a9:f4:ec:f7:9c: 8b:82:84:d4:e2:be:0e:a6:77:17:e5:8d:ef:7b:d7: a1:28:76:c2:18:6b:e6:f2:32:fb:11:98:cf:24:34: 5a:5c:f8:ac:6a:81:9b:2d:b1:10:d4:0f:88:11:bc: b2:20:01:20:3e:f7:aa:64:77:54:23:71:e4:07:00: 7b:42:b7:fc:7b:42:5f:cd:6b:fe:2e:c3:0e:64:98: ff:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:C9:2C:8A:D5:8F:69:F3:B2:33:DC:2A:98:6E:C9:7C:2E:5A:B8:DC X509v3 Authority Key Identifier: keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/K8ksitWPafOyM9wqmG7JfC5auNw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.179.0/24 Signature Algorithm: sha256WithRSAEncryption 39:c5:9e:58:69:b0:8c:db:f6:f4:8f:06:98:a2:1b:6e:0a:06: 06:98:73:95:1a:4b:65:f3:11:a7:6f:78:b3:f6:28:9b:ec:b1: 53:a8:60:f7:c0:c1:66:5a:f5:e5:81:fd:02:b2:0a:1c:92:05: 19:9d:c0:b7:6d:f6:27:85:76:2e:02:f0:ee:28:31:e1:4a:0e: 53:05:3b:bc:a0:1d:26:a8:c9:10:23:1e:28:55:df:51:54:7d: 40:da:4f:cd:4b:8d:84:9e:f9:0d:b0:78:0a:60:a5:5d:e1:02: 24:07:aa:75:d4:e2:72:dd:ed:40:1c:f4:75:ef:36:e3:0c:bb: 9f:e4:d4:4a:89:5e:cb:27:a0:84:4d:a9:7e:c6:4c:13:84:77: f8:6d:ae:53:e5:b8:b8:77:be:19:89:6a:1d:8d:68:29:2d:00: 79:55:c3:81:99:39:31:67:f8:24:86:fb:9f:86:52:8e:8e:70: 84:70:31:21:eb:69:72:7a:7e:af:14:ab:cf:97:8f:a9:bb:2a: fb:6d:e8:0f:27:0e:8b:23:8b:6d:84:0f:10:5a:36:4d:89:4e: d6:a7:c2:19:64:f7:67:08:0a:0f:2f:54:85:fb:4e:01:61:47: 64:8f:15:52:e9:bb:a3:cf:fd:ee:eb:2a:53:20:32:c9:f5:47: f2:6d:90:66 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICB8cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJF RDI4RkZDQzA0MEUzNjAzMkM0MjYxNTQ5NTU2MkJDQzZFRjQ1QzAeFw0yNTA2MTkw NzIwMDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJCQzkyQzhBRDU4RjY5 RjNCMjMzREMyQTk4NkVDOTdDMkU1QUI4REMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+ZBT6YoPtLd1ETQUR3cp1OvN+AVTufea16pwTPghGaheiVNL7 SQBdyLEiUe5o1ENYn27LPewOl5kf+Mcjq4hzoh09QqrxtqvwwGT4PeMQ+qDAkWl/ s/19DLtrv5V058QOnKS7ftUDXL9o7Lu+iax+KyjBI5kl6f51iQhgM/zr/QXiFMyX W6OLk5TCQO6hM/p0RmgHfbkkQ0RUNpZcV+VSDR2dqA01jOxKT46Nv1Op9Oz3nIuC hNTivg6mdxflje9716EodsIYa+byMvsRmM8kNFpc+KxqgZstsRDUD4gRvLIgASA+ 96pkd1QjceQHAHtCt/x7Ql/Na/4uww5kmP+fAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUK8ksitWPafOyM9wqmG7JfC5auNwwHwYDVR0jBBgwFoAUq+0o/8wEDjYDLEJh VJVWK8xu9FwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElO L3EtMG9fOHdFRGpZRExFSmhWSlZXSzh4dTlGdy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvcS0wb184d0VEallETEVKaFZKVldLOHh1OUZ3LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElOL0s4a3NpdFdQYWZPeU05d3Ft RzdKZkM1YXVOdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADT TLMwDQYJKoZIhvcNAQELBQADggEBADnFnlhpsIzb9vSPBpiiG24KBgaYc5UaS2Xz EadveLP2KJvssVOoYPfAwWZa9eWB/QKyChySBRmdwLdt9ieFdi4C8O4oMeFKDlMF O7ygHSaoyRAjHihV31FUfUDaT81LjYSe+Q2weApgpV3hAiQHqnXU4nLd7UAc9HXv NuMMu5/k1EqJXssnoIRNqX7GTBOEd/htrlPluLh3vhmJah2NaCktAHlVw4GZOTFn +CSG+5+GUo6OcIRwMSHraXJ6fq8Uq8+Xj6m7Kvtt6A8nDosji22EDxBaNk2JTtan whlk92cICg8vVIX7TgFhR2SPFVLpu6PP/e7rKlMgMsn1R/JtkGY= -----END CERTIFICATE-----Generated at Wed Jun 25 03:30:21 2025 by rpki-client