$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/UVxjTwx0IOGDtM7YNYjMt3m07Uk.roa File: UVxjTwx0IOGDtM7YNYjMt3m07Uk.roa (raw, json) Hash identifier: 9FIjWrfQ7AqvUOBzjWMMtcyirlNTTY1hxzywaVxZO/E= Subject key identifier: 51:5C:63:4F:0C:74:20:E1:83:B4:CE:D8:35:88:CC:B7:79:B4:ED:49 Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB Certificate serial: 0E28 Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/UVxjTwx0IOGDtM7YNYjMt3m07Uk.roa Signing time: Fri 22 Aug 2025 08:51:58 +0000 ROA not before: Fri 22 Aug 2025 08:51:58 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18046 IP address blocks: 150.107.56.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3624 (0xe28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB Validity Not Before: Aug 22 08:51:58 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=515C634F0C7420E183B4CED83588CCB779B4ED49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:42:a1:30:9d:1c:81:02:ac:a9:4c:60:61:8e: d6:bf:e0:a8:4a:73:ad:ab:6e:c3:cf:e1:e0:d8:ed: 28:71:bf:cd:01:4d:e0:ed:c2:23:11:d2:bf:53:56: cd:f5:7a:89:be:b6:71:88:27:02:d7:16:a2:95:82: 3f:49:5c:ce:33:7a:5e:a4:29:78:c4:c7:e9:d3:50: bc:d5:43:29:aa:08:29:04:14:3c:94:5f:c5:a9:76: 05:59:59:de:c8:c3:11:3d:e9:7b:11:bd:fd:16:8a: 1d:96:68:48:da:b4:d6:04:f0:76:b0:cf:db:ef:01: 22:d1:83:d1:9f:dc:ac:dd:d4:f6:9b:f1:4b:48:10: c9:e9:cb:ca:05:35:70:ac:78:07:d9:ab:48:f4:a3: 07:72:e1:58:c6:aa:17:f9:18:44:c7:bc:6e:f4:9f: 14:ec:77:8a:59:a9:ff:b0:62:a8:c7:2a:e1:e8:ae: d9:be:51:e2:6e:fc:02:dc:6f:11:26:91:a8:5b:d3: 75:bc:50:10:cf:07:fe:03:fb:2a:75:4b:3a:81:cb: 54:64:69:19:7b:82:d5:e5:cb:c8:96:a7:f7:02:41: 4b:51:fc:66:81:20:33:c2:c8:73:39:ff:d8:c6:fa: d2:81:8e:47:90:74:7a:e5:a8:a6:18:a2:31:3b:51: a7:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:5C:63:4F:0C:74:20:E1:83:B4:CE:D8:35:88:CC:B7:79:B4:ED:49 X509v3 Authority Key Identifier: keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/UVxjTwx0IOGDtM7YNYjMt3m07Uk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.107.56.0/22 Signature Algorithm: sha256WithRSAEncryption 09:60:80:96:42:66:f7:68:4b:49:05:e8:8c:e6:14:a7:ee:0d: 6e:4e:a7:a5:64:b4:9a:a4:1a:91:72:9d:33:34:f8:09:83:a7: 5c:d4:88:94:9a:18:f5:98:aa:d5:fa:ed:50:69:95:09:11:58: 45:c3:c4:98:78:eb:3f:67:af:2d:cd:bd:4d:97:7e:89:db:c7: ed:1f:db:98:80:5c:fc:23:70:a8:d7:fc:da:96:08:95:3b:c1: 6e:2a:08:52:84:ee:00:ec:3c:2b:85:2e:c0:c7:06:13:54:52: 2f:d1:67:8f:9e:45:18:0e:00:2b:f6:83:d0:82:58:89:d3:a6: a7:9c:a7:94:24:53:76:e9:ed:22:50:29:6a:b6:cb:c7:b6:15: ee:95:56:ff:60:e5:be:a8:d0:33:e0:77:df:dc:72:76:47:f3: 3f:99:a4:bf:67:ed:e5:ad:62:8f:a3:4a:8b:5c:85:e1:06:73: 5e:18:4a:32:ab:93:d5:fc:ae:ce:05:15:13:ae:08:aa:07:e8: ad:1f:31:3e:79:65:78:a4:da:bf:48:e8:d1:56:f6:a4:be:b7: ee:18:d7:08:07:1a:df:e8:7e:4f:f2:7a:c1:09:d8:13:9b:48: 54:42:7e:6b:82:d4:00:23:d0:7c:5c:1a:0c:8f:38:41:6b:bd: d5:ca:2a:f5 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDigwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEM3 ODk2MTY0MkEwNEJFMTMyNzA4REIxOTNEN0JBOTE2QjJCNjdDQjAeFw0yNTA4MjIw ODUxNThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDUxNUM2MzRGMEM3NDIw RTE4M0I0Q0VEODM1ODhDQ0I3NzlCNEVENDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDjQqEwnRyBAqypTGBhjta/4KhKc62rbsPP4eDY7Shxv80BTeDt wiMR0r9TVs31eom+tnGIJwLXFqKVgj9JXM4zel6kKXjEx+nTULzVQymqCCkEFDyU X8WpdgVZWd7IwxE96XsRvf0Wih2WaEjatNYE8Hawz9vvASLRg9Gf3Kzd1Pab8UtI EMnpy8oFNXCseAfZq0j0owdy4VjGqhf5GETHvG70nxTsd4pZqf+wYqjHKuHortm+ UeJu/ALcbxEmkahb03W8UBDPB/4D+yp1SzqBy1RkaRl7gtXly8iWp/cCQUtR/GaB IDPCyHM5/9jG+tKBjkeQdHrlqKYYojE7Uae3AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUUVxjTwx0IOGDtM7YNYjMt3m07UkwHwYDVR0jBBgwFoAUDHiWFkKgS+EycI2x k9e6kWsrZ8swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE9OR0ZP TkcvREhpV0ZrS2dTLUV5Y0kyeGs5ZTZrV3NyWjhzLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9ESGlXRmtLZ1MtRXljSTJ4azllNmtXc3JaOHMuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ET05HRk9ORy9VVnhqVHd4MElPR0R0 TTdZTllqTXQzbTA3VWsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQClms4MA0GCSqGSIb3DQEBCwUAA4IBAQAJYICWQmb3aEtJBeiM5hSn7g1uTqel ZLSapBqRcp0zNPgJg6dc1IiUmhj1mKrV+u1QaZUJEVhFw8SYeOs/Z68tzb1Nl36J 28ftH9uYgFz8I3Co1/zalgiVO8FuKghShO4A7DwrhS7AxwYTVFIv0WePnkUYDgAr 9oPQgliJ06annKeUJFN26e0iUClqtsvHthXulVb/YOW+qNAz4Hff3HJ2R/M/maS/ Z+3lrWKPo0qLXIXhBnNeGEoyq5PV/K7OBRUTrgiqB+itHzE+eWV4pNq/SOjRVvak vrfuGNcIBxrf6H5P8nrBCdgTm0hUQn5rgtQAI9B8XBoMjzhBa73Vyir1 -----END CERTIFICATE-----Generated at Sun Aug 24 07:17:49 2025 by rpki-client