$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/uYTgLlW0L6zMXzA8ZC7Qksbott4.roa File: uYTgLlW0L6zMXzA8ZC7Qksbott4.roa (raw, json) Hash identifier: +BJFBQ/pfGXrDsjpmRxyRCO+OuqWv6Kvz7yKILYxTPU= Subject key identifier: B9:84:E0:2E:55:B4:2F:AC:CC:5F:30:3C:64:2E:D0:92:C6:E8:B6:DE Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1468 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/uYTgLlW0L6zMXzA8ZC7Qksbott4.roa Signing time: Fri 22 Aug 2025 09:00:23 +0000 ROA not before: Fri 22 Aug 2025 09:00:23 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9922 IP address blocks: 124.218.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5224 (0x1468) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 22 09:00:23 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B984E02E55B42FACCC5F303C642ED092C6E8B6DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:1e:38:20:0d:4b:b2:19:aa:27:f7:a3:3d:cb: 78:e4:33:8f:08:96:bc:6a:67:56:bd:14:70:73:8f: 82:62:4f:c0:c2:2e:9f:e6:4b:2f:3f:19:d3:93:a0: 42:d1:9f:53:70:d3:17:23:5a:c5:09:78:51:30:cf: 46:ae:70:61:8a:25:19:31:c6:1b:63:47:b1:2e:b8: e9:7f:17:83:72:3e:c8:1c:b7:0e:83:34:9c:95:1b: aa:10:d2:43:18:24:3c:70:24:1e:44:74:c0:39:c9: fb:4e:1a:6a:49:58:05:29:85:da:ca:0a:83:03:2f: 0f:a7:3e:99:4f:49:bd:1c:0e:9d:2d:4f:ea:54:8d: 43:0f:6f:23:64:cc:66:3d:2b:5c:2a:d1:8e:5e:22: 9b:fa:f0:7d:f8:bf:8e:5b:b4:e4:b4:d7:01:8b:e0: 37:51:e8:8e:3a:b0:06:5d:7d:26:1a:dc:a1:a7:ea: 59:56:91:af:b0:14:bf:d7:66:1c:64:bf:f0:5f:20: 01:18:17:9d:d8:4c:5c:24:d4:50:32:aa:d3:5c:f4: 60:3e:55:43:fa:e6:cd:6d:45:12:b4:ef:01:53:94: 75:67:13:ee:a3:9d:bd:ab:79:b1:1d:2e:b4:41:94: ac:bd:14:aa:e1:1a:7f:c4:45:71:02:91:aa:8c:3f: e8:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:84:E0:2E:55:B4:2F:AC:CC:5F:30:3C:64:2E:D0:92:C6:E8:B6:DE X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/uYTgLlW0L6zMXzA8ZC7Qksbott4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.218.172.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:f3:10:4d:5b:69:93:18:dc:98:6a:c7:1b:cb:39:87:99:19: aa:e4:f5:20:0a:83:77:01:36:15:8b:3a:56:33:c4:98:e3:6c: 4c:92:02:66:b9:d2:30:ad:e5:61:c2:b9:30:a3:41:56:cd:af: c3:ac:23:89:49:43:16:53:25:93:2c:6c:50:6d:4d:03:52:56: 05:3a:32:f2:eb:50:b1:7a:2a:71:74:a7:10:14:d5:10:df:2e: c1:47:a1:90:b1:7c:31:01:9e:95:d7:1c:60:4c:93:ec:19:68: 94:fd:2e:12:8c:a4:70:16:11:c3:2f:a5:2a:d3:73:57:fc:b9: f9:0d:d8:1a:d2:39:63:ff:91:e4:73:52:e2:4e:0e:43:73:ed: 13:86:9a:17:ae:59:e1:47:08:06:82:df:41:5e:38:bb:dd:c2: fd:36:a4:bf:f4:60:27:15:b7:69:da:26:50:06:23:4d:63:a2: 2f:6f:c4:7b:15:31:8a:4d:0f:f0:cf:09:2d:a8:63:7f:a1:b8: 30:99:b0:b0:3c:3d:3f:50:8f:33:73:e4:13:ec:95:88:aa:17: 62:cf:ed:a1:3a:2c:12:63:93:78:fe:c0:47:f8:f3:fc:c2:95: 3c:19:14:f6:fa:f9:bb:07:48:b6:8b:a3:48:55:50:50:a4:4b: 86:69:8b:4d -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICFGgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw OTAwMjNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEI5ODRFMDJFNTVCNDJG QUNDQzVGMzAzQzY0MkVEMDkyQzZFOEI2REUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGHjggDUuyGaon96M9y3jkM48IlrxqZ1a9FHBzj4JiT8DCLp/m Sy8/GdOToELRn1Nw0xcjWsUJeFEwz0aucGGKJRkxxhtjR7EuuOl/F4NyPsgctw6D NJyVG6oQ0kMYJDxwJB5EdMA5yftOGmpJWAUphdrKCoMDLw+nPplPSb0cDp0tT+pU jUMPbyNkzGY9K1wq0Y5eIpv68H34v45btOS01wGL4DdR6I46sAZdfSYa3KGn6llW ka+wFL/XZhxkv/BfIAEYF53YTFwk1FAyqtNc9GA+VUP65s1tRRK07wFTlHVnE+6j nb2rebEdLrRBlKy9FKrhGn/ERXECkaqMP+jVAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUuYTgLlW0L6zMXzA8ZC7Qksbott4wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3VZVGdMbFcwTDZ6TVh6QThaQzdRa3Ni b3R0NC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB82qwwDQYJ KoZIhvcNAQELBQADggEBAGzzEE1baZMY3JhqxxvLOYeZGark9SAKg3cBNhWLOlYz xJjjbEySAma50jCt5WHCuTCjQVbNr8OsI4lJQxZTJZMsbFBtTQNSVgU6MvLrULF6 KnF0pxAU1RDfLsFHoZCxfDEBnpXXHGBMk+wZaJT9LhKMpHAWEcMvpSrTc1f8ufkN 2BrSOWP/keRzUuJODkNz7ROGmheuWeFHCAaC30FeOLvdwv02pL/0YCcVt2naJlAG I01joi9vxHsVMYpND/DPCS2oY3+huDCZsLA8PT9QjzNz5BPslYiqF2LP7aE6LBJj k3j+wEf48/zClTwZFPb6+bsHSLaLo0hVUFCkS4Zpi00= -----END CERTIFICATE-----Generated at Sun Aug 24 13:49:38 2025 by rpki-client