$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FLOPPY/udQ7k2Fv2snEpGqEw6jjgB2dXTI.roa File: udQ7k2Fv2snEpGqEw6jjgB2dXTI.roa (raw, json) Hash identifier: PEuq54GY8y250K60+ArTbJSB+gP1TF/vqtlbTuE5jek= Subject key identifier: B9:D4:3B:93:61:6F:DA:C9:C4:A4:6A:84:C3:A8:E3:80:1D:9D:5D:32 Certificate issuer: /CN=9E454EA69C0249FFAB072242AEDD882821269838 Certificate serial: 021C Authority key identifier: 9E:45:4E:A6:9C:02:49:FF:AB:07:22:42:AE:DD:88:28:21:26:98:38 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/nkVOppwCSf-rByJCrt2IKCEmmDg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FLOPPY/udQ7k2Fv2snEpGqEw6jjgB2dXTI.roa Signing time: Fri 22 Aug 2025 09:01:04 +0000 ROA not before: Fri 22 Aug 2025 09:01:04 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 150756 IP address blocks: 203.99.146.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FLOPPY/nkVOppwCSf-rByJCrt2IKCEmmDg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FLOPPY/nkVOppwCSf-rByJCrt2IKCEmmDg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/nkVOppwCSf-rByJCrt2IKCEmmDg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 540 (0x21c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E454EA69C0249FFAB072242AEDD882821269838 Validity Not Before: Aug 22 09:01:04 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B9D43B93616FDAC9C4A46A84C3A8E3801D9D5D32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c2:38:1c:ed:7c:bc:4a:2b:05:41:87:93:47: b2:d0:d8:56:d4:8a:93:e8:7c:a3:22:9a:a8:79:0d: 2a:39:9a:46:1d:19:e4:14:c8:38:14:0d:1f:6c:d9: cc:bd:45:5d:d1:ec:8d:d0:3a:0f:2d:d3:75:be:3b: 72:0f:bd:21:b3:91:a1:cf:47:18:d4:83:53:78:b0: f8:16:d6:24:1e:c5:e1:0f:2f:39:31:c2:84:41:f8: d3:c4:a6:59:1d:6b:0b:a1:7d:e6:89:74:3b:b1:18: 39:68:f1:70:55:3a:35:df:45:58:84:2b:ce:03:0d: d0:dc:63:b2:09:99:0d:ee:cd:b6:37:c6:e4:ed:be: 06:15:c6:46:c5:f2:a1:91:fa:0b:7f:57:58:b2:0a: ad:68:91:11:31:83:0a:3e:93:45:6f:f2:2c:7c:c5: a4:1c:b7:bd:f7:81:d2:9a:67:89:c4:7d:61:95:04: 56:1b:18:10:c7:be:af:c6:4a:93:13:6b:49:00:84: 11:7d:19:74:a5:36:fa:71:4f:11:e0:c6:44:de:3b: 56:95:2a:c6:82:72:3f:85:a1:2c:94:2b:22:0c:6c: fa:33:6d:14:e1:e1:f7:7b:3d:30:95:11:b0:cf:50: e5:44:9c:d7:ac:a2:fe:d9:2f:6e:72:74:dd:7f:52: 42:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:D4:3B:93:61:6F:DA:C9:C4:A4:6A:84:C3:A8:E3:80:1D:9D:5D:32 X509v3 Authority Key Identifier: keyid:9E:45:4E:A6:9C:02:49:FF:AB:07:22:42:AE:DD:88:28:21:26:98:38 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FLOPPY/nkVOppwCSf-rByJCrt2IKCEmmDg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/nkVOppwCSf-rByJCrt2IKCEmmDg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FLOPPY/udQ7k2Fv2snEpGqEw6jjgB2dXTI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.99.146.0/24 Signature Algorithm: sha256WithRSAEncryption ab:29:d9:cf:85:ec:9f:01:12:8a:72:5e:6b:c4:bb:bb:aa:b0: 9e:46:29:6c:a3:99:81:07:fb:e9:dc:a4:b5:d9:41:04:3c:a5: cf:4d:3c:7e:67:b5:17:5d:35:fb:f1:93:f1:71:68:6b:15:c1: 76:3f:5e:a0:ab:0f:1f:a6:fe:4a:35:b4:ef:54:a0:56:af:4e: 7e:21:19:e4:d0:47:02:e0:9c:99:50:97:6f:96:d4:b0:c1:75: d7:86:20:71:c1:0c:e0:45:00:53:0e:b5:4a:33:b5:75:bd:13: f0:47:ab:02:6e:77:9d:c1:68:72:29:70:d7:3f:f2:6b:63:72: 45:fc:68:9d:02:32:1a:82:d9:ce:7d:aa:49:2e:dd:56:74:c0: ea:eb:1a:49:28:55:f5:82:be:60:6c:2e:bf:6f:ac:b1:88:2a: 34:a2:6b:8f:f6:a7:e7:68:88:6a:22:09:6e:61:fd:fd:39:c4: 96:0e:69:cc:21:e3:af:f2:75:4b:70:58:83:c8:bd:57:9b:68: fe:70:6c:4b:0e:df:e6:cd:c8:71:5c:20:5e:46:05:6a:2d:06: ef:03:37:fd:f9:9b:6b:b4:be:38:50:eb:4e:65:52:c4:44:de: c2:50:0e:5c:92:75:ad:04:af:72:d7:55:dc:e6:25:33:e6:67: db:20:01:77 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICAhwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUU0 NTRFQTY5QzAyNDlGRkFCMDcyMjQyQUVERDg4MjgyMTI2OTgzODAeFw0yNTA4MjIw OTAxMDRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEI5RDQzQjkzNjE2RkRB QzlDNEE0NkE4NEMzQThFMzgwMUQ5RDVEMzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzwjgc7Xy8SisFQYeTR7LQ2FbUipPofKMimqh5DSo5mkYdGeQU yDgUDR9s2cy9RV3R7I3QOg8t03W+O3IPvSGzkaHPRxjUg1N4sPgW1iQexeEPLzkx woRB+NPEplkdawuhfeaJdDuxGDlo8XBVOjXfRViEK84DDdDcY7IJmQ3uzbY3xuTt vgYVxkbF8qGR+gt/V1iyCq1okRExgwo+k0Vv8ix8xaQct733gdKaZ4nEfWGVBFYb GBDHvq/GSpMTa0kAhBF9GXSlNvpxTxHgxkTeO1aVKsaCcj+FoSyUKyIMbPozbRTh 4fd7PTCVEbDPUOVEnNesov7ZL25ydN1/UkLPAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUudQ7k2Fv2snEpGqEw6jjgB2dXTIwHwYDVR0jBBgwFoAUnkVOppwCSf+rByJC rt2IKCEmmDgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkxPUFBZ L25rVk9wcHdDU2YtckJ5SkNydDJJS0NFbW1EZy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbmtWT3Bwd0NTZi1yQnlKQ3J0MklLQ0VtbURnLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkxPUFBZL3VkUTdrMkZ2MnNuRXBHcUV3 NmpqZ0IyZFhUSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADL Y5IwDQYJKoZIhvcNAQELBQADggEBAKsp2c+F7J8BEopyXmvEu7uqsJ5GKWyjmYEH ++ncpLXZQQQ8pc9NPH5ntRddNfvxk/FxaGsVwXY/XqCrDx+m/ko1tO9UoFavTn4h GeTQRwLgnJlQl2+W1LDBddeGIHHBDOBFAFMOtUoztXW9E/BHqwJud53BaHIpcNc/ 8mtjckX8aJ0CMhqC2c59qkku3VZ0wOrrGkkoVfWCvmBsLr9vrLGIKjSia4/2p+do iGoiCW5h/f05xJYOacwh46/ydUtwWIPIvVebaP5wbEsO3+bNyHFcIF5GBWotBu8D N/35m2u0vjhQ605lUsRE3sJQDlySda0Er3LXVdzmJTPmZ9sgAXc= -----END CERTIFICATE-----Generated at Sun Aug 24 07:41:02 2025 by rpki-client