$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HYA/UFlnU4ikGwoLgzaep6hE8NmifZw.roa File: UFlnU4ikGwoLgzaep6hE8NmifZw.roa (raw, json) Hash identifier: y5mFasOvnGkNoWDCHh8uVuNT8BOc9XOeXztFBTtKPKA= Subject key identifier: 50:59:67:53:88:A4:1B:0A:0B:83:36:9E:A7:A8:44:F0:D9:A2:7D:9C Certificate issuer: /CN=0EAE2D331F2C4280C16AA8BAFE16FDDCCE3715B4 Certificate serial: 0D92 Authority key identifier: 0E:AE:2D:33:1F:2C:42:80:C1:6A:A8:BA:FE:16:FD:DC:CE:37:15:B4 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Dq4tMx8sQoDBaqi6_hb93M43FbQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HYA/UFlnU4ikGwoLgzaep6hE8NmifZw.roa Signing time: Fri 22 Aug 2025 08:52:53 +0000 ROA not before: Fri 22 Aug 2025 08:52:53 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 10085 IP address blocks: 103.252.128.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HYA/Dq4tMx8sQoDBaqi6_hb93M43FbQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HYA/Dq4tMx8sQoDBaqi6_hb93M43FbQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Dq4tMx8sQoDBaqi6_hb93M43FbQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3474 (0xd92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0EAE2D331F2C4280C16AA8BAFE16FDDCCE3715B4 Validity Not Before: Aug 22 08:52:53 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=5059675388A41B0A0B83369EA7A844F0D9A27D9C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:bd:69:30:96:bb:1f:5e:e1:ef:5b:e1:17:d0: de:dd:9b:b4:a2:91:22:91:fc:80:da:19:18:84:4d: ca:87:3b:0b:3b:e9:b2:57:a5:26:e1:d2:87:82:b1: 78:95:cd:5c:03:36:51:8b:a4:28:64:45:1d:0e:ee: 4c:ad:65:7f:7c:4b:a4:fa:db:a8:09:85:54:a2:67: d6:3b:0b:1b:ee:f1:fc:cf:04:7f:44:a5:8c:f4:8a: a9:ea:42:b7:81:88:e2:c5:bf:a3:81:68:60:94:1d: 6d:63:d8:ad:29:ba:40:52:b2:86:56:96:5a:98:28: 0d:b7:1b:c8:b0:83:fc:48:98:6e:ad:f1:b3:ee:6f: a7:03:31:45:56:92:7f:61:f8:93:1b:3b:9e:19:fc: 65:05:6f:23:63:f7:2e:69:1a:86:f9:72:d5:98:76: 09:f0:6d:27:66:98:00:fd:4e:4f:1b:42:a5:1e:65: 06:50:f5:0b:11:49:ff:76:fa:76:ef:bc:08:56:09: 07:4c:58:ae:c0:99:e7:b0:2d:12:5c:8d:e3:30:5b: c3:91:e6:47:2f:8d:4d:ca:5a:8e:a1:b6:b8:2b:cb: 30:e6:51:ec:73:3a:8c:cd:8a:eb:01:53:4c:25:72: fe:4b:4e:bf:60:4a:3c:1e:83:93:c2:a6:79:51:17: 76:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:59:67:53:88:A4:1B:0A:0B:83:36:9E:A7:A8:44:F0:D9:A2:7D:9C X509v3 Authority Key Identifier: keyid:0E:AE:2D:33:1F:2C:42:80:C1:6A:A8:BA:FE:16:FD:DC:CE:37:15:B4 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HYA/Dq4tMx8sQoDBaqi6_hb93M43FbQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Dq4tMx8sQoDBaqi6_hb93M43FbQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HYA/UFlnU4ikGwoLgzaep6hE8NmifZw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.252.128.0/22 Signature Algorithm: sha256WithRSAEncryption 71:4a:98:0d:8b:7a:a9:69:27:45:c3:ec:07:c4:f8:43:d2:41: f5:5e:56:2f:60:8f:43:4a:8c:44:21:d1:b6:a3:0d:eb:74:93: 66:0c:21:27:2a:74:13:86:8c:b5:37:fe:8e:25:12:7c:f8:66: f0:6b:5c:34:94:5e:fd:ad:54:a9:37:24:d9:ed:49:24:fe:08: d4:36:7e:b7:1d:20:94:4f:4a:4b:17:86:6e:51:2a:f7:6a:5f: c5:3d:39:8e:ab:ae:ab:65:b8:78:e3:d5:7a:81:c5:9e:e2:25: b1:d8:d1:61:80:87:6a:55:af:21:29:5d:6e:ee:d5:2e:e3:9a: bd:65:5d:15:6d:e2:a6:83:b5:39:54:a8:86:9e:2d:16:5e:55: 1f:8b:07:d6:31:f3:2d:14:5b:a0:e0:90:e9:5b:a0:f6:49:27: 2a:17:b2:26:b3:ab:88:84:66:44:cf:85:42:8a:66:ad:20:3c: 8d:24:32:f9:c8:f9:61:0e:1a:04:62:1e:7f:da:44:03:79:d5: 9f:f5:3c:8b:6e:ae:b2:4c:55:cc:63:0b:74:15:98:30:8a:cf: d4:4b:e9:f4:88:52:f8:41:4a:9c:7f:32:be:52:15:bf:f8:fe: 85:0b:00:fc:03:7e:d4:a4:de:15:35:58:86:7c:60:e9:df:74: 75:cd:92:06 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDZIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEVB RTJEMzMxRjJDNDI4MEMxNkFBOEJBRkUxNkZERENDRTM3MTVCNDAeFw0yNTA4MjIw ODUyNTNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDUwNTk2NzUzODhBNDFC MEEwQjgzMzY5RUE3QTg0NEYwRDlBMjdEOUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2vWkwlrsfXuHvW+EX0N7dm7SikSKR/IDaGRiETcqHOws76bJX pSbh0oeCsXiVzVwDNlGLpChkRR0O7kytZX98S6T626gJhVSiZ9Y7Cxvu8fzPBH9E pYz0iqnqQreBiOLFv6OBaGCUHW1j2K0pukBSsoZWllqYKA23G8iwg/xImG6t8bPu b6cDMUVWkn9h+JMbO54Z/GUFbyNj9y5pGob5ctWYdgnwbSdmmAD9Tk8bQqUeZQZQ 9QsRSf92+nbvvAhWCQdMWK7AmeewLRJcjeMwW8OR5kcvjU3KWo6htrgryzDmUexz OozNiusBU0wlcv5LTr9gSjweg5PCpnlRF3bVAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUUFlnU4ikGwoLgzaep6hE8NmifZwwHwYDVR0jBBgwFoAUDq4tMx8sQoDBaqi6 /hb93M43FbQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSFlBL0Rx NHRNeDhzUW9EQmFxaTZfaGI5M000M0ZiUS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev RHE0dE14OHNRb0RCYXFpNl9oYjkzTTQzRmJRLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvSFlBL1VGbG5VNGlrR3dvTGd6YWVwNmhFOE5t aWZady5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn/IAwDQYJ KoZIhvcNAQELBQADggEBAHFKmA2LeqlpJ0XD7AfE+EPSQfVeVi9gj0NKjEQh0baj Det0k2YMIScqdBOGjLU3/o4lEnz4ZvBrXDSUXv2tVKk3JNntSST+CNQ2frcdIJRP SksXhm5RKvdqX8U9OY6rrqtluHjj1XqBxZ7iJbHY0WGAh2pVryEpXW7u1S7jmr1l XRVt4qaDtTlUqIaeLRZeVR+LB9Yx8y0UW6DgkOlboPZJJyoXsiazq4iEZkTPhUKK Zq0gPI0kMvnI+WEOGgRiHn/aRAN51Z/1PIturrJMVcxjC3QVmDCKz9RL6fSIUvhB Spx/Mr5SFb/4/oULAPwDftSk3hU1WIZ8YOnfdHXNkgY= -----END CERTIFICATE-----Generated at Sun Aug 24 09:20:44 2025 by rpki-client