$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/JGZ/uu5G7HGxzW5ia56tt4mJl8N--5g.roa File: uu5G7HGxzW5ia56tt4mJl8N--5g.roa (raw, json) Hash identifier: PsvjgyT4iOLRHHYzlHQE2uNnieAJwEovjNKBvdJpGu0= Subject key identifier: BA:EE:46:EC:71:B1:CD:6E:62:6B:9E:AD:B7:89:89:97:C3:7E:FB:98 Certificate issuer: /CN=72C436BE92AE0ADCB314EBC1ACE319FF77BDA3FC Certificate serial: 022D Authority key identifier: 72:C4:36:BE:92:AE:0A:DC:B3:14:EB:C1:AC:E3:19:FF:77:BD:A3:FC Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JGZ/uu5G7HGxzW5ia56tt4mJl8N--5g.roa Signing time: Fri 22 Aug 2025 09:01:08 +0000 ROA not before: Fri 22 Aug 2025 09:01:08 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 63927 IP address blocks: 180.94.30.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/JGZ/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/JGZ/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 557 (0x22d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72C436BE92AE0ADCB314EBC1ACE319FF77BDA3FC Validity Not Before: Aug 22 09:01:08 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=BAEE46EC71B1CD6E626B9EADB7898997C37EFB98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:79:0c:b0:b2:1f:11:ca:cb:e4:b1:84:31:ca: 09:ba:40:07:25:48:ed:f1:30:3a:75:7b:e9:e0:ac: 9a:ce:6a:5c:ec:41:11:92:19:0e:5e:03:ea:1f:25: c0:b2:4f:ee:60:04:38:cd:7f:3e:8e:f7:43:6b:46: 86:53:ee:46:3e:fa:7d:18:1b:4c:af:bf:34:ec:04: 24:4f:a7:e8:81:b8:51:0d:7f:7f:8a:49:eb:c3:ee: 37:64:c2:8a:5c:1a:fc:0f:9a:80:3e:19:50:5b:d9: 4a:79:f7:f2:1c:44:ce:e0:e4:c5:7d:77:99:dd:c0: f9:1d:e8:9e:0b:42:c3:d3:8d:47:c4:06:96:19:e7: 3c:b3:00:45:74:b0:67:c3:18:e3:46:23:5c:83:d5: 52:ba:95:66:a3:4b:ec:47:e7:ac:46:c5:ad:f6:00: 24:90:e2:cb:2a:43:9f:ce:09:25:0e:34:d1:6e:88: c7:79:a3:d5:97:12:c4:1d:fc:44:5f:a8:60:da:39: 72:db:fd:e1:78:86:0e:dd:eb:86:e4:6c:f9:e9:df: 2e:86:b1:6f:29:65:a8:a0:6f:e5:40:8b:37:4a:c5: 92:3e:08:fb:88:1b:7a:b2:2d:4d:3b:7a:34:d1:ab: ec:ed:df:62:e9:16:b0:0b:21:24:f1:f9:b6:49:16: 70:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:EE:46:EC:71:B1:CD:6E:62:6B:9E:AD:B7:89:89:97:C3:7E:FB:98 X509v3 Authority Key Identifier: keyid:72:C4:36:BE:92:AE:0A:DC:B3:14:EB:C1:AC:E3:19:FF:77:BD:A3:FC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JGZ/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JGZ/uu5G7HGxzW5ia56tt4mJl8N--5g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.94.30.0/23 Signature Algorithm: sha256WithRSAEncryption 38:e0:97:fb:78:96:b1:ee:2e:18:da:98:d7:91:db:3e:c0:bb: 8c:f4:37:36:1e:f9:9a:ab:a0:c6:79:3d:1a:1f:39:e0:60:23: c2:ac:a8:8c:0d:07:f3:33:45:53:ec:67:30:50:1a:1f:7f:b7: 21:46:9c:bf:41:44:06:55:ea:8c:a9:49:0b:62:61:39:1b:1d: d1:0e:18:a9:f3:a1:23:3e:30:3f:cf:d4:eb:53:78:63:00:54: 41:1c:59:4c:1f:30:53:3b:2f:74:47:18:05:de:48:4d:23:c6: 0e:77:96:67:b1:b6:10:9a:47:9f:ee:36:7d:53:6b:8f:96:fe: 8a:6f:48:64:47:42:6a:67:6d:82:17:c4:35:92:d5:be:c1:f4: 84:61:fc:4f:ce:93:e0:a2:a7:25:5f:b1:4a:1c:45:3c:72:41: 84:09:d3:a4:ed:06:5f:23:1f:9b:3f:ad:02:82:6a:7e:c0:87: 30:97:21:af:77:ea:6a:d9:b5:2a:5c:9b:4f:8d:12:f4:67:95: f2:52:54:79:d4:ac:a4:1a:90:46:15:e0:29:7a:53:2a:d1:05: 46:29:02:ae:67:af:89:01:86:6f:cc:27:a6:60:1c:61:ee:e1: cc:47:1c:e1:ab:e0:c6:b1:06:59:e1:d7:8c:2d:94:14:2a:e6: 8a:f8:3b:0b -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICAi0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzJD NDM2QkU5MkFFMEFEQ0IzMTRFQkMxQUNFMzE5RkY3N0JEQTNGQzAeFw0yNTA4MjIw OTAxMDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEJBRUU0NkVDNzFCMUNE NkU2MjZCOUVBREI3ODk4OTk3QzM3RUZCOTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQeQywsh8RysvksYQxygm6QAclSO3xMDp1e+ngrJrOalzsQRGS GQ5eA+ofJcCyT+5gBDjNfz6O90NrRoZT7kY++n0YG0yvvzTsBCRPp+iBuFENf3+K SevD7jdkwopcGvwPmoA+GVBb2Up59/IcRM7g5MV9d5ndwPkd6J4LQsPTjUfEBpYZ 5zyzAEV0sGfDGONGI1yD1VK6lWajS+xH56xGxa32ACSQ4ssqQ5/OCSUONNFuiMd5 o9WXEsQd/ERfqGDaOXLb/eF4hg7d64bkbPnp3y6GsW8pZaigb+VAizdKxZI+CPuI G3qyLU07ejTRq+zt32LpFrALISTx+bZJFnB3AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUuu5G7HGxzW5ia56tt4mJl8N++5gwHwYDVR0jBBgwFoAUcsQ2vpKuCtyzFOvB rOMZ/3e9o/wwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSkdaL2Nz UTJ2cEt1Q3R5ekZPdkJyT01aXzNlOW9fdy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev Y3NRMnZwS3VDdHl6Rk92QnJPTVpfM2U5b193LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvSkdaL3V1NUc3SEd4elc1aWE1NnR0NG1KbDhO LS01Zy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAG0Xh4wDQYJ KoZIhvcNAQELBQADggEBADjgl/t4lrHuLhjamNeR2z7Au4z0NzYe+ZqroMZ5PRof OeBgI8KsqIwNB/MzRVPsZzBQGh9/tyFGnL9BRAZV6oypSQtiYTkbHdEOGKnzoSM+ MD/P1OtTeGMAVEEcWUwfMFM7L3RHGAXeSE0jxg53lmexthCaR5/uNn1Ta4+W/opv SGRHQmpnbYIXxDWS1b7B9IRh/E/Ok+CipyVfsUocRTxyQYQJ06TtBl8jH5s/rQKC an7AhzCXIa936mrZtSpcm0+NEvRnlfJSVHnUrKQakEYV4Cl6UyrRBUYpAq5nr4kB hm/MJ6ZgHGHu4cxHHOGr4MaxBlnh14wtlBQq5or4Ows= -----END CERTIFICATE-----Generated at Sun Aug 24 07:31:01 2025 by rpki-client