$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/JIGENTEC/UIMTQHmFmo88PzEoISDo_JVpdaQ.roa File: UIMTQHmFmo88PzEoISDo_JVpdaQ.roa (raw, json) Hash identifier: 6I5G4AMaTT88cxkwmm4Q54jpCJ74DMEcBLsESCz8zjY= Subject key identifier: 50:83:13:40:79:85:9A:8F:3C:3F:31:28:21:20:E8:FC:95:69:75:A4 Certificate issuer: /CN=830BC4410162A58D0DB17E0A351551FBB3D751A1 Certificate serial: 0DA6 Authority key identifier: 83:0B:C4:41:01:62:A5:8D:0D:B1:7E:0A:35:15:51:FB:B3:D7:51:A1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gwvEQQFipY0NsX4KNRVR-7PXUaE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JIGENTEC/UIMTQHmFmo88PzEoISDo_JVpdaQ.roa Signing time: Fri 22 Aug 2025 08:56:46 +0000 ROA not before: Fri 22 Aug 2025 08:56:46 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131619 IP address blocks: 103.116.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/JIGENTEC/gwvEQQFipY0NsX4KNRVR-7PXUaE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/JIGENTEC/gwvEQQFipY0NsX4KNRVR-7PXUaE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gwvEQQFipY0NsX4KNRVR-7PXUaE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3494 (0xda6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=830BC4410162A58D0DB17E0A351551FBB3D751A1 Validity Not Before: Aug 22 08:56:46 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=5083134079859A8F3C3F31282120E8FC956975A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:ed:78:75:ef:1a:a1:ae:72:e4:da:6c:c2:4d: dd:ac:40:11:71:01:c9:d4:01:29:3e:7d:18:ed:05: b6:36:66:b3:d1:fc:ea:e8:d6:f4:27:56:4f:1d:c8: ce:16:d2:24:64:96:1f:28:d7:44:2e:a0:90:af:2e: 32:f2:77:ed:cb:ff:77:7e:89:ac:52:d4:01:e3:d7: 3f:5c:1f:5f:3e:84:6a:e8:f0:e0:6d:35:29:c0:8f: 38:65:b5:fc:51:c0:a7:e4:13:69:e9:62:9d:b7:8f: cc:66:7b:e3:c9:5b:ef:6b:b3:a4:17:77:22:c0:f8: e9:a2:88:db:b4:61:6e:9b:a0:fa:ff:0b:05:09:e9: 7b:64:04:07:51:6e:27:32:aa:c7:fc:b0:2f:44:78: e3:fa:69:9b:10:8c:f5:8b:62:1c:c2:c6:eb:98:be: b6:26:da:53:86:26:50:1f:66:b9:5e:10:63:15:6f: df:9f:78:2d:44:a1:a7:d2:75:c6:df:52:20:7b:04: 91:01:f3:39:f9:39:1e:03:47:54:fc:4f:1a:9b:34: ee:49:13:d6:95:72:f1:dd:06:b0:75:7c:02:27:9f: 32:ec:dd:82:83:df:c3:51:96:4c:67:37:48:c8:03: 69:70:ba:8a:2e:d2:64:7d:c6:10:9d:a4:0c:e0:84: 44:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:83:13:40:79:85:9A:8F:3C:3F:31:28:21:20:E8:FC:95:69:75:A4 X509v3 Authority Key Identifier: keyid:83:0B:C4:41:01:62:A5:8D:0D:B1:7E:0A:35:15:51:FB:B3:D7:51:A1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JIGENTEC/gwvEQQFipY0NsX4KNRVR-7PXUaE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gwvEQQFipY0NsX4KNRVR-7PXUaE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JIGENTEC/UIMTQHmFmo88PzEoISDo_JVpdaQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.116.99.0/24 Signature Algorithm: sha256WithRSAEncryption 05:d8:1e:c7:c3:6c:24:fc:46:c6:9b:eb:f3:8c:2d:f6:79:90: 29:2c:89:63:93:39:13:3e:d0:95:ba:6c:f0:f3:f0:9a:74:32: e1:2b:71:e9:e3:24:dc:6f:e4:1a:31:1f:e0:bc:72:ce:e4:93: 50:59:4d:be:6e:fb:5c:3f:22:11:ed:1f:51:d8:a7:e3:77:3f: 22:98:2a:63:91:bc:22:3b:f2:ce:f4:36:bb:dc:60:2e:f1:79: 34:60:81:aa:19:bc:b7:c5:8f:2b:67:31:53:30:d0:57:63:73: 94:00:3f:42:18:aa:f2:f7:e4:2d:bd:2d:84:f6:6b:93:5d:15: db:6f:97:8f:67:6e:d0:c1:65:4d:8b:e5:76:71:41:d5:88:6b: 65:b1:17:11:a8:cb:8f:64:d2:36:64:b1:b5:6b:07:cd:00:d6: cd:bb:61:69:b7:3c:58:a3:56:16:a1:1f:00:40:fc:29:0c:ed: a0:c1:fb:a1:da:15:46:3a:1e:8e:d9:74:8f:4a:8d:71:ea:3e: 3d:7b:04:4d:b5:1f:b0:8a:e3:27:05:a3:57:da:21:c3:f6:98: 57:2a:ae:2f:8d:3f:2f:b9:3f:f3:c2:de:d1:f1:f6:db:c3:e8: 55:17:38:2e:45:8f:88:8b:97:f4:75:45:6f:2d:70:ee:3d:93: 3d:3a:c4:57 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDaYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMw QkM0NDEwMTYyQTU4RDBEQjE3RTBBMzUxNTUxRkJCM0Q3NTFBMTAeFw0yNTA4MjIw ODU2NDZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDUwODMxMzQwNzk4NTlB OEYzQzNGMzEyODIxMjBFOEZDOTU2OTc1QTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCU7Xh17xqhrnLk2mzCTd2sQBFxAcnUASk+fRjtBbY2ZrPR/Oro 1vQnVk8dyM4W0iRklh8o10QuoJCvLjLyd+3L/3d+iaxS1AHj1z9cH18+hGro8OBt NSnAjzhltfxRwKfkE2npYp23j8xme+PJW+9rs6QXdyLA+OmiiNu0YW6boPr/CwUJ 6XtkBAdRbicyqsf8sC9EeOP6aZsQjPWLYhzCxuuYvrYm2lOGJlAfZrleEGMVb9+f eC1EoafSdcbfUiB7BJEB8zn5OR4DR1T8TxqbNO5JE9aVcvHdBrB1fAInnzLs3YKD 38NRlkxnN0jIA2lwuoou0mR9xhCdpAzghERhAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUUIMTQHmFmo88PzEoISDo/JVpdaQwHwYDVR0jBBgwFoAUgwvEQQFipY0NsX4K NRVR+7PXUaEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSklHRU5U RUMvZ3d2RVFRRmlwWTBOc1g0S05SVlItN1BYVWFFLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9nd3ZFUVFGaXBZME5zWDRLTlJWUi03UFhVYUUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9KSUdFTlRFQy9VSU1UUUhtRm1vODhQ ekVvSVNEb19KVnBkYVEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZ3RjMA0GCSqGSIb3DQEBCwUAA4IBAQAF2B7Hw2wk/EbGm+vzjC32eZApLIlj kzkTPtCVumzw8/CadDLhK3Hp4yTcb+QaMR/gvHLO5JNQWU2+bvtcPyIR7R9R2Kfj dz8imCpjkbwiO/LO9Da73GAu8Xk0YIGqGby3xY8rZzFTMNBXY3OUAD9CGKry9+Qt vS2E9muTXRXbb5ePZ27QwWVNi+V2cUHViGtlsRcRqMuPZNI2ZLG1awfNANbNu2Fp tzxYo1YWoR8AQPwpDO2gwfuh2hVGOh6O2XSPSo1x6j49ewRNtR+wiuMnBaNX2iHD 9phXKq4vjT8vuT/zwt7R8fbbw+hVFzguRY+Ii5f0dUVvLXDuPZM9OsRX -----END CERTIFICATE-----Generated at Sun Aug 24 13:35:54 2025 by rpki-client