$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/UKPzSO2bDuVShn6HSj5edcSLHIM.roa File: UKPzSO2bDuVShn6HSj5edcSLHIM.roa (raw, json) Hash identifier: ZU5Ll5HQwPJYalNc3FCu7DybxJb0TxJsJUQGIi+WP+U= Subject key identifier: 50:A3:F3:48:ED:9B:0E:E5:52:86:7E:87:4A:3E:5E:75:C4:8B:1C:83 Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Certificate serial: 0F1D Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/UKPzSO2bDuVShn6HSj5edcSLHIM.roa Signing time: Fri 22 Aug 2025 09:03:48 +0000 ROA not before: Fri 22 Aug 2025 09:03:48 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4780 IP address blocks: 211.78.24.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3869 (0xf1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Validity Not Before: Aug 22 09:03:48 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=50A3F348ED9B0EE552867E874A3E5E75C48B1C83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:aa:2b:62:fb:b4:3a:d9:9a:6e:f1:ad:48:32: ac:9a:73:4c:83:92:ff:c1:7f:13:9c:00:a0:fc:d3: ac:1a:74:b1:41:58:fc:bd:2f:ce:67:9c:15:66:99: 3d:62:d9:d0:1e:fe:41:bb:5c:6c:31:c3:bd:c4:75: d8:d0:9a:2f:c9:6d:00:49:2b:a9:e9:34:50:dd:3e: 01:3a:6d:bd:93:3f:9d:2f:dc:38:48:53:cb:46:a0: c1:6d:e3:49:18:ec:d9:37:24:50:e8:ad:9a:3c:98: 64:a6:23:3a:18:e5:84:b2:f2:78:48:74:35:f7:18: e2:55:1a:5e:82:bf:f9:9a:be:f8:78:c4:28:37:ba: 93:ff:aa:e4:75:18:7b:79:d7:35:5d:87:68:b5:fd: 3e:8c:5d:48:e1:10:49:77:a9:a0:f9:aa:2a:d2:48: a6:57:18:98:79:ee:c1:08:34:79:f9:72:e6:12:f5: 19:9e:d7:4c:38:03:5c:b3:85:67:3c:c0:d6:e5:ff: 79:c0:4d:44:8e:ac:00:b6:7a:51:74:1b:c3:1a:b8: dc:28:d5:13:7d:16:68:a8:28:d9:68:3e:23:70:0e: 5c:48:f7:14:e3:c6:41:d9:3d:0a:52:17:fc:77:f5: 2b:61:47:21:c4:eb:17:a4:bd:94:95:07:ce:63:fd: 5a:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:A3:F3:48:ED:9B:0E:E5:52:86:7E:87:4A:3E:5E:75:C4:8B:1C:83 X509v3 Authority Key Identifier: keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/UKPzSO2bDuVShn6HSj5edcSLHIM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.78.24.0/21 Signature Algorithm: sha256WithRSAEncryption 5c:3d:bf:0c:47:1e:99:6d:37:62:93:fd:8b:d4:41:e6:65:cd: be:e1:0c:3b:11:1c:20:75:ef:2a:0a:c9:3f:ff:89:6f:7c:59: 6b:3d:9e:cc:27:47:d2:22:99:3f:34:10:e0:10:e8:66:5f:ac: e7:4e:f3:3c:4f:98:97:f9:b6:6f:07:c1:6d:66:75:95:19:ed: fd:85:86:35:22:ee:2f:0e:2e:8b:35:30:43:04:e8:e6:d0:cf: 0d:19:69:44:86:fd:71:f1:ad:bc:da:43:13:56:b5:51:3d:b5: 80:77:a6:b9:79:ba:62:5e:9b:5b:07:d6:6b:f1:00:93:be:f0: 42:25:52:28:97:9f:04:ef:44:0d:05:d9:95:4a:71:91:a4:60: a6:9c:90:f8:e0:f4:2e:55:0f:5e:7c:3d:c6:10:38:35:28:0f: 76:6f:17:34:2d:88:d1:f6:9c:e1:5b:fb:69:40:b8:55:89:ef: 74:c4:f3:23:76:ac:49:4d:7e:b7:5e:aa:c3:c2:03:2f:a4:95: 6a:65:58:07:7e:6b:53:61:d9:7b:89:6a:34:dd:1b:41:6e:2e: 27:33:c6:96:6b:cb:ad:d7:ef:12:1d:a0:2c:ea:d5:7b:a8:47: 45:d1:45:1e:18:fb:94:d7:67:ae:33:c1:f7:dc:08:64:ab:65: 1c:02:e7:f0 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDx0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3 MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yNTA4MjIw OTAzNDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDUwQTNGMzQ4RUQ5QjBF RTU1Mjg2N0U4NzRBM0U1RTc1QzQ4QjFDODMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCYqiti+7Q62Zpu8a1IMqyac0yDkv/BfxOcAKD806wadLFBWPy9 L85nnBVmmT1i2dAe/kG7XGwxw73EddjQmi/JbQBJK6npNFDdPgE6bb2TP50v3DhI U8tGoMFt40kY7Nk3JFDorZo8mGSmIzoY5YSy8nhIdDX3GOJVGl6Cv/mavvh4xCg3 upP/quR1GHt51zVdh2i1/T6MXUjhEEl3qaD5qirSSKZXGJh57sEINHn5cuYS9Rme 10w4A1yzhWc8wNbl/3nATUSOrAC2elF0G8MauNwo1RN9FmioKNloPiNwDlxI9xTj xkHZPQpSF/x39SthRyHE6xekvZSVB85j/VpPAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUUKPzSO2bDuVShn6HSj5edcSLHIMwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1VLUHpTTzJiRHVWU2huNkhTajVlZGNT TEhJTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPTThgwDQYJ KoZIhvcNAQELBQADggEBAFw9vwxHHpltN2KT/YvUQeZlzb7hDDsRHCB17yoKyT// iW98WWs9nswnR9IimT80EOAQ6GZfrOdO8zxPmJf5tm8HwW1mdZUZ7f2FhjUi7i8O Los1MEME6ObQzw0ZaUSG/XHxrbzaQxNWtVE9tYB3prl5umJem1sH1mvxAJO+8EIl UiiXnwTvRA0F2ZVKcZGkYKackPjg9C5VD158PcYQODUoD3ZvFzQtiNH2nOFb+2lA uFWJ73TE8yN2rElNfrdeqsPCAy+klWplWAd+a1Nh2XuJajTdG0FuLiczxpZry63X 7xIdoCzq1XuoR0XRRR4Y+5TXZ64zwffcCGSrZRwC5/A= -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:56 2025 by rpki-client