$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LEOLCY/UeK6_F09qkme1NcgVLEV9xDjkyc.roa File: UeK6_F09qkme1NcgVLEV9xDjkyc.roa (raw, json) Hash identifier: wxm+fGXEceuuvKSY3+ZCT0Sln5sUGOSjnEIYTZIanOA= Subject key identifier: 51:E2:BA:FC:5D:3D:AA:49:9E:D4:D7:20:54:B1:15:F7:10:E3:93:27 Certificate issuer: /CN=3D685193B8FAF2537E5A1385E03D19FE89742A8B Certificate serial: 0D18 Authority key identifier: 3D:68:51:93:B8:FA:F2:53:7E:5A:13:85:E0:3D:19:FE:89:74:2A:8B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PWhRk7j68lN-WhOF4D0Z_ol0Kos.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LEOLCY/UeK6_F09qkme1NcgVLEV9xDjkyc.roa Signing time: Fri 22 Aug 2025 08:49:58 +0000 ROA not before: Fri 22 Aug 2025 08:49:58 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9304 IP address blocks: 103.17.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LEOLCY/PWhRk7j68lN-WhOF4D0Z_ol0Kos.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LEOLCY/PWhRk7j68lN-WhOF4D0Z_ol0Kos.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PWhRk7j68lN-WhOF4D0Z_ol0Kos.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3352 (0xd18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D685193B8FAF2537E5A1385E03D19FE89742A8B Validity Not Before: Aug 22 08:49:58 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=51E2BAFC5D3DAA499ED4D72054B115F710E39327 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:aa:4d:cd:df:f5:b8:95:8b:f5:53:2e:31:fc: 66:9f:1c:cd:75:e3:88:e6:0b:b9:b6:57:87:54:42: df:e7:10:a0:61:bc:7e:f8:b8:46:9f:f8:06:c6:60: 81:0c:cb:e9:05:4b:9a:f4:23:00:aa:c5:c6:f6:b8: 3e:9c:f8:52:6c:5e:18:b8:0a:f9:e1:e7:45:90:ee: 90:85:92:d3:56:e3:2d:bb:7b:95:63:e1:db:38:ca: 36:78:0a:9c:d6:ac:75:a4:84:40:3a:fd:5c:48:b2: 89:70:10:02:fe:27:18:a7:db:5e:40:43:44:4e:ef: 12:32:b1:48:2b:ef:03:16:47:2b:8e:09:0f:a3:e6: 7e:6b:d2:22:b2:38:c5:bd:d7:0a:06:2c:3f:a2:7e: 95:4d:25:24:04:4f:b4:86:0d:44:3b:ed:6a:26:15: b6:17:82:dc:56:80:50:fb:0d:85:19:14:42:4b:75: e6:78:d2:e8:40:d2:87:cf:5d:de:1d:4f:eb:05:54: 2b:f5:0b:10:1b:92:5c:4d:b2:2a:29:42:44:56:cf: 3e:34:4f:5b:f0:58:aa:15:7c:88:9b:37:a1:4a:8b: 3e:fb:44:bb:5e:57:96:a7:9f:4e:95:b6:d5:6c:9d: 81:52:c4:81:94:8e:63:bd:55:3b:06:f8:47:e7:9a: e6:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:E2:BA:FC:5D:3D:AA:49:9E:D4:D7:20:54:B1:15:F7:10:E3:93:27 X509v3 Authority Key Identifier: keyid:3D:68:51:93:B8:FA:F2:53:7E:5A:13:85:E0:3D:19:FE:89:74:2A:8B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEOLCY/PWhRk7j68lN-WhOF4D0Z_ol0Kos.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PWhRk7j68lN-WhOF4D0Z_ol0Kos.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEOLCY/UeK6_F09qkme1NcgVLEV9xDjkyc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.17.240.0/22 Signature Algorithm: sha256WithRSAEncryption a9:e0:c2:7c:77:e3:77:ae:44:21:c8:84:31:bc:1a:43:de:32: 8c:8e:79:a1:c0:f4:fe:c1:31:87:e3:63:ec:86:52:82:3b:ea: 18:55:b6:b4:a5:35:2d:ca:14:52:52:06:8d:8a:d3:20:6f:69: 4d:f9:f7:18:e5:30:7c:93:9c:da:95:b4:a2:f7:dc:77:39:03: 4b:d0:ee:a0:40:e1:a9:bd:6f:82:30:df:aa:cb:97:b1:c1:02: bc:4c:ea:77:d5:43:95:57:97:6a:b5:6b:b2:1a:f1:73:7b:05: 87:52:3f:0f:78:54:03:49:92:21:4f:e0:66:2d:c7:91:a9:50: 82:0b:af:b6:53:90:e2:da:1d:f1:31:ca:52:a9:22:7f:0c:87: 5b:4b:ab:59:40:21:1a:4a:2c:a3:05:55:43:a7:df:86:f3:b0: 86:47:b6:9d:15:05:93:0a:5e:38:ee:92:80:9a:2a:d6:94:c8: ee:94:c9:e1:7a:34:fe:b7:55:5a:96:fc:a7:d6:64:37:48:2b: f1:15:da:c6:68:54:17:df:05:94:d0:ed:d6:9c:90:01:8e:14: ad:d7:65:11:b8:4d:e9:ee:ab:8c:27:8c:bb:78:a6:72:f2:04: 18:8e:29:37:95:ca:2d:5f:86:bc:39:28:ab:38:38:1f:90:2e: e5:76:56:bf -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDRgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0Q2 ODUxOTNCOEZBRjI1MzdFNUExMzg1RTAzRDE5RkU4OTc0MkE4QjAeFw0yNTA4MjIw ODQ5NThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDUxRTJCQUZDNUQzREFB NDk5RUQ0RDcyMDU0QjExNUY3MTBFMzkzMjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuqk3N3/W4lYv1Uy4x/GafHM1144jmC7m2V4dUQt/nEKBhvH74 uEaf+AbGYIEMy+kFS5r0IwCqxcb2uD6c+FJsXhi4Cvnh50WQ7pCFktNW4y27e5Vj 4ds4yjZ4CpzWrHWkhEA6/VxIsolwEAL+Jxin215AQ0RO7xIysUgr7wMWRyuOCQ+j 5n5r0iKyOMW91woGLD+ifpVNJSQET7SGDUQ77WomFbYXgtxWgFD7DYUZFEJLdeZ4 0uhA0ofPXd4dT+sFVCv1CxAbklxNsiopQkRWzz40T1vwWKoVfIibN6FKiz77RLte V5ann06VttVsnYFSxIGUjmO9VTsG+EfnmuZLAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUUeK6/F09qkme1NcgVLEV9xDjkycwHwYDVR0jBBgwFoAUPWhRk7j68lN+WhOF 4D0Z/ol0KoswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTEVPTENZ L1BXaFJrN2o2OGxOLVdoT0Y0RDBaX29sMEtvcy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvUFdoUms3ajY4bE4tV2hPRjREMFpfb2wwS29zLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvTEVPTENZL1VlSzZfRjA5cWttZTFOY2dW TEVWOXhEamt5Yy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn EfAwDQYJKoZIhvcNAQELBQADggEBAKngwnx343euRCHIhDG8GkPeMoyOeaHA9P7B MYfjY+yGUoI76hhVtrSlNS3KFFJSBo2K0yBvaU359xjlMHyTnNqVtKL33Hc5A0vQ 7qBA4am9b4Iw36rLl7HBArxM6nfVQ5VXl2q1a7Ia8XN7BYdSPw94VANJkiFP4GYt x5GpUIILr7ZTkOLaHfExylKpIn8Mh1tLq1lAIRpKLKMFVUOn34bzsIZHtp0VBZMK XjjukoCaKtaUyO6UyeF6NP63VVqW/KfWZDdIK/EV2sZoVBffBZTQ7dackAGOFK3X ZRG4Tenuq4wnjLt4pnLyBBiOKTeVyi1fhrw5KKs4OB+QLuV2Vr8= -----END CERTIFICATE-----Generated at Sun Aug 24 05:06:40 2025 by rpki-client