$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LIRUN/uDxhDjnL-pmbSYYVgxv5lq2NY-U.roa File: uDxhDjnL-pmbSYYVgxv5lq2NY-U.roa (raw, json) Hash identifier: WVgRb9G4nEZf0kGTnargnDA8wcCQCqCfs+MlmbKZa7o= Subject key identifier: B8:3C:61:0E:39:CB:FA:99:9B:49:86:15:83:1B:F9:96:AD:8D:63:E5 Certificate issuer: /CN=8A57D6F0354EA58A149352BF24330D6630702F9B Certificate serial: 01C6 Authority key identifier: 8A:57:D6:F0:35:4E:A5:8A:14:93:52:BF:24:33:0D:66:30:70:2F:9B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ilfW8DVOpYoUk1K_JDMNZjBwL5s.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/uDxhDjnL-pmbSYYVgxv5lq2NY-U.roa Signing time: Fri 22 Aug 2025 08:49:56 +0000 ROA not before: Fri 22 Aug 2025 08:49:56 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131147 IP address blocks: 2401:97e0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/ilfW8DVOpYoUk1K_JDMNZjBwL5s.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/ilfW8DVOpYoUk1K_JDMNZjBwL5s.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ilfW8DVOpYoUk1K_JDMNZjBwL5s.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 454 (0x1c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8A57D6F0354EA58A149352BF24330D6630702F9B Validity Not Before: Aug 22 08:49:56 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B83C610E39CBFA999B498615831BF996AD8D63E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:4c:3f:15:a8:4f:09:34:02:7e:91:de:d5:0b: 59:c8:b7:07:e0:62:68:7f:aa:dd:1a:f1:c5:01:a4: 99:87:67:03:4d:6e:51:64:e7:e1:fe:61:85:59:f1: 83:fa:21:f3:c9:d4:2e:9b:c6:20:82:c6:9a:a9:ed: ef:24:a0:62:f5:88:22:59:3c:00:2f:bc:67:6c:4b: bb:0e:cf:43:58:18:48:75:35:f5:6b:13:db:36:41: 2d:54:48:01:03:37:b5:b7:f0:3a:52:3a:f1:60:87: 5b:d8:b9:71:e4:9b:4a:f5:fb:62:10:77:4b:f7:5d: de:44:4d:c1:cc:3f:5f:9c:7e:b3:3f:fc:7c:ae:c7: 7c:99:6d:7c:50:bb:b8:d8:de:c1:0c:e3:ee:58:d7: b7:d3:c4:51:a0:f8:63:59:5f:28:68:6e:69:ec:6a: 38:97:3c:5c:82:66:32:52:2f:51:45:15:3b:18:b2: fb:d5:25:6d:43:cc:63:ab:39:83:29:6d:7b:d6:b3: 32:88:4c:3c:a0:24:65:1c:d6:d4:db:1a:07:a3:96: f2:ee:17:07:d9:06:8a:80:d8:e5:ce:14:06:8e:00: ce:10:7f:0e:a7:fd:e1:b0:8a:07:3f:80:5c:8d:db: fc:e7:43:0e:25:09:aa:78:b1:a9:c9:24:56:a3:f5: 73:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:3C:61:0E:39:CB:FA:99:9B:49:86:15:83:1B:F9:96:AD:8D:63:E5 X509v3 Authority Key Identifier: keyid:8A:57:D6:F0:35:4E:A5:8A:14:93:52:BF:24:33:0D:66:30:70:2F:9B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/ilfW8DVOpYoUk1K_JDMNZjBwL5s.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ilfW8DVOpYoUk1K_JDMNZjBwL5s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/uDxhDjnL-pmbSYYVgxv5lq2NY-U.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:97e0::/48 Signature Algorithm: sha256WithRSAEncryption 2d:c2:fe:54:73:47:53:82:e5:89:93:26:2b:6d:48:f7:a2:9d: c5:97:bd:4d:c0:99:6d:82:cf:af:7a:46:ed:d2:c7:44:40:2f: 20:e7:8a:d8:6b:76:10:f0:29:17:db:12:d9:1a:99:d7:ad:60: 31:57:16:36:91:2e:9d:2b:17:05:e3:bd:97:92:0d:65:8b:b3: ce:1a:eb:ec:21:f1:26:23:68:2a:70:13:d7:51:7d:bb:be:ce: be:d1:54:85:5d:f4:7f:aa:4e:a1:27:34:2e:2f:ca:df:bd:8f: 09:59:76:6e:99:36:d2:d2:0d:9b:63:21:8d:16:a2:2e:e5:24: 4b:79:6d:cb:ea:ee:4d:ac:2e:b8:75:b9:41:cc:b7:74:57:ab: e4:09:bc:57:64:d2:56:8d:b7:1e:c8:7e:0a:b8:98:33:98:c8: 0d:b8:1b:d4:81:c1:24:df:77:93:cc:fd:e8:df:bb:02:5f:5e: d4:19:02:23:2a:89:a1:4e:13:21:12:45:d1:ad:bd:90:d2:09: 93:5a:17:de:3f:47:3a:f1:f4:b6:7b:da:1b:e7:44:79:a8:1b: a3:6d:d3:d5:72:3b:1d:73:21:9e:13:19:0d:88:c0:36:2f:a7: 19:1c:63:ec:5b:c9:44:09:2e:ce:61:08:17:06:84:b6:32:e6: 1f:b1:90:20 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICAcYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEE1 N0Q2RjAzNTRFQTU4QTE0OTM1MkJGMjQzMzBENjYzMDcwMkY5QjAeFw0yNTA4MjIw ODQ5NTZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEI4M0M2MTBFMzlDQkZB OTk5QjQ5ODYxNTgzMUJGOTk2QUQ4RDYzRTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDgTD8VqE8JNAJ+kd7VC1nItwfgYmh/qt0a8cUBpJmHZwNNblFk 5+H+YYVZ8YP6IfPJ1C6bxiCCxpqp7e8koGL1iCJZPAAvvGdsS7sOz0NYGEh1NfVr E9s2QS1USAEDN7W38DpSOvFgh1vYuXHkm0r1+2IQd0v3Xd5ETcHMP1+cfrM//Hyu x3yZbXxQu7jY3sEM4+5Y17fTxFGg+GNZXyhobmnsajiXPFyCZjJSL1FFFTsYsvvV JW1DzGOrOYMpbXvWszKITDygJGUc1tTbGgejlvLuFwfZBoqA2OXOFAaOAM4Qfw6n /eGwigc/gFyN2/znQw4lCap4sanJJFaj9XPPAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUuDxhDjnL+pmbSYYVgxv5lq2NY+UwHwYDVR0jBBgwFoAUilfW8DVOpYoUk1K/ JDMNZjBwL5swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTElSVU4v aWxmVzhEVk9wWW9VazFLX0pETU5aakJ3TDVzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9pbGZXOERWT3BZb1VrMUtfSkRNTlpqQndMNXMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MSVJVTi91RHhoRGpuTC1wbWJTWVlWZ3h2 NWxxMk5ZLVUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAGX 4AAAMA0GCSqGSIb3DQEBCwUAA4IBAQAtwv5Uc0dTguWJkyYrbUj3op3Fl71NwJlt gs+vekbt0sdEQC8g54rYa3YQ8CkX2xLZGpnXrWAxVxY2kS6dKxcF472Xkg1li7PO GuvsIfEmI2gqcBPXUX27vs6+0VSFXfR/qk6hJzQuL8rfvY8JWXZumTbS0g2bYyGN FqIu5SRLeW3L6u5NrC64dblBzLd0V6vkCbxXZNJWjbceyH4KuJgzmMgNuBvUgcEk 33eTzP3o37sCX17UGQIjKomhThMhEkXRrb2Q0gmTWhfeP0c68fS2e9ob50R5qBuj bdPVcjsdcyGeExkNiMA2L6cZHGPsW8lECS7OYQgXBoS2MuYfsZAg -----END CERTIFICATE-----Generated at Sun Aug 24 09:45:08 2025 by rpki-client