$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/uKTaHaPjaE0A0lls-6EDyKfKzCE.roa File: uKTaHaPjaE0A0lls-6EDyKfKzCE.roa (raw, json) Hash identifier: H2AWfGJ4xNTJ9VNCNA97PnqGWDw8S7gQLAtTPw3JXKQ= Subject key identifier: B8:A4:DA:1D:A3:E3:68:4D:00:D2:59:6C:FB:A1:03:C8:A7:CA:CC:21 Certificate issuer: /CN=A18EB377DD0318AE465D8F3F7D6E0AD0A4E9ED1E Certificate serial: 0FDF Authority key identifier: A1:8E:B3:77:DD:03:18:AE:46:5D:8F:3F:7D:6E:0A:D0:A4:E9:ED:1E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/uKTaHaPjaE0A0lls-6EDyKfKzCE.roa Signing time: Fri 22 Aug 2025 08:56:18 +0000 ROA not before: Fri 22 Aug 2025 08:56:18 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131633 IP address blocks: 103.135.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4063 (0xfdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A18EB377DD0318AE465D8F3F7D6E0AD0A4E9ED1E Validity Not Before: Aug 22 08:56:18 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B8A4DA1DA3E3684D00D2596CFBA103C8A7CACC21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:1d:55:ee:bf:4a:34:a0:8c:26:f1:12:fe:cc: 91:0a:4b:d6:98:de:35:75:15:d1:61:e7:28:f4:c5: 49:18:32:8a:20:c1:51:89:6d:ff:bc:8a:b8:76:c9: 19:46:03:d8:91:ae:bb:05:ec:6b:83:2c:e5:cc:d3: 9b:32:34:69:a3:32:b6:de:fd:b2:df:6c:1a:b7:52: 5c:94:f0:b5:35:3f:7b:9c:62:c8:93:34:db:1e:47: d0:03:58:c6:c1:96:df:46:4d:18:25:05:d7:51:ef: 4b:d5:0c:e1:49:dd:a3:f6:8f:4e:e1:eb:7a:cd:e6: dc:bf:fb:9a:3d:d1:96:aa:a7:60:fe:8c:a2:13:79: 06:60:15:99:68:63:37:cd:dd:76:7a:b2:4f:c0:1b: b4:ea:f6:63:16:c2:75:d2:51:96:ed:8f:41:43:41: 27:3e:0e:80:38:57:a9:d5:a8:64:e6:9a:75:95:f5: b6:5e:6a:11:d5:f2:6c:a4:af:c4:c4:97:16:a5:58: e7:0d:4a:8d:6e:a9:cb:8a:5f:a4:65:9e:ba:98:47: 1e:e7:dd:47:a8:30:4b:46:d0:a9:bd:b3:b2:9a:9d: c1:c1:14:b1:9a:59:af:41:93:84:cb:56:77:5b:1d: 86:0d:97:8e:99:a9:b2:96:a9:37:c0:95:98:2b:c7: 5e:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:A4:DA:1D:A3:E3:68:4D:00:D2:59:6C:FB:A1:03:C8:A7:CA:CC:21 X509v3 Authority Key Identifier: keyid:A1:8E:B3:77:DD:03:18:AE:46:5D:8F:3F:7D:6E:0A:D0:A4:E9:ED:1E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/uKTaHaPjaE0A0lls-6EDyKfKzCE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.135.22.0/23 Signature Algorithm: sha256WithRSAEncryption 24:66:c0:e6:d7:3e:ac:96:4a:05:4a:3a:e6:15:f3:ba:0f:66: 4f:a2:2f:25:9e:ca:69:53:7f:d3:22:e2:ae:92:d6:c7:68:8c: 63:05:5a:69:87:69:3a:a1:e4:e3:f6:db:28:a3:22:43:ca:98: 3d:fa:54:77:4a:f2:42:0e:d4:b8:41:d4:d2:8c:90:2e:98:f7: 3c:e5:37:ac:28:db:95:8b:8b:4d:b6:f4:ce:45:39:55:f4:bf: 45:bf:3a:a5:4d:d8:c9:1a:b2:3d:93:41:19:a4:bf:58:61:47: 1f:75:b4:af:1c:65:e5:c2:c1:70:87:3f:bf:fb:d5:f9:d8:56: f7:d4:47:af:d8:47:38:38:7a:2e:ec:d1:03:52:89:ce:ee:19: 9d:a0:c5:58:7f:64:d9:1d:9d:6f:c3:06:d4:ed:f8:4f:1b:e4: f0:cb:04:3e:53:1f:e2:aa:67:0a:c7:da:3f:cb:d8:20:1e:9a: b5:25:c4:45:39:ff:d7:22:6a:4e:e5:c2:a1:e0:f1:5a:91:31: dc:b9:84:72:13:37:fb:fb:38:f7:f5:27:86:22:7e:4e:f9:73: 8a:54:36:72:93:65:c7:60:a8:ac:b5:10:bf:20:37:8c:0b:7c: 1a:33:98:ef:af:73:ae:74:c1:0b:10:2b:4c:f2:14:6b:81:3e: ee:8a:89:b4 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICD98wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTE4 RUIzNzdERDAzMThBRTQ2NUQ4RjNGN0Q2RTBBRDBBNEU5RUQxRTAeFw0yNTA4MjIw ODU2MThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEI4QTREQTFEQTNFMzY4 NEQwMEQyNTk2Q0ZCQTEwM0M4QTdDQUNDMjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCYHVXuv0o0oIwm8RL+zJEKS9aY3jV1FdFh5yj0xUkYMoogwVGJ bf+8irh2yRlGA9iRrrsF7GuDLOXM05syNGmjMrbe/bLfbBq3UlyU8LU1P3ucYsiT NNseR9ADWMbBlt9GTRglBddR70vVDOFJ3aP2j07h63rN5ty/+5o90Zaqp2D+jKIT eQZgFZloYzfN3XZ6sk/AG7Tq9mMWwnXSUZbtj0FDQSc+DoA4V6nVqGTmmnWV9bZe ahHV8mykr8TElxalWOcNSo1uqcuKX6RlnrqYRx7n3UeoMEtG0Km9s7KancHBFLGa Wa9Bk4TLVndbHYYNl46ZqbKWqTfAlZgrx15rAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUuKTaHaPjaE0A0lls+6EDyKfKzCEwHwYDVR0jBBgwFoAUoY6zd90DGK5GXY8/ fW4K0KTp7R4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR0pJ TkdFTi9vWTZ6ZDkwREdLNUdYWThfZlc0SzBLVHA3UjQuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL29ZNnpkOTBER0s1R1hZOF9mVzRLMEtUcDdSNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL01JTkdKSU5HRU4vdUtUYUhhUGph RTBBMGxscy02RUR5S2ZLekNFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAWeHFjANBgkqhkiG9w0BAQsFAAOCAQEAJGbA5tc+rJZKBUo65hXzug9m T6IvJZ7KaVN/0yLirpLWx2iMYwVaaYdpOqHk4/bbKKMiQ8qYPfpUd0ryQg7UuEHU 0oyQLpj3POU3rCjblYuLTbb0zkU5VfS/Rb86pU3YyRqyPZNBGaS/WGFHH3W0rxxl 5cLBcIc/v/vV+dhW99RHr9hHODh6LuzRA1KJzu4ZnaDFWH9k2R2db8MG1O34Txvk 8MsEPlMf4qpnCsfaP8vYIB6atSXERTn/1yJqTuXCoeDxWpEx3LmEchM3+/s49/Un hiJ+TvlzilQ2cpNlx2CorLUQvyA3jAt8GjOY769zrnTBCxArTPIUa4E+7oqJtA== -----END CERTIFICATE-----Generated at Sun Aug 24 05:08:18 2025 by rpki-client