$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/uZDv-R984fA-T8r5VC15UtK0qhA.roa File: uZDv-R984fA-T8r5VC15UtK0qhA.roa (raw, json) Hash identifier: dXDbV1Ymv0B9+PB/iegmIUpXPv29HrBJ/3BrRjm8PKY= Subject key identifier: B9:90:EF:F9:1F:7C:E1:F0:3E:4F:CA:F9:54:2D:79:52:D2:B4:AA:10 Certificate issuer: /CN=7B8257FFDC7CD1CB4196129CD40493352BC83BB9 Certificate serial: 0473 Authority key identifier: 7B:82:57:FF:DC:7C:D1:CB:41:96:12:9C:D4:04:93:35:2B:C8:3B:B9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/e4JX_9x80ctBlhKc1ASTNSvIO7k.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/uZDv-R984fA-T8r5VC15UtK0qhA.roa Signing time: Fri 22 Aug 2025 08:56:20 +0000 ROA not before: Fri 22 Aug 2025 08:56:20 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38853 IP address blocks: 103.169.46.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/e4JX_9x80ctBlhKc1ASTNSvIO7k.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/e4JX_9x80ctBlhKc1ASTNSvIO7k.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/e4JX_9x80ctBlhKc1ASTNSvIO7k.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1139 (0x473) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7B8257FFDC7CD1CB4196129CD40493352BC83BB9 Validity Not Before: Aug 22 08:56:20 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B990EFF91F7CE1F03E4FCAF9542D7952D2B4AA10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f5:16:7b:ce:22:58:8c:05:55:25:70:11:af: 7e:57:59:a9:aa:3a:a4:a7:d6:35:2a:33:09:06:11: 4d:a5:b9:45:3b:fa:f6:6c:47:d8:0e:55:5d:d0:49: ff:e3:3b:c1:fc:b3:76:e1:a4:bc:46:03:ee:8a:04: dd:ac:b4:3f:3a:19:5c:48:08:19:20:f2:25:0d:c7: 06:e4:e3:b5:6a:0a:67:fc:67:d6:fc:75:97:dc:11: 61:bb:1b:d9:ae:e1:2b:fe:3c:69:dd:10:c4:b6:02: b3:2d:86:9c:26:a0:95:e6:09:1d:12:e0:96:39:f3: 4a:19:5f:63:6c:0d:3a:04:91:d0:04:fa:ec:45:97: 63:91:30:52:31:a0:6d:4c:fb:19:ec:fd:ab:7f:4f: 47:d0:fe:d1:14:3a:aa:74:5b:98:fd:2c:23:cc:5b: 08:ba:a4:0f:9c:7f:0d:fa:26:d6:5d:1f:0d:43:77: a4:85:40:80:74:f8:59:f1:22:6b:7d:d2:8b:ba:e3: 6a:c3:55:d5:7a:b7:e3:ad:14:bc:b9:de:ad:8e:1c: bb:d4:92:4a:15:84:28:1b:4c:c6:d3:ec:8e:cd:30: be:2b:05:c2:b5:96:49:f2:8b:a8:cb:47:f5:3c:f6: 5c:0b:32:9f:0b:7e:8a:0b:bb:12:51:3b:8a:30:98: 3c:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:90:EF:F9:1F:7C:E1:F0:3E:4F:CA:F9:54:2D:79:52:D2:B4:AA:10 X509v3 Authority Key Identifier: keyid:7B:82:57:FF:DC:7C:D1:CB:41:96:12:9C:D4:04:93:35:2B:C8:3B:B9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/e4JX_9x80ctBlhKc1ASTNSvIO7k.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/e4JX_9x80ctBlhKc1ASTNSvIO7k.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/uZDv-R984fA-T8r5VC15UtK0qhA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.169.46.0/23 Signature Algorithm: sha256WithRSAEncryption 33:64:6d:b2:7e:17:7e:b8:49:4d:c2:6c:67:82:84:42:07:3a: f5:9f:2d:db:87:6f:8f:d6:c7:47:64:8c:cf:f3:bf:5e:f6:28: 08:d0:cb:de:f2:e6:4c:b8:95:9c:99:96:dd:e8:b1:96:40:06: 02:ba:7d:0c:85:2b:2b:dd:21:cb:66:0e:dd:17:78:f2:46:c5: fb:87:a8:e6:4d:eb:d1:53:b2:aa:cb:1d:bd:17:ff:7d:cc:bd: ed:46:7e:6d:73:83:f7:d5:88:b7:51:e4:26:2c:3e:02:a1:d1: dc:ab:50:c2:ca:d2:0c:a0:13:b3:a1:2d:a6:ed:78:44:72:f5: 23:5d:c7:d8:85:15:6c:c3:d9:8f:88:47:82:cd:fa:70:25:f7: f5:aa:ab:01:c7:5e:99:c9:2b:44:72:39:e7:85:cb:f6:9b:dc: 37:00:f9:a6:db:81:87:32:4a:1b:6a:b5:38:d2:3d:69:87:23: 77:49:8f:37:b9:b1:73:92:35:8e:7a:9b:ed:5d:24:ea:a6:7e: 20:41:44:67:27:3b:c0:68:c7:4a:35:d2:6a:42:bc:eb:32:b4: 4d:e8:01:06:46:a2:00:ac:cd:13:65:9f:62:ad:87:9a:b5:99: 65:d5:f7:df:d4:df:cd:de:7e:9f:e0:41:c8:90:6f:e5:93:c1: e3:d8:00:af -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICBHMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0I4 MjU3RkZEQzdDRDFDQjQxOTYxMjlDRDQwNDkzMzUyQkM4M0JCOTAeFw0yNTA4MjIw ODU2MjBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEI5OTBFRkY5MUY3Q0Ux RjAzRTRGQ0FGOTU0MkQ3OTUyRDJCNEFBMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC59RZ7ziJYjAVVJXARr35XWamqOqSn1jUqMwkGEU2luUU7+vZs R9gOVV3QSf/jO8H8s3bhpLxGA+6KBN2stD86GVxICBkg8iUNxwbk47VqCmf8Z9b8 dZfcEWG7G9mu4Sv+PGndEMS2ArMthpwmoJXmCR0S4JY580oZX2NsDToEkdAE+uxF l2ORMFIxoG1M+xns/at/T0fQ/tEUOqp0W5j9LCPMWwi6pA+cfw36JtZdHw1Dd6SF QIB0+FnxImt90ou642rDVdV6t+OtFLy53q2OHLvUkkoVhCgbTMbT7I7NML4rBcK1 lknyi6jLR/U89lwLMp8LfooLuxJRO4owmDwHAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUuZDv+R984fA+T8r5VC15UtK0qhAwHwYDVR0jBBgwFoAUe4JX/9x80ctBlhKc 1ASTNSvIO7kwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEFSQU1J VEEvZTRKWF85eDgwY3RCbGhLYzFBU1ROU3ZJTzdrLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9lNEpYXzl4ODBjdEJsaEtjMUFTVE5TdklPN2suY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QQVJBTUlUQS91WkR2LVI5ODRmQS1U OHI1VkMxNVV0SzBxaEEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ6kuMA0GCSqGSIb3DQEBCwUAA4IBAQAzZG2yfhd+uElNwmxngoRCBzr1ny3b h2+P1sdHZIzP879e9igI0Mve8uZMuJWcmZbd6LGWQAYCun0MhSsr3SHLZg7dF3jy RsX7h6jmTevRU7Kqyx29F/99zL3tRn5tc4P31Yi3UeQmLD4CodHcq1DCytIMoBOz oS2m7XhEcvUjXcfYhRVsw9mPiEeCzfpwJff1qqsBx16ZyStEcjnnhcv2m9w3APmm 24GHMkobarU40j1phyN3SY83ubFzkjWOepvtXSTqpn4gQURnJzvAaMdKNdJqQrzr MrRN6AEGRqIArM0TZZ9irYeatZll1fff1N/N3n6f4EHIkG/lk8Hj2ACv -----END CERTIFICATE-----Generated at Sun Aug 24 14:20:11 2025 by rpki-client