$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/UQ40o5Ks8Kbr_tUvmeBzNzDrWY8.roa File: UQ40o5Ks8Kbr_tUvmeBzNzDrWY8.roa (raw, json) Hash identifier: NaTuJBfAvfqb/kGJCjCvFZ4OKWzG2NXJ6txmmHgSnuU= Subject key identifier: 51:0E:34:A3:92:AC:F0:A6:EB:FE:D5:2F:99:E0:73:37:30:EB:59:8F Certificate issuer: /CN=0264A41A741E5F00AED2BD7E4A7A42F5B1D758D5 Certificate serial: 0293 Authority key identifier: 02:64:A4:1A:74:1E:5F:00:AE:D2:BD:7E:4A:7A:42:F5:B1:D7:58:D5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/UQ40o5Ks8Kbr_tUvmeBzNzDrWY8.roa Signing time: Fri 22 Aug 2025 09:01:47 +0000 ROA not before: Fri 22 Aug 2025 09:01:47 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 134823 IP address blocks: 103.137.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 659 (0x293) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0264A41A741E5F00AED2BD7E4A7A42F5B1D758D5 Validity Not Before: Aug 22 09:01:47 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=510E34A392ACF0A6EBFED52F99E0733730EB598F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:64:00:f4:6f:a0:ab:13:66:8d:58:66:9a:af: d6:c1:63:a6:d1:cb:aa:ac:f7:5e:7f:de:d7:6b:2c: f2:19:da:ef:da:63:0a:53:e4:7e:d3:a9:0f:60:5a: d5:a2:57:2c:c9:ac:fb:66:3d:39:e2:d2:1c:3f:4f: 2c:e0:2d:01:af:6d:0d:f8:3d:dd:9f:43:de:aa:f1: bf:60:1c:71:38:9d:36:78:f9:f3:f7:f3:cf:fd:39: 2f:66:04:c5:8b:e4:f1:f1:1f:41:94:a5:0c:47:9e: 94:fc:df:33:60:cd:47:02:6a:46:98:ff:ac:0f:04: ba:1f:94:29:31:c8:73:f8:d3:18:80:e5:e9:9d:ad: 9f:7c:96:7d:fb:67:a3:94:0a:e5:ba:bb:de:cf:14: 51:0a:3c:11:4b:35:9a:6e:3d:47:e0:a6:30:7a:db: 13:0e:c7:34:9d:23:ce:d7:c1:62:0f:f5:99:3b:65: 3d:d9:f6:5d:72:d2:f5:dd:0d:96:95:7d:40:a2:db: c9:72:25:b6:25:58:d1:2d:4d:e1:cb:2a:49:6f:17: b3:f3:b0:54:bd:ad:55:02:1b:29:cd:bd:22:b3:b3: dd:82:4e:8d:97:1a:d2:8d:8f:5e:be:01:b5:92:8d: 9f:89:bd:a0:eb:12:84:ab:72:86:92:b2:3c:81:54: da:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:0E:34:A3:92:AC:F0:A6:EB:FE:D5:2F:99:E0:73:37:30:EB:59:8F X509v3 Authority Key Identifier: keyid:02:64:A4:1A:74:1E:5F:00:AE:D2:BD:7E:4A:7A:42:F5:B1:D7:58:D5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/UQ40o5Ks8Kbr_tUvmeBzNzDrWY8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.137.22.0/23 Signature Algorithm: sha256WithRSAEncryption a3:89:bc:69:c4:7c:16:f3:f6:2a:e5:09:ea:b7:39:25:48:5a: 42:7e:9a:52:8c:63:71:57:fe:3a:1b:5b:55:e5:a5:7b:df:e0: a0:0c:a2:28:f6:13:00:79:0e:28:62:d1:5b:bc:40:82:8e:39: d5:3a:af:52:ac:9d:66:79:3f:9e:7b:3b:70:37:0f:4b:c2:33: ee:2f:53:b6:d6:9b:62:1c:20:65:0f:c9:12:30:5f:d9:e6:e8: 4c:1a:4b:bc:dd:ff:cc:bb:e3:3b:d7:4f:45:7b:58:07:f9:41: 41:f1:2c:28:44:dc:02:fe:8f:c2:63:4e:99:8c:51:cd:9e:c8: f8:2a:1a:39:42:67:73:2e:95:22:cb:e8:45:54:50:5f:59:3c: 71:eb:94:fd:c0:c3:76:f8:21:e3:e8:86:11:2a:02:1c:0d:2e: d5:2d:cc:b4:3b:b7:f6:25:25:dc:0a:0d:6b:60:4a:f8:7d:c1: 36:d0:a4:ac:33:b2:05:37:5c:4d:ab:b7:0a:83:1d:be:28:a5: 3e:f4:56:a8:10:f4:7b:50:b7:25:c6:8e:15:5c:db:8e:42:c7: 8b:6a:0f:32:13:ba:1a:2f:ec:ea:9f:98:8a:c7:60:e7:90:a5: 96:ba:a5:de:94:91:ad:ff:57:86:6f:59:14:f8:1d:66:ff:61: 36:bd:a9:43 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICApMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDI2 NEE0MUE3NDFFNUYwMEFFRDJCRDdFNEE3QTQyRjVCMUQ3NThENTAeFw0yNTA4MjIw OTAxNDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDUxMEUzNEEzOTJBQ0Yw QTZFQkZFRDUyRjk5RTA3MzM3MzBFQjU5OEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDnZAD0b6CrE2aNWGaar9bBY6bRy6qs915/3tdrLPIZ2u/aYwpT 5H7TqQ9gWtWiVyzJrPtmPTni0hw/TyzgLQGvbQ34Pd2fQ96q8b9gHHE4nTZ4+fP3 88/9OS9mBMWL5PHxH0GUpQxHnpT83zNgzUcCakaY/6wPBLoflCkxyHP40xiA5emd rZ98ln37Z6OUCuW6u97PFFEKPBFLNZpuPUfgpjB62xMOxzSdI87XwWIP9Zk7ZT3Z 9l1y0vXdDZaVfUCi28lyJbYlWNEtTeHLKklvF7PzsFS9rVUCGynNvSKzs92CTo2X GtKNj16+AbWSjZ+JvaDrEoSrcoaSsjyBVNodAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUUQ40o5Ks8Kbr/tUvmeBzNzDrWY8wHwYDVR0jBBgwFoAUAmSkGnQeXwCu0r1+ SnpC9bHXWNUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0RDTC1U Vy9BbVNrR25RZVh3Q3UwcjEtU25wQzliSFhXTlUuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0FtU2tHblFlWHdDdTByMS1TbnBDOWJIWFdOVS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NEQ0wtVFcvVVE0MG81S3M4S2JyX3RV dm1lQnpOekRyV1k4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AWeJFjANBgkqhkiG9w0BAQsFAAOCAQEAo4m8acR8FvP2KuUJ6rc5JUhaQn6aUoxj cVf+OhtbVeWle9/goAyiKPYTAHkOKGLRW7xAgo451TqvUqydZnk/nns7cDcPS8Iz 7i9TttabYhwgZQ/JEjBf2eboTBpLvN3/zLvjO9dPRXtYB/lBQfEsKETcAv6PwmNO mYxRzZ7I+CoaOUJncy6VIsvoRVRQX1k8ceuU/cDDdvgh4+iGESoCHA0u1S3MtDu3 9iUl3AoNa2BK+H3BNtCkrDOyBTdcTau3CoMdviilPvRWqBD0e1C3JcaOFVzbjkLH i2oPMhO6Gi/s6p+Yisdg55Cllrql3pSRrf9Xhm9ZFPgdZv9hNr2pQw== -----END CERTIFICATE-----Generated at Sun Aug 24 05:05:08 2025 by rpki-client