$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/UvtueMrLc5JR86hFNcyL82bBAeY.roa File: UvtueMrLc5JR86hFNcyL82bBAeY.roa (raw, json) Hash identifier: h68S4ml8LxhHUpTxXv6A1JFJ0zEZaOkwhLeU7V+YXmA= Subject key identifier: 52:FB:6E:78:CA:CB:73:92:51:F3:A8:45:35:CC:8B:F3:66:C1:01:E6 Certificate issuer: /CN=35FF90306B47A7DE0307F0E335B4DC7F27DEA4FB Certificate serial: 022D Authority key identifier: 35:FF:90:30:6B:47:A7:DE:03:07:F0:E3:35:B4:DC:7F:27:DE:A4:FB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/UvtueMrLc5JR86hFNcyL82bBAeY.roa Signing time: Fri 22 Aug 2025 08:50:10 +0000 ROA not before: Fri 22 Aug 2025 08:50:10 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 216123 IP address blocks: 2401:5f20:f000::/48 maxlen: 127 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/Nf-QMGtHp94DB_DjNbTcfyfepPs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/Nf-QMGtHp94DB_DjNbTcfyfepPs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 557 (0x22d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35FF90306B47A7DE0307F0E335B4DC7F27DEA4FB Validity Not Before: Aug 22 08:50:10 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=52FB6E78CACB739251F3A84535CC8BF366C101E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:5e:94:76:79:90:10:ef:e9:a8:26:d6:5f:a6: ed:b9:b9:bd:98:46:4c:18:6d:d2:4c:64:58:57:0e: 5c:bf:9d:53:e3:9b:78:1e:87:2d:b7:38:01:33:8b: 7b:10:6a:29:04:44:47:bc:f2:de:a9:b3:78:f5:0e: 9e:3b:67:be:97:2b:9b:8c:94:cb:bc:82:8e:36:df: 29:c3:75:18:4a:5d:1d:96:9b:85:36:d5:e1:fb:e1: d4:5a:18:0a:70:34:55:ae:ca:ae:9f:92:a2:03:7d: f3:36:50:82:57:8c:1a:c8:0c:73:9a:16:22:21:65: e2:8a:c4:54:b0:f1:d9:cc:b0:ae:72:4f:d5:fa:fe: fb:be:a9:20:da:33:4c:5a:a0:e1:98:e2:b2:28:be: fd:27:e2:8b:f2:bb:7e:03:ee:3f:b9:44:61:a7:d2: 59:7d:29:4e:6e:3a:48:66:bb:39:c4:5b:a2:61:34: b3:4b:d9:bc:2d:b5:69:b4:20:fb:4f:e5:02:17:c1: ee:61:62:88:10:8a:7d:73:6e:a7:0d:ae:7b:d7:02: 52:be:9d:e4:ab:5a:ee:84:c5:08:b7:54:37:25:2f: e4:38:69:f6:38:b1:dc:64:85:cb:d8:9e:30:05:c3: 7e:ae:30:96:10:de:6d:f1:90:2f:07:18:9d:75:11: b7:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:FB:6E:78:CA:CB:73:92:51:F3:A8:45:35:CC:8B:F3:66:C1:01:E6 X509v3 Authority Key Identifier: keyid:35:FF:90:30:6B:47:A7:DE:03:07:F0:E3:35:B4:DC:7F:27:DE:A4:FB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/Nf-QMGtHp94DB_DjNbTcfyfepPs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/UvtueMrLc5JR86hFNcyL82bBAeY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:5f20:f000::/48 Signature Algorithm: sha256WithRSAEncryption 98:bc:3e:0b:50:91:77:b0:fb:4f:01:13:ff:f4:4e:c7:4c:35: 27:cf:6b:d7:97:af:81:c9:1f:b1:40:28:16:ec:ba:01:08:09: 2d:f9:9c:11:b9:fc:00:e9:ba:45:ca:79:be:8a:a9:10:ff:4b: 54:3b:13:72:b4:d8:88:57:03:34:67:1f:a7:ce:f7:c9:43:e7: 49:83:6d:63:1d:1a:cb:f2:07:e3:53:87:6c:d3:66:0f:5c:12: f3:33:ad:97:f8:82:f2:2d:fc:32:ec:e1:43:5d:fe:5b:00:b6: e6:9c:56:8b:59:60:eb:1b:14:b3:d1:1b:0c:f0:f9:0d:79:88: 7e:91:e6:6f:bd:d6:6f:22:13:90:3c:2b:76:e7:21:ff:dd:fa: 84:a2:39:55:c0:03:8c:4a:32:56:f2:f5:5c:31:7a:de:70:8e: d7:07:87:a8:20:24:1d:69:44:32:eb:87:a5:b7:c9:15:e2:b5: 00:ee:cd:e3:79:2d:a9:04:b5:04:1d:99:7d:1e:36:82:12:28: 02:40:39:aa:ad:2e:d6:12:30:96:e1:08:32:29:7d:86:97:34: 6a:d4:8d:01:47:56:f4:fc:32:f9:d5:19:00:80:13:4e:ef:6b: 36:5f:82:a5:ec:d6:97:7d:0b:f0:57:d1:ab:27:a7:2e:72:82: dc:d7:7a:54 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgICAi0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzVG RjkwMzA2QjQ3QTdERTAzMDdGMEUzMzVCNERDN0YyN0RFQTRGQjAeFw0yNTA4MjIw ODUwMTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDUyRkI2RTc4Q0FDQjcz OTI1MUYzQTg0NTM1Q0M4QkYzNjZDMTAxRTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD6XpR2eZAQ7+moJtZfpu25ub2YRkwYbdJMZFhXDly/nVPjm3ge hy23OAEzi3sQaikEREe88t6ps3j1Dp47Z76XK5uMlMu8go423ynDdRhKXR2Wm4U2 1eH74dRaGApwNFWuyq6fkqIDffM2UIJXjBrIDHOaFiIhZeKKxFSw8dnMsK5yT9X6 /vu+qSDaM0xaoOGY4rIovv0n4ovyu34D7j+5RGGn0ll9KU5uOkhmuznEW6JhNLNL 2bwttWm0IPtP5QIXwe5hYogQin1zbqcNrnvXAlK+neSrWu6ExQi3VDclL+Q4afY4 sdxkhcvYnjAFw36uMJYQ3m3xkC8HGJ11EbcDAgMBAAGjggH5MIIB9TAdBgNVHQ4E FgQUUvtueMrLc5JR86hFNcyL82bBAeYwHwYDVR0jBBgwFoAUNf+QMGtHp94DB/Dj NbTcfyfepPswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJSklD T0xURC9OZi1RTUd0SHA5NERCX0RqTmJUY2Z5ZmVwUHMuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL05mLVFNR3RIcDk0REJfRGpOYlRjZnlmZXBQcy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NISUpJQ09MVEQvVXZ0dWVNckxj NUpSODZoRk5jeUw4MmJCQWVZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAiBggrBgEFBQcBBwEB/wQTMBEwDwQC AAIwCQMHACQBXyDwADANBgkqhkiG9w0BAQsFAAOCAQEAmLw+C1CRd7D7TwET//RO x0w1J89r15evgckfsUAoFuy6AQgJLfmcEbn8AOm6Rcp5voqpEP9LVDsTcrTYiFcD NGcfp873yUPnSYNtYx0ay/IH41OHbNNmD1wS8zOtl/iC8i38MuzhQ13+WwC25pxW i1lg6xsUs9EbDPD5DXmIfpHmb73WbyITkDwrduch/936hKI5VcADjEoyVvL1XDF6 3nCO1weHqCAkHWlEMuuHpbfJFeK1AO7N43ktqQS1BB2ZfR42ghIoAkA5qq0u1hIw luEIMil9hpc0atSNAUdW9Pwy+dUZAIATTu9rNl+CpezWl30L8FfRqyenLnKC3Nd6 VA== -----END CERTIFICATE-----Generated at Sun Aug 24 07:17:25 2025 by rpki-client