$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/dUMVw1KtS1rD4iHpZduTfFnnmG4.roa File: dUMVw1KtS1rD4iHpZduTfFnnmG4.roa (raw, json) Hash identifier: Ua58WYzJMUq4ppF9jBMRvqNZ7v0BrHCdT39gbN4zhc0= Subject key identifier: 75:43:15:C3:52:AD:4B:5A:C3:E2:21:E9:65:DB:93:7C:59:E7:98:6E Certificate issuer: /CN=35FF90306B47A7DE0307F0E335B4DC7F27DEA4FB Certificate serial: 022F Authority key identifier: 35:FF:90:30:6B:47:A7:DE:03:07:F0:E3:35:B4:DC:7F:27:DE:A4:FB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/dUMVw1KtS1rD4iHpZduTfFnnmG4.roa Signing time: Fri 22 Aug 2025 08:50:11 +0000 ROA not before: Fri 22 Aug 2025 08:50:11 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 205329 IP address blocks: 2401:5f20::/32 maxlen: 127 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/Nf-QMGtHp94DB_DjNbTcfyfepPs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/Nf-QMGtHp94DB_DjNbTcfyfepPs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 559 (0x22f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35FF90306B47A7DE0307F0E335B4DC7F27DEA4FB Validity Not Before: Aug 22 08:50:11 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=754315C352AD4B5AC3E221E965DB937C59E7986E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:0f:33:45:f4:a6:77:82:5d:ef:2a:bd:98:d9: 3b:22:62:b8:8b:0a:14:9b:22:e0:43:f4:33:a6:45: 0d:c9:c6:7b:c7:dd:67:b6:37:bf:05:8f:b4:5f:59: c7:86:e5:de:25:97:33:d6:8b:7e:51:cd:84:75:fd: 47:10:54:2b:15:7f:68:18:b6:b8:ed:0c:f2:b5:f8: f8:9f:cc:ac:e4:ca:a0:b7:f2:77:28:97:ed:ce:43: 37:5b:78:cb:0d:c6:24:32:6b:c3:83:8a:15:58:ff: 55:37:94:e1:6f:1c:64:89:fe:a8:08:40:b3:68:85: 64:d8:65:f7:dc:25:ff:77:ec:bd:51:fa:3f:e7:77: 82:0a:97:47:4a:32:15:6f:24:59:4b:43:8d:96:3d: 6e:a3:09:04:47:11:58:a9:f7:69:28:de:70:17:d1: 3e:bc:56:fe:c6:f4:83:e1:6d:85:d7:84:7d:11:0e: 89:5c:d5:70:d5:9e:39:3f:7d:04:04:f9:10:39:b3: 6c:8f:18:39:96:ad:ec:af:56:a1:b6:80:f9:b7:35: 85:4b:af:da:b5:27:10:21:ed:4d:f9:33:c5:36:31: 33:19:71:56:48:c6:8f:0a:c1:d0:11:6a:ca:c4:70: 4c:bb:ae:32:de:7b:f9:84:94:6a:36:b0:ae:16:ca: be:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:43:15:C3:52:AD:4B:5A:C3:E2:21:E9:65:DB:93:7C:59:E7:98:6E X509v3 Authority Key Identifier: keyid:35:FF:90:30:6B:47:A7:DE:03:07:F0:E3:35:B4:DC:7F:27:DE:A4:FB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/Nf-QMGtHp94DB_DjNbTcfyfepPs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/dUMVw1KtS1rD4iHpZduTfFnnmG4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:5f20::/32 Signature Algorithm: sha256WithRSAEncryption 7a:b5:45:77:cb:b7:76:c1:b6:77:ae:12:6c:af:90:e9:35:97: bd:ef:f8:aa:e1:b8:e9:0e:d3:0c:39:6c:21:7e:44:c7:98:af: 5d:bb:f2:a6:28:fa:c7:c8:da:b2:3b:a0:a7:43:d2:e4:84:c1: fb:5a:3c:a0:b4:69:1c:d8:14:26:ae:58:97:bd:c8:cf:eb:a2: 9d:c6:0d:c0:ed:f5:50:81:62:7a:96:ca:0c:bb:8b:a8:db:de: 52:f9:28:98:3d:42:45:a1:06:e6:eb:d1:22:4b:4d:b4:6a:3c: ed:d6:e1:52:23:de:13:08:40:cb:87:c2:3f:a0:bd:83:4f:5a: dc:3a:a0:a3:8f:22:f4:42:f7:fb:15:53:0e:28:d5:7f:09:cf: b0:9b:8a:88:fc:07:44:31:83:9f:b6:f7:82:f1:9d:85:86:f2: 56:9c:63:6e:a6:ea:ca:e3:ee:32:4f:13:99:bd:ea:ff:51:e0: 4a:c0:a4:88:ae:76:3e:20:4e:d9:21:a9:88:11:a4:88:84:6a: ae:f8:7d:47:6b:09:1f:7e:df:bf:9a:e2:15:ec:fb:e1:62:05: 82:26:52:c1:da:61:68:c5:79:48:fa:c2:b8:29:56:fa:65:fc: 39:ff:ee:e2:d8:84:65:e4:35:77:cd:af:db:7f:57:91:c3:f5: 50:75:c2:f6 -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgICAi8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzVG RjkwMzA2QjQ3QTdERTAzMDdGMEUzMzVCNERDN0YyN0RFQTRGQjAeFw0yNTA4MjIw ODUwMTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDc1NDMxNUMzNTJBRDRC NUFDM0UyMjFFOTY1REI5MzdDNTlFNzk4NkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYDzNF9KZ3gl3vKr2Y2TsiYriLChSbIuBD9DOmRQ3JxnvH3We2 N78Fj7RfWceG5d4llzPWi35RzYR1/UcQVCsVf2gYtrjtDPK1+PifzKzkyqC38nco l+3OQzdbeMsNxiQya8ODihVY/1U3lOFvHGSJ/qgIQLNohWTYZffcJf937L1R+j/n d4IKl0dKMhVvJFlLQ42WPW6jCQRHEVip92ko3nAX0T68Vv7G9IPhbYXXhH0RDolc 1XDVnjk/fQQE+RA5s2yPGDmWreyvVqG2gPm3NYVLr9q1JxAh7U35M8U2MTMZcVZI xo8KwdARasrEcEy7rjLee/mElGo2sK4Wyr45AgMBAAGjggH3MIIB8zAdBgNVHQ4E FgQUdUMVw1KtS1rD4iHpZduTfFnnmG4wHwYDVR0jBBgwFoAUNf+QMGtHp94DB/Dj NbTcfyfepPswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJSklD T0xURC9OZi1RTUd0SHA5NERCX0RqTmJUY2Z5ZmVwUHMuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL05mLVFNR3RIcDk0REJfRGpOYlRjZnlmZXBQcy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NISUpJQ09MVEQvZFVNVncxS3RT MXJENGlIcFpkdVRmRm5ubUc0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQC AAIwBwMFACQBXyAwDQYJKoZIhvcNAQELBQADggEBAHq1RXfLt3bBtneuEmyvkOk1 l73v+KrhuOkO0ww5bCF+RMeYr1278qYo+sfI2rI7oKdD0uSEwftaPKC0aRzYFCau WJe9yM/rop3GDcDt9VCBYnqWygy7i6jb3lL5KJg9QkWhBubr0SJLTbRqPO3W4VIj 3hMIQMuHwj+gvYNPWtw6oKOPIvRC9/sVUw4o1X8Jz7Cbioj8B0Qxg5+294LxnYWG 8lacY26m6srj7jJPE5m96v9R4ErApIiudj4gTtkhqYgRpIiEaq74fUdrCR9+37+a 4hXs++FiBYImUsHaYWjFeUj6wrgpVvpl/Dn/7uLYhGXkNXfNr9t/V5HD9VB1wvY= -----END CERTIFICATE-----Generated at Sun Aug 24 07:17:24 2025 by rpki-client