$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/UZPRab-VL37Dq-owQp1_vYjatVM.roa File: UZPRab-VL37Dq-owQp1_vYjatVM.roa (raw, json) Hash identifier: QG5GxLcC+DVYiugsLckAfewWx8cwNoRPLAqb1FMZ1Y4= Subject key identifier: 51:93:D1:69:BF:95:2F:7E:C3:AB:EA:30:42:9D:7F:BD:88:DA:B5:53 Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9 Certificate serial: 0E1E Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/UZPRab-VL37Dq-owQp1_vYjatVM.roa Signing time: Fri 22 Aug 2025 09:00:52 +0000 ROA not before: Fri 22 Aug 2025 09:00:52 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131627 IP address blocks: 101.3.106.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3614 (0xe1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9 Validity Not Before: Aug 22 09:00:52 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=5193D169BF952F7EC3ABEA30429D7FBD88DAB553 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a1:33:1a:59:00:1a:c5:a8:64:19:99:26:87: 32:fa:b1:e0:23:4d:4b:9f:9d:45:01:08:dc:30:9c: 91:91:e1:6a:85:15:2a:91:b6:26:5e:6d:f1:a8:59: 94:6a:a9:e6:5f:69:79:b5:5b:d7:9b:ff:fc:74:d4: f0:68:26:43:da:5b:31:07:b4:1c:2e:30:e3:43:c9: 59:f3:24:a8:1e:b1:80:3d:6f:db:3a:57:e0:83:4b: 2e:49:15:2b:66:44:63:4d:28:37:63:0f:b0:7d:9b: 7d:8e:ae:19:6c:7f:7c:48:99:de:be:b9:07:82:1e: d5:02:4f:3a:a2:ad:0a:ac:d2:9d:3e:2f:bc:d7:ff: 63:7e:ff:ba:47:df:f8:cc:bf:57:7d:5f:5a:ea:95: 7d:f3:d2:05:5c:3d:20:21:c9:b6:f2:94:bd:38:5d: 95:28:f2:78:1b:d6:7a:1a:a0:b1:be:43:52:f2:7d: 4c:15:59:2b:66:82:7f:04:5e:34:4d:22:8c:3e:dd: 96:b5:e3:19:cc:62:ac:33:4d:11:c0:fd:73:88:3e: 12:0f:f4:c8:73:26:6f:b1:c3:c1:ed:37:1d:92:af: 5c:db:0c:0a:c3:01:78:ed:32:5b:c0:ff:7a:12:58: e5:ae:aa:a7:29:04:62:1b:a1:c4:1f:86:84:a1:70: f6:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:93:D1:69:BF:95:2F:7E:C3:AB:EA:30:42:9D:7F:BD:88:DA:B5:53 X509v3 Authority Key Identifier: keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/UZPRab-VL37Dq-owQp1_vYjatVM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.3.106.0/23 Signature Algorithm: sha256WithRSAEncryption 02:d5:2a:ad:00:16:e7:c7:b8:b1:f7:39:5c:fa:40:5d:45:4a: fc:1e:51:4d:78:c5:52:51:2e:95:e3:d4:f7:6a:d0:99:fd:9a: 45:97:22:4b:be:4d:2d:4e:f4:34:93:59:b1:ae:5e:c1:b2:33: dc:90:45:19:8f:82:cc:97:7d:40:28:74:fd:f3:c8:34:fb:53: 28:d7:e2:95:ee:5c:81:e9:ac:21:00:4a:b7:1f:0c:01:97:30: 31:64:53:87:30:e8:57:a5:27:c1:e8:cd:33:9e:f4:4e:2c:88: 99:30:0d:e5:36:9a:62:2a:01:80:16:a6:09:b3:dc:55:15:e6: 31:00:e4:78:f5:bb:6a:85:69:a9:0a:dd:b7:66:f9:dd:3b:04: ef:f3:8d:8a:48:2a:7b:69:d3:30:f9:61:59:62:01:11:dd:ba: 87:7d:a5:43:9a:dd:87:f6:41:f0:5f:5d:10:01:a7:cf:d9:14: f5:ff:41:16:02:20:20:39:81:f9:85:aa:90:85:90:35:b0:32: 02:fd:09:70:90:1b:47:10:c4:c1:8e:e3:0d:34:0d:e1:4f:53: be:b8:74:e9:56:e1:69:d2:36:46:ce:d3:b7:b2:27:d1:ac:4a: c1:0b:a1:2a:6b:eb:7f:e2:63:92:2d:e5:54:6c:8b:ac:de:de: 97:e5:b3:38 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICDh4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREY1 NjczQTE5NzIxMjZFN0QyQ0M1RDRENTFCNDkxMDgzNDVCRjhDOTAeFw0yNTA4MjIw OTAwNTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDUxOTNEMTY5QkY5NTJG N0VDM0FCRUEzMDQyOUQ3RkJEODhEQUI1NTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/oTMaWQAaxahkGZkmhzL6seAjTUufnUUBCNwwnJGR4WqFFSqR tiZebfGoWZRqqeZfaXm1W9eb//x01PBoJkPaWzEHtBwuMONDyVnzJKgesYA9b9s6 V+CDSy5JFStmRGNNKDdjD7B9m32Orhlsf3xImd6+uQeCHtUCTzqirQqs0p0+L7zX /2N+/7pH3/jMv1d9X1rqlX3z0gVcPSAhybbylL04XZUo8ngb1noaoLG+Q1LyfUwV WStmgn8EXjRNIow+3Za14xnMYqwzTRHA/XOIPhIP9MhzJm+xw8HtNx2Sr1zbDArD AXjtMlvA/3oSWOWuqqcpBGIbocQfhoShcPYnAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUUZPRab+VL37Dq+owQp1/vYjatVMwHwYDVR0jBBgwFoAU31ZzoZchJufSzF1N UbSRCDRb+MkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJRk83 NzE2LzMxWnpvWmNoSnVmU3pGMU5VYlNSQ0RSYi1Nay5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvMzFaem9aY2hKdWZTekYxTlViU1JDRFJiLU1rLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJRk83NzE2L1VaUFJhYi1WTDM3 RHEtb3dRcDFfdllqYXRWTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFlA2owDQYJKoZIhvcNAQELBQADggEBAALVKq0AFufHuLH3OVz6QF1FSvwe UU14xVJRLpXj1Pdq0Jn9mkWXIku+TS1O9DSTWbGuXsGyM9yQRRmPgsyXfUAodP3z yDT7UyjX4pXuXIHprCEASrcfDAGXMDFkU4cw6FelJ8HozTOe9E4siJkwDeU2mmIq AYAWpgmz3FUV5jEA5Hj1u2qFaakK3bdm+d07BO/zjYpIKntp0zD5YVliARHduod9 pUOa3Yf2QfBfXRABp8/ZFPX/QRYCICA5gfmFqpCFkDWwMgL9CXCQG0cQxMGO4w00 DeFPU764dOlW4WnSNkbO07eyJ9GsSsELoSpr63/iY5It5VRsi6ze3pflszg= -----END CERTIFICATE-----Generated at Sun Aug 24 09:22:32 2025 by rpki-client