$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/UdEQZ_KG2TXwxzfcZJoMf65QdbM.roa File: UdEQZ_KG2TXwxzfcZJoMf65QdbM.roa (raw, json) Hash identifier: ZKZkEEd2g/j5vI7wh+ar7/nTaHZNJkpH3wYWjWKZjN4= Subject key identifier: 51:D1:10:67:F2:86:D9:35:F0:C7:37:DC:64:9A:0C:7F:AE:50:75:B3 Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Certificate serial: 1089 Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/UdEQZ_KG2TXwxzfcZJoMf65QdbM.roa Signing time: Fri 22 Aug 2025 08:55:35 +0000 ROA not before: Fri 22 Aug 2025 08:55:35 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 1659 IP address blocks: 210.62.224.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4233 (0x1089) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Validity Not Before: Aug 22 08:55:35 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=51D11067F286D935F0C737DC649A0C7FAE5075B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:a3:bb:80:eb:2e:a0:c2:ac:4a:0d:5e:a7:01: 99:59:58:a5:bc:02:5a:bd:ab:f0:ed:05:96:87:8b: d7:61:69:98:26:89:a5:a2:72:fc:c7:98:77:9f:42: 96:8e:b2:9b:ec:8f:ec:dc:02:63:fa:59:68:fe:eb: ca:76:44:73:c9:b2:ac:86:29:e9:cb:c9:be:69:53: be:b2:68:dc:45:2d:76:2c:a2:6d:73:04:fd:4a:be: 85:16:f5:53:73:45:d0:af:0d:93:59:a2:07:c9:56: 62:5e:da:a4:91:a4:cb:92:14:dd:4b:db:1b:17:13: 17:68:df:95:6f:1b:30:f3:a1:c7:bf:d2:d6:7b:07: 97:27:42:78:88:d5:bf:17:2a:3b:b3:f8:fb:44:ce: 2d:8d:46:11:02:01:fe:39:f3:da:b6:65:7a:6c:01: 44:87:94:f9:c3:20:16:00:d7:0e:71:5a:91:e0:07: 42:2a:0d:9b:7a:57:c9:e4:99:b2:12:c5:be:05:a6: 09:3e:22:23:8f:c6:f1:18:34:9f:b0:e9:1e:cd:3d: 6c:d6:fa:fb:68:67:b3:9c:2d:ef:a5:64:f9:b3:9b: 0b:12:78:42:ec:2b:27:68:fb:48:87:5c:0a:d2:44: e9:8f:eb:d0:ad:60:88:69:5f:82:c2:26:67:2f:cd: 4b:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:D1:10:67:F2:86:D9:35:F0:C7:37:DC:64:9A:0C:7F:AE:50:75:B3 X509v3 Authority Key Identifier: keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/UdEQZ_KG2TXwxzfcZJoMf65QdbM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.62.224.0/20 Signature Algorithm: sha256WithRSAEncryption ac:12:27:3c:d2:78:11:95:46:7b:e1:ea:3d:cd:48:2d:82:61: 89:51:f7:66:cb:43:f0:49:48:36:2b:4b:00:a0:c3:b9:8e:a5: 68:1a:af:32:42:3e:04:0a:9a:f1:05:de:b4:a1:ad:70:9c:d1: 7a:ef:c6:03:90:70:44:be:1d:dd:b6:9c:59:cc:03:7e:2b:c8: 49:9d:2d:08:39:f4:6f:e0:96:6b:76:6a:54:d1:6a:b8:88:7d: f8:51:55:21:88:81:4f:d3:b5:78:d6:7b:26:0e:44:f6:f8:d8: 1f:df:b7:bc:0e:b8:7d:c1:9a:1e:88:a0:c5:75:c6:0e:cd:ac: 40:42:81:43:4f:5b:ab:21:a6:42:9f:70:ca:80:4a:2a:aa:46: ad:23:de:51:13:78:6d:35:35:d5:f3:42:48:3a:ff:1d:99:a2: d5:90:6b:22:78:5a:b3:5a:93:18:6f:05:03:b0:ba:06:48:e6: a2:86:62:3f:75:6e:e0:e6:dd:23:c8:01:be:b1:6d:09:25:ef: 7a:92:7f:d0:20:15:67:03:a7:32:53:5b:e3:41:56:ec:6e:cb: fb:66:0b:83:3b:21:5f:7a:10:a9:ef:0b:a7:a9:bc:e1:a8:ca: 2c:11:f1:a4:7f:f5:0e:f4:ff:30:82:4a:9d:ce:ad:91:92:01: 5f:b7:4e:9c -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEIkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNTA4MjIw ODU1MzVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDUxRDExMDY3RjI4NkQ5 MzVGMEM3MzdEQzY0OUEwQzdGQUU1MDc1QjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDho7uA6y6gwqxKDV6nAZlZWKW8Alq9q/DtBZaHi9dhaZgmiaWi cvzHmHefQpaOspvsj+zcAmP6WWj+68p2RHPJsqyGKenLyb5pU76yaNxFLXYsom1z BP1KvoUW9VNzRdCvDZNZogfJVmJe2qSRpMuSFN1L2xsXExdo35VvGzDzoce/0tZ7 B5cnQniI1b8XKjuz+PtEzi2NRhECAf4589q2ZXpsAUSHlPnDIBYA1w5xWpHgB0Iq DZt6V8nkmbISxb4Fpgk+IiOPxvEYNJ+w6R7NPWzW+vtoZ7OcLe+lZPmzmwsSeELs Kydo+0iHXArSROmP69CtYIhpX4LCJmcvzUslAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUUdEQZ/KG2TXwxzfcZJoMf65QdbMwHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF /peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9VZEVRWl9LRzJUWHd4emZjWkpv TWY2NVFkYk0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQE0j7g MA0GCSqGSIb3DQEBCwUAA4IBAQCsEic80ngRlUZ74eo9zUgtgmGJUfdmy0PwSUg2 K0sAoMO5jqVoGq8yQj4ECprxBd60oa1wnNF678YDkHBEvh3dtpxZzAN+K8hJnS0I OfRv4JZrdmpU0Wq4iH34UVUhiIFP07V41nsmDkT2+Ngf37e8Drh9wZoeiKDFdcYO zaxAQoFDT1urIaZCn3DKgEoqqkatI95RE3htNTXV80JIOv8dmaLVkGsieFqzWpMY bwUDsLoGSOaihmI/dW7g5t0jyAG+sW0JJe96kn/QIBVnA6cyU1vjQVbsbsv7ZguD OyFfehCp7wunqbzhqMosEfGkf/UO9P8wgkqdzq2RkgFft06c -----END CERTIFICATE-----Generated at Sun Aug 24 07:57:18 2025 by rpki-client