$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/ucfDKdbCTaL9plHSkVz5eMnzJaE.roa File: ucfDKdbCTaL9plHSkVz5eMnzJaE.roa (raw, json) Hash identifier: MUAWkWydpL7CMxmgwikeS9jggPYkmxvMFI41HvUHovw= Subject key identifier: B9:C7:C3:29:D6:C2:4D:A2:FD:A6:51:D2:91:5C:F9:78:C9:F3:25:A1 Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Certificate serial: 108B Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/ucfDKdbCTaL9plHSkVz5eMnzJaE.roa Signing time: Fri 22 Aug 2025 08:55:35 +0000 ROA not before: Fri 22 Aug 2025 08:55:35 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 1659 IP address blocks: 163.13.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4235 (0x108b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Validity Not Before: Aug 22 08:55:35 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B9C7C329D6C24DA2FDA651D2915CF978C9F325A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:d6:7c:3f:f1:ad:c0:0b:e8:f7:00:37:05:1b: 95:8f:8e:32:52:05:d9:7e:11:89:dc:d5:8f:0d:06: 8b:90:2d:22:9f:14:c9:5c:b5:e5:81:80:13:a6:6c: 30:e5:f3:bc:4f:8e:bc:a1:ec:75:ac:a6:3f:36:65: db:c6:fe:15:77:97:d2:a5:1d:7d:16:74:5c:e7:fa: d4:ef:aa:ff:fc:c8:a3:2c:f7:ea:bd:cb:54:2f:d4: 69:c4:4d:51:40:5a:49:d6:85:a0:a1:6d:d4:44:13: bf:c4:ca:01:52:cc:5b:0f:f6:72:d6:d0:7c:14:d5: 25:d8:a4:71:7b:7e:a1:da:47:00:d2:f1:2d:55:e0: 06:19:2b:90:a2:7b:24:0f:2b:69:4c:8a:86:c6:20: 58:0b:9f:30:99:bd:bf:8e:df:98:dd:bf:83:79:4a: a9:f5:d5:8e:fb:d5:ea:10:59:4b:7a:39:ac:b3:1e: 42:47:af:85:5b:19:aa:d0:96:a8:b2:23:f9:18:da: d5:f2:8d:aa:9d:02:76:d7:74:0a:f2:ca:8a:88:d5: af:4e:c4:be:72:31:63:b8:bc:6e:c6:28:12:d0:3f: 0d:7a:0f:c7:ff:33:bc:02:9c:60:fe:34:44:e7:2c: b2:8f:81:b2:d9:35:9b:a2:ca:ee:fa:d0:3e:12:36: b1:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:C7:C3:29:D6:C2:4D:A2:FD:A6:51:D2:91:5C:F9:78:C9:F3:25:A1 X509v3 Authority Key Identifier: keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/ucfDKdbCTaL9plHSkVz5eMnzJaE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 163.13.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9e:23:69:c9:02:b5:53:8d:dc:60:f2:7c:9e:9a:d7:ce:f3:8b: 29:49:21:25:57:0e:b0:84:19:90:52:ba:8e:62:dc:eb:64:7b: 5e:4a:8c:04:b9:71:24:ee:03:3f:53:84:ee:f9:13:36:21:de: b5:90:ee:aa:41:de:81:a0:be:45:c6:bd:30:11:0d:12:97:a1: 5d:b1:2a:a3:90:09:8a:de:67:54:8c:85:89:dc:16:9c:63:62: b2:77:e2:02:5a:a7:10:28:31:f0:37:97:39:66:04:f3:0b:b2: 00:dd:ef:74:3a:03:5e:a4:77:9f:ea:ac:7c:47:d9:95:a1:db: cd:50:a6:a7:ab:11:62:67:ff:19:e3:22:cb:67:71:6f:fa:15: 6d:e2:19:33:a3:69:e7:ae:5e:11:3c:73:e4:29:0e:56:5d:53: 18:a5:f2:5b:91:5d:7b:6f:9d:44:84:a7:f3:64:45:34:51:f7: 06:40:c0:3f:8d:54:e5:bb:80:81:2b:d4:c0:f2:b1:80:f2:c5: 60:12:33:d8:ec:eb:65:ef:bf:ab:f3:bf:35:4b:07:c9:90:5b: 45:25:16:08:23:52:c3:e6:01:27:d3:cb:96:e4:80:37:12:18: d1:07:e2:c8:9e:5e:5d:63:c4:f2:d2:4d:04:43:b7:60:dd:75: 4b:ed:01:a1 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICEIswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNTA4MjIw ODU1MzVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEI5QzdDMzI5RDZDMjRE QTJGREE2NTFEMjkxNUNGOTc4QzlGMzI1QTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDg1nw/8a3AC+j3ADcFG5WPjjJSBdl+EYnc1Y8NBouQLSKfFMlc teWBgBOmbDDl87xPjryh7HWspj82ZdvG/hV3l9KlHX0WdFzn+tTvqv/8yKMs9+q9 y1Qv1GnETVFAWknWhaChbdREE7/EygFSzFsP9nLW0HwU1SXYpHF7fqHaRwDS8S1V 4AYZK5CieyQPK2lMiobGIFgLnzCZvb+O35jdv4N5Sqn11Y771eoQWUt6OayzHkJH r4VbGarQlqiyI/kY2tXyjaqdAnbXdAryyoqI1a9OxL5yMWO4vG7GKBLQPw16D8f/ M7wCnGD+NETnLLKPgbLZNZuiyu760D4SNrHLAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUucfDKdbCTaL9plHSkVz5eMnzJaEwHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF /peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC91Y2ZES2RiQ1RhTDlwbEhTa1Z6 NWVNbnpKYUUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAow0w DQYJKoZIhvcNAQELBQADggEBAJ4jackCtVON3GDyfJ6a187ziylJISVXDrCEGZBS uo5i3Otke15KjAS5cSTuAz9ThO75EzYh3rWQ7qpB3oGgvkXGvTARDRKXoV2xKqOQ CYreZ1SMhYncFpxjYrJ34gJapxAoMfA3lzlmBPMLsgDd73Q6A16kd5/qrHxH2ZWh 281QpqerEWJn/xnjIstncW/6FW3iGTOjaeeuXhE8c+QpDlZdUxil8luRXXtvnUSE p/NkRTRR9wZAwD+NVOW7gIEr1MDysYDyxWASM9js62Xvv6vzvzVLB8mQW0UlFggj UsPmASfTy5bkgDcSGNEH4sieXl1jxPLSTQRDt2DddUvtAaE= -----END CERTIFICATE-----Generated at Sun Aug 24 07:57:18 2025 by rpki-client