$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TGM/u6i0tW_ykJ-pICROUPFsj8xP22o.roa File: u6i0tW_ykJ-pICROUPFsj8xP22o.roa (raw, json) Hash identifier: TULF4uEKwnvOpgQTfGdGBxkB1FmLvsOohXS1SsP5bQg= Subject key identifier: BB:A8:B4:B5:6F:F2:90:9F:A9:20:24:4E:50:F1:6C:8F:CC:4F:DB:6A Certificate issuer: /CN=9B60696D68773AE2E532F0CD5D10FDC0C8273EA5 Certificate serial: 03F8 Authority key identifier: 9B:60:69:6D:68:77:3A:E2:E5:32:F0:CD:5D:10:FD:C0:C8:27:3E:A5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/m2BpbWh3OuLlMvDNXRD9wMgnPqU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TGM/u6i0tW_ykJ-pICROUPFsj8xP22o.roa Signing time: Fri 22 Aug 2025 08:52:01 +0000 ROA not before: Fri 22 Aug 2025 08:52:01 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131642 IP address blocks: 103.180.20.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TGM/m2BpbWh3OuLlMvDNXRD9wMgnPqU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TGM/m2BpbWh3OuLlMvDNXRD9wMgnPqU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/m2BpbWh3OuLlMvDNXRD9wMgnPqU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1016 (0x3f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B60696D68773AE2E532F0CD5D10FDC0C8273EA5 Validity Not Before: Aug 22 08:52:01 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=BBA8B4B56FF2909FA920244E50F16C8FCC4FDB6A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:16:76:32:84:f5:12:14:af:83:61:30:0e:f1: 04:dc:44:bd:b1:c2:6f:d2:0f:39:61:a0:17:bc:06: e5:9d:11:fe:2f:a7:f2:be:04:6f:b6:4d:e5:25:a3: ea:24:df:9d:d4:7f:3b:5e:02:8b:5b:ba:0a:f7:c2: fc:5f:84:18:d4:b7:36:ec:07:6b:38:78:6c:50:db: 67:44:48:41:80:2e:af:49:ae:7e:62:9f:a7:45:74: 71:dc:a9:76:af:ca:16:00:85:32:d1:3e:04:f4:d2: f6:da:37:1f:53:4b:75:6b:37:39:ae:6f:78:3a:82: 6a:34:7e:08:63:b9:89:6d:66:60:c0:3d:91:a4:36: 73:c4:1a:96:72:04:8d:f3:d8:8e:f5:a5:ad:07:06: cf:cc:8d:4e:b3:c5:fc:27:c1:ec:aa:22:17:62:f9: 63:db:37:3d:c2:c3:d0:24:c7:67:c0:42:9e:d5:65: 91:24:76:1e:84:ea:c5:9e:b3:3c:b5:d8:17:8c:b0: 84:67:31:11:b6:d3:c8:b2:17:cd:86:20:62:03:ca: de:77:d2:87:dc:83:99:9a:b0:f7:42:8c:30:ed:27: e3:68:e7:ad:a8:0d:c1:bd:e2:68:e0:17:12:06:b5: b7:3a:7b:14:22:fd:4b:82:2b:c3:59:cd:52:94:e7: e0:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:A8:B4:B5:6F:F2:90:9F:A9:20:24:4E:50:F1:6C:8F:CC:4F:DB:6A X509v3 Authority Key Identifier: keyid:9B:60:69:6D:68:77:3A:E2:E5:32:F0:CD:5D:10:FD:C0:C8:27:3E:A5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TGM/m2BpbWh3OuLlMvDNXRD9wMgnPqU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/m2BpbWh3OuLlMvDNXRD9wMgnPqU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TGM/u6i0tW_ykJ-pICROUPFsj8xP22o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.180.20.0/23 Signature Algorithm: sha256WithRSAEncryption 0e:b9:6a:1f:85:94:82:f9:50:d1:39:73:55:04:b7:88:f1:da: 68:05:f9:9e:fd:47:e7:a5:04:2f:2e:92:8c:7c:3e:be:0d:1b: ae:8d:bb:82:53:4c:8a:9f:45:b1:1a:99:8d:3c:b0:b1:c6:91: 93:17:ee:fb:cd:04:2d:ad:a5:51:a5:38:78:71:89:be:e7:9a: 31:ed:ae:02:85:bc:b9:ad:aa:c9:82:17:b0:ae:7e:41:c6:85: 45:e6:a8:1f:c9:b9:37:16:86:6d:90:d0:de:a5:32:4b:a4:d8: 55:a6:f9:9d:2b:a3:8e:71:25:91:cd:73:3c:ba:8a:39:fc:ff: 3a:ca:2e:3f:0d:4c:2f:12:98:82:aa:6b:e5:af:90:76:c4:38: a2:ad:cc:f9:49:49:3d:58:40:7e:5c:77:29:a5:f8:19:06:bc: d0:e0:03:74:aa:90:a4:1f:32:00:61:73:bb:09:ae:a6:c9:39: 43:64:e9:b5:56:2e:fd:61:78:2d:1c:a6:c7:3a:bb:c1:2e:22: 5e:16:71:41:c1:47:d6:b3:aa:55:55:f7:55:a9:7e:b5:ea:f4: 7c:44:5a:e9:79:08:8a:43:d3:30:ad:a5:da:e2:87:5b:e3:b6: 4b:10:4f:f5:22:7b:cf:d5:f9:e4:f7:b2:bd:20:8a:16:f6:73: d4:1c:70:6a -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICA/gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUI2 MDY5NkQ2ODc3M0FFMkU1MzJGMENENUQxMEZEQzBDODI3M0VBNTAeFw0yNTA4MjIw ODUyMDFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEJCQThCNEI1NkZGMjkw OUZBOTIwMjQ0RTUwRjE2QzhGQ0M0RkRCNkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmFnYyhPUSFK+DYTAO8QTcRL2xwm/SDzlhoBe8BuWdEf4vp/K+ BG+2TeUlo+ok353UfzteAotbugr3wvxfhBjUtzbsB2s4eGxQ22dESEGALq9Jrn5i n6dFdHHcqXavyhYAhTLRPgT00vbaNx9TS3VrNzmub3g6gmo0fghjuYltZmDAPZGk NnPEGpZyBI3z2I71pa0HBs/MjU6zxfwnweyqIhdi+WPbNz3Cw9Akx2fAQp7VZZEk dh6E6sWeszy12BeMsIRnMRG208iyF82GIGIDyt530ofcg5masPdCjDDtJ+No562o DcG94mjgFxIGtbc6exQi/UuCK8NZzVKU5+DtAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUu6i0tW/ykJ+pICROUPFsj8xP22owHwYDVR0jBBgwFoAUm2BpbWh3OuLlMvDN XRD9wMgnPqUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEdNL20y QnBiV2gzT3VMbE12RE5YUkQ5d01nblBxVS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev bTJCcGJXaDNPdUxsTXZETlhSRDl3TWduUHFVLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvVEdNL3U2aTB0V195a0otcElDUk9VUEZzajh4 UDIyby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFntBQwDQYJ KoZIhvcNAQELBQADggEBAA65ah+FlIL5UNE5c1UEt4jx2mgF+Z79R+elBC8ukox8 Pr4NG66Nu4JTTIqfRbEamY08sLHGkZMX7vvNBC2tpVGlOHhxib7nmjHtrgKFvLmt qsmCF7CufkHGhUXmqB/JuTcWhm2Q0N6lMkuk2FWm+Z0ro45xJZHNczy6ijn8/zrK Lj8NTC8SmIKqa+WvkHbEOKKtzPlJST1YQH5cdyml+BkGvNDgA3SqkKQfMgBhc7sJ rqbJOUNk6bVWLv1heC0cpsc6u8EuIl4WcUHBR9azqlVV91WpfrXq9HxEWul5CIpD 0zCtpdrih1vjtksQT/Uie8/V+eT3sr0gihb2c9QccGo= -----END CERTIFICATE-----Generated at Sun Aug 24 09:21:15 2025 by rpki-client