$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/9K2AXwA-b1rf06y-9EBGK0EROrM.roa File: 9K2AXwA-b1rf06y-9EBGK0EROrM.roa (raw, json) Hash identifier: /oyBmSlgpTiw5KMSwYbUPejHQRqmwdyXb+7RS4Sc3tY= Subject key identifier: F4:AD:80:5F:00:3E:6F:5A:DF:D3:AC:BE:F4:40:46:2B:41:11:3A:B3 Certificate issuer: /CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B Certificate serial: 0DC9 Authority key identifier: 39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/9K2AXwA-b1rf06y-9EBGK0EROrM.roa Signing time: Fri 22 Aug 2025 08:55:19 +0000 ROA not before: Fri 22 Aug 2025 08:55:19 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131616 IP address blocks: 103.124.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3529 (0xdc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B Validity Not Before: Aug 22 08:55:19 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F4AD805F003E6F5ADFD3ACBEF440462B41113AB3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:49:12:4d:d4:74:37:0d:2f:aa:14:12:b2:82: 16:28:7b:ff:67:30:e3:5c:97:81:00:16:d6:58:4e: 05:a9:26:6a:49:b9:68:54:2c:cb:a9:8b:e2:64:d9: 7f:f7:08:5f:5f:5a:12:d2:8f:cb:b7:f1:2b:1f:09: 7c:04:c7:7a:64:b9:6a:c1:08:08:09:89:90:99:83: 86:d2:df:47:99:9b:08:d8:55:f6:fb:33:b9:d1:7f: 2d:7e:17:92:a9:d6:44:04:7e:0e:00:76:3d:5b:f1: 06:c8:60:fc:a3:24:fd:35:1c:b5:9c:0b:7a:d2:14: 4f:89:ec:c8:64:1f:4c:73:5e:3b:48:a4:f1:02:a0: c3:da:eb:6f:8f:a8:8f:8a:d7:80:f0:a0:f2:9f:21: 25:5b:ca:eb:4a:53:47:fc:cc:1a:1a:49:54:ae:db: 3a:f4:aa:4a:b4:bf:33:1b:63:f1:f1:a4:74:af:fa: 04:e4:66:06:e5:0c:d1:0c:54:05:7e:c1:33:d4:15: 67:62:3d:a0:27:ee:0d:37:1f:fc:02:71:3f:f2:e5: 74:88:ef:d7:02:e0:c7:14:0e:90:fb:b3:9f:65:28: ed:12:37:01:c2:20:0b:20:38:ed:35:87:1d:eb:aa: ee:ad:a0:3c:5d:2f:f9:4d:c0:c7:4c:99:b3:67:c0: 38:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:AD:80:5F:00:3E:6F:5A:DF:D3:AC:BE:F4:40:46:2B:41:11:3A:B3 X509v3 Authority Key Identifier: keyid:39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/9K2AXwA-b1rf06y-9EBGK0EROrM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.124.148.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:b9:78:a4:19:c3:78:91:b4:6f:9f:2b:19:28:0d:50:86:21: 70:35:7f:30:3a:54:f6:37:0d:cc:e1:bb:46:40:0b:6c:58:6b: 30:66:db:76:f6:25:d5:16:35:09:2b:3e:fb:96:9a:9d:4e:83: cd:6c:fd:74:10:b9:e8:0d:3b:af:f4:49:d3:44:43:38:09:80: fc:df:7f:b0:89:7f:e0:f8:c7:f1:32:bf:f1:5e:b5:59:25:3b: c6:51:64:31:d0:56:d1:e0:47:30:da:42:86:f9:90:c2:97:de: ac:08:27:0b:21:9c:31:a6:5d:e5:a4:18:14:32:9b:9e:21:a2: c3:8a:15:a0:75:bb:58:cf:fb:0e:35:ee:a3:bc:13:f4:f8:0e: bf:54:34:32:27:d3:25:6c:48:f3:e2:c8:3d:ec:74:b2:06:ac: 40:80:44:ea:e0:ad:a1:d7:d1:38:2e:37:c9:e6:db:54:67:43: fe:5b:de:af:34:41:aa:23:17:85:01:29:52:c7:a9:55:af:a5: e0:00:8d:3a:45:a3:3c:ee:88:66:12:6f:0a:c5:1e:0e:1e:06: 5a:6c:16:10:9a:ad:fd:46:b3:2d:38:70:31:a3:bd:d5:a0:e2: 83:b6:8c:2a:12:1d:ee:71:dc:52:b4:c2:c1:20:9f:af:c1:c2: ac:dc:75:bf -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDckwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzkw QTA0MTJGOEI1RUM0RjNGOUZEQkIzQTYxMjcwREJEMEVBOUU2QjAeFw0yNTA4MjIw ODU1MTlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEY0QUQ4MDVGMDAzRTZG NUFERkQzQUNCRUY0NDA0NjJCNDExMTNBQjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNSRJN1HQ3DS+qFBKyghYoe/9nMONcl4EAFtZYTgWpJmpJuWhU LMupi+Jk2X/3CF9fWhLSj8u38SsfCXwEx3pkuWrBCAgJiZCZg4bS30eZmwjYVfb7 M7nRfy1+F5Kp1kQEfg4Adj1b8QbIYPyjJP01HLWcC3rSFE+J7MhkH0xzXjtIpPEC oMPa62+PqI+K14DwoPKfISVbyutKU0f8zBoaSVSu2zr0qkq0vzMbY/HxpHSv+gTk ZgblDNEMVAV+wTPUFWdiPaAn7g03H/wCcT/y5XSI79cC4McUDpD7s59lKO0SNwHC IAsgOO01hx3rqu6toDxdL/lNwMdMmbNnwDhNAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU9K2AXwA+b1rf06y+9EBGK0EROrMwHwYDVR0jBBgwFoAUOQoEEvi17E8/n9uz phJw29DqnmswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVU5JR0FU RS9PUW9FRXZpMTdFOF9uOXV6cGhKdzI5RHFubXMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL09Rb0VFdmkxN0U4X245dXpwaEp3MjlEcW5tcy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1VOSUdBVEUvOUsyQVh3QS1iMXJmMDZ5 LTlFQkdLMEVST3JNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AGd8lDANBgkqhkiG9w0BAQsFAAOCAQEAmrl4pBnDeJG0b58rGSgNUIYhcDV/MDpU 9jcNzOG7RkALbFhrMGbbdvYl1RY1CSs++5aanU6DzWz9dBC56A07r/RJ00RDOAmA /N9/sIl/4PjH8TK/8V61WSU7xlFkMdBW0eBHMNpChvmQwpferAgnCyGcMaZd5aQY FDKbniGiw4oVoHW7WM/7DjXuo7wT9PgOv1Q0MifTJWxI8+LIPex0sgasQIBE6uCt odfROC43yebbVGdD/lverzRBqiMXhQEpUsepVa+l4ACNOkWjPO6IZhJvCsUeDh4G WmwWEJqt/UazLThwMaO91aDig7aMKhId7nHcUrTCwSCfr8HCrNx1vw== -----END CERTIFICATE-----Generated at Sun Aug 24 14:06:53 2025 by rpki-client