$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/kdtOQsTN-ACfhhx1WvzMtu0S99c.roa File: kdtOQsTN-ACfhhx1WvzMtu0S99c.roa (raw, json) Hash identifier: 4Ehk++twp7fMnpJbLGW+mB6P6nFKkFjr4owRfBqMczI= Subject key identifier: 91:DB:4E:42:C4:CD:F8:00:9F:86:1C:75:5A:FC:CC:B6:ED:12:F7:D7 Certificate issuer: /CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B Certificate serial: 0DCF Authority key identifier: 39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/kdtOQsTN-ACfhhx1WvzMtu0S99c.roa Signing time: Fri 22 Aug 2025 08:55:21 +0000 ROA not before: Fri 22 Aug 2025 08:55:21 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131600 IP address blocks: 2403:a3c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3535 (0xdcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B Validity Not Before: Aug 22 08:55:21 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=91DB4E42C4CDF8009F861C755AFCCCB6ED12F7D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:f5:59:83:44:bc:e9:fe:83:aa:59:f7:61:58: 67:ca:5b:f4:18:13:2c:c1:28:70:78:4b:64:7f:5f: 6a:74:0e:f2:b0:ef:1f:92:7e:f3:d0:73:0d:81:f3: 96:4e:f4:cf:06:cb:7d:53:ce:b1:3e:56:2f:b8:78: c2:af:74:71:3a:34:58:89:c2:ba:bd:ad:96:7f:03: 24:81:b3:74:4f:15:78:70:90:84:e7:9b:4c:71:31: 30:da:74:94:54:2c:ed:6a:20:9a:de:2b:0b:ef:a8: 21:ce:8c:f1:50:ad:bd:9a:7a:2c:62:07:31:78:a7: e5:95:e8:fa:7a:83:8a:0c:14:2c:67:0f:9b:c4:3d: 75:69:84:fd:2a:22:92:c3:3c:e6:ab:1f:29:2f:15: 19:45:5c:c1:c9:2b:a8:f9:53:1c:15:b0:84:38:bb: c1:24:35:81:4f:64:99:aa:41:ba:7a:1e:fb:25:09: f8:fd:6d:9f:b0:df:61:ca:68:d8:39:f0:37:a5:91: a3:e2:ef:48:c6:ee:b5:b5:c6:03:90:f3:97:31:12: 20:5a:9e:da:4e:f1:cd:3c:8a:e0:0e:99:15:6c:f9: 3c:78:c3:3b:c0:d6:58:db:86:2b:cc:6a:86:85:9c: 5d:c8:39:0d:6f:ab:a9:ad:29:2c:4e:16:6d:4a:43: d4:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:DB:4E:42:C4:CD:F8:00:9F:86:1C:75:5A:FC:CC:B6:ED:12:F7:D7 X509v3 Authority Key Identifier: keyid:39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/kdtOQsTN-ACfhhx1WvzMtu0S99c.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:a3c0::/32 Signature Algorithm: sha256WithRSAEncryption 86:25:84:72:6f:e0:a7:b0:0e:85:96:ba:4b:a1:f3:8f:ed:f1: 7b:b7:1b:7f:97:ee:20:c2:50:58:a1:a2:55:b9:d4:b6:c6:ba: 7f:0f:4f:c2:86:d6:6c:ca:e6:cf:36:5c:31:12:81:54:46:6a: ed:55:c4:36:e6:b9:eb:a4:eb:75:f6:4c:fa:e0:14:81:53:ef: 0b:b7:26:a4:ed:b3:ac:8d:20:49:6c:eb:a2:a0:ba:bd:c8:98: df:3a:64:1e:f7:2a:57:5c:39:58:ff:c6:1e:7b:f0:b1:68:eb: db:d0:46:3a:71:39:30:d0:15:10:9f:ae:eb:11:a8:1f:1b:d6: d6:63:43:15:7c:0c:a3:50:8a:40:96:b6:d4:f6:30:04:c3:40: a7:c1:64:c9:d2:17:44:78:a4:11:10:2a:10:e4:35:92:26:18: cf:1e:9e:ff:94:95:06:ae:1f:fe:b7:4f:98:ad:f8:58:01:16: a5:73:34:b2:33:f5:03:b6:40:ad:fd:d9:80:2f:71:3a:70:f5: 6f:00:ca:12:6e:4d:c0:17:38:0e:40:11:2e:e5:bf:01:bf:24: 14:d2:12:f8:d1:f5:12:24:6f:12:0b:92:72:cf:0a:37:e9:67: 62:fc:d2:0a:7b:7f:64:09:dc:a1:00:ea:50:dd:22:ac:cb:17: 5e:ec:60:fe -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICDc8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzkw QTA0MTJGOEI1RUM0RjNGOUZEQkIzQTYxMjcwREJEMEVBOUU2QjAeFw0yNTA4MjIw ODU1MjFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDkxREI0RTQyQzRDREY4 MDA5Rjg2MUM3NTVBRkNDQ0I2RUQxMkY3RDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDT9VmDRLzp/oOqWfdhWGfKW/QYEyzBKHB4S2R/X2p0DvKw7x+S fvPQcw2B85ZO9M8Gy31TzrE+Vi+4eMKvdHE6NFiJwrq9rZZ/AySBs3RPFXhwkITn m0xxMTDadJRULO1qIJreKwvvqCHOjPFQrb2aeixiBzF4p+WV6Pp6g4oMFCxnD5vE PXVphP0qIpLDPOarHykvFRlFXMHJK6j5UxwVsIQ4u8EkNYFPZJmqQbp6HvslCfj9 bZ+w32HKaNg58DelkaPi70jG7rW1xgOQ85cxEiBantpO8c08iuAOmRVs+Tx4wzvA 1ljbhivMaoaFnF3IOQ1vq6mtKSxOFm1KQ9S/AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUkdtOQsTN+ACfhhx1WvzMtu0S99cwHwYDVR0jBBgwFoAUOQoEEvi17E8/n9uz phJw29DqnmswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVU5JR0FU RS9PUW9FRXZpMTdFOF9uOXV6cGhKdzI5RHFubXMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL09Rb0VFdmkxN0U4X245dXpwaEp3MjlEcW5tcy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1VOSUdBVEUva2R0T1FzVE4tQUNmaGh4 MVd2ek10dTBTOTljLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMF ACQDo8AwDQYJKoZIhvcNAQELBQADggEBAIYlhHJv4KewDoWWukuh84/t8Xu3G3+X 7iDCUFiholW51LbGun8PT8KG1mzK5s82XDESgVRGau1VxDbmueuk63X2TPrgFIFT 7wu3JqTts6yNIEls66Kgur3ImN86ZB73KldcOVj/xh578LFo69vQRjpxOTDQFRCf rusRqB8b1tZjQxV8DKNQikCWttT2MATDQKfBZMnSF0R4pBEQKhDkNZImGM8env+U lQauH/63T5it+FgBFqVzNLIz9QO2QK392YAvcTpw9W8AyhJuTcAXOA5AES7lvwG/ JBTSEvjR9RIkbxILknLPCjfpZ2L80gp7f2QJ3KEA6lDdIqzLF17sYP4= -----END CERTIFICATE-----Generated at Sun Aug 24 07:57:20 2025 by rpki-client