$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/uCvlePhZxjoG3eFLrXUJzvJ4RWE.roa File: uCvlePhZxjoG3eFLrXUJzvJ4RWE.roa (raw, json) Hash identifier: yN0+tmM2BKTAxVDFFFjeN9Q3Z/vgjo7oZGDOqiv+Fcw= Subject key identifier: B8:2B:E5:78:F8:59:C6:3A:06:DD:E1:4B:AD:75:09:CE:F2:78:45:61 Certificate issuer: /CN=63400AA6E6C68B13DDDC9C00B82586124273FA9B Certificate serial: 0D92 Authority key identifier: 63:40:0A:A6:E6:C6:8B:13:DD:DC:9C:00:B8:25:86:12:42:73:FA:9B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/uCvlePhZxjoG3eFLrXUJzvJ4RWE.roa Signing time: Fri 22 Aug 2025 08:43:57 +0000 ROA not before: Fri 22 Aug 2025 08:43:57 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131618 IP address blocks: 103.122.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/Y0AKpubGixPd3JwAuCWGEkJz-ps.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/Y0AKpubGixPd3JwAuCWGEkJz-ps.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3474 (0xd92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63400AA6E6C68B13DDDC9C00B82586124273FA9B Validity Not Before: Aug 22 08:43:57 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B82BE578F859C63A06DDE14BAD7509CEF2784561 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:9b:35:ea:00:4d:e2:af:2d:dd:74:c2:db:3d: b9:5d:c6:1d:c7:02:e9:74:b3:80:c6:f6:b9:7b:e2: e9:64:ae:8f:bf:01:02:c1:6d:e0:7d:eb:44:e1:09: 54:b6:aa:14:99:f2:56:c2:67:98:4f:26:8a:bb:42: 82:1a:b5:92:ec:b2:d0:d3:9f:67:9a:12:b3:9d:44: 54:b4:59:ef:f6:9e:db:73:b9:06:63:d3:3a:12:b0: 84:41:74:d7:dc:04:a7:e9:94:1b:80:c5:8d:7f:7f: eb:06:df:ef:ce:4b:98:ae:a5:81:a6:89:c6:f6:a8: 7d:31:81:69:92:c7:0f:35:19:79:cd:ae:47:36:87: cf:b9:a7:2f:35:ef:ec:e3:a7:a1:29:3e:da:c6:7c: 6f:8b:f9:58:c1:5d:d9:40:ee:d7:5e:81:01:84:48: 79:38:e6:17:25:9e:5f:6d:4f:82:b5:d2:6f:cc:8a: 8b:a7:e3:6f:02:90:8d:20:ed:f9:50:b9:ce:14:93: a2:ea:0c:2a:19:7a:41:89:33:0a:6f:86:be:34:0f: 55:dc:2a:39:31:0f:ea:65:59:1f:eb:e5:98:03:c4: ff:35:e7:09:ac:ba:9e:83:3b:ac:38:d6:89:f5:da: 69:86:aa:70:92:f5:63:a8:90:28:aa:11:5e:81:05: c8:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:2B:E5:78:F8:59:C6:3A:06:DD:E1:4B:AD:75:09:CE:F2:78:45:61 X509v3 Authority Key Identifier: keyid:63:40:0A:A6:E6:C6:8B:13:DD:DC:9C:00:B8:25:86:12:42:73:FA:9B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/Y0AKpubGixPd3JwAuCWGEkJz-ps.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/uCvlePhZxjoG3eFLrXUJzvJ4RWE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.225.0/24 Signature Algorithm: sha256WithRSAEncryption 34:23:1f:55:7c:f7:d1:57:d7:7c:c4:b9:61:c8:c2:ff:ec:77: c5:a9:e2:63:db:d2:c8:d7:ec:ae:0a:3d:33:ad:1d:de:6e:08: dc:91:c0:d7:e6:6e:27:6f:92:53:6e:5d:19:63:7d:1d:b7:6b: b7:a9:22:a2:03:18:d6:ff:51:13:dd:c0:4d:c7:62:72:eb:19: 9e:6b:b1:4e:b3:f5:45:b1:27:cc:93:73:27:41:58:8d:73:63: aa:7f:10:34:32:32:fd:6e:53:7a:e9:f9:20:80:4a:2e:06:8e: c8:85:07:ab:20:d7:b8:93:51:18:f8:f5:07:eb:b8:f9:29:71: b8:56:83:1c:ec:23:d2:72:bb:ac:d5:16:04:d0:f9:54:9b:63: 05:76:d5:59:85:5a:61:90:0d:e4:79:92:bb:62:01:31:d4:9b: 7e:50:32:6f:79:2f:7a:a5:5e:a3:32:8b:c4:1a:9c:67:4b:9e: 74:74:7c:ce:e6:a0:cd:02:d0:9f:1c:e6:38:93:eb:1e:28:8f: 1c:25:e7:45:72:19:cb:6e:56:4b:32:9b:54:c7:45:19:30:57: 10:d8:4c:b2:e5:c9:37:cf:15:6c:98:3f:da:d0:20:e2:90:fa: ce:5b:c1:80:83:cc:81:9e:d0:69:24:cc:55:14:09:3d:ed:23: a5:cc:08:9b -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICDZIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjM0 MDBBQTZFNkM2OEIxM0REREM5QzAwQjgyNTg2MTI0MjczRkE5QjAeFw0yNTA4MjIw ODQzNTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEI4MkJFNTc4Rjg1OUM2 M0EwNkRERTE0QkFENzUwOUNFRjI3ODQ1NjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDwmzXqAE3iry3ddMLbPbldxh3HAul0s4DG9rl74ulkro+/AQLB beB960ThCVS2qhSZ8lbCZ5hPJoq7QoIatZLsstDTn2eaErOdRFS0We/2nttzuQZj 0zoSsIRBdNfcBKfplBuAxY1/f+sG3+/OS5iupYGmicb2qH0xgWmSxw81GXnNrkc2 h8+5py817+zjp6EpPtrGfG+L+VjBXdlA7tdegQGESHk45hclnl9tT4K10m/Mioun 428CkI0g7flQuc4Uk6LqDCoZekGJMwpvhr40D1XcKjkxD+plWR/r5ZgDxP815wms up6DO6w41on12mmGqnCS9WOokCiqEV6BBcijAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUuCvlePhZxjoG3eFLrXUJzvJ4RWEwHwYDVR0jBBgwFoAUY0AKpubGixPd3JwA uCWGEkJz+pswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVklTSU9O NFlFUy9ZMEFLcHViR2l4UGQzSndBdUNXR0VrSnotcHMuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL1kwQUtwdWJHaXhQZDNKd0F1Q1dHRWtKei1wcy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1ZJU0lPTjRZRVMvdUN2bGVQaFp4 am9HM2VGTHJYVUp6dko0UldFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAGd64TANBgkqhkiG9w0BAQsFAAOCAQEANCMfVXz30VfXfMS5YcjC/+x3 xaniY9vSyNfsrgo9M60d3m4I3JHA1+ZuJ2+SU25dGWN9Hbdrt6kiogMY1v9RE93A TcdicusZnmuxTrP1RbEnzJNzJ0FYjXNjqn8QNDIy/W5Teun5IIBKLgaOyIUHqyDX uJNRGPj1B+u4+SlxuFaDHOwj0nK7rNUWBND5VJtjBXbVWYVaYZAN5HmSu2IBMdSb flAyb3kveqVeozKLxBqcZ0uedHR8zuagzQLQnxzmOJPrHiiPHCXnRXIZy25WSzKb VMdFGTBXENhMsuXJN88VbJg/2tAg4pD6zlvBgIPMgZ7QaSTMVRQJPe0jpcwImw== -----END CERTIFICATE-----Generated at Sun Aug 24 13:38:05 2025 by rpki-client