$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUJIN/YwYTXN1JE1Q-aCWHUwI4OjXekak.roa File: YwYTXN1JE1Q-aCWHUwI4OjXekak.roa (raw, json) Hash identifier: XbK7D3prbGHeSVtuAlgOgwwTCJaScWdnzWUQXbvm/Z4= Subject key identifier: 63:06:13:5C:DD:49:13:54:3E:68:25:87:53:02:38:3A:35:DE:91:A9 Certificate issuer: /CN=3C2AD8671B3753265286D32E46BF06FDF52D0FEF Certificate serial: 0329 Authority key identifier: 3C:2A:D8:67:1B:37:53:26:52:86:D3:2E:46:BF:06:FD:F5:2D:0F:EF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PCrYZxs3UyZShtMuRr8G_fUtD-8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUJIN/YwYTXN1JE1Q-aCWHUwI4OjXekak.roa Signing time: Fri 22 Aug 2025 08:44:16 +0000 ROA not before: Fri 22 Aug 2025 08:44:16 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 7483 IP address blocks: 103.24.54.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUJIN/PCrYZxs3UyZShtMuRr8G_fUtD-8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/YUJIN/PCrYZxs3UyZShtMuRr8G_fUtD-8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PCrYZxs3UyZShtMuRr8G_fUtD-8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 809 (0x329) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3C2AD8671B3753265286D32E46BF06FDF52D0FEF Validity Not Before: Aug 22 08:44:16 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=6306135CDD4913543E6825875302383A35DE91A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:34:c9:a1:8e:aa:27:2b:80:fd:09:b3:60:91: 3c:2f:59:66:e7:7b:63:84:4e:eb:dc:9d:28:f9:06: 95:8d:3e:4e:e6:74:35:31:d8:67:4a:d2:c8:5b:ce: 40:bc:73:1a:d8:88:dd:fe:79:5e:e8:5c:f3:1e:4f: d9:d6:fa:41:ea:2c:5c:e0:38:c9:58:c6:98:af:3d: f9:ef:eb:d0:e5:e4:9a:db:a9:3e:93:9f:31:2b:99: 2d:3a:96:a8:14:45:5f:d8:9a:62:e8:5d:49:f2:0f: 75:98:a0:46:96:b4:e3:5e:73:62:63:01:e5:66:d6: 58:1e:c6:ee:ce:c9:5b:83:f6:a7:93:d5:92:f1:5c: 67:f5:5c:c1:95:92:65:d6:71:7c:68:62:fd:a8:d0: ea:09:81:f4:d8:a3:fc:d7:88:aa:03:4e:a9:b2:da: a9:fc:9b:00:80:05:a1:ec:9d:54:b5:de:e4:21:8c: 85:2a:12:60:3b:f7:05:3f:b9:d4:30:11:9b:74:44: 92:8d:60:14:7f:72:78:d7:c0:cb:3f:cc:98:7a:a0: d4:71:1b:28:00:09:49:24:b0:b9:21:3c:cb:26:fc: 5e:3a:eb:a2:3f:b6:7b:32:2e:33:6a:2a:60:99:06: 81:07:7f:e7:b8:2b:d1:f6:3d:16:98:1b:98:cf:1b: d8:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:06:13:5C:DD:49:13:54:3E:68:25:87:53:02:38:3A:35:DE:91:A9 X509v3 Authority Key Identifier: keyid:3C:2A:D8:67:1B:37:53:26:52:86:D3:2E:46:BF:06:FD:F5:2D:0F:EF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUJIN/PCrYZxs3UyZShtMuRr8G_fUtD-8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PCrYZxs3UyZShtMuRr8G_fUtD-8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUJIN/YwYTXN1JE1Q-aCWHUwI4OjXekak.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.24.54.0/23 Signature Algorithm: sha256WithRSAEncryption ac:03:98:4e:31:04:f3:f9:38:ab:84:70:cb:15:5f:18:1d:9e: a3:b4:48:5f:ff:5d:aa:16:58:2b:a7:67:14:0e:9b:bd:ac:1c: f1:2b:9a:ef:cc:34:b6:83:88:a7:3f:c1:9f:0a:69:5c:95:d8: db:4d:fd:06:cc:33:3d:d7:40:79:33:fe:7b:e7:bd:8e:48:32: 66:53:99:be:a7:35:26:24:ac:8e:c0:0e:c4:a8:ac:fc:69:e3: 2c:00:0f:e8:06:17:29:cf:79:c3:44:b8:95:1b:88:20:c3:9e: a0:1e:37:b5:7a:0e:c7:53:10:7f:a6:d5:28:c7:b2:6c:bc:2a: 41:de:07:98:a2:8f:3c:3a:e6:7c:4b:ac:11:64:4e:dd:45:23: 5a:1a:46:06:91:3e:8f:55:1c:46:c2:0a:47:16:69:83:bc:5f: 30:97:5a:c6:a6:9b:c9:f5:24:c0:68:1b:b1:89:85:df:94:78: 82:65:58:12:0c:16:55:2a:ec:9d:61:f7:41:bf:05:06:f4:10: 4b:30:e4:3d:21:d4:1f:5b:5d:8d:ff:79:12:f1:b2:f2:18:fd: cd:fc:11:a3:13:31:7f:fa:cd:eb:73:70:6d:5e:74:39:5a:ab: a1:ce:e9:e7:13:88:a9:e4:2c:21:e0:a6:59:1d:4a:fb:f0:e3: 32:a4:7d:e8 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICAykwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0My QUQ4NjcxQjM3NTMyNjUyODZEMzJFNDZCRjA2RkRGNTJEMEZFRjAeFw0yNTA4MjIw ODQ0MTZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDYzMDYxMzVDREQ0OTEz NTQzRTY4MjU4NzUzMDIzODNBMzVERTkxQTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDiNMmhjqonK4D9CbNgkTwvWWbne2OETuvcnSj5BpWNPk7mdDUx 2GdK0shbzkC8cxrYiN3+eV7oXPMeT9nW+kHqLFzgOMlYxpivPfnv69Dl5JrbqT6T nzErmS06lqgURV/YmmLoXUnyD3WYoEaWtONec2JjAeVm1lgexu7OyVuD9qeT1ZLx XGf1XMGVkmXWcXxoYv2o0OoJgfTYo/zXiKoDTqmy2qn8mwCABaHsnVS13uQhjIUq EmA79wU/udQwEZt0RJKNYBR/cnjXwMs/zJh6oNRxGygACUkksLkhPMsm/F4666I/ tnsyLjNqKmCZBoEHf+e4K9H2PRaYG5jPG9hjAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUYwYTXN1JE1Q+aCWHUwI4OjXekakwHwYDVR0jBBgwFoAUPCrYZxs3UyZShtMu Rr8G/fUtD+8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWVVKSU4v UENyWVp4czNVeVpTaHRNdVJyOEdfZlV0RC04LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9QQ3JZWnhzM1V5WlNodE11UnI4R19mVXRELTguY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ZVUpJTi9Zd1lUWE4xSkUxUS1hQ1dIVXdJ NE9qWGVrYWsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZxg2 MA0GCSqGSIb3DQEBCwUAA4IBAQCsA5hOMQTz+TirhHDLFV8YHZ6jtEhf/12qFlgr p2cUDpu9rBzxK5rvzDS2g4inP8GfCmlcldjbTf0GzDM910B5M/57572OSDJmU5m+ pzUmJKyOwA7EqKz8aeMsAA/oBhcpz3nDRLiVG4ggw56gHje1eg7HUxB/ptUox7Js vCpB3geYoo88OuZ8S6wRZE7dRSNaGkYGkT6PVRxGwgpHFmmDvF8wl1rGppvJ9STA aBuxiYXflHiCZVgSDBZVKuydYfdBvwUG9BBLMOQ9IdQfW12N/3kS8bLyGP3N/BGj EzF/+s3rc3BtXnQ5WquhzunnE4ip5Cwh4KZZHUr78OMypH3o -----END CERTIFICATE-----Generated at Sun Aug 24 11:45:10 2025 by rpki-client