$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/_mYXcm-UqWH6dItOOmPj-bM9BGw.roa File: _mYXcm-UqWH6dItOOmPj-bM9BGw.roa (raw, json) Hash identifier: vg/hbsjQt4EeyiQ3J5bdxXzuMnTB6Ni9wVhWrP0NrUo= Subject key identifier: FE:66:17:72:6F:94:A9:61:FA:74:8B:4E:3A:63:E3:F9:B3:3D:04:6C Certificate issuer: /CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B Certificate serial: 0DAE Authority key identifier: 39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/_mYXcm-UqWH6dItOOmPj-bM9BGw.roa Signing time: Mon 21 Jul 2025 09:09:16 +0000 ROA not before: Mon 21 Jul 2025 09:09:16 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131600 IP address blocks: 2403:a3c0::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Jul 2025 23:07:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3502 (0xdae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B Validity Not Before: Jul 21 09:09:16 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=FE6617726F94A961FA748B4E3A63E3F9B33D046C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:26:3c:37:37:ed:f7:ae:79:82:c1:28:6a:d7: 2f:d5:1b:0a:f2:07:8f:98:31:a0:a5:fa:a3:16:3e: 8a:a5:18:73:dd:e3:da:5e:cf:82:ee:07:e1:38:df: e9:9e:8a:3b:8a:5b:15:cf:5a:76:bd:0c:23:b5:9d: 8c:f8:b1:09:d0:05:24:49:05:0e:db:72:21:bd:78: 07:b0:c0:38:a2:40:b7:ae:eb:f3:10:cc:e1:8a:d9: 60:54:2e:74:7c:f8:40:91:64:c1:81:d9:76:1c:02: ed:94:17:8b:7f:00:ba:4d:2a:2f:87:3d:7d:a5:17: ea:9a:dd:ae:f5:1b:05:a9:ad:19:2a:7f:50:03:20: 74:0d:39:ed:a7:77:4a:49:ee:48:b7:21:32:ea:23: 82:86:d4:ac:f9:d8:e4:35:fd:21:50:fe:5e:d0:4e: d0:07:5e:b0:59:05:52:c0:f0:3a:9b:e4:f1:46:e4: b6:3f:cb:3f:a9:eb:8c:9b:35:98:b9:50:87:81:05: e0:91:30:63:49:f9:49:68:01:54:e4:0d:03:49:fe: 3e:1d:3c:4a:0b:89:30:06:84:4a:ef:67:62:15:66: 5b:e5:20:3f:7e:21:34:8e:b0:34:72:c7:ed:3d:76: 30:ef:b5:d2:8e:28:54:8b:49:00:9f:d4:be:d5:a0: 93:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:66:17:72:6F:94:A9:61:FA:74:8B:4E:3A:63:E3:F9:B3:3D:04:6C X509v3 Authority Key Identifier: keyid:39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/_mYXcm-UqWH6dItOOmPj-bM9BGw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:a3c0::/32 Signature Algorithm: sha256WithRSAEncryption 07:65:b4:96:48:0a:1f:da:30:30:08:2f:7b:6f:62:b0:a7:e8: 10:26:51:75:c6:9a:24:fa:86:c5:1d:d0:b5:f5:97:20:21:5b: eb:05:45:0e:d0:72:5f:b9:e5:d8:cd:4c:d6:16:93:74:3b:78: 82:2a:d7:e4:c9:e3:7c:0a:4a:3d:7c:9a:9c:cd:ff:18:f3:f0: 40:61:fd:4a:bd:28:fb:fe:cf:3a:b3:d0:e8:8e:5e:61:ce:f9: b6:5c:15:ee:2c:de:07:fc:c5:d3:8b:8c:1e:fa:31:c3:bc:88: ab:53:0e:53:ae:ca:29:58:42:67:1e:c8:ef:70:11:76:4e:69: b9:c0:85:a7:c6:93:85:12:1e:f8:e7:89:2b:5b:d6:ee:d5:81: e1:97:12:b1:77:52:eb:51:21:e9:86:d2:d0:a4:07:8a:54:6d: a7:b9:17:97:33:ba:5a:82:1e:34:0d:50:66:2f:20:a6:6b:1b: b2:59:4d:c3:13:f0:91:09:fe:60:ae:49:49:96:5b:c5:09:70: 02:fc:b4:6d:a7:77:38:fa:ae:fc:ab:51:16:2e:e5:c4:ee:2a: 3f:e5:c3:93:dc:78:1e:82:76:fa:a2:bb:67:09:47:f7:cd:9b: 38:d7:37:91:fe:47:cb:e4:ba:11:fc:9e:88:57:d3:24:ec:1b: c0:c3:5a:86 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICDa4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzkw QTA0MTJGOEI1RUM0RjNGOUZEQkIzQTYxMjcwREJEMEVBOUU2QjAeFw0yNTA3MjEw OTA5MTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZFNjYxNzcyNkY5NEE5 NjFGQTc0OEI0RTNBNjNFM0Y5QjMzRDA0NkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrJjw3N+33rnmCwShq1y/VGwryB4+YMaCl+qMWPoqlGHPd49pe z4LuB+E43+meijuKWxXPWna9DCO1nYz4sQnQBSRJBQ7bciG9eAewwDiiQLeu6/MQ zOGK2WBULnR8+ECRZMGB2XYcAu2UF4t/ALpNKi+HPX2lF+qa3a71GwWprRkqf1AD IHQNOe2nd0pJ7ki3ITLqI4KG1Kz52OQ1/SFQ/l7QTtAHXrBZBVLA8Dqb5PFG5LY/ yz+p64ybNZi5UIeBBeCRMGNJ+UloAVTkDQNJ/j4dPEoLiTAGhErvZ2IVZlvlID9+ ITSOsDRyx+09djDvtdKOKFSLSQCf1L7VoJMtAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU/mYXcm+UqWH6dItOOmPj+bM9BGwwHwYDVR0jBBgwFoAUOQoEEvi17E8/n9uz phJw29DqnmswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVU5JR0FU RS9PUW9FRXZpMTdFOF9uOXV6cGhKdzI5RHFubXMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL09Rb0VFdmkxN0U4X245dXpwaEp3MjlEcW5tcy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1VOSUdBVEUvX21ZWGNtLVVxV0g2ZEl0 T09tUGotYk05Qkd3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMF ACQDo8AwDQYJKoZIhvcNAQELBQADggEBAAdltJZICh/aMDAIL3tvYrCn6BAmUXXG miT6hsUd0LX1lyAhW+sFRQ7Qcl+55djNTNYWk3Q7eIIq1+TJ43wKSj18mpzN/xjz 8EBh/Uq9KPv+zzqz0OiOXmHO+bZcFe4s3gf8xdOLjB76McO8iKtTDlOuyilYQmce yO9wEXZOabnAhafGk4USHvjniStb1u7VgeGXErF3UutRIemG0tCkB4pUbae5F5cz ulqCHjQNUGYvIKZrG7JZTcMT8JEJ/mCuSUmWW8UJcAL8tG2ndzj6rvyrURYu5cTu Kj/lw5PceB6Cdvqiu2cJR/fNmzjXN5H+R8vkuhH8nohX0yTsG8DDWoY= -----END CERTIFICATE-----Generated at Tue Jul 22 20:42:52 2025 by rpki-client