$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/41rxGCpkQk-qwGM9BfpMTjm6qwA.roa File: 41rxGCpkQk-qwGM9BfpMTjm6qwA.roa (raw, json) Hash identifier: FJsD/LlmRHUOy0K06+y/IB+i1cnpoNegoabl55qgfQQ= Subject key identifier: E3:5A:F1:18:2A:64:42:4F:AA:C0:63:3D:05:FA:4C:4E:39:BA:AB:00 Certificate issuer: /CN=2C20881A0EFD0664A591AF3095D29935EF9BC361 Certificate serial: 047A Authority key identifier: 2C:20:88:1A:0E:FD:06:64:A5:91:AF:30:95:D2:99:35:EF:9B:C3:61 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LCCIGg79BmSlka8wldKZNe-bw2E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/41rxGCpkQk-qwGM9BfpMTjm6qwA.roa Signing time: Wed 17 Sep 2025 09:51:24 +0000 ROA not before: Wed 17 Sep 2025 09:51:24 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 396982 IP address blocks: 2401:bf60:4ff5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/LCCIGg79BmSlka8wldKZNe-bw2E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/LCCIGg79BmSlka8wldKZNe-bw2E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/LCCIGg79BmSlka8wldKZNe-bw2E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Nov 2025 02:29:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1146 (0x47a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2C20881A0EFD0664A591AF3095D29935EF9BC361 Validity Not Before: Sep 17 09:51:24 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E35AF1182A64424FAAC0633D05FA4C4E39BAAB00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:bb:3a:d1:58:0a:0c:13:28:82:7b:41:39:60: 13:89:4c:e3:07:52:27:e2:ca:79:db:55:45:6a:e3: e2:bc:31:24:cc:6c:2e:f9:ca:28:0c:94:94:fe:43: 34:a1:60:29:d6:6d:48:a6:a5:88:d7:37:df:aa:85: 84:c5:59:65:85:46:78:4c:95:aa:14:31:36:26:8a: 2e:2d:72:91:40:0b:0d:69:d1:ad:c8:dd:54:7c:39: 6c:8c:37:1a:0a:55:53:33:23:ab:23:ce:6b:22:06: b9:2d:ec:29:a7:36:dc:c2:14:2d:e3:8f:e4:d4:2e: 35:42:f2:86:89:27:74:be:b1:07:92:89:6a:4e:50: e3:e5:4a:d2:f4:cb:9a:ce:22:10:f8:00:0f:d7:47: a2:37:e6:38:a9:f9:fb:be:60:82:66:20:74:1e:e3: 4e:9d:e3:0b:4f:dd:7d:5e:ba:4f:db:ba:34:57:e0: a8:f5:b5:93:2a:67:6c:66:c7:4b:11:ed:99:3e:ab: 61:2a:ae:d2:38:cd:0a:a2:76:b3:ff:00:34:1a:bb: 3f:fc:3a:02:95:65:f3:59:a1:3f:34:e3:ff:30:ec: cb:de:69:33:07:7e:c0:f3:5c:78:61:e5:b5:fc:23: 14:c0:f8:80:95:96:56:1a:fb:67:7c:af:4b:42:bc: 9d:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:5A:F1:18:2A:64:42:4F:AA:C0:63:3D:05:FA:4C:4E:39:BA:AB:00 X509v3 Authority Key Identifier: keyid:2C:20:88:1A:0E:FD:06:64:A5:91:AF:30:95:D2:99:35:EF:9B:C3:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/LCCIGg79BmSlka8wldKZNe-bw2E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LCCIGg79BmSlka8wldKZNe-bw2E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/41rxGCpkQk-qwGM9BfpMTjm6qwA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:bf60:4ff5::/48 Signature Algorithm: sha256WithRSAEncryption b0:b4:2d:7d:1c:ab:61:35:f2:16:c7:25:e7:9d:dd:f0:e0:4a: fc:9e:22:70:eb:2c:eb:ae:77:4e:f7:9a:78:0e:a2:d9:85:45: 3b:ee:57:cc:56:33:87:bd:97:b7:ee:60:2c:45:4f:f4:d5:f9: b5:4b:8d:40:9b:0c:a4:20:a5:11:e4:74:c0:39:ae:62:04:01: 5b:22:86:98:ae:c4:11:80:66:9b:00:42:3d:6a:57:44:45:86: 2f:a3:46:50:af:40:7f:06:76:4e:91:94:b9:03:8a:59:ea:85: b5:ea:83:c6:2c:ad:6c:c7:9b:0e:07:cc:12:4d:a7:27:40:90: 2c:ca:44:53:f3:ec:a3:3a:16:8c:ae:e6:57:8e:f7:90:06:07: ba:a6:96:58:dd:35:69:8f:1b:46:e8:8c:66:0a:4f:f9:40:04: b2:32:98:a4:2a:35:5f:34:b3:03:e1:65:a6:cc:d0:53:73:8a: 0e:43:14:af:29:68:47:67:97:d0:3f:e8:f2:80:a4:5d:96:08: 57:f9:87:cc:f9:7a:68:22:73:3c:91:cc:12:b5:74:c8:70:68: c0:09:bc:58:7d:2f:c4:fa:5c:63:e2:68:b8:f1:fc:08:a7:a7: 90:e3:b6:66:b5:a9:16:96:57:8a:d7:11:56:ab:4f:ed:82:1f: d1:53:53:b4 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgICBHowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkMy MDg4MUEwRUZEMDY2NEE1OTFBRjMwOTVEMjk5MzVFRjlCQzM2MTAeFw0yNTA5MTcw OTUxMjRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEUzNUFGMTE4MkE2NDQy NEZBQUMwNjMzRDA1RkE0QzRFMzlCQUFCMDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFuzrRWAoMEyiCe0E5YBOJTOMHUifiynnbVUVq4+K8MSTMbC75 yigMlJT+QzShYCnWbUimpYjXN9+qhYTFWWWFRnhMlaoUMTYmii4tcpFACw1p0a3I 3VR8OWyMNxoKVVMzI6sjzmsiBrkt7CmnNtzCFC3jj+TULjVC8oaJJ3S+sQeSiWpO UOPlStL0y5rOIhD4AA/XR6I35jip+fu+YIJmIHQe406d4wtP3X1euk/bujRX4Kj1 tZMqZ2xmx0sR7Zk+q2EqrtI4zQqidrP/ADQauz/8OgKVZfNZoT804/8w7MveaTMH fsDzXHhh5bX8IxTA+ICVllYa+2d8r0tCvJ25AgMBAAGjggH5MIIB9TAdBgNVHQ4E FgQU41rxGCpkQk+qwGM9BfpMTjm6qwAwHwYDVR0jBBgwFoAULCCIGg79BmSlka8w ldKZNe+bw2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ09ERVVQ VEVDSC9MQ0NJR2c3OUJtU2xrYTh3bGRLWk5lLWJ3MkUuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL0xDQ0lHZzc5Qm1TbGthOHdsZEtaTmUtYncyRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NPREVVUFRFQ0gvNDFyeEdDcGtR ay1xd0dNOUJmcE1Uam02cXdBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAiBggrBgEFBQcBBwEB/wQTMBEwDwQC AAIwCQMHACQBv2BP9TANBgkqhkiG9w0BAQsFAAOCAQEAsLQtfRyrYTXyFscl553d 8OBK/J4icOss6653TveaeA6i2YVFO+5XzFYzh72Xt+5gLEVP9NX5tUuNQJsMpCCl EeR0wDmuYgQBWyKGmK7EEYBmmwBCPWpXREWGL6NGUK9AfwZ2TpGUuQOKWeqFteqD xiytbMebDgfMEk2nJ0CQLMpEU/PsozoWjK7mV473kAYHuqaWWN01aY8bRuiMZgpP +UAEsjKYpCo1XzSzA+FlpszQU3OKDkMUryloR2eX0D/o8oCkXZYIV/mHzPl6aCJz PJHMErV0yHBowAm8WH0vxPpcY+JouPH8CKenkOO2ZrWpFpZXitcRVqtP7YIf0VNT tA== -----END CERTIFICATE-----Generated at Mon Nov 3 21:53:44 2025 by rpki-client