$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LONGDETECH/UkrvFS3hY5H58FAbkdXqLo8oLJs.roa File: UkrvFS3hY5H58FAbkdXqLo8oLJs.roa (raw, json) Hash identifier: QeeGtUyCx4pSGM2KalwTIrtAmfzFFToFQfmjFrZJ3VM= Subject key identifier: 52:4A:EF:15:2D:E1:63:91:F9:F0:50:1B:91:D5:EA:2E:8F:28:2C:9B Certificate issuer: /CN=3799FB79F3AEB84516A1038E37D2F8AC3CB667C9 Certificate serial: 0A Authority key identifier: 37:99:FB:79:F3:AE:B8:45:16:A1:03:8E:37:D2:F8:AC:3C:B6:67:C9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/N5n7efOuuEUWoQOON9L4rDy2Z8k.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LONGDETECH/UkrvFS3hY5H58FAbkdXqLo8oLJs.roa Signing time: Thu 23 Oct 2025 06:32:00 +0000 ROA not before: Thu 23 Oct 2025 06:32:00 +0000 ROA not after: Fri 16 Oct 2026 15:30:24 +0000 asID: 131657 IP address blocks: 138.252.54.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LONGDETECH/N5n7efOuuEUWoQOON9L4rDy2Z8k.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LONGDETECH/N5n7efOuuEUWoQOON9L4rDy2Z8k.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/N5n7efOuuEUWoQOON9L4rDy2Z8k.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 13:27:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3799FB79F3AEB84516A1038E37D2F8AC3CB667C9 Validity Not Before: Oct 23 06:32:00 2025 GMT Not After : Oct 16 15:30:24 2026 GMT Subject: CN=524AEF152DE16391F9F0501B91D5EA2E8F282C9B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ec:1f:6f:e9:0f:fd:2f:9e:1b:fa:01:e5:70: 74:b7:78:d4:ac:bb:52:4c:14:f9:ab:e1:b3:c4:b0: 9c:2b:05:c4:1e:ed:67:b2:20:ed:2f:72:fb:28:20: 00:a8:55:a8:8a:c4:df:f1:50:11:36:51:5a:ce:43: c8:ed:42:6a:d7:ca:ef:a8:76:0b:a8:41:91:3d:ef: 2d:d9:ad:f4:26:2e:0a:91:41:a5:66:58:fd:f0:95: 5b:bf:25:5e:5a:94:c8:ec:29:10:e6:3f:1b:1f:fc: 1d:79:3b:67:1a:5f:ad:66:0f:8d:03:03:70:d6:3a: 52:4f:f2:09:99:37:57:df:b3:d3:a1:9a:84:2b:5e: e5:d4:f5:a8:14:79:57:12:22:47:4e:08:69:90:51: b6:09:24:85:62:54:5c:e8:b4:08:6f:04:44:79:65: 50:5b:dc:0c:f0:72:a3:8f:1a:57:3f:42:c2:bc:8b: aa:c9:36:d8:f8:c5:37:12:04:ca:92:10:2e:d4:a0: b0:3e:c1:c5:45:b1:94:f3:68:89:2a:c4:97:ba:1e: c0:59:cf:26:a0:95:fb:48:18:28:e5:b9:c2:2d:fd: 2f:32:d7:c0:79:e0:df:19:aa:66:75:03:1d:02:8c: dc:ba:eb:86:4c:57:08:86:39:ec:6e:e4:c0:c2:8f: 16:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:4A:EF:15:2D:E1:63:91:F9:F0:50:1B:91:D5:EA:2E:8F:28:2C:9B X509v3 Authority Key Identifier: keyid:37:99:FB:79:F3:AE:B8:45:16:A1:03:8E:37:D2:F8:AC:3C:B6:67:C9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LONGDETECH/N5n7efOuuEUWoQOON9L4rDy2Z8k.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/N5n7efOuuEUWoQOON9L4rDy2Z8k.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LONGDETECH/UkrvFS3hY5H58FAbkdXqLo8oLJs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 138.252.54.0/24 Signature Algorithm: sha256WithRSAEncryption 30:53:02:36:18:2d:88:03:b1:fa:ad:1b:f7:d0:7c:d9:2c:8f: 93:97:81:29:15:7b:82:bb:b7:82:25:f8:b8:32:de:0b:43:93: d7:61:88:91:96:9a:f0:b5:e1:2e:64:4d:cc:33:fc:eb:2d:e2: b9:26:98:cb:2a:74:7a:17:b7:d9:fb:8a:b4:91:a7:a3:62:88: 6d:11:79:68:68:73:c8:2e:ee:fb:84:b4:dd:5b:e3:1d:13:7c: e7:e9:3a:a1:bc:24:6f:82:5d:63:31:0c:76:8e:5f:16:0d:9d: db:a0:06:96:8f:a8:a7:7c:95:eb:96:3d:b7:d7:19:fd:3b:56: 35:26:74:c9:aa:79:ac:ca:79:6b:f0:1a:64:49:58:df:a6:20: b2:49:67:d1:26:7a:5b:d8:09:7a:21:a1:d7:15:97:3f:24:3b: 24:65:91:a6:64:15:7a:3d:15:ff:db:5c:e1:04:d5:70:b5:5f: 20:93:be:bc:f1:17:90:72:a3:fb:7d:a1:a2:63:59:04:e6:21: 6f:5f:99:f0:9b:5b:34:24:83:24:f1:40:95:9d:e9:5d:6c:0b: 44:fc:20:f9:bf:a5:84:86:10:b7:7c:35:de:0a:c8:5b:1d:ae: 81:42:31:f9:7a:3b:e0:f8:92:e3:0b:23:ff:82:9a:a8:95:a4: 2e:aa:e3:51 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIBCjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzNzk5 RkI3OUYzQUVCODQ1MTZBMTAzOEUzN0QyRjhBQzNDQjY2N0M5MB4XDTI1MTAyMzA2 MzIwMFoXDTI2MTAxNjE1MzAyNFowMzExMC8GA1UEAxMoNTI0QUVGMTUyREUxNjM5 MUY5RjA1MDFCOTFENUVBMkU4RjI4MkM5QjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMvsH2/pD/0vnhv6AeVwdLd41Ky7UkwU+avhs8SwnCsFxB7tZ7Ig 7S9y+yggAKhVqIrE3/FQETZRWs5DyO1CatfK76h2C6hBkT3vLdmt9CYuCpFBpWZY /fCVW78lXlqUyOwpEOY/Gx/8HXk7ZxpfrWYPjQMDcNY6Uk/yCZk3V9+z06GahCte 5dT1qBR5VxIiR04IaZBRtgkkhWJUXOi0CG8ERHllUFvcDPByo48aVz9CwryLqsk2 2PjFNxIEypIQLtSgsD7BxUWxlPNoiSrEl7oewFnPJqCV+0gYKOW5wi39LzLXwHng 3xmqZnUDHQKM3LrrhkxXCIY57G7kwMKPFrkCAwEAAaOCAfYwggHyMB0GA1UdDgQW BBRSSu8VLeFjkfnwUBuR1eoujygsmzAfBgNVHSMEGDAWgBQ3mft58664RRahA443 0visPLZnyTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGAGA1UdHwRZMFcwVaBT oFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MT05HREVU RUNIL041bjdlZk91dUVVV29RT09OOUw0ckR5Mlo4ay5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvTjVuN2VmT3V1RVVXb1FPT045TDRyRHkyWjhrLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgaAGCCsGAQUFBwELBIGTMIGQMFsGCCsGAQUFBzALhk9yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTE9OR0RFVEVDSC9Va3J2RlMzaFk1 SDU4RkFia2RYcUxvOG9MSnMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAu dHduaWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAivw2MA0GCSqGSIb3DQEBCwUAA4IBAQAwUwI2GC2IA7H6rRv30HzZLI+T l4EpFXuCu7eCJfi4Mt4LQ5PXYYiRlprwteEuZE3MM/zrLeK5JpjLKnR6F7fZ+4q0 kaejYohtEXloaHPILu77hLTdW+MdE3zn6TqhvCRvgl1jMQx2jl8WDZ3boAaWj6in fJXrlj231xn9O1Y1JnTJqnmsynlr8BpkSVjfpiCySWfRJnpb2Al6IaHXFZc/JDsk ZZGmZBV6PRX/21zhBNVwtV8gk7688ReQcqP7faGiY1kE5iFvX5nwm1s0JIMk8UCV neldbAtE/CD5v6WEhhC3fDXeCshbHa6BQjH5ejvg+JLjCyP/gpqolaQuquNR -----END CERTIFICATE-----Generated at Sat Oct 25 11:40:35 2025 by rpki-client