$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/RUIKE/EOtjY12nXNnenB16AIWc3Jh3NF4.roa File: EOtjY12nXNnenB16AIWc3Jh3NF4.roa (raw, json) Hash identifier: Dd6iulKgytlJlVAbqdWg8yiBukB823mXx4bredXWnlI= Subject key identifier: 10:EB:63:63:5D:A7:5C:D9:DE:9C:1D:7A:00:85:9C:DC:98:77:34:5E Certificate issuer: /CN=DCD456A09D54140DBC42D32B09D6E7778B58AAEF Certificate serial: 012A Authority key identifier: DC:D4:56:A0:9D:54:14:0D:BC:42:D3:2B:09:D6:E7:77:8B:58:AA:EF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/3NRWoJ1UFA28QtMrCdbnd4tYqu8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/EOtjY12nXNnenB16AIWc3Jh3NF4.roa Signing time: Mon 25 Aug 2025 07:23:51 +0000 ROA not before: Mon 25 Aug 2025 07:23:51 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 152179 IP address blocks: 165.101.88.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/3NRWoJ1UFA28QtMrCdbnd4tYqu8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/3NRWoJ1UFA28QtMrCdbnd4tYqu8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/3NRWoJ1UFA28QtMrCdbnd4tYqu8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 15:17:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 298 (0x12a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DCD456A09D54140DBC42D32B09D6E7778B58AAEF Validity Not Before: Aug 25 07:23:51 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=10EB63635DA75CD9DE9C1D7A00859CDC9877345E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:be:7b:08:d1:55:0c:25:35:5c:cd:5c:7d:4b: 40:60:4c:a7:3c:31:f6:54:e0:a1:73:c7:f0:d5:04: 1e:57:ed:e1:f1:ea:38:81:e7:bd:bc:f3:1c:e6:04: b0:1f:25:4d:49:7a:cb:0f:f3:3d:7e:d0:d5:e2:eb: 18:b4:a5:71:48:1a:f0:b1:af:8a:56:39:30:d5:a2: 30:c1:e4:a6:26:cd:e4:6f:f2:f1:c2:b9:2c:2a:35: 3b:1e:86:73:c0:a2:e4:be:29:b2:7d:aa:17:d1:7c: b8:78:63:13:63:82:e6:7f:3b:71:ed:f2:14:9f:d2: ec:4e:ab:6e:ca:44:8d:bd:a3:dc:10:61:ec:cf:58: 8e:e7:e1:03:55:dc:62:ae:d5:b7:27:f0:7e:4b:eb: 33:6d:bb:c4:3b:90:0f:52:e3:e9:21:dc:21:83:f5: 5a:14:a7:27:72:8e:67:02:1e:f8:9a:cf:b6:16:56: 33:de:a6:24:c6:1e:57:61:b8:bb:ab:2a:88:67:ab: 7d:fc:5b:03:94:dc:79:e4:a5:74:fb:a0:a2:01:c4: ad:4b:8c:ee:05:4c:05:a3:a7:a2:1e:89:af:67:b3: 55:cd:38:7f:d2:13:8f:d8:be:5a:85:c4:cb:dc:e4: 84:8e:22:2b:1a:38:2c:00:2c:46:fb:ae:3d:af:38: 5f:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:EB:63:63:5D:A7:5C:D9:DE:9C:1D:7A:00:85:9C:DC:98:77:34:5E X509v3 Authority Key Identifier: keyid:DC:D4:56:A0:9D:54:14:0D:BC:42:D3:2B:09:D6:E7:77:8B:58:AA:EF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/3NRWoJ1UFA28QtMrCdbnd4tYqu8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/3NRWoJ1UFA28QtMrCdbnd4tYqu8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/EOtjY12nXNnenB16AIWc3Jh3NF4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 165.101.88.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:4e:85:62:96:9d:66:63:83:ae:bd:0b:ad:67:85:25:e6:df: 98:65:52:61:df:b5:d3:de:6f:4d:85:9c:da:56:61:89:b7:98: a4:6d:ac:65:f9:f5:66:4b:6b:bb:01:34:86:b2:93:0c:2e:aa: 57:cc:de:db:2b:b9:8f:0f:04:f4:99:49:f5:2c:72:d1:86:87: ba:db:f4:1e:76:d4:d8:d8:23:9a:13:c9:b4:2c:d6:a2:1e:15: e3:b9:2a:fc:d6:aa:16:e9:b3:f4:68:d5:f3:b0:df:9d:18:7f: 47:86:aa:ed:e3:a0:4e:77:34:27:ca:88:97:cd:5f:80:2f:96: 46:9d:e8:f8:ff:4b:cf:0e:a0:5f:b2:f5:7f:8d:f6:dd:57:44: 76:10:4e:dc:6e:45:80:c2:7c:74:f9:19:da:97:fd:af:60:64: ba:b3:b2:01:17:37:c4:d7:e7:5d:1b:6e:d3:1f:16:ca:16:0c: f1:71:d2:4d:d5:3e:0c:1b:5e:b6:66:a8:11:10:83:4a:3f:c0: 6d:8e:5b:5f:6b:0b:44:61:48:6d:da:dd:82:bd:ed:28:69:17: 98:eb:6c:c2:b1:52:fc:e5:ac:c9:de:04:ca:a0:1c:d9:ed:a9: 86:0c:84:33:b5:7f:b4:48:da:5f:65:19:02:54:63:0f:83:14: cb:c4:10:e5 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICASowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRENE NDU2QTA5RDU0MTQwREJDNDJEMzJCMDlENkU3Nzc4QjU4QUFFRjAeFw0yNTA4MjUw NzIzNTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDEwRUI2MzYzNURBNzVD RDlERTlDMUQ3QTAwODU5Q0RDOTg3NzM0NUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/vnsI0VUMJTVczVx9S0BgTKc8MfZU4KFzx/DVBB5X7eHx6jiB 57288xzmBLAfJU1JessP8z1+0NXi6xi0pXFIGvCxr4pWOTDVojDB5KYmzeRv8vHC uSwqNTsehnPAouS+KbJ9qhfRfLh4YxNjguZ/O3Ht8hSf0uxOq27KRI29o9wQYezP WI7n4QNV3GKu1bcn8H5L6zNtu8Q7kA9S4+kh3CGD9VoUpydyjmcCHviaz7YWVjPe piTGHldhuLurKohnq338WwOU3HnkpXT7oKIBxK1LjO4FTAWjp6Ieia9ns1XNOH/S E4/YvlqFxMvc5ISOIisaOCwALEb7rj2vOF/5AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUEOtjY12nXNnenB16AIWc3Jh3NF4wHwYDVR0jBBgwFoAU3NRWoJ1UFA28QtMr Cdbnd4tYqu8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUlVJS0Uv M05SV29KMVVGQTI4UXRNckNkYm5kNHRZcXU4LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8zTlJXb0oxVUZBMjhRdE1yQ2RibmQ0dFlxdTguY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9SVUlLRS9FT3RqWTEyblhObmVuQjE2QUlX YzNKaDNORjQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBpWVY MA0GCSqGSIb3DQEBCwUAA4IBAQBbToVilp1mY4OuvQutZ4Ul5t+YZVJh37XT3m9N hZzaVmGJt5ikbaxl+fVmS2u7ATSGspMMLqpXzN7bK7mPDwT0mUn1LHLRhoe62/Qe dtTY2COaE8m0LNaiHhXjuSr81qoW6bP0aNXzsN+dGH9Hhqrt46BOdzQnyoiXzV+A L5ZGnej4/0vPDqBfsvV/jfbdV0R2EE7cbkWAwnx0+Rnal/2vYGS6s7IBFzfE1+dd G27THxbKFgzxcdJN1T4MG162ZqgREINKP8BtjltfawtEYUht2t2Cve0oaReY62zC sVL85azJ3gTKoBzZ7amGDIQztX+0SNpfZRkCVGMPgxTLxBDl -----END CERTIFICATE-----Generated at Sun Sep 7 12:45:12 2025 by rpki-client