$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SYSNET/UuTEmXyukMV2AuMTn1rDlk0rqjs.roa File: UuTEmXyukMV2AuMTn1rDlk0rqjs.roa (raw, json) Hash identifier: BmsJeS5tMUDjsuAO7ulLWs+NgJ7oRCMYix0/SMTyVTg= Subject key identifier: 52:E4:C4:99:7C:AE:90:C5:76:02:E3:13:9F:5A:C3:96:4D:2B:AA:3B Certificate issuer: /CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC Certificate serial: 0D88 Authority key identifier: 96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/UuTEmXyukMV2AuMTn1rDlk0rqjs.roa Signing time: Fri 23 May 2025 07:40:07 +0000 ROA not before: Fri 23 May 2025 07:40:07 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4783 IP address blocks: 210.67.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 03:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3464 (0xd88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC Validity Not Before: May 23 07:40:07 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=52E4C4997CAE90C57602E3139F5AC3964D2BAA3B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:fc:99:4c:30:f4:69:82:9b:6e:53:cf:3a:b1: b0:92:9c:10:54:05:51:56:4a:a7:1f:2b:8a:4e:fe: 07:67:75:a9:22:f3:83:37:f0:7b:1e:7e:e1:1d:30: b2:dd:90:a2:4c:2e:6a:2d:50:22:54:23:26:10:c0: 58:d1:f0:d9:86:97:ea:b1:26:71:3b:0e:19:01:8c: 12:6f:9e:f7:d7:82:44:90:8b:60:b2:c0:1e:ec:db: 3c:52:26:f1:c9:65:97:4c:43:ce:53:fb:88:cc:34: a9:23:b3:49:22:33:fe:42:9d:a4:f3:00:9f:fa:dc: dd:88:d3:ae:09:4b:eb:e9:f8:40:ad:57:f0:cc:a1: 63:6f:bb:f5:1c:46:e7:dc:28:42:2f:c7:06:d7:76: 0f:6e:4f:4f:57:4d:2e:f6:6b:27:83:e0:07:83:c3: 57:6c:9d:1f:1e:6b:8f:49:47:71:58:2b:ce:29:4f: c6:64:f8:53:27:d9:c8:29:c0:be:f6:04:5f:b6:ca: ff:f8:c1:a3:2e:ec:83:ea:85:79:f0:fc:04:c8:57: a7:09:dd:59:2f:75:52:9d:ef:55:c4:55:3a:47:a5: fc:d0:5c:2b:15:29:c0:07:29:f5:89:9c:0f:b4:e6: 3b:17:cc:df:3f:b8:ea:ce:d9:a5:19:4e:f9:95:08: cf:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:E4:C4:99:7C:AE:90:C5:76:02:E3:13:9F:5A:C3:96:4D:2B:AA:3B X509v3 Authority Key Identifier: keyid:96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/UuTEmXyukMV2AuMTn1rDlk0rqjs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.67.32.0/19 Signature Algorithm: sha256WithRSAEncryption 52:dd:db:ef:4a:6e:03:3c:29:86:82:f3:7d:9b:7a:a6:38:06: 16:d7:90:6f:aa:fe:34:70:de:81:8a:35:7b:81:77:9c:a2:65: 35:8e:00:b1:7d:d0:ee:9b:1e:ca:55:e4:8d:39:22:f2:b7:65: ea:04:e0:41:1e:88:4a:17:66:a1:f3:ac:e3:2a:93:25:da:bd: 17:43:32:5f:aa:76:53:8d:c1:22:1b:6b:f2:33:0b:c0:fc:07: 5e:b5:14:5c:0e:da:ad:57:40:e1:e8:aa:24:a0:63:7b:b1:d3: 7c:78:5e:95:f9:15:87:eb:e0:18:a1:31:4f:6e:a2:8a:47:88: e2:e8:15:8c:96:54:48:60:59:cc:ed:e2:5f:ec:8f:4d:07:df: d2:4a:a2:5f:f6:6b:f4:7b:6a:aa:0d:f3:f7:9b:32:d5:16:68: 80:06:82:05:9f:51:4d:f8:d8:12:d1:6f:80:95:12:f1:93:dc: 98:d6:ff:f2:48:0c:09:30:7d:3b:5b:c5:48:1b:3b:90:8d:31: 73:43:87:71:03:76:a5:e0:ef:ee:da:83:f5:34:1d:6f:6d:8c: 86:1c:0d:09:9d:54:67:12:04:85:54:5b:16:fd:58:72:52:9a: 61:01:67:59:62:51:ce:f5:a2:a2:d7:c2:b8:d3:03:66:b6:49: de:1e:cf:86 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDYgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTZC Qjk0QjQ1N0Y5RDgyQTI5QjVCMkZEOUYzQTQ0MTg4OTlFNzFFQzAeFw0yNTA1MjMw NzQwMDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDUyRTRDNDk5N0NBRTkw QzU3NjAyRTMxMzlGNUFDMzk2NEQyQkFBM0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCp/JlMMPRpgptuU886sbCSnBBUBVFWSqcfK4pO/gdndaki84M3 8HsefuEdMLLdkKJMLmotUCJUIyYQwFjR8NmGl+qxJnE7DhkBjBJvnvfXgkSQi2Cy wB7s2zxSJvHJZZdMQ85T+4jMNKkjs0kiM/5CnaTzAJ/63N2I064JS+vp+ECtV/DM oWNvu/UcRufcKEIvxwbXdg9uT09XTS72ayeD4AeDw1dsnR8ea49JR3FYK84pT8Zk +FMn2cgpwL72BF+2yv/4waMu7IPqhXnw/ATIV6cJ3VkvdVKd71XEVTpHpfzQXCsV KcAHKfWJnA+05jsXzN8/uOrO2aUZTvmVCM9tAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUUuTEmXyukMV2AuMTn1rDlk0rqjswHwYDVR0jBBgwFoAUlruUtFf52CoptbL9 nzpEGImecewwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1lTTkVU L2xydVV0RmY1MkNvcHRiTDluenBFR0ltZWNldy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbHJ1VXRGZjUyQ29wdGJMOW56cEVHSW1lY2V3LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1lTTkVUL1V1VEVtWHl1a01WMkF1TVRu MXJEbGswcnFqcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXS QyAwDQYJKoZIhvcNAQELBQADggEBAFLd2+9KbgM8KYaC832beqY4BhbXkG+q/jRw 3oGKNXuBd5yiZTWOALF90O6bHspV5I05IvK3ZeoE4EEeiEoXZqHzrOMqkyXavRdD Ml+qdlONwSIba/IzC8D8B161FFwO2q1XQOHoqiSgY3ux03x4XpX5FYfr4BihMU9u oopHiOLoFYyWVEhgWczt4l/sj00H39JKol/2a/R7aqoN8/ebMtUWaIAGggWfUU34 2BLRb4CVEvGT3JjW//JIDAkwfTtbxUgbO5CNMXNDh3EDdqXg7+7ag/U0HW9tjIYc DQmdVGcSBIVUWxb9WHJSmmEBZ1liUc71oqLXwrjTA2a2Sd4ez4Y= -----END CERTIFICATE-----Generated at Wed Jun 4 00:10:47 2025 by rpki-client