$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SYSNET/uXlEUXG2W5d-pFBaf3OTzMAMo-8.roa File: uXlEUXG2W5d-pFBaf3OTzMAMo-8.roa (raw, json) Hash identifier: vDDJ5dOaDqN9+8gQd9go4tcIkNV0GtUL6+6hieKgqjU= Subject key identifier: B9:79:44:51:71:B6:5B:97:7E:A4:50:5A:7F:73:93:CC:C0:0C:A3:EF Certificate issuer: /CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC Certificate serial: 0D86 Authority key identifier: 96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/uXlEUXG2W5d-pFBaf3OTzMAMo-8.roa Signing time: Fri 23 May 2025 07:39:50 +0000 ROA not before: Fri 23 May 2025 07:39:50 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4783 IP address blocks: 210.67.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:27:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3462 (0xd86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC Validity Not Before: May 23 07:39:50 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B979445171B65B977EA4505A7F7393CCC00CA3EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:5b:69:ac:ef:cc:f2:7e:a7:74:06:f6:47:9b: c5:2b:a7:09:7e:5a:6a:b4:b3:48:b7:51:cf:a4:f1: ef:c1:a4:de:a0:68:f0:bd:d8:da:77:31:cb:9c:dc: 4e:79:c9:44:0a:bc:04:50:5d:78:41:b4:b0:75:be: e2:f3:c9:7a:28:84:cd:df:c6:13:fb:fe:c2:c6:c8: 9a:78:ff:b8:61:18:30:b8:6f:93:6d:f3:36:27:3c: e1:d4:98:5e:09:4d:e0:5b:87:76:ee:34:d0:e8:0c: e8:c1:04:f2:70:97:38:e8:40:37:fe:49:f3:d0:35: 5b:0d:08:1f:64:66:4c:b7:cb:74:89:b8:5e:25:5d: 42:32:d1:8d:c3:f2:a4:69:b0:bb:ce:42:48:24:25: 26:05:66:15:d0:af:cf:ca:6a:48:83:e9:96:42:56: a1:e3:1a:cc:d3:a7:df:7f:b9:57:78:9b:de:3e:4d: d1:99:3c:1f:25:7c:dd:cd:ec:4b:e4:9a:f5:cf:8b: 86:20:aa:f3:ee:01:b2:56:ac:cf:95:e5:0d:d1:68: 0c:4d:6e:e1:74:9a:18:e3:6c:17:b5:4f:28:93:85: 6c:d9:fa:0a:ab:10:1e:04:94:b2:9f:c9:3a:4b:b5: 1b:8a:60:e3:52:3b:19:07:b5:16:a9:f9:dd:54:4c: da:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:79:44:51:71:B6:5B:97:7E:A4:50:5A:7F:73:93:CC:C0:0C:A3:EF X509v3 Authority Key Identifier: keyid:96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/uXlEUXG2W5d-pFBaf3OTzMAMo-8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.67.16.0/20 Signature Algorithm: sha256WithRSAEncryption a7:cb:7c:2f:f9:dc:cb:00:88:da:fa:c5:c3:a8:42:9c:b6:ef: f9:4f:9a:56:b7:94:c8:44:9c:b3:c0:69:41:a4:6f:93:2e:8d: e1:d3:17:49:08:f0:75:53:5c:4b:19:ef:e4:06:96:b6:68:e8: 08:c4:f8:ec:27:23:02:65:78:07:89:f0:59:8f:3c:46:4d:0a: fb:82:87:da:ec:4b:06:0e:15:ef:77:4a:4d:25:03:70:11:94: 68:87:6d:b5:73:7a:55:61:e9:40:01:98:01:7b:82:77:b2:44: 34:ee:b4:a0:6c:16:63:84:6c:a8:76:fc:01:bd:42:e4:77:b6: 43:fc:62:25:05:df:4d:47:5e:5b:ca:bf:c2:97:81:c5:f1:f3: 80:44:a8:e0:b5:ef:d2:f0:e2:21:01:50:6b:81:4e:45:0f:5a: bf:11:cb:ce:08:51:15:f2:75:73:8a:9b:76:e7:2c:40:00:b0: ac:04:03:d6:59:8b:ea:26:0a:e5:a1:ee:2c:98:60:18:22:4f: 8d:85:d8:e1:4a:1e:cf:59:bc:f4:6e:01:c1:79:50:71:4f:df: e3:9f:bd:70:3c:ca:88:2c:b3:87:15:d5:e3:6f:c4:c2:6e:39: 29:d0:b6:bf:fc:01:c1:ba:a3:8e:8c:d6:7c:26:87:11:88:84: 50:7d:a6:95 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDYYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTZC Qjk0QjQ1N0Y5RDgyQTI5QjVCMkZEOUYzQTQ0MTg4OTlFNzFFQzAeFw0yNTA1MjMw NzM5NTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI5Nzk0NDUxNzFCNjVC OTc3RUE0NTA1QTdGNzM5M0NDQzAwQ0EzRUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6W2ms78zyfqd0BvZHm8Urpwl+Wmq0s0i3Uc+k8e/BpN6gaPC9 2Np3Mcuc3E55yUQKvARQXXhBtLB1vuLzyXoohM3fxhP7/sLGyJp4/7hhGDC4b5Nt 8zYnPOHUmF4JTeBbh3buNNDoDOjBBPJwlzjoQDf+SfPQNVsNCB9kZky3y3SJuF4l XUIy0Y3D8qRpsLvOQkgkJSYFZhXQr8/KakiD6ZZCVqHjGszTp99/uVd4m94+TdGZ PB8lfN3N7EvkmvXPi4YgqvPuAbJWrM+V5Q3RaAxNbuF0mhjjbBe1TyiThWzZ+gqr EB4ElLKfyTpLtRuKYONSOxkHtRap+d1UTNrDAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUuXlEUXG2W5d+pFBaf3OTzMAMo+8wHwYDVR0jBBgwFoAUlruUtFf52CoptbL9 nzpEGImecewwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1lTTkVU L2xydVV0RmY1MkNvcHRiTDluenBFR0ltZWNldy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbHJ1VXRGZjUyQ29wdGJMOW56cEVHSW1lY2V3LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1lTTkVUL3VYbEVVWEcyVzVkLXBGQmFm M09Uek1BTW8tOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATS QxAwDQYJKoZIhvcNAQELBQADggEBAKfLfC/53MsAiNr6xcOoQpy27/lPmla3lMhE nLPAaUGkb5MujeHTF0kI8HVTXEsZ7+QGlrZo6AjE+OwnIwJleAeJ8FmPPEZNCvuC h9rsSwYOFe93Sk0lA3ARlGiHbbVzelVh6UABmAF7gneyRDTutKBsFmOEbKh2/AG9 QuR3tkP8YiUF301HXlvKv8KXgcXx84BEqOC179Lw4iEBUGuBTkUPWr8Ry84IURXy dXOKm3bnLEAAsKwEA9ZZi+omCuWh7iyYYBgiT42F2OFKHs9ZvPRuAcF5UHFP3+Of vXA8yogss4cV1eNvxMJuOSnQtr/8AcG6o46M1nwmhxGIhFB9ppU= -----END CERTIFICATE-----Generated at Fri Jun 6 17:36:40 2025 by rpki-client