$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/29wvWPnUVSh5aJ8xqHC-cIiK14I.roa File: 29wvWPnUVSh5aJ8xqHC-cIiK14I.roa (raw, json) Hash identifier: ActVpSBG346Wa9oQ1k60dDUQMnFzNjpQLGWC+dgFwSY= Subject key identifier: DB:DC:2F:58:F9:D4:55:28:79:68:9F:31:A8:70:BE:70:88:8A:D7:82 Certificate issuer: /CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B Certificate serial: 0DCA Authority key identifier: 39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/29wvWPnUVSh5aJ8xqHC-cIiK14I.roa Signing time: Fri 22 Aug 2025 08:55:19 +0000 ROA not before: Fri 22 Aug 2025 08:55:19 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 63199 IP address blocks: 103.124.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 19:16:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3530 (0xdca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B Validity Not Before: Aug 22 08:55:19 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=DBDC2F58F9D4552879689F31A870BE70888AD782 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:30:ad:c7:c0:e6:1f:e6:f9:f9:81:e0:85:a3: ad:7c:ba:30:68:1c:15:a0:52:88:19:b2:bc:48:c9: 5a:70:3f:d0:30:17:36:e2:29:6d:6a:9a:e7:cf:4c: 4e:9c:eb:a3:9c:39:d4:53:84:10:8c:a2:44:7a:6b: 1b:70:4d:b5:65:41:dd:64:ae:60:03:f8:45:df:11: b5:e7:be:21:cb:51:bf:06:fd:44:4a:34:dd:97:c3: 3b:3c:b7:e2:fb:99:4f:d7:a7:5d:35:1d:ce:aa:09: d3:3c:cd:d6:97:13:e9:f9:96:bb:e7:c2:64:7f:08: 5f:e7:3b:d2:5a:89:4f:d7:07:c1:fd:c7:be:7c:97: b5:a6:f9:2a:ae:1b:11:1b:b5:bb:ad:7a:db:e2:f9: ee:c5:4a:dc:a1:37:48:27:05:82:d1:6f:bb:ca:24: 6b:53:97:86:77:5e:cb:38:a3:4a:2f:44:44:be:48: 17:21:e7:d1:d9:ae:80:50:a2:0d:91:1a:42:24:06: c2:cb:50:ba:0b:ac:5e:bc:11:c1:5e:98:78:3b:79: 19:ad:90:8f:c2:99:0f:93:e6:be:96:c5:6f:5b:d1: 28:76:4c:3e:a2:49:0b:a0:90:0e:ef:92:36:56:2d: 62:f5:6b:27:2c:80:dc:e6:25:e9:c0:31:bd:5a:12: c7:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:DC:2F:58:F9:D4:55:28:79:68:9F:31:A8:70:BE:70:88:8A:D7:82 X509v3 Authority Key Identifier: keyid:39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/29wvWPnUVSh5aJ8xqHC-cIiK14I.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.124.149.0/24 Signature Algorithm: sha256WithRSAEncryption 31:7f:42:d9:c7:ae:f9:3b:61:32:9e:59:10:4d:23:67:24:88: f4:e2:44:ed:0a:65:c9:ba:3d:46:bb:26:8a:2b:af:ab:56:a2: 0c:43:cb:03:c9:f6:e2:46:11:b5:15:5e:b0:6f:c0:d6:68:ac: 57:f0:aa:9d:25:7d:26:46:d1:ca:5e:28:b5:4b:23:58:54:72: d7:1a:e5:d3:30:2a:1a:b9:ea:4c:e7:38:da:06:e4:4e:7a:1e: 4d:9a:19:4e:c5:a7:05:1e:e5:8c:a6:03:12:0d:21:98:af:bd: 4a:e7:19:0a:1d:79:a2:e8:a5:e5:3c:99:e4:4c:f3:d3:97:f2: 40:dd:fd:ae:c8:3d:51:dd:2e:dd:a4:4e:38:e7:6f:9f:05:2f: fa:74:1a:f0:8b:37:e4:8d:08:fd:f0:fe:b6:6d:8a:11:12:5f: 65:a8:86:65:47:af:47:46:dc:27:18:dd:6b:79:8c:f0:1e:7b: fd:e0:ce:67:92:4f:e9:e0:55:42:e2:2a:c0:86:51:9f:11:a9: 41:49:a2:7b:7f:63:78:fb:3e:5b:dd:4a:8c:33:83:b6:c4:cb: 00:84:f5:05:ef:0c:5b:df:68:aa:2b:32:7e:66:fe:d5:18:60: 0c:0c:6c:7a:ab:a4:d6:c1:e8:a2:d1:fb:5f:ec:76:71:8a:db: 52:c6:a9:47 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDcowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzkw QTA0MTJGOEI1RUM0RjNGOUZEQkIzQTYxMjcwREJEMEVBOUU2QjAeFw0yNTA4MjIw ODU1MTlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKERCREMyRjU4RjlENDU1 Mjg3OTY4OUYzMUE4NzBCRTcwODg4QUQ3ODIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6MK3HwOYf5vn5geCFo618ujBoHBWgUogZsrxIyVpwP9AwFzbi KW1qmufPTE6c66OcOdRThBCMokR6axtwTbVlQd1krmAD+EXfEbXnviHLUb8G/URK NN2Xwzs8t+L7mU/Xp101Hc6qCdM8zdaXE+n5lrvnwmR/CF/nO9JaiU/XB8H9x758 l7Wm+SquGxEbtbutetvi+e7FStyhN0gnBYLRb7vKJGtTl4Z3Xss4o0ovRES+SBch 59HZroBQog2RGkIkBsLLULoLrF68EcFemHg7eRmtkI/CmQ+T5r6WxW9b0Sh2TD6i SQugkA7vkjZWLWL1aycsgNzmJenAMb1aEsdXAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU29wvWPnUVSh5aJ8xqHC+cIiK14IwHwYDVR0jBBgwFoAUOQoEEvi17E8/n9uz phJw29DqnmswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVU5JR0FU RS9PUW9FRXZpMTdFOF9uOXV6cGhKdzI5RHFubXMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL09Rb0VFdmkxN0U4X245dXpwaEp3MjlEcW5tcy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1VOSUdBVEUvMjl3dldQblVWU2g1YUo4 eHFIQy1jSWlLMTRJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AGd8lTANBgkqhkiG9w0BAQsFAAOCAQEAMX9C2ceu+TthMp5ZEE0jZySI9OJE7Qpl ybo9Rrsmiiuvq1aiDEPLA8n24kYRtRVesG/A1misV/CqnSV9JkbRyl4otUsjWFRy 1xrl0zAqGrnqTOc42gbkTnoeTZoZTsWnBR7ljKYDEg0hmK+9SucZCh15ouil5TyZ 5Ezz05fyQN39rsg9Ud0u3aROOOdvnwUv+nQa8Is35I0I/fD+tm2KERJfZaiGZUev R0bcJxjda3mM8B57/eDOZ5JP6eBVQuIqwIZRnxGpQUmie39jePs+W91KjDODtsTL AIT1Be8MW99oqisyfmb+1RhgDAxsequk1sHootH7X+x2cYrbUsapRw== -----END CERTIFICATE-----Generated at Sat Sep 6 17:07:01 2025 by rpki-client