$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/pdrUj1A-CDOqHuVnRqxtH8OzLxI.roa File: pdrUj1A-CDOqHuVnRqxtH8OzLxI.roa (raw, json) Hash identifier: mbYGhYTJsB+nRVD8pXpXcemEwWONDQ2VSikc6Mp7Ioc= Subject key identifier: A5:DA:D4:8F:50:3E:08:33:AA:1E:E5:67:46:AC:6D:1F:C3:B3:2F:12 Certificate issuer: /CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B Certificate serial: 0DC8 Authority key identifier: 39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/pdrUj1A-CDOqHuVnRqxtH8OzLxI.roa Signing time: Fri 22 Aug 2025 08:55:19 +0000 ROA not before: Fri 22 Aug 2025 08:55:19 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131627 IP address blocks: 103.124.42.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3528 (0xdc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B Validity Not Before: Aug 22 08:55:19 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=A5DAD48F503E0833AA1EE56746AC6D1FC3B32F12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:23:84:36:ea:be:db:78:d2:b9:59:fe:88:85: 5a:19:0c:f2:3f:26:ad:76:cd:92:4d:e8:4e:53:0d: 06:d1:5b:48:de:29:8f:db:0d:73:dc:cd:dd:18:e5: 18:d4:f6:fd:70:69:c7:5a:9d:1f:78:39:cb:dc:bb: 9d:9b:5a:ad:5e:31:9d:73:7f:a7:93:ce:88:ef:4b: 13:20:c6:23:bf:a4:af:e9:ad:38:fd:ae:8f:d1:ce: a1:15:9e:a6:f5:55:bc:84:6c:de:39:1b:83:43:10: b6:e0:cf:2b:dc:60:18:c3:f5:6d:9c:bd:57:76:f8: 4b:1e:41:6d:cd:02:d4:fe:01:7c:54:62:f4:f3:91: f0:6d:67:c3:8a:f0:df:89:d4:90:28:1a:37:f1:4d: ad:a4:04:e1:00:b5:bf:59:47:58:ee:70:ef:39:50: 8f:5d:e1:82:77:6b:42:4b:f6:66:d2:16:f0:fa:74: 5f:4e:41:40:f4:96:0d:27:71:72:53:77:bb:b0:84: 17:55:9d:ff:f5:08:15:2c:ad:5b:30:03:b2:53:ec: 8f:60:73:e2:b8:d6:a0:fc:6f:30:cb:0e:14:8b:44: 11:72:79:65:ba:52:b0:06:71:2e:e4:7d:6a:c3:bb: 75:6b:26:38:09:02:92:e1:b5:07:8d:d3:c5:97:ed: da:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:DA:D4:8F:50:3E:08:33:AA:1E:E5:67:46:AC:6D:1F:C3:B3:2F:12 X509v3 Authority Key Identifier: keyid:39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/pdrUj1A-CDOqHuVnRqxtH8OzLxI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.124.42.0/23 Signature Algorithm: sha256WithRSAEncryption 1d:bf:65:2a:15:1c:2d:81:d0:67:e3:05:84:1d:0e:24:d3:95: 04:e7:da:43:36:4f:56:45:0b:6d:8a:c2:8e:c4:eb:5f:78:f7: 13:17:66:61:dc:f4:c2:bf:d8:e4:04:d1:01:30:91:40:ba:ad: ac:94:75:7d:41:ec:ad:31:fc:a1:9a:3b:fd:2c:cf:11:bb:1a: 0d:05:4e:aa:a0:df:29:5e:53:0a:55:bd:2c:45:01:88:25:18: 65:e0:4b:1e:09:5b:db:ea:41:cc:05:5d:2a:63:aa:af:ee:9f: 9b:70:c4:07:c4:e5:34:34:b6:5e:80:38:9c:5d:b8:09:9a:f4: b9:d5:38:9c:3b:c3:6a:6d:79:d8:92:65:97:87:56:d5:47:f0: a6:ac:d3:d7:b2:a2:6c:45:12:c4:1b:3b:91:2b:51:a1:20:e0: f9:4a:14:47:20:a3:3c:1d:ca:0f:85:fa:cc:56:79:03:bb:49: 68:15:f9:a5:56:ab:66:1e:4f:90:c8:4f:4e:8e:59:be:68:46: 81:d2:cd:bb:78:07:da:38:da:ba:68:15:79:32:d1:dd:c9:6a: 6c:39:11:e6:5b:8d:8d:83:c3:c3:66:45:c7:1e:bd:43:d2:e1: 0d:ff:32:0b:91:b6:c8:07:55:85:a3:45:27:8e:e8:3a:15:2e: a5:ec:d4:84 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDcgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzkw QTA0MTJGOEI1RUM0RjNGOUZEQkIzQTYxMjcwREJEMEVBOUU2QjAeFw0yNTA4MjIw ODU1MTlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEE1REFENDhGNTAzRTA4 MzNBQTFFRTU2NzQ2QUM2RDFGQzNCMzJGMTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9I4Q26r7beNK5Wf6IhVoZDPI/Jq12zZJN6E5TDQbRW0jeKY/b DXPczd0Y5RjU9v1wacdanR94Ocvcu52bWq1eMZ1zf6eTzojvSxMgxiO/pK/prTj9 ro/RzqEVnqb1VbyEbN45G4NDELbgzyvcYBjD9W2cvVd2+EseQW3NAtT+AXxUYvTz kfBtZ8OK8N+J1JAoGjfxTa2kBOEAtb9ZR1jucO85UI9d4YJ3a0JL9mbSFvD6dF9O QUD0lg0ncXJTd7uwhBdVnf/1CBUsrVswA7JT7I9gc+K41qD8bzDLDhSLRBFyeWW6 UrAGcS7kfWrDu3VrJjgJApLhtQeN08WX7dp1AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUpdrUj1A+CDOqHuVnRqxtH8OzLxIwHwYDVR0jBBgwFoAUOQoEEvi17E8/n9uz phJw29DqnmswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVU5JR0FU RS9PUW9FRXZpMTdFOF9uOXV6cGhKdzI5RHFubXMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL09Rb0VFdmkxN0U4X245dXpwaEp3MjlEcW5tcy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1VOSUdBVEUvcGRyVWoxQS1DRE9xSHVW blJxeHRIOE96THhJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AWd8KjANBgkqhkiG9w0BAQsFAAOCAQEAHb9lKhUcLYHQZ+MFhB0OJNOVBOfaQzZP VkULbYrCjsTrX3j3ExdmYdz0wr/Y5ATRATCRQLqtrJR1fUHsrTH8oZo7/SzPEbsa DQVOqqDfKV5TClW9LEUBiCUYZeBLHglb2+pBzAVdKmOqr+6fm3DEB8TlNDS2XoA4 nF24CZr0udU4nDvDam152JJll4dW1UfwpqzT17KibEUSxBs7kStRoSDg+UoURyCj PB3KD4X6zFZ5A7tJaBX5pVarZh5PkMhPTo5ZvmhGgdLNu3gH2jjaumgVeTLR3clq bDkR5luNjYPDw2ZFxx69Q9LhDf8yC5G2yAdVhaNFJ47oOhUupezUhA== -----END CERTIFICATE-----Generated at Sat Sep 6 13:48:20 2025 by rpki-client