$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UWAYIO/kxBeYSb_ZeiKnHApCEprTQ_Xtdg.roa File: kxBeYSb_ZeiKnHApCEprTQ_Xtdg.roa (raw, json) Hash identifier: b1pGKiV/+rjh7ZuW+i3aObtQ3/1XF/k7DTND0Wey5uo= Subject key identifier: 93:10:5E:61:26:FF:65:E8:8A:9C:70:29:08:4A:6B:4D:0F:D7:B5:D8 Certificate issuer: /CN=F9C62DC16A3259415664142C9278C5DDC4D8299D Certificate serial: 03 Authority key identifier: F9:C6:2D:C1:6A:32:59:41:56:64:14:2C:92:78:C5:DD:C4:D8:29:9D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-cYtwWoyWUFWZBQsknjF3cTYKZ0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UWAYIO/kxBeYSb_ZeiKnHApCEprTQ_Xtdg.roa Signing time: Mon 26 May 2025 04:58:39 +0000 ROA not before: Mon 26 May 2025 04:58:39 +0000 ROA not after: Sat 23 May 2026 15:30:20 +0000 asID: 152624 IP address blocks: 165.99.66.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UWAYIO/-cYtwWoyWUFWZBQsknjF3cTYKZ0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UWAYIO/-cYtwWoyWUFWZBQsknjF3cTYKZ0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/-cYtwWoyWUFWZBQsknjF3cTYKZ0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 02:26:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F9C62DC16A3259415664142C9278C5DDC4D8299D Validity Not Before: May 26 04:58:39 2025 GMT Not After : May 23 15:30:20 2026 GMT Subject: CN=93105E6126FF65E88A9C7029084A6B4D0FD7B5D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:80:77:79:c2:7c:6d:98:80:b9:d8:9d:e8:04: 7d:ea:09:f9:20:ef:cc:e5:64:13:7c:39:08:c8:0f: 4b:33:61:d3:2d:24:a2:f6:66:10:63:78:fa:92:cf: c9:9e:ec:1f:d9:e1:81:81:1d:6c:41:85:fb:e2:23: 67:27:29:02:46:c1:16:57:b3:85:68:7e:c7:7b:d5: aa:ea:ae:85:4e:11:16:f8:68:1d:8f:ea:cf:ab:29: 47:4e:47:1c:94:96:5b:f2:0f:61:76:0f:a4:35:47: b2:1e:e2:9c:2d:82:ef:f8:2a:40:7e:38:33:e1:e1: d2:ed:27:02:53:cf:9b:66:30:f6:75:c2:05:b2:f1: f2:d8:4d:39:47:f2:65:e4:0c:78:bc:2a:ee:36:6b: 14:b0:da:14:f6:2c:13:1b:f0:2b:fb:45:47:6f:4d: 14:3d:12:65:60:41:64:57:75:8c:63:d6:41:77:8a: 4a:8e:be:3b:4b:4f:b2:72:8c:67:89:be:3a:fd:80: 30:4d:84:89:91:9b:0f:db:c6:59:cd:7f:1d:20:e4: a1:4e:ed:02:5d:03:bc:84:19:f6:1c:70:24:aa:ce: c2:cd:74:24:81:17:af:db:ef:a5:1f:61:c5:47:5a: 5d:76:b6:d6:e6:15:8b:f5:30:1c:63:ab:39:ad:a4: 2b:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:10:5E:61:26:FF:65:E8:8A:9C:70:29:08:4A:6B:4D:0F:D7:B5:D8 X509v3 Authority Key Identifier: keyid:F9:C6:2D:C1:6A:32:59:41:56:64:14:2C:92:78:C5:DD:C4:D8:29:9D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UWAYIO/-cYtwWoyWUFWZBQsknjF3cTYKZ0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-cYtwWoyWUFWZBQsknjF3cTYKZ0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UWAYIO/kxBeYSb_ZeiKnHApCEprTQ_Xtdg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 165.99.66.0/23 Signature Algorithm: sha256WithRSAEncryption 6d:4f:0a:75:24:63:47:d3:57:7a:2b:c3:b9:69:d6:a7:d4:b7: 1b:21:80:8a:1f:fd:f7:ef:18:0c:28:5d:7a:0a:39:31:0e:f7: 7a:48:7f:cf:29:2f:36:e1:3a:ff:3e:77:07:e1:eb:cc:3f:4a: e6:75:9b:e4:3d:ae:0d:a6:74:b7:1e:4d:93:40:a1:68:0e:58: bc:6c:d1:3e:39:11:91:b8:e4:d8:ed:ec:8b:63:99:99:96:da: 38:c0:72:a3:f7:ee:19:a3:e2:fc:9b:fb:36:39:34:66:17:a1: 92:24:6d:07:ab:5c:78:8d:97:e7:cd:56:ec:5b:94:d7:e1:68: 45:17:79:8e:83:4b:29:45:9f:f8:1b:45:82:0f:04:58:d5:0e: cc:58:46:93:d8:09:51:b7:d4:ec:89:3e:b2:9b:ff:df:d8:c8: a4:b2:98:fa:bf:2b:a2:f4:6e:1b:96:e5:85:e3:b5:ce:da:32: b8:5c:f8:22:b3:b0:ba:88:6b:c3:7d:9a:a9:5d:70:d6:30:d5: 7c:7d:c1:d8:d1:33:d0:7b:ee:05:40:15:ab:f3:3d:8f:dc:d6: 62:e9:b9:d9:d9:99:bf:b5:e1:16:3b:46:69:4c:2d:70:42:ab: 33:12:f8:31:2c:8d:50:48:18:3e:56:ec:71:55:36:15:46:47: b5:0d:b4:63 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgIBAzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGOUM2 MkRDMTZBMzI1OTQxNTY2NDE0MkM5Mjc4QzVEREM0RDgyOTlEMB4XDTI1MDUyNjA0 NTgzOVoXDTI2MDUyMzE1MzAyMFowMzExMC8GA1UEAxMoOTMxMDVFNjEyNkZGNjVF ODhBOUM3MDI5MDg0QTZCNEQwRkQ3QjVEODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJyAd3nCfG2YgLnYnegEfeoJ+SDvzOVkE3w5CMgPSzNh0y0kovZm EGN4+pLPyZ7sH9nhgYEdbEGF++IjZycpAkbBFlezhWh+x3vVququhU4RFvhoHY/q z6spR05HHJSWW/IPYXYPpDVHsh7inC2C7/gqQH44M+Hh0u0nAlPPm2Yw9nXCBbLx 8thNOUfyZeQMeLwq7jZrFLDaFPYsExvwK/tFR29NFD0SZWBBZFd1jGPWQXeKSo6+ O0tPsnKMZ4m+Ov2AME2EiZGbD9vGWc1/HSDkoU7tAl0DvIQZ9hxwJKrOws10JIEX r9vvpR9hxUdaXXa21uYVi/UwHGOrOa2kKwsCAwEAAaOCAe4wggHqMB0GA1UdDgQW BBSTEF5hJv9l6IqccCkISmtND9e12DAfBgNVHSMEGDAWgBT5xi3BajJZQVZkFCyS eMXdxNgpnTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFwGA1UdHwRVMFMwUaBP oE2GS3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9VV0FZSU8v LWNZdHdXb3lXVUZXWkJRc2tuakYzY1RZS1owLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8tY1l0d1dveVdVRldaQlFza25qRjNjVFlLWjAuY2VyMA4GA1UdDwEB/wQEAwIH gDCBnAYIKwYBBQUHAQsEgY8wgYwwVwYIKwYBBQUHMAuGS3JzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9VV0FZSU8va3hCZVlTYl9aZWlLbkhBcENF cHJUUV9YdGRnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3 L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAaVj QjANBgkqhkiG9w0BAQsFAAOCAQEAbU8KdSRjR9NXeivDuWnWp9S3GyGAih/99+8Y DChdego5MQ73ekh/zykvNuE6/z53B+HrzD9K5nWb5D2uDaZ0tx5Nk0ChaA5YvGzR PjkRkbjk2O3si2OZmZbaOMByo/fuGaPi/Jv7Njk0ZhehkiRtB6tceI2X581W7FuU 1+FoRRd5joNLKUWf+BtFgg8EWNUOzFhGk9gJUbfU7Ik+spv/39jIpLKY+r8rovRu G5blheO1ztoyuFz4IrOwuohrw32aqV1w1jDVfH3B2NEz0HvuBUAVq/M9j9zWYum5 2dmZv7XhFjtGaUwtcEKrMxL4MSyNUEgYPlbscVU2FUZHtQ20Yw== -----END CERTIFICATE-----Generated at Wed Jun 4 01:02:33 2025 by rpki-client