$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/urHrOYdWdooldqGvcVOkbHMGnRA.roa File: urHrOYdWdooldqGvcVOkbHMGnRA.roa (raw, json) Hash identifier: aNnnj85R/WrhRMtrpBjZNY4oytOW9gN4mRF6VHdjWU0= Subject key identifier: BA:B1:EB:39:87:56:76:8A:25:76:A1:AF:71:53:A4:6C:73:06:9D:10 Certificate issuer: /CN=49FD819BDAC01662B73EAC9005088CD6A3B88762 Certificate serial: 04B6 Authority key identifier: 49:FD:81:9B:DA:C0:16:62:B7:3E:AC:90:05:08:8C:D6:A3:B8:87:62 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Sf2Bm9rAFmK3PqyQBQiM1qO4h2I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/urHrOYdWdooldqGvcVOkbHMGnRA.roa Signing time: Sun 01 Feb 2026 03:31:51 +0000 ROA not before: Sun 01 Feb 2026 03:31:51 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 152626 IP address blocks: 165.101.28.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/Sf2Bm9rAFmK3PqyQBQiM1qO4h2I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/Sf2Bm9rAFmK3PqyQBQiM1qO4h2I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Sf2Bm9rAFmK3PqyQBQiM1qO4h2I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Mar 2026 10:54:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1206 (0x4b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49FD819BDAC01662B73EAC9005088CD6A3B88762 Validity Not Before: Feb 1 03:31:51 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=BAB1EB398756768A2576A1AF7153A46C73069D10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:bf:fd:d3:8a:ae:7c:ea:97:70:1e:19:cb:23: b4:da:af:b7:b5:1e:7e:e7:8a:38:f9:df:e7:a2:a7: b5:6e:03:48:c1:f7:ee:07:4e:25:8a:24:e8:a5:23: 39:21:a7:0d:d4:e4:ea:b6:51:a9:45:a9:89:11:79: 15:6d:54:a6:8f:61:de:37:1a:ef:3e:92:c9:7f:ee: 35:af:b5:02:6b:16:e8:c8:30:6b:7f:68:e7:c6:1d: 59:de:89:94:ae:f7:f6:7a:e5:1c:02:02:27:0c:10: 70:47:8e:c1:65:97:39:74:a8:5c:57:bb:48:4d:fa: a3:29:24:4c:15:c7:53:85:2b:bd:f1:de:a0:14:6b: 43:82:28:15:b3:7e:55:4e:5e:5e:d0:6b:9e:b4:d1: 11:0a:20:45:3c:80:4b:37:0b:99:2b:c4:0d:64:38: e4:99:b6:10:1d:09:b6:ba:07:24:00:fa:75:d3:6f: 95:b6:0b:ad:02:d2:11:91:f9:69:ac:cd:e1:3e:12: 37:c0:db:ea:ac:36:65:a4:b7:c4:05:bc:98:ef:50: c9:60:2b:db:a0:2a:f7:02:eb:26:45:d9:e2:b1:f2: 4d:ef:fa:fe:a8:fd:38:3e:8f:3a:6a:24:ad:28:a7: c4:cb:0d:ad:e4:47:9d:03:be:27:38:05:fc:9b:ff: b5:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:B1:EB:39:87:56:76:8A:25:76:A1:AF:71:53:A4:6C:73:06:9D:10 X509v3 Authority Key Identifier: keyid:49:FD:81:9B:DA:C0:16:62:B7:3E:AC:90:05:08:8C:D6:A3:B8:87:62 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/Sf2Bm9rAFmK3PqyQBQiM1qO4h2I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Sf2Bm9rAFmK3PqyQBQiM1qO4h2I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/urHrOYdWdooldqGvcVOkbHMGnRA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 165.101.28.0/23 Signature Algorithm: sha256WithRSAEncryption 42:03:47:9e:ba:22:ac:77:90:39:f2:fb:b8:e7:05:01:94:88: be:e6:3f:10:d7:d9:e6:45:fb:50:c9:19:87:28:79:71:fe:c7: 66:c3:6b:2f:ca:5b:0d:3b:a6:9e:25:f7:be:4b:97:28:e6:e9: bb:e0:79:68:a2:4e:0c:b1:54:56:bf:32:3f:35:5d:ed:ea:b7: bf:e8:8a:5c:d6:99:1a:12:2c:38:f4:57:f3:9f:11:c1:68:9f: 99:f9:0b:6e:11:86:a8:7f:de:75:da:74:98:10:1b:06:2c:a6: 09:97:bb:0f:cf:88:39:d4:b8:e3:1c:ed:5d:b7:0f:d7:64:11: 4f:ed:ca:ca:ae:db:4f:2f:9f:f9:63:28:a7:2b:c0:06:5c:b8: 26:40:8d:32:46:fd:2e:91:fe:2a:ff:56:7e:16:dd:19:6b:c3: 57:57:1a:c7:54:e5:a7:52:52:ee:68:75:bd:2c:30:f3:cd:69: ff:6c:c3:0f:95:c4:b8:ba:9c:ae:d1:0a:e2:c1:5f:f8:ba:e0: b0:a3:e5:14:63:6c:19:da:09:4f:3a:08:95:8c:61:eb:10:05: e7:62:db:f0:54:66:e1:b9:bc:e2:6c:78:f5:0e:93:72:1e:cd: 15:80:0d:d5:9f:d5:51:69:1e:ca:16:7b:42:8f:3d:20:37:d2: 86:96:27:9d -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICBLYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDlG RDgxOUJEQUMwMTY2MkI3M0VBQzkwMDUwODhDRDZBM0I4ODc2MjAeFw0yNjAyMDEw MzMxNTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEJBQjFFQjM5ODc1Njc2 OEEyNTc2QTFBRjcxNTNBNDZDNzMwNjlEMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3v/3Tiq586pdwHhnLI7Tar7e1Hn7nijj53+eip7VuA0jB9+4H TiWKJOilIzkhpw3U5Oq2UalFqYkReRVtVKaPYd43Gu8+ksl/7jWvtQJrFujIMGt/ aOfGHVneiZSu9/Z65RwCAicMEHBHjsFllzl0qFxXu0hN+qMpJEwVx1OFK73x3qAU a0OCKBWzflVOXl7Qa5600REKIEU8gEs3C5krxA1kOOSZthAdCba6ByQA+nXTb5W2 C60C0hGR+WmszeE+EjfA2+qsNmWkt8QFvJjvUMlgK9ugKvcC6yZF2eKx8k3v+v6o /Tg+jzpqJK0op8TLDa3kR50Dvic4Bfyb/7VVAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUurHrOYdWdooldqGvcVOkbHMGnRAwHwYDVR0jBBgwFoAUSf2Bm9rAFmK3PqyQ BQiM1qO4h2IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0xPVURC QVNFL1NmMkJtOXJBRm1LM1BxeVFCUWlNMXFPNGgySS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvU2YyQm05ckFGbUszUHF5UUJRaU0xcU80aDJJLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0xPVURCQVNFL3VySHJPWWRXZG9v bGRxR3ZjVk9rYkhNR25SQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAGlZRwwDQYJKoZIhvcNAQELBQADggEBAEIDR566Iqx3kDny+7jnBQGUiL7m PxDX2eZF+1DJGYcoeXH+x2bDay/KWw07pp4l975Llyjm6bvgeWiiTgyxVFa/Mj81 Xe3qt7/oilzWmRoSLDj0V/OfEcFon5n5C24Rhqh/3nXadJgQGwYspgmXuw/PiDnU uOMc7V23D9dkEU/tysqu208vn/ljKKcrwAZcuCZAjTJG/S6R/ir/Vn4W3Rlrw1dX GsdU5adSUu5odb0sMPPNaf9sww+VxLi6nK7RCuLBX/i64LCj5RRjbBnaCU86CJWM YesQBedi2/BUZuG5vOJsePUOk3IezRWADdWf1VFpHsoWe0KPPSA30oaWJ50= -----END CERTIFICATE-----Generated at Mon Mar 2 09:57:44 2026 by rpki-client