$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/0O0BeO8qkymLGt_JtqYc6vHDgs8.roa File: 0O0BeO8qkymLGt_JtqYc6vHDgs8.roa (raw, json) Hash identifier: eT40PJvBDXxt+LB/03O9vkZxNrk2fB+XkWf61HQLeNU= Subject key identifier: D0:ED:01:78:EF:2A:93:29:8B:1A:DF:C9:B6:A6:1C:EA:F1:C3:82:CF Certificate issuer: /CN=2C20881A0EFD0664A591AF3095D29935EF9BC361 Certificate serial: 0429 Authority key identifier: 2C:20:88:1A:0E:FD:06:64:A5:91:AF:30:95:D2:99:35:EF:9B:C3:61 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LCCIGg79BmSlka8wldKZNe-bw2E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/0O0BeO8qkymLGt_JtqYc6vHDgs8.roa Signing time: Mon 09 Jun 2025 07:23:44 +0000 ROA not before: Mon 09 Jun 2025 07:23:44 +0000 ROA not after: Thu 28 Aug 2025 15:30:19 +0000 asID: 152613 IP address blocks: 2401:bf60:4ff6::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/LCCIGg79BmSlka8wldKZNe-bw2E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/LCCIGg79BmSlka8wldKZNe-bw2E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/LCCIGg79BmSlka8wldKZNe-bw2E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 07:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1065 (0x429) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2C20881A0EFD0664A591AF3095D29935EF9BC361 Validity Not Before: Jun 9 07:23:44 2025 GMT Not After : Aug 28 15:30:19 2025 GMT Subject: CN=D0ED0178EF2A93298B1ADFC9B6A61CEAF1C382CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:58:9e:b2:52:ae:bd:db:ae:0c:95:d4:a8:aa: 81:05:9d:0b:7c:d6:cc:ed:03:e6:75:08:31:4f:63: 69:94:e1:4b:00:e2:12:33:bd:97:ae:f9:79:ae:2a: ba:e5:c9:77:27:7b:75:b4:6b:83:91:b5:7d:bf:ad: 0f:7f:e7:bc:9b:27:8c:2e:b1:96:34:e1:da:48:9a: 9f:f1:20:e7:f8:c5:39:f3:c4:51:d1:32:41:3c:a6: 7f:7e:a3:57:9c:66:22:d8:c8:42:0a:ce:2c:ad:8f: 1f:c6:3a:00:5e:39:21:7f:c8:bf:0b:14:4f:47:07: 53:07:42:a3:81:2a:1d:1d:9d:a9:56:7b:dc:98:47: be:1e:74:c1:54:53:26:bd:fe:7b:94:29:14:c8:04: 40:18:f5:04:3b:29:90:81:e7:ff:36:6b:fa:a1:a3: f2:49:01:70:a4:23:1f:69:47:a1:51:78:85:4b:b0: 9a:98:21:0a:d8:4a:73:e2:a3:a3:88:cb:f3:82:60: 73:b6:5a:60:b1:71:fa:d0:81:e8:f9:6c:56:64:05: 51:a4:f6:7b:a5:b3:4b:b5:02:70:34:56:06:da:7f: 97:30:9e:87:5b:80:62:c3:2a:f6:fc:68:20:b9:39: 59:8e:ee:fa:ce:ea:76:3f:fd:5d:59:e3:6a:07:78: 39:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:ED:01:78:EF:2A:93:29:8B:1A:DF:C9:B6:A6:1C:EA:F1:C3:82:CF X509v3 Authority Key Identifier: keyid:2C:20:88:1A:0E:FD:06:64:A5:91:AF:30:95:D2:99:35:EF:9B:C3:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/LCCIGg79BmSlka8wldKZNe-bw2E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LCCIGg79BmSlka8wldKZNe-bw2E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/0O0BeO8qkymLGt_JtqYc6vHDgs8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:bf60:4ff6::/48 Signature Algorithm: sha256WithRSAEncryption 5f:82:3d:9c:b5:f9:7e:db:d0:85:aa:38:8e:ab:b5:03:1d:a8: 22:75:de:44:f8:b6:21:e5:77:83:17:8a:7a:12:83:c7:40:2d: 87:a8:7b:e7:24:fb:f7:fd:b3:1f:d6:97:2f:90:2c:02:1a:7a: cc:a2:70:60:ee:51:19:6b:a9:85:58:77:d1:a1:c3:d9:b2:03: 65:04:38:95:c8:f5:0c:57:4c:31:e2:9d:f0:67:d6:b4:2c:6c: 46:2e:91:43:9e:0a:a5:61:4b:fb:78:ec:76:16:40:e1:6c:3d: 6e:8d:31:7c:f1:49:7d:b6:63:5b:5c:9a:8c:df:d2:36:0a:c9: 50:fd:93:05:a8:4e:d5:7c:e1:f1:fb:b4:06:ed:a7:27:b8:d3: 86:20:f4:09:73:ae:32:f6:7b:c1:de:3b:21:cd:cd:20:7e:71: 19:d3:75:d4:d6:08:d7:1f:e8:f3:c0:ea:66:2c:08:ca:cb:81: e7:ac:72:a6:86:68:d8:c4:ac:8d:0a:68:1b:10:47:a1:b6:1f: c0:96:48:89:92:b1:7a:9b:4a:31:bc:3a:84:30:34:b0:3b:93: 30:32:4e:df:30:d3:68:ea:8c:3d:fc:0e:ba:7c:e1:2e:ee:b2: 7d:01:2e:f0:56:59:8f:5d:32:9d:71:40:4f:23:d7:33:6f:d9: 6e:4f:25:eb -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgICBCkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkMy MDg4MUEwRUZEMDY2NEE1OTFBRjMwOTVEMjk5MzVFRjlCQzM2MTAeFw0yNTA2MDkw NzIzNDRaFw0yNTA4MjgxNTMwMTlaMDMxMTAvBgNVBAMTKEQwRUQwMTc4RUYyQTkz Mjk4QjFBREZDOUI2QTYxQ0VBRjFDMzgyQ0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHWJ6yUq69264MldSoqoEFnQt81sztA+Z1CDFPY2mU4UsA4hIz vZeu+XmuKrrlyXcne3W0a4ORtX2/rQ9/57ybJ4wusZY04dpImp/xIOf4xTnzxFHR MkE8pn9+o1ecZiLYyEIKziytjx/GOgBeOSF/yL8LFE9HB1MHQqOBKh0dnalWe9yY R74edMFUUya9/nuUKRTIBEAY9QQ7KZCB5/82a/qho/JJAXCkIx9pR6FReIVLsJqY IQrYSnPio6OIy/OCYHO2WmCxcfrQgej5bFZkBVGk9nuls0u1AnA0Vgbaf5cwnodb gGLDKvb8aCC5OVmO7vrO6nY//V1Z42oHeDkfAgMBAAGjggH5MIIB9TAdBgNVHQ4E FgQU0O0BeO8qkymLGt/JtqYc6vHDgs8wHwYDVR0jBBgwFoAULCCIGg79BmSlka8w ldKZNe+bw2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ09ERVVQ VEVDSC9MQ0NJR2c3OUJtU2xrYTh3bGRLWk5lLWJ3MkUuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL0xDQ0lHZzc5Qm1TbGthOHdsZEtaTmUtYncyRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NPREVVUFRFQ0gvME8wQmVPOHFr eW1MR3RfSnRxWWM2dkhEZ3M4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAiBggrBgEFBQcBBwEB/wQTMBEwDwQC AAIwCQMHACQBv2BP9jANBgkqhkiG9w0BAQsFAAOCAQEAX4I9nLX5ftvQhao4jqu1 Ax2oInXeRPi2IeV3gxeKehKDx0Ath6h75yT79/2zH9aXL5AsAhp6zKJwYO5RGWup hVh30aHD2bIDZQQ4lcj1DFdMMeKd8GfWtCxsRi6RQ54KpWFL+3jsdhZA4Ww9bo0x fPFJfbZjW1yajN/SNgrJUP2TBahO1Xzh8fu0Bu2nJ7jThiD0CXOuMvZ7wd47Ic3N IH5xGdN11NYI1x/o88DqZiwIysuB56xypoZo2MSsjQpoGxBHobYfwJZIiZKxeptK Mbw6hDA0sDuTMDJO3zDTaOqMPfwOunzhLu6yfQEu8FZZj10ynXFATyPXM2/Zbk8l 6w== -----END CERTIFICATE-----Generated at Wed Jun 25 03:41:31 2025 by rpki-client