$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/SM_WF-NbdPdB-g5Q-_SG9ZgQNQc.roa File: SM_WF-NbdPdB-g5Q-_SG9ZgQNQc.roa (raw, json) Hash identifier: k7k1euLZrEShC/clR8AMKPa2nvfZj5nO/fvV3GdxShQ= Subject key identifier: 48:CF:D6:17:E3:5B:74:F7:41:FA:0E:50:FB:F4:86:F5:98:10:35:07 Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Certificate serial: 0EB6 Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/SM_WF-NbdPdB-g5Q-_SG9ZgQNQc.roa Signing time: Fri 22 Aug 2025 08:52:33 +0000 ROA not before: Fri 22 Aug 2025 08:52:33 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9416 IP address blocks: 124.155.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3766 (0xeb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Validity Not Before: Aug 22 08:52:33 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=48CFD617E35B74F741FA0E50FBF486F598103507 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:28:ec:c7:c3:38:be:00:14:74:9f:cc:b2:99: 89:c7:b7:5e:69:48:a1:c1:6f:27:8b:8e:e9:d2:25: 86:33:02:20:87:4c:fe:a1:68:29:57:7b:2f:52:4f: 89:53:9c:ca:2c:05:9d:1b:98:aa:56:5d:07:be:13: fc:b3:f7:5c:09:79:5b:f2:24:9a:e3:ba:d5:61:59: de:3c:86:b7:f2:37:25:53:b6:30:17:11:57:c0:48: fa:49:27:2f:61:51:eb:b3:c2:8c:b4:17:17:11:fa: 4c:54:16:ac:7f:63:3f:5f:65:5b:64:cf:dd:80:78: 64:8e:e6:80:df:36:20:81:0b:73:e0:43:77:4c:aa: 78:e2:03:64:01:4e:9e:13:af:97:ff:d3:17:71:2f: 1d:7c:13:45:8f:4d:05:58:91:f1:75:04:14:48:87: b7:fa:ea:41:1e:da:de:dd:71:10:64:2c:10:ca:04: 9f:3b:f1:ce:8e:7e:c9:92:09:8c:20:f4:6f:9d:39: 60:5f:72:ea:04:fc:35:a8:9f:8d:35:5d:c8:68:29: 6a:1d:06:6c:6a:13:17:68:d1:da:f9:61:39:6f:fa: 67:3c:3f:46:9c:4c:44:ae:50:80:fb:e9:ae:34:3d: b1:f4:70:29:cc:50:bb:f6:a8:38:fc:5a:fe:75:b9: 62:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:CF:D6:17:E3:5B:74:F7:41:FA:0E:50:FB:F4:86:F5:98:10:35:07 X509v3 Authority Key Identifier: keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/SM_WF-NbdPdB-g5Q-_SG9ZgQNQc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.155.128.0/19 Signature Algorithm: sha256WithRSAEncryption 82:ab:69:28:7e:cf:55:16:92:50:e1:73:59:8d:f5:d6:36:1a: d4:5a:94:ad:2f:1d:90:1a:70:46:2a:d7:bb:c2:87:9e:d3:b1: a7:41:c6:25:1b:d3:3e:a1:91:eb:f6:15:52:bc:eb:3a:9e:6c: 6c:39:62:f4:42:70:0c:a7:c3:7a:aa:7c:8e:01:a6:e8:2e:93: e2:eb:59:c7:f1:fa:16:34:7d:ce:9a:ac:fa:02:b1:ce:04:c1: 58:1d:a9:98:0a:02:f0:0d:8f:c2:5f:04:5f:f0:ba:d9:ab:fe: 04:92:6b:f9:28:30:28:f0:b4:54:40:49:33:08:e9:2d:28:a1: d1:ae:e6:9b:5d:7b:fa:1e:25:46:62:fd:8a:36:1a:57:39:5a: 1e:0e:a3:16:20:59:b8:d2:b8:7c:fd:3a:fe:b3:16:1c:12:66: f3:d2:23:a4:f1:59:7e:32:8a:77:8e:25:76:0a:f5:07:72:b4: cd:97:6c:fe:60:a1:47:9b:31:25:44:d7:79:41:61:3d:18:12: 25:20:e0:e4:ff:d0:c9:d8:ed:cf:e7:41:d3:81:4b:65:e6:c2: 5b:12:cd:41:b1:4d:1f:94:2f:ca:9a:49:9f:22:3d:05:20:b4: 01:15:f6:1c:0a:77:c9:89:de:08:37:d2:80:ad:b1:52:7d:c6: 17:ad:34:99 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDrYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk5 QkJFMTMxREY1RDM0NkYyNzYyN0NDNEY4RkE5RkI1NzU4MTkyOTAeFw0yNTA4MjIw ODUyMzNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQ4Q0ZENjE3RTM1Qjc0 Rjc0MUZBMEU1MEZCRjQ4NkY1OTgxMDM1MDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCYKOzHwzi+ABR0n8yymYnHt15pSKHBbyeLjunSJYYzAiCHTP6h aClXey9ST4lTnMosBZ0bmKpWXQe+E/yz91wJeVvyJJrjutVhWd48hrfyNyVTtjAX EVfASPpJJy9hUeuzwoy0FxcR+kxUFqx/Yz9fZVtkz92AeGSO5oDfNiCBC3PgQ3dM qnjiA2QBTp4Tr5f/0xdxLx18E0WPTQVYkfF1BBRIh7f66kEe2t7dcRBkLBDKBJ87 8c6OfsmSCYwg9G+dOWBfcuoE/DWon401XchoKWodBmxqExdo0dr5YTlv+mc8P0ac TESuUID76a40PbH0cCnMULv2qDj8Wv51uWIbAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUSM/WF+NbdPdB+g5Q+/SG9ZgQNQcwHwYDVR0jBBgwFoAUmZu+Ex3100bydifM T4+p+1dYGSkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5H L21adS1FeDMxMDBieWRpZk1UNC1wLTFkWUdTay5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbVp1LUV4MzEwMGJ5ZGlmTVQ0LXAtMWRZR1NrLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5HL1NNX1dGLU5iZFBkQi1nNVEt X1NHOVpnUU5RYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAV8 m4AwDQYJKoZIhvcNAQELBQADggEBAIKraSh+z1UWklDhc1mN9dY2GtRalK0vHZAa cEYq17vCh57TsadBxiUb0z6hkev2FVK86zqebGw5YvRCcAynw3qqfI4Bpuguk+Lr Wcfx+hY0fc6arPoCsc4EwVgdqZgKAvANj8JfBF/wutmr/gSSa/koMCjwtFRASTMI 6S0oodGu5ptde/oeJUZi/Yo2Glc5Wh4OoxYgWbjSuHz9Ov6zFhwSZvPSI6TxWX4y ineOJXYK9QdytM2XbP5goUebMSVE13lBYT0YEiUg4OT/0MnY7c/nQdOBS2XmwlsS zUGxTR+UL8qaSZ8iPQUgtAEV9hwKd8mJ3gg30oCtsVJ9xhetNJk= -----END CERTIFICATE-----Generated at Sun Aug 24 11:42:06 2025 by rpki-client