$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/M2NIM/5d0DMUSn7LM_hvq7kYVWGYrbGxg.roa File: 5d0DMUSn7LM_hvq7kYVWGYrbGxg.roa (raw, json) Hash identifier: y0CHuJQMMilSIZ9UVWVQe9OP7VITUk1M2Wl8Tyw7hqs= Subject key identifier: E5:DD:03:31:44:A7:EC:B3:3F:86:FA:BB:91:85:56:19:8A:DB:1B:18 Certificate issuer: /CN=07D3E73EC5EB3D704863889E221845B7695D409C Certificate serial: 01E3 Authority key identifier: 07:D3:E7:3E:C5:EB:3D:70:48:63:88:9E:22:18:45:B7:69:5D:40:9C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/B9PnPsXrPXBIY4ieIhhFt2ldQJw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/M2NIM/5d0DMUSn7LM_hvq7kYVWGYrbGxg.roa Signing time: Fri 22 Aug 2025 08:44:09 +0000 ROA not before: Fri 22 Aug 2025 08:44:09 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 400618 IP address blocks: 157.20.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/M2NIM/B9PnPsXrPXBIY4ieIhhFt2ldQJw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/M2NIM/B9PnPsXrPXBIY4ieIhhFt2ldQJw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/B9PnPsXrPXBIY4ieIhhFt2ldQJw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 483 (0x1e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=07D3E73EC5EB3D704863889E221845B7695D409C Validity Not Before: Aug 22 08:44:09 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E5DD033144A7ECB33F86FABB918556198ADB1B18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:68:48:1c:3a:5f:33:b8:ff:4f:a5:30:d6:c5: be:f5:40:d9:c6:52:d7:32:4f:36:13:68:bd:94:f4: ca:5b:aa:8b:2c:b4:e7:9e:3b:0b:5f:24:99:0f:e0: 9a:5e:1a:bd:2d:fa:29:95:7a:d5:11:20:c3:59:0b: cb:db:35:a0:38:23:64:d7:c5:7b:93:38:3f:19:65: 81:f9:9f:8a:02:b1:bc:e9:99:35:f2:12:98:c0:b5: 5f:a8:e2:00:c4:cb:10:da:82:06:f7:85:aa:24:65: 1a:88:07:85:6d:3c:b5:c3:9a:ae:1d:ef:1d:b7:ce: d3:98:96:52:b3:a8:4b:02:53:15:17:da:92:9e:9e: 88:cc:30:1b:02:47:4b:24:db:00:6b:e8:2b:9f:54: 00:a3:55:ed:0f:dc:f9:75:c9:54:5e:47:66:f1:f7: fd:00:b9:8b:68:15:6d:e0:58:64:9f:d4:d7:e9:3a: e0:6e:ef:93:d0:8f:ba:e8:1f:78:73:89:43:a3:c7: 82:53:58:77:28:ea:85:fb:d2:dd:1f:dd:85:57:ca: b8:26:33:78:b1:ba:a5:e2:cc:51:92:ab:bb:ea:85: 49:52:cf:c5:59:09:94:08:51:bb:3b:f8:4f:37:99: 1e:33:98:7f:86:7c:f1:98:e5:ee:87:fe:5b:45:4c: 71:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:DD:03:31:44:A7:EC:B3:3F:86:FA:BB:91:85:56:19:8A:DB:1B:18 X509v3 Authority Key Identifier: keyid:07:D3:E7:3E:C5:EB:3D:70:48:63:88:9E:22:18:45:B7:69:5D:40:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/M2NIM/B9PnPsXrPXBIY4ieIhhFt2ldQJw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/B9PnPsXrPXBIY4ieIhhFt2ldQJw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/M2NIM/5d0DMUSn7LM_hvq7kYVWGYrbGxg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.134.0/24 Signature Algorithm: sha256WithRSAEncryption 14:37:34:76:84:fb:9e:d3:8b:39:0f:27:8c:84:da:1a:2a:8d: 54:0e:b5:00:0a:cd:34:b4:0c:66:64:a6:6d:99:83:8b:2f:a3: 7b:f9:83:e4:a7:72:ce:67:41:c1:27:86:57:da:93:f1:a9:5e: 90:55:ea:56:ce:64:62:39:b9:33:1c:0d:db:d0:95:f2:53:1e: f6:c0:bb:63:a8:66:49:55:93:43:94:6d:2c:22:c7:df:53:ed: 7b:e2:6a:4c:94:30:2c:6e:73:81:97:91:45:2b:5f:9f:23:ea: 02:85:ae:2a:22:16:d4:b8:69:fc:69:fe:33:60:80:e7:b9:1d: d5:02:7a:fe:b2:67:cb:94:a6:d2:c4:f3:44:9e:5e:34:21:10: da:4f:bf:23:4e:c2:87:e4:23:ec:dd:4d:6c:5d:b3:39:27:43: db:25:04:2e:c7:4b:44:ef:84:cd:c4:7d:24:73:d9:71:0c:0b: 3f:50:78:ae:8b:57:74:e4:76:92:ea:51:32:d7:f1:14:81:d8: 29:0a:72:c3:48:92:39:fb:9f:a7:39:1e:e0:81:c9:bf:cd:74: 17:8c:5f:28:94:3b:54:3f:ad:1a:95:d0:30:32:c2:17:1c:b5: 5f:e2:a5:01:93:1e:90:b9:09:11:68:b1:ae:0b:65:00:d9:6d: 16:33:f6:c0 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICAeMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDdE M0U3M0VDNUVCM0Q3MDQ4NjM4ODlFMjIxODQ1Qjc2OTVENDA5QzAeFw0yNTA4MjIw ODQ0MDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEU1REQwMzMxNDRBN0VD QjMzRjg2RkFCQjkxODU1NjE5OEFEQjFCMTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDeaEgcOl8zuP9PpTDWxb71QNnGUtcyTzYTaL2U9MpbqosstOee OwtfJJkP4JpeGr0t+imVetURIMNZC8vbNaA4I2TXxXuTOD8ZZYH5n4oCsbzpmTXy EpjAtV+o4gDEyxDaggb3haokZRqIB4VtPLXDmq4d7x23ztOYllKzqEsCUxUX2pKe nojMMBsCR0sk2wBr6CufVACjVe0P3Pl1yVReR2bx9/0AuYtoFW3gWGSf1NfpOuBu 75PQj7roH3hziUOjx4JTWHco6oX70t0f3YVXyrgmM3ixuqXizFGSq7vqhUlSz8VZ CZQIUbs7+E83mR4zmH+GfPGY5e6H/ltFTHGPAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU5d0DMUSn7LM/hvq7kYVWGYrbGxgwHwYDVR0jBBgwFoAUB9PnPsXrPXBIY4ie IhhFt2ldQJwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTTJOSU0v QjlQblBzWHJQWEJJWTRpZUloaEZ0MmxkUUp3LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9COVBuUHNYclBYQklZNGllSWhoRnQybGRRSncuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9NMk5JTS81ZDBETVVTbjdMTV9odnE3a1lW V0dZcmJHeGcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRSG MA0GCSqGSIb3DQEBCwUAA4IBAQAUNzR2hPue04s5DyeMhNoaKo1UDrUACs00tAxm ZKZtmYOLL6N7+YPkp3LOZ0HBJ4ZX2pPxqV6QVepWzmRiObkzHA3b0JXyUx72wLtj qGZJVZNDlG0sIsffU+174mpMlDAsbnOBl5FFK1+fI+oCha4qIhbUuGn8af4zYIDn uR3VAnr+smfLlKbSxPNEnl40IRDaT78jTsKH5CPs3U1sXbM5J0PbJQQux0tE74TN xH0kc9lxDAs/UHiui1d05HaS6lEy1/EUgdgpCnLDSJI5+5+nOR7ggcm/zXQXjF8o lDtUP60aldAwMsIXHLVf4qUBkx6QuQkRaLGuC2UA2W0WM/bA -----END CERTIFICATE-----Generated at Sun Aug 24 05:32:23 2025 by rpki-client