$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/PtraxRUq-zaxKogV1h3q4l5oDqg.roa File: PtraxRUq-zaxKogV1h3q4l5oDqg.roa (raw, json) Hash identifier: OtRMocM47YaKYRM7/wqu3/kH/uwsP9trRXXP0rrB2Mc= Subject key identifier: 3E:DA:DA:C5:15:2A:FB:36:B1:2A:88:15:D6:1D:EA:E2:5E:68:0E:A8 Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Certificate serial: 0DC0 Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/PtraxRUq-zaxKogV1h3q4l5oDqg.roa Signing time: Fri 22 Aug 2025 08:49:50 +0000 ROA not before: Fri 22 Aug 2025 08:49:50 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17420 IP address blocks: 210.67.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3520 (0xdc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Validity Not Before: Aug 22 08:49:50 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=3EDADAC5152AFB36B12A8815D61DEAE25E680EA8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f3:ee:e1:8d:70:af:5e:12:5a:98:9b:fd:94: d3:a6:fa:49:b9:ef:61:74:9f:d0:18:2f:85:48:1f: 75:b2:34:66:ff:c5:7b:f4:ac:65:44:a2:9f:ac:d7: db:ec:b9:ab:59:9a:3a:d5:f8:a8:00:8c:18:dd:96: c8:c9:fc:ab:92:a3:22:d6:a5:7b:ef:8d:97:f4:6c: a3:6f:75:1b:af:95:11:7a:b6:48:ca:20:ca:ae:8f: b5:10:62:d4:37:66:0e:69:82:7b:30:bc:cf:bf:a2: 92:1c:ad:27:e7:21:93:04:4f:f4:c3:c7:6b:d1:7a: 32:5d:3e:db:6c:11:be:c0:7d:3e:5a:67:60:f8:33: e3:b3:d7:dc:31:16:d7:78:f9:83:c6:2d:5e:5e:04: ab:14:53:c0:b6:f6:3c:07:17:f3:52:06:80:a5:57: 6e:0b:5d:f8:8b:c7:f5:23:14:c1:87:74:73:14:95: 38:76:d9:07:9f:b5:dc:7e:27:7a:96:55:d2:73:6e: cf:f5:c4:a2:1a:02:77:d8:75:18:07:f4:99:99:14: 66:b7:f7:9e:9b:fd:1c:33:e9:4e:3e:2a:b3:46:3c: 76:48:a7:1c:3a:0e:13:98:25:93:98:09:0b:61:b2: a7:d0:e6:00:f3:aa:72:85:ef:53:10:90:b1:ed:06: 07:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:DA:DA:C5:15:2A:FB:36:B1:2A:88:15:D6:1D:EA:E2:5E:68:0E:A8 X509v3 Authority Key Identifier: keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/PtraxRUq-zaxKogV1h3q4l5oDqg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.67.64.0/19 Signature Algorithm: sha256WithRSAEncryption a4:cb:5c:b4:e1:b6:31:e8:3a:11:3f:6f:53:72:86:23:c9:dc: 86:33:64:e0:93:ff:96:1f:ae:21:60:48:b1:14:da:e3:67:39: d9:3c:d6:a2:7e:26:77:b6:9e:cd:6e:16:67:71:2f:b1:6d:a6: a8:5d:30:de:80:50:c8:f8:e5:a7:fb:f5:f4:fa:d5:66:5b:a5: 61:82:93:a5:b9:ba:22:b8:90:b4:1c:c4:79:76:fe:71:06:11: 77:5d:10:65:fd:d7:97:14:7e:8b:ad:f5:5e:eb:6c:4f:c8:1d: d1:d1:b6:97:48:fc:74:b4:cf:1b:9f:be:66:6a:47:fb:23:c7: 95:93:8e:d0:33:e1:2f:98:a2:22:8d:1a:b3:be:20:0f:be:1b: b4:54:12:6f:19:72:e3:3e:a5:21:60:a0:1b:19:35:3f:4f:fe: f0:c8:f0:36:f2:43:49:c6:d9:a3:3e:2f:8d:fd:bf:61:a3:46: 5c:57:0b:58:aa:1d:79:ba:b4:9c:1a:1a:7b:da:18:69:42:7f: e5:60:62:fc:73:43:64:c1:80:0e:28:9b:7d:2b:e6:74:d2:ea: 2c:72:53:cf:20:1b:fc:19:ec:ff:cb:af:99:4c:9b:8d:20:ac: fe:e2:5d:45:b0:f8:bd:50:4a:b6:3f:d3:d8:a7:2b:b0:4e:0f: 39:1b:c7:19 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDcAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTI5 QjYwNkRCODYyODNCRDRBMDhBRjdFQjMzRUYzOEEyNTY2MzFCQjAeFw0yNTA4MjIw ODQ5NTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDNFREFEQUM1MTUyQUZC MzZCMTJBODgxNUQ2MURFQUUyNUU2ODBFQTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCz8+7hjXCvXhJamJv9lNOm+km572F0n9AYL4VIH3WyNGb/xXv0 rGVEop+s19vsuatZmjrV+KgAjBjdlsjJ/KuSoyLWpXvvjZf0bKNvdRuvlRF6tkjK IMquj7UQYtQ3Zg5pgnswvM+/opIcrSfnIZMET/TDx2vRejJdPttsEb7AfT5aZ2D4 M+Oz19wxFtd4+YPGLV5eBKsUU8C29jwHF/NSBoClV24LXfiLx/UjFMGHdHMUlTh2 2Qeftdx+J3qWVdJzbs/1xKIaAnfYdRgH9JmZFGa3956b/Rwz6U4+KrNGPHZIpxw6 DhOYJZOYCQthsqfQ5gDzqnKF71MQkLHtBgcfAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUPtraxRUq+zaxKogV1h3q4l5oDqgwHwYDVR0jBBgwFoAUUptgbbhig71KCK9+ sz7ziiVmMbswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEFHSUMv VXB0Z2JiaGlnNzFLQ0s5LXN6N3ppaVZtTWJzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9VcHRnYmJoaWc3MUtDSzktc3o3emlpVm1NYnMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QQUdJQy9QdHJheFJVcS16YXhLb2dWMWgz cTRsNW9EcWcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQF0kNA MA0GCSqGSIb3DQEBCwUAA4IBAQCky1y04bYx6DoRP29TcoYjydyGM2Tgk/+WH64h YEixFNrjZznZPNaifiZ3tp7NbhZncS+xbaaoXTDegFDI+OWn+/X0+tVmW6VhgpOl uboiuJC0HMR5dv5xBhF3XRBl/deXFH6LrfVe62xPyB3R0baXSPx0tM8bn75makf7 I8eVk47QM+EvmKIijRqzviAPvhu0VBJvGXLjPqUhYKAbGTU/T/7wyPA28kNJxtmj Pi+N/b9ho0ZcVwtYqh15urScGhp72hhpQn/lYGL8c0NkwYAOKJt9K+Z00uosclPP IBv8Gez/y6+ZTJuNIKz+4l1FsPi9UEq2P9PYpyuwTg85G8cZ -----END CERTIFICATE-----Generated at Sun Aug 24 07:43:52 2025 by rpki-client