$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/Jns9QRoKa1WsqmtDocwMDtdMlT0.roa File: Jns9QRoKa1WsqmtDocwMDtdMlT0.roa (raw, json) Hash identifier: uEWgzsrUcLvTRdErDyt4Wd2xyJyx9lowSbRb3k5cKSY= Subject key identifier: 26:7B:3D:41:1A:0A:6B:55:AC:AA:6B:43:A1:CC:0C:0E:D7:4C:95:3D Certificate issuer: /CN=0DF94AB0728C7A38C50F0D61554D49D651F33AA2 Certificate serial: 0DD0 Authority key identifier: 0D:F9:4A:B0:72:8C:7A:38:C5:0F:0D:61:55:4D:49:D6:51:F3:3A:A2 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/Jns9QRoKa1WsqmtDocwMDtdMlT0.roa Signing time: Fri 22 Aug 2025 08:51:43 +0000 ROA not before: Fri 22 Aug 2025 08:51:43 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131593 IP address blocks: 43.251.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3536 (0xdd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0DF94AB0728C7A38C50F0D61554D49D651F33AA2 Validity Not Before: Aug 22 08:51:43 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=267B3D411A0A6B55ACAA6B43A1CC0C0ED74C953D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:30:72:b2:09:7d:1a:1e:0a:9a:bd:37:57:03: 28:ec:e1:d6:21:63:77:73:69:ec:48:75:8f:e1:c7: eb:4f:5b:97:a2:c4:07:64:f9:4c:21:88:e7:db:21: a7:f7:aa:a6:45:e6:e6:60:40:60:22:34:33:0c:9b: d5:83:ba:38:0e:47:35:56:91:14:00:37:f7:3d:84: 0c:a7:9d:e3:e6:06:c0:f6:e7:a8:cb:19:05:28:3c: ed:d4:a8:a9:06:a8:71:37:f6:b8:aa:35:c5:61:3a: d6:e0:b8:5e:c5:12:c3:06:a3:ab:44:34:86:bc:96: 7a:96:28:69:6d:00:6c:43:a5:d5:6e:fb:37:b7:cd: 4f:f4:da:06:07:6f:dc:89:d2:5a:f3:94:45:d9:00: 2c:b3:cb:ce:7f:b2:76:d0:be:7e:2e:49:72:68:f3: bc:4a:8b:4c:8f:26:9c:17:f7:a0:1f:5a:3f:bc:46: 93:e9:18:b8:21:8d:df:90:55:95:e3:a6:d5:88:f0: d0:f1:6e:90:13:18:14:d1:89:0b:11:34:ca:08:02: 0f:c4:28:14:7b:aa:df:f8:3a:bc:fe:b2:b6:f2:3f: 9b:18:34:c6:5c:aa:8c:0f:f5:e6:b1:a3:be:c5:17: 4d:1a:f4:14:bc:65:3d:8a:be:aa:99:89:27:87:06: 2a:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:7B:3D:41:1A:0A:6B:55:AC:AA:6B:43:A1:CC:0C:0E:D7:4C:95:3D X509v3 Authority Key Identifier: keyid:0D:F9:4A:B0:72:8C:7A:38:C5:0F:0D:61:55:4D:49:D6:51:F3:3A:A2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/Jns9QRoKa1WsqmtDocwMDtdMlT0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.251.60.0/24 Signature Algorithm: sha256WithRSAEncryption 56:0c:f9:9b:18:67:eb:a8:f6:b5:82:1f:6a:c2:ae:05:4e:38: 7b:43:6c:6b:3b:cf:9b:d6:ce:cb:19:b5:e1:78:3a:fb:c8:c0: 49:f2:a1:60:37:7f:8d:2c:53:4d:cf:b2:e8:20:c2:4b:63:a5: 97:dc:4d:a2:64:19:4c:49:bf:be:8c:1b:b6:70:c3:ab:45:d2: d6:06:23:29:55:06:25:a1:41:d2:71:6d:9d:c4:3f:97:5d:ef: 77:09:56:0c:7c:01:69:f4:92:b9:0c:80:98:24:85:f4:f5:df: 98:80:1b:68:23:78:bc:86:12:26:f5:b3:f7:0e:8f:eb:21:7f: 83:a3:ac:35:c9:98:c0:cc:a8:5c:15:b4:24:0d:9a:26:40:1f: 07:51:11:b3:52:af:18:e5:ba:17:c4:9c:d8:c7:55:22:d3:d6: 54:17:25:0e:db:8e:7b:34:be:03:2e:9d:05:b3:0e:0b:f3:89: 2b:4f:2f:3a:2b:cd:cf:7a:11:61:58:42:da:f2:e8:54:d2:ce: 9c:8b:67:7a:e5:7b:c1:c7:fb:f5:1a:21:d2:a3:0c:e4:48:ad: d1:29:b7:22:98:94:0e:b9:d7:28:09:76:3f:7f:ef:f3:8e:f2: 4e:ff:a4:e2:86:5b:cc:2a:67:96:06:ee:e6:db:eb:2c:6c:6e: 34:f9:52:d5 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDdAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMERG OTRBQjA3MjhDN0EzOEM1MEYwRDYxNTU0RDQ5RDY1MUYzM0FBMjAeFw0yNTA4MjIw ODUxNDNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDI2N0IzRDQxMUEwQTZC NTVBQ0FBNkI0M0ExQ0MwQzBFRDc0Qzk1M0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHMHKyCX0aHgqavTdXAyjs4dYhY3dzaexIdY/hx+tPW5eixAdk +UwhiOfbIaf3qqZF5uZgQGAiNDMMm9WDujgORzVWkRQAN/c9hAynnePmBsD256jL GQUoPO3UqKkGqHE39riqNcVhOtbguF7FEsMGo6tENIa8lnqWKGltAGxDpdVu+ze3 zU/02gYHb9yJ0lrzlEXZACyzy85/snbQvn4uSXJo87xKi0yPJpwX96AfWj+8RpPp GLghjd+QVZXjptWI8NDxbpATGBTRiQsRNMoIAg/EKBR7qt/4Orz+srbyP5sYNMZc qowP9eaxo77FF00a9BS8ZT2KvqqZiSeHBirfAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUJns9QRoKa1WsqmtDocwMDtdMlT0wHwYDVR0jBBgwFoAUDflKsHKMejjFDw1h VU1J1lHzOqIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEVHQVRS T04vRGZsS3NIS01lampGRHcxaFZVMUoxbEh6T3FJLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9EZmxLc0hLTWVqakZEdzFoVlUxSjFsSHpPcUkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QRUdBVFJPTi9KbnM5UVJvS2ExV3Nx bXREb2N3TUR0ZE1sVDAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAK/s8MA0GCSqGSIb3DQEBCwUAA4IBAQBWDPmbGGfrqPa1gh9qwq4FTjh7Q2xr O8+b1s7LGbXheDr7yMBJ8qFgN3+NLFNNz7LoIMJLY6WX3E2iZBlMSb++jBu2cMOr RdLWBiMpVQYloUHScW2dxD+XXe93CVYMfAFp9JK5DICYJIX09d+YgBtoI3i8hhIm 9bP3Do/rIX+Do6w1yZjAzKhcFbQkDZomQB8HURGzUq8Y5boXxJzYx1Ui09ZUFyUO 2457NL4DLp0Fsw4L84krTy86K83PehFhWELa8uhU0s6ci2d65XvBx/v1GiHSowzk SK3RKbcimJQOudcoCXY/f+/zjvJO/6TihlvMKmeWBu7m2+ssbG40+VLV -----END CERTIFICATE-----Generated at Sun Aug 24 13:40:16 2025 by rpki-client