$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/OGy6Nryhc67bLXM5hzr3IRIPEvo.roa File: OGy6Nryhc67bLXM5hzr3IRIPEvo.roa (raw, json) Hash identifier: NW//Y5fISaHzjJncfP+fD1Q3i+EyT55jEXflSG250R8= Subject key identifier: 38:6C:BA:36:BC:A1:73:AE:DB:2D:73:39:87:3A:F7:21:12:0F:12:FA Certificate issuer: /CN=0DF94AB0728C7A38C50F0D61554D49D651F33AA2 Certificate serial: 0DD1 Authority key identifier: 0D:F9:4A:B0:72:8C:7A:38:C5:0F:0D:61:55:4D:49:D6:51:F3:3A:A2 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/OGy6Nryhc67bLXM5hzr3IRIPEvo.roa Signing time: Fri 22 Aug 2025 08:51:44 +0000 ROA not before: Fri 22 Aug 2025 08:51:43 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131593 IP address blocks: 43.251.60.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3537 (0xdd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0DF94AB0728C7A38C50F0D61554D49D651F33AA2 Validity Not Before: Aug 22 08:51:43 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=386CBA36BCA173AEDB2D7339873AF721120F12FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:90:b1:0f:6b:5d:7a:93:20:f3:e0:18:91:01: cd:98:41:8e:2b:67:36:95:8d:9f:13:d5:a5:51:59: 42:d6:1d:19:56:e3:47:9b:16:68:1f:6e:de:34:16: b9:91:9c:61:14:70:16:0e:a0:ca:ef:df:25:fa:44: ad:62:b9:34:da:dd:68:df:7b:b3:14:04:80:65:82: 8e:ca:2c:28:9e:85:53:58:1d:b0:ca:a8:3a:4b:92: 76:bc:16:b9:d5:51:79:6d:c8:b2:73:cb:e9:4d:2f: 54:f8:c6:1b:4a:fe:0d:f4:a3:55:aa:37:db:2a:54: 01:b1:12:3a:a2:84:ec:0a:f3:32:1c:01:23:03:8a: 10:4b:88:f2:85:22:56:ca:5d:f0:ff:f2:55:16:af: 3b:c5:67:ea:44:ce:6b:d2:4d:14:94:03:34:8e:44: 75:e7:5e:e5:01:14:77:42:fb:28:d9:f8:d9:74:9b: 43:1a:27:9e:14:8e:99:39:10:fd:f3:72:7c:4d:eb: ea:89:4d:da:a4:95:91:85:34:89:3d:ce:7d:f9:88: 82:79:7c:6f:6e:6b:c1:1d:5d:f9:1c:25:7b:5f:bc: 56:3c:99:9d:ab:9a:61:12:80:bd:23:6e:c9:2a:53: 4c:e0:cc:a8:41:0e:b0:04:78:b6:e4:6b:84:c5:f6: 4e:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:6C:BA:36:BC:A1:73:AE:DB:2D:73:39:87:3A:F7:21:12:0F:12:FA X509v3 Authority Key Identifier: keyid:0D:F9:4A:B0:72:8C:7A:38:C5:0F:0D:61:55:4D:49:D6:51:F3:3A:A2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/OGy6Nryhc67bLXM5hzr3IRIPEvo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.251.60.0/22 Signature Algorithm: sha256WithRSAEncryption 71:3a:cd:2a:ae:1a:1d:10:39:44:32:72:ba:b7:75:69:dc:06: a1:53:c1:94:81:0a:ad:06:62:45:50:6c:cc:3e:c6:97:4f:45: ef:48:9e:8d:37:d4:d9:8b:af:ec:06:50:dc:a5:14:c5:9a:d7: b7:1f:35:18:59:39:13:fc:be:8c:3a:ff:88:9d:86:eb:14:f7: 33:fe:73:e2:6b:91:e5:76:63:85:d3:8c:0c:08:1c:8c:cb:f4: 23:e2:70:8c:bd:a8:70:97:92:e1:e2:ef:c7:f0:bf:95:46:c9: fb:59:4a:62:ca:e6:c3:c3:da:cb:8e:07:03:f2:f0:1c:6d:02: 8c:6a:6e:8b:8a:02:13:3d:79:cd:51:da:14:d0:3d:90:a9:1d: 71:58:9e:5d:43:da:43:16:27:1b:38:54:cb:1d:d6:64:f9:e9: bd:db:15:86:0b:54:be:88:f0:25:79:5c:e3:24:90:4d:96:bb: 5e:54:1a:0d:ae:93:c8:f1:e3:d0:d5:ba:ce:83:40:82:97:cf: 11:60:bd:70:46:c3:a1:ce:4d:5b:97:f0:48:6d:af:ef:8d:8f: f9:33:f0:38:59:03:a1:54:ac:40:36:a8:f1:90:1d:99:cc:07: 06:81:a3:a3:cd:4d:70:cb:9f:62:11:e9:3b:3d:a4:df:57:8a: ee:eb:fe:4a -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDdEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMERG OTRBQjA3MjhDN0EzOEM1MEYwRDYxNTU0RDQ5RDY1MUYzM0FBMjAeFw0yNTA4MjIw ODUxNDNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDM4NkNCQTM2QkNBMTcz QUVEQjJENzMzOTg3M0FGNzIxMTIwRjEyRkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJkLEPa116kyDz4BiRAc2YQY4rZzaVjZ8T1aVRWULWHRlW40eb Fmgfbt40FrmRnGEUcBYOoMrv3yX6RK1iuTTa3Wjfe7MUBIBlgo7KLCiehVNYHbDK qDpLkna8FrnVUXltyLJzy+lNL1T4xhtK/g30o1WqN9sqVAGxEjqihOwK8zIcASMD ihBLiPKFIlbKXfD/8lUWrzvFZ+pEzmvSTRSUAzSORHXnXuUBFHdC+yjZ+Nl0m0Ma J54Ujpk5EP3zcnxN6+qJTdqklZGFNIk9zn35iIJ5fG9ua8EdXfkcJXtfvFY8mZ2r mmESgL0jbskqU0zgzKhBDrAEeLbka4TF9k7vAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUOGy6Nryhc67bLXM5hzr3IRIPEvowHwYDVR0jBBgwFoAUDflKsHKMejjFDw1h VU1J1lHzOqIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEVHQVRS T04vRGZsS3NIS01lampGRHcxaFZVMUoxbEh6T3FJLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9EZmxLc0hLTWVqakZEdzFoVlUxSjFsSHpPcUkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QRUdBVFJPTi9PR3k2TnJ5aGM2N2JM WE01aHpyM0lSSVBFdm8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCK/s8MA0GCSqGSIb3DQEBCwUAA4IBAQBxOs0qrhodEDlEMnK6t3Vp3AahU8GU gQqtBmJFUGzMPsaXT0XvSJ6NN9TZi6/sBlDcpRTFmte3HzUYWTkT/L6MOv+InYbr FPcz/nPia5HldmOF04wMCByMy/Qj4nCMvahwl5Lh4u/H8L+VRsn7WUpiyubDw9rL jgcD8vAcbQKMam6LigITPXnNUdoU0D2QqR1xWJ5dQ9pDFicbOFTLHdZk+em92xWG C1S+iPAleVzjJJBNlrteVBoNrpPI8ePQ1brOg0CCl88RYL1wRsOhzk1bl/BIba/v jY/5M/A4WQOhVKxANqjxkB2ZzAcGgaOjzU1wy59iEek7PaTfV4ru6/5K -----END CERTIFICATE-----Generated at Sun Aug 24 13:36:51 2025 by rpki-client