$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/f9BkDcTc0Qu7WyPYLc2LkngjCFE.roa File: f9BkDcTc0Qu7WyPYLc2LkngjCFE.roa (raw, json) Hash identifier: jB+5fmaJQKDYqoyiYqbwVRiRXZtlcUXQIP6LnXyYQY0= Subject key identifier: 7F:D0:64:0D:C4:DC:D1:0B:BB:5B:23:D8:2D:CD:8B:92:78:23:08:51 Certificate issuer: /CN=0DF94AB0728C7A38C50F0D61554D49D651F33AA2 Certificate serial: 0DCB Authority key identifier: 0D:F9:4A:B0:72:8C:7A:38:C5:0F:0D:61:55:4D:49:D6:51:F3:3A:A2 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/f9BkDcTc0Qu7WyPYLc2LkngjCFE.roa Signing time: Fri 22 Aug 2025 08:51:42 +0000 ROA not before: Fri 22 Aug 2025 08:51:42 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131593 IP address blocks: 103.42.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3531 (0xdcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0DF94AB0728C7A38C50F0D61554D49D651F33AA2 Validity Not Before: Aug 22 08:51:42 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7FD0640DC4DCD10BBB5B23D82DCD8B9278230851 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:e1:f3:9d:42:64:08:40:e6:61:f4:5a:51:4d: 2e:95:fc:2c:66:c8:17:cf:d2:a8:3b:84:d7:74:91: dc:0f:41:95:d3:12:97:59:a3:74:11:b4:46:1a:e9: 66:fb:66:81:02:18:62:5e:71:5e:ab:1f:cc:b5:1e: 1e:7f:85:9e:b2:09:93:bf:7e:b5:c0:cb:b1:7d:a7: 52:0e:f7:ab:9c:11:95:6d:56:b7:19:de:84:c8:50: 0f:e7:2c:61:15:5d:95:5d:7b:42:5f:c6:77:94:94: 77:5b:e4:03:4c:98:a4:9c:fc:b6:12:c2:7b:6a:d4: f1:b3:07:3d:a5:b3:74:4d:9c:33:67:7d:79:a0:e3: e1:10:41:95:61:42:e7:54:f7:64:a3:65:4f:cb:19: 4f:51:98:e0:99:a8:7b:04:39:69:21:2d:42:c4:11: fe:9a:2b:4e:88:e5:08:5d:bd:7b:4a:66:26:d7:11: 7c:14:a4:9c:a6:28:31:e4:93:39:dc:cf:1f:06:b1: 6c:dc:cd:8a:d9:fb:ca:5f:ee:08:36:26:79:f5:23: 98:e6:36:5c:ab:bb:e4:3a:17:40:d0:32:10:f8:3b: 6d:2b:79:a8:4a:d2:ad:2a:0d:c0:bb:8d:dd:e2:e8: 11:ee:5f:09:14:03:21:78:ac:ae:09:c6:18:3a:6c: 5f:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:D0:64:0D:C4:DC:D1:0B:BB:5B:23:D8:2D:CD:8B:92:78:23:08:51 X509v3 Authority Key Identifier: keyid:0D:F9:4A:B0:72:8C:7A:38:C5:0F:0D:61:55:4D:49:D6:51:F3:3A:A2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/f9BkDcTc0Qu7WyPYLc2LkngjCFE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.42.149.0/24 Signature Algorithm: sha256WithRSAEncryption 15:90:37:9f:02:d1:53:fa:3a:0a:e9:6a:9b:02:71:a0:37:f5: 10:68:a3:2d:82:8f:e4:f9:62:f7:3a:8b:e0:fb:3e:d8:e5:fb: 2d:7a:4e:a5:dc:91:50:3c:f8:28:c6:6d:6d:1c:11:f1:e9:80: e7:8c:fc:82:a6:e9:f5:24:60:0d:ab:39:4d:fd:a8:85:75:b1: 3b:f7:d7:b7:fc:dc:16:19:51:97:c7:f2:02:2d:c6:43:3e:ef: 71:38:73:d5:1b:e5:44:15:1a:ae:70:e3:f6:fd:36:ce:c9:ee: 7a:c7:ce:11:f4:ac:bc:47:ed:95:5e:0a:42:12:4f:dd:03:9b: b0:d9:1e:1f:5b:6b:e7:07:e9:c8:63:66:bd:38:4c:2c:00:f3: 99:9d:55:26:be:04:3a:e3:60:2f:90:71:b7:a2:72:94:db:d2: 63:e4:09:56:a4:0c:9e:c7:5b:3d:b5:d7:f1:84:12:3e:0f:2b: 85:7a:19:36:c1:e9:c7:ef:be:cd:eb:89:18:52:54:b3:40:20: 8b:58:74:a2:ba:c2:7a:64:5a:c1:d3:eb:b5:c1:f8:6d:75:24: 1e:49:5b:d6:5b:c7:59:27:8d:22:ef:ad:65:5a:0f:81:f8:f9: 71:9b:10:7f:47:cd:8f:ee:dd:d8:ba:0a:ae:81:82:48:8b:42: 02:d3:60:cd -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDcswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMERG OTRBQjA3MjhDN0EzOEM1MEYwRDYxNTU0RDQ5RDY1MUYzM0FBMjAeFw0yNTA4MjIw ODUxNDJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDdGRDA2NDBEQzREQ0Qx MEJCQjVCMjNEODJEQ0Q4QjkyNzgyMzA4NTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDF4fOdQmQIQOZh9FpRTS6V/CxmyBfP0qg7hNd0kdwPQZXTEpdZ o3QRtEYa6Wb7ZoECGGJecV6rH8y1Hh5/hZ6yCZO/frXAy7F9p1IO96ucEZVtVrcZ 3oTIUA/nLGEVXZVde0JfxneUlHdb5ANMmKSc/LYSwntq1PGzBz2ls3RNnDNnfXmg 4+EQQZVhQudU92SjZU/LGU9RmOCZqHsEOWkhLULEEf6aK06I5QhdvXtKZibXEXwU pJymKDHkkznczx8GsWzczYrZ+8pf7gg2Jnn1I5jmNlyru+Q6F0DQMhD4O20reahK 0q0qDcC7jd3i6BHuXwkUAyF4rK4Jxhg6bF+5AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUf9BkDcTc0Qu7WyPYLc2LkngjCFEwHwYDVR0jBBgwFoAUDflKsHKMejjFDw1h VU1J1lHzOqIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEVHQVRS T04vRGZsS3NIS01lampGRHcxaFZVMUoxbEh6T3FJLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9EZmxLc0hLTWVqakZEdzFoVlUxSjFsSHpPcUkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QRUdBVFJPTi9mOUJrRGNUYzBRdTdX eVBZTGMyTGtuZ2pDRkUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZyqVMA0GCSqGSIb3DQEBCwUAA4IBAQAVkDefAtFT+joK6WqbAnGgN/UQaKMt go/k+WL3Oovg+z7Y5fstek6l3JFQPPgoxm1tHBHx6YDnjPyCpun1JGANqzlN/aiF dbE799e3/NwWGVGXx/ICLcZDPu9xOHPVG+VEFRqucOP2/TbOye56x84R9Ky8R+2V XgpCEk/dA5uw2R4fW2vnB+nIY2a9OEwsAPOZnVUmvgQ642AvkHG3onKU29Jj5AlW pAyex1s9tdfxhBI+DyuFehk2wenH777N64kYUlSzQCCLWHSiusJ6ZFrB0+u1wfht dSQeSVvWW8dZJ40i761lWg+B+PlxmxB/R82P7t3YugqugYJIi0IC02DN -----END CERTIFICATE-----Generated at Sun Aug 24 13:40:19 2025 by rpki-client