$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/fLu6sD6p_HtqeTeRSjHY_HQ9dr4.roa File: fLu6sD6p_HtqeTeRSjHY_HQ9dr4.roa (raw, json) Hash identifier: 6zwT+S23JAwSbfsfFnx6e0nfZI+pAYVSDBgx4gzVQdk= Subject key identifier: 7C:BB:BA:B0:3E:A9:FC:7B:6A:79:37:91:4A:31:D8:FC:74:3D:76:BE Certificate issuer: /CN=0DF94AB0728C7A38C50F0D61554D49D651F33AA2 Certificate serial: 0DD2 Authority key identifier: 0D:F9:4A:B0:72:8C:7A:38:C5:0F:0D:61:55:4D:49:D6:51:F3:3A:A2 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/fLu6sD6p_HtqeTeRSjHY_HQ9dr4.roa Signing time: Fri 22 Aug 2025 08:51:44 +0000 ROA not before: Fri 22 Aug 2025 08:51:44 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131593 IP address blocks: 43.251.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3538 (0xdd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0DF94AB0728C7A38C50F0D61554D49D651F33AA2 Validity Not Before: Aug 22 08:51:44 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7CBBBAB03EA9FC7B6A7937914A31D8FC743D76BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:41:a7:76:b1:da:42:31:66:15:ff:41:d3:b6: d4:ad:57:48:fd:f5:ad:82:bf:1c:84:36:6b:3c:a7: 93:b8:24:4b:96:68:ef:0f:8c:be:9d:26:91:c4:a0: bb:de:94:34:84:23:4f:25:ca:73:2b:d6:21:4f:f2: 53:ee:47:ba:5c:47:cf:d8:74:aa:50:87:09:76:6e: 86:77:d7:c6:4d:ae:bb:68:b1:45:05:5f:ad:67:e4: 70:61:5d:dd:11:af:42:e6:ab:18:6c:f5:0d:95:76: 33:95:6a:e5:e7:1a:20:1e:ef:7c:20:18:00:61:0b: 5c:2f:bf:8c:b1:dc:7a:98:7d:f7:a4:65:11:bb:61: 5d:75:ff:76:66:44:b4:5e:1b:35:52:7b:59:bb:52: 21:ce:79:59:7a:b2:6d:d5:13:77:32:71:8b:f9:24: c0:91:8c:b6:cf:2a:f7:a2:07:cc:4e:2f:ba:03:35: 46:7e:61:ba:da:79:7c:02:5c:e6:0d:01:a8:8f:f9: a2:56:68:2b:27:a9:4e:82:03:3c:89:68:20:06:04: 8b:7c:a6:a5:55:e9:83:aa:6a:49:f3:3e:35:b2:f1: bd:7c:ca:01:64:52:1e:a9:cb:fd:d9:e2:99:26:96: 94:c3:ff:2e:b8:0f:90:76:7c:f6:70:fe:d8:38:75: fb:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:BB:BA:B0:3E:A9:FC:7B:6A:79:37:91:4A:31:D8:FC:74:3D:76:BE X509v3 Authority Key Identifier: keyid:0D:F9:4A:B0:72:8C:7A:38:C5:0F:0D:61:55:4D:49:D6:51:F3:3A:A2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/fLu6sD6p_HtqeTeRSjHY_HQ9dr4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.251.63.0/24 Signature Algorithm: sha256WithRSAEncryption 89:c5:bd:a0:f5:13:6d:f7:2e:5a:08:ad:f3:2b:36:48:02:3f: 8e:90:e5:54:1d:1a:ac:d4:8e:14:a8:98:db:02:78:af:f3:a4: 71:19:04:dc:6f:e5:bc:d8:94:5d:f7:b3:75:da:05:1c:79:8a: 83:b4:99:87:47:8b:77:11:5a:67:56:80:e8:06:f5:ed:b1:c7: 8d:b2:fb:34:82:85:4d:11:6f:fd:88:cc:25:d8:cf:10:92:3a: aa:bc:ad:f6:ac:b6:7f:49:2d:60:d0:e0:66:d5:8e:b4:82:37: 74:62:f6:e2:50:56:50:b3:a0:23:03:e6:19:a3:b4:0a:71:02: ad:ba:02:9a:0e:88:dd:2f:6b:9e:e7:4d:a0:d5:dc:ee:5b:61: e7:69:71:1c:70:a8:b2:05:b8:93:2a:44:b1:dd:e4:d1:c1:d5: 38:dd:87:93:5c:5e:c1:b1:fe:8e:ac:62:8f:91:45:8c:ac:f4: f6:a1:31:ee:48:e6:9d:31:dd:06:3e:8b:d6:de:22:88:d2:c3: 4e:8f:9b:74:78:06:64:f1:d1:11:19:8e:ab:44:97:4c:24:0e: b4:4a:cf:0a:c8:ef:4d:84:10:ef:7e:40:42:88:52:b8:10:44: 21:ef:f8:38:43:4d:25:70:83:22:06:90:0f:5e:ad:e9:b9:a4: d6:c1:93:84 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDdIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMERG OTRBQjA3MjhDN0EzOEM1MEYwRDYxNTU0RDQ5RDY1MUYzM0FBMjAeFw0yNTA4MjIw ODUxNDRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDdDQkJCQUIwM0VBOUZD N0I2QTc5Mzc5MTRBMzFEOEZDNzQzRDc2QkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDfQad2sdpCMWYV/0HTttStV0j99a2CvxyENms8p5O4JEuWaO8P jL6dJpHEoLvelDSEI08lynMr1iFP8lPuR7pcR8/YdKpQhwl2boZ318ZNrrtosUUF X61n5HBhXd0Rr0Lmqxhs9Q2VdjOVauXnGiAe73wgGABhC1wvv4yx3HqYffekZRG7 YV11/3ZmRLReGzVSe1m7UiHOeVl6sm3VE3cycYv5JMCRjLbPKveiB8xOL7oDNUZ+ YbraeXwCXOYNAaiP+aJWaCsnqU6CAzyJaCAGBIt8pqVV6YOqaknzPjWy8b18ygFk Uh6py/3Z4pkmlpTD/y64D5B2fPZw/tg4dfsnAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUfLu6sD6p/HtqeTeRSjHY/HQ9dr4wHwYDVR0jBBgwFoAUDflKsHKMejjFDw1h VU1J1lHzOqIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEVHQVRS T04vRGZsS3NIS01lampGRHcxaFZVMUoxbEh6T3FJLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9EZmxLc0hLTWVqakZEdzFoVlUxSjFsSHpPcUkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QRUdBVFJPTi9mTHU2c0Q2cF9IdHFl VGVSU2pIWV9IUTlkcjQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAK/s/MA0GCSqGSIb3DQEBCwUAA4IBAQCJxb2g9RNt9y5aCK3zKzZIAj+OkOVU HRqs1I4UqJjbAniv86RxGQTcb+W82JRd97N12gUceYqDtJmHR4t3EVpnVoDoBvXt sceNsvs0goVNEW/9iMwl2M8QkjqqvK32rLZ/SS1g0OBm1Y60gjd0YvbiUFZQs6Aj A+YZo7QKcQKtugKaDojdL2ue502g1dzuW2HnaXEccKiyBbiTKkSx3eTRwdU43YeT XF7Bsf6OrGKPkUWMrPT2oTHuSOadMd0GPovW3iKI0sNOj5t0eAZk8dERGY6rRJdM JA60Ss8KyO9NhBDvfkBCiFK4EEQh7/g4Q00lcIMiBpAPXq3puaTWwZOE -----END CERTIFICATE-----Generated at Sun Aug 24 13:40:20 2025 by rpki-client