$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/ywiNVIZ1QQ4bfkFXC-tAivsHjzI.roa File: ywiNVIZ1QQ4bfkFXC-tAivsHjzI.roa (raw, json) Hash identifier: Q9oQftJcQcvSuPxuHL/R+AP9rCVRyQWOrSl1DN5ds9g= Subject key identifier: CB:08:8D:54:86:75:41:0E:1B:7E:41:57:0B:EB:40:8A:FB:07:8F:32 Certificate issuer: /CN=0DF94AB0728C7A38C50F0D61554D49D651F33AA2 Certificate serial: 0DCE Authority key identifier: 0D:F9:4A:B0:72:8C:7A:38:C5:0F:0D:61:55:4D:49:D6:51:F3:3A:A2 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/ywiNVIZ1QQ4bfkFXC-tAivsHjzI.roa Signing time: Fri 22 Aug 2025 08:51:43 +0000 ROA not before: Fri 22 Aug 2025 08:51:43 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131593 IP address blocks: 43.251.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3534 (0xdce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0DF94AB0728C7A38C50F0D61554D49D651F33AA2 Validity Not Before: Aug 22 08:51:43 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=CB088D548675410E1B7E41570BEB408AFB078F32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:08:bb:cf:29:e5:51:ee:63:09:19:60:de:92: d4:74:0c:8f:4d:47:96:ed:86:de:59:df:40:18:24: 0d:73:da:44:42:4d:8f:09:a7:0a:a6:d8:db:df:41: fe:81:d4:89:57:7c:ff:7e:a8:c7:56:05:e2:e0:a7: 6e:33:b6:11:4e:04:f5:91:e4:ca:20:59:e1:2a:f1: 93:61:ac:b4:54:4a:0d:cc:59:ab:70:c5:52:08:bf: be:c8:eb:5b:e3:fa:c3:93:0c:04:9e:42:f0:cf:df: 3f:84:0c:e8:00:44:7b:3d:0b:53:4e:24:78:7e:5d: 2c:14:50:77:1d:5d:e0:19:c0:ad:67:bd:bd:9b:8b: 50:d1:31:d5:ca:b3:ed:77:3e:12:1b:cf:24:8a:9c: 1d:12:37:6d:69:8a:aa:32:d1:3d:8b:ec:6b:da:20: 3c:2f:7e:76:4a:75:fb:e0:75:5f:0b:ee:cd:d6:bc: da:17:26:11:59:35:47:92:3e:29:a0:5c:c7:f5:8e: 61:65:89:a0:e5:65:a2:b3:de:96:b4:d6:48:15:9d: f4:07:ce:84:70:49:2a:6c:38:f0:10:96:e9:10:e8: 8d:6c:fe:1f:48:8f:3e:d9:dd:a9:16:4b:f4:f8:16: c2:5c:df:8e:b6:33:c2:1a:77:5f:67:95:18:2f:b5: 52:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:08:8D:54:86:75:41:0E:1B:7E:41:57:0B:EB:40:8A:FB:07:8F:32 X509v3 Authority Key Identifier: keyid:0D:F9:4A:B0:72:8C:7A:38:C5:0F:0D:61:55:4D:49:D6:51:F3:3A:A2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/ywiNVIZ1QQ4bfkFXC-tAivsHjzI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.251.61.0/24 Signature Algorithm: sha256WithRSAEncryption 49:5d:db:39:df:2d:f2:1e:ea:24:92:c5:ab:53:d3:bb:71:3c: a1:0c:7c:48:52:57:13:20:3a:81:c4:8c:6d:10:d3:fc:4f:09: e0:2c:1b:b1:59:58:19:1e:17:f9:3e:9d:b2:2a:28:24:f8:5e: 59:d8:4a:db:10:c4:85:4a:a5:af:29:60:45:ae:dc:b3:be:54: ac:a0:76:65:b0:48:7f:74:79:be:64:08:5c:df:12:63:99:51: 6b:66:7f:ee:dd:43:b0:ca:bd:3d:c7:4f:29:3c:dd:60:7e:1b: 3e:7f:46:b9:c9:60:fb:e8:ea:4e:f9:52:7e:7a:38:ad:60:58: e0:7d:14:6f:c4:aa:12:13:0c:a6:0f:da:5d:62:27:8c:7f:93: 8a:e0:b6:1c:b9:3f:34:6c:bb:07:fd:25:b9:be:a4:80:91:e8: a4:2f:d2:a5:e1:99:5a:42:4c:95:1f:12:45:a1:46:c0:53:66: 40:73:d1:bf:10:a7:39:83:1c:c1:6b:f4:7f:0c:fb:77:4f:9d: 0e:29:c8:48:22:cc:b9:85:02:2f:7f:7d:96:65:73:e8:fb:6f: ae:31:60:63:05:9e:b1:13:c6:1b:64:b6:62:cb:34:95:b5:fa: 1e:6b:71:e8:e8:63:73:00:ad:1d:0d:84:42:df:f2:9d:6f:c3: 1e:6e:55:78 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDc4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMERG OTRBQjA3MjhDN0EzOEM1MEYwRDYxNTU0RDQ5RDY1MUYzM0FBMjAeFw0yNTA4MjIw ODUxNDNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKENCMDg4RDU0ODY3NTQx MEUxQjdFNDE1NzBCRUI0MDhBRkIwNzhGMzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPCLvPKeVR7mMJGWDektR0DI9NR5btht5Z30AYJA1z2kRCTY8J pwqm2NvfQf6B1IlXfP9+qMdWBeLgp24zthFOBPWR5MogWeEq8ZNhrLRUSg3MWatw xVIIv77I61vj+sOTDASeQvDP3z+EDOgARHs9C1NOJHh+XSwUUHcdXeAZwK1nvb2b i1DRMdXKs+13PhIbzySKnB0SN21piqoy0T2L7GvaIDwvfnZKdfvgdV8L7s3WvNoX JhFZNUeSPimgXMf1jmFliaDlZaKz3pa01kgVnfQHzoRwSSpsOPAQlukQ6I1s/h9I jz7Z3akWS/T4FsJc3462M8Iad19nlRgvtVIXAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUywiNVIZ1QQ4bfkFXC+tAivsHjzIwHwYDVR0jBBgwFoAUDflKsHKMejjFDw1h VU1J1lHzOqIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEVHQVRS T04vRGZsS3NIS01lampGRHcxaFZVMUoxbEh6T3FJLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9EZmxLc0hLTWVqakZEdzFoVlUxSjFsSHpPcUkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QRUdBVFJPTi95d2lOVklaMVFRNGJm a0ZYQy10QWl2c0hqekkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAK/s9MA0GCSqGSIb3DQEBCwUAA4IBAQBJXds53y3yHuokksWrU9O7cTyhDHxI UlcTIDqBxIxtENP8TwngLBuxWVgZHhf5Pp2yKigk+F5Z2ErbEMSFSqWvKWBFrtyz vlSsoHZlsEh/dHm+ZAhc3xJjmVFrZn/u3UOwyr09x08pPN1gfhs+f0a5yWD76OpO +VJ+ejitYFjgfRRvxKoSEwymD9pdYieMf5OK4LYcuT80bLsH/SW5vqSAkeikL9Kl 4ZlaQkyVHxJFoUbAU2ZAc9G/EKc5gxzBa/R/DPt3T50OKchIIsy5hQIvf32WZXPo +2+uMWBjBZ6xE8YbZLZiyzSVtfoea3Ho6GNzAK0dDYRC3/Kdb8MeblV4 -----END CERTIFICATE-----Generated at Sun Aug 24 13:36:51 2025 by rpki-client