$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/9u03Qlz13YK7DgkbXu8enyGmclo.roa File: 9u03Qlz13YK7DgkbXu8enyGmclo.roa (raw, json) Hash identifier: Z5WXu0p8ivlJSEqLJ63na/5tvWVWuGKBVTWg6eA7Fk0= Subject key identifier: F6:ED:37:42:5C:F5:DD:82:BB:0E:09:1B:5E:EF:1E:9F:21:A6:72:5A Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Certificate serial: 0FBF Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/9u03Qlz13YK7DgkbXu8enyGmclo.roa Signing time: Fri 22 Aug 2025 08:50:23 +0000 ROA not before: Fri 22 Aug 2025 08:50:23 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38843 IP address blocks: 124.150.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4031 (0xfbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Validity Not Before: Aug 22 08:50:23 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F6ED37425CF5DD82BB0E091B5EEF1E9F21A6725A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:65:1d:6a:4d:8b:56:0d:ea:96:c9:4a:98:36: 5a:9c:11:89:e7:76:8d:72:14:dd:3b:d7:07:05:f9: c0:93:dd:a5:9d:46:aa:84:d7:dc:28:15:d7:ff:54: 65:0f:9b:77:d3:56:42:48:aa:6f:ea:af:5e:25:f6: 26:38:dd:b5:26:98:00:80:9d:1e:a4:54:e6:49:3d: 41:2a:12:3b:7c:6c:61:27:6e:83:4c:f2:ce:2e:86: cb:66:90:2f:a2:99:0c:c1:dc:56:52:4e:dc:e6:64: 3c:fc:7e:39:3d:52:31:52:75:58:63:61:e6:e9:07: 63:76:23:7f:3c:71:52:83:62:c3:9a:0b:af:2a:e1: 50:e8:39:a6:15:11:a1:1f:53:ef:06:09:b8:97:cd: 2a:4e:1e:ab:f8:d7:67:93:f2:e6:8f:0d:0c:79:e9: 5f:e1:e5:82:c1:23:aa:d5:6e:f2:1a:46:76:bf:11: 6b:ee:73:6d:dd:df:d8:e6:2a:a3:3f:3f:1f:3f:be: 9b:36:13:11:b6:e4:39:1a:db:77:f7:f9:45:d8:b8: 8f:34:e1:b0:a3:81:dd:64:54:04:59:f9:3a:d0:6d: e4:a3:5f:b9:f0:c7:2d:90:f9:08:ce:b8:ec:49:6b: e0:6a:1c:3a:5c:db:b1:13:ab:23:21:ba:a7:72:b9: c6:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:ED:37:42:5C:F5:DD:82:BB:0E:09:1B:5E:EF:1E:9F:21:A6:72:5A X509v3 Authority Key Identifier: keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/9u03Qlz13YK7DgkbXu8enyGmclo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.150.135.0/24 Signature Algorithm: sha256WithRSAEncryption 98:3c:f3:90:33:69:78:4c:35:5f:dc:d6:ed:49:b0:1a:8e:50: f1:0e:b2:a5:6c:67:5d:97:4b:fd:90:a8:d6:7e:20:9a:c9:d7: a6:11:64:e2:5e:27:3a:ab:69:3f:95:f3:72:56:77:72:75:09: 5d:e4:06:58:22:97:85:03:cc:20:28:ce:cf:b7:e6:04:36:be: 45:71:80:44:dd:a0:30:f0:2c:1e:f6:ea:43:0e:09:83:fb:f9: 7a:18:b1:db:06:ff:83:38:5a:b1:df:de:81:00:b9:a8:40:b1: 03:83:2f:c3:bc:dc:21:d8:3b:56:56:15:8c:9a:a7:5a:74:fd: 5d:b0:b6:85:fc:84:5d:67:62:a3:6e:0e:24:28:dc:a0:ab:01: f5:82:3d:96:6b:b4:2e:96:31:18:b9:53:86:6c:82:ae:f4:70: 0b:21:2b:eb:55:fd:09:75:53:0d:cb:83:c8:1b:4b:b8:7c:e5: 89:c7:49:4e:f5:02:66:96:5e:90:a6:d9:e9:08:61:5c:20:88: 36:4a:24:39:fe:4d:f5:76:1a:a5:65:5d:76:21:22:7d:5e:10: 5c:b2:87:d9:c7:3b:9f:4e:96:b6:bb:c5:58:5a:e1:59:fb:01: b7:cf:f1:35:77:3a:a1:30:48:11:0e:26:5a:92:ab:3a:81:a6: 59:fb:78:c7 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICD78wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yNTA4MjIw ODUwMjNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEY2RUQzNzQyNUNGNURE ODJCQjBFMDkxQjVFRUYxRTlGMjFBNjcyNUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD1ZR1qTYtWDeqWyUqYNlqcEYnndo1yFN071wcF+cCT3aWdRqqE 19woFdf/VGUPm3fTVkJIqm/qr14l9iY43bUmmACAnR6kVOZJPUEqEjt8bGEnboNM 8s4uhstmkC+imQzB3FZSTtzmZDz8fjk9UjFSdVhjYebpB2N2I388cVKDYsOaC68q 4VDoOaYVEaEfU+8GCbiXzSpOHqv412eT8uaPDQx56V/h5YLBI6rVbvIaRna/EWvu c23d39jmKqM/Px8/vps2ExG25Dka23f3+UXYuI804bCjgd1kVARZ+TrQbeSjX7nw xy2Q+QjOuOxJa+BqHDpc27ETqyMhuqdyucZ1AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU9u03Qlz13YK7DgkbXu8enyGmclowHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80 sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vOXUwM1FsejEzWUs3RGdrYlh1OGVu eUdtY2xvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHyWhzAN BgkqhkiG9w0BAQsFAAOCAQEAmDzzkDNpeEw1X9zW7UmwGo5Q8Q6ypWxnXZdL/ZCo 1n4gmsnXphFk4l4nOqtpP5XzclZ3cnUJXeQGWCKXhQPMICjOz7fmBDa+RXGARN2g MPAsHvbqQw4Jg/v5ehix2wb/gzhasd/egQC5qECxA4Mvw7zcIdg7VlYVjJqnWnT9 XbC2hfyEXWdio24OJCjcoKsB9YI9lmu0LpYxGLlThmyCrvRwCyEr61X9CXVTDcuD yBtLuHzlicdJTvUCZpZekKbZ6QhhXCCINkokOf5N9XYapWVddiEifV4QXLKH2cc7 n06WtrvFWFrhWfsBt8/xNXc6oTBIEQ4mWpKrOoGmWft4xw== -----END CERTIFICATE-----Generated at Sun Aug 24 07:44:13 2025 by rpki-client