$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/AHV8VMaf--bIBGAsN1cnt--swGs.roa File: AHV8VMaf--bIBGAsN1cnt--swGs.roa (raw, json) Hash identifier: 1qh+aU34bK8mqfbkb+2DvsjgieVuWgiVz26eml7JfKA= Subject key identifier: 00:75:7C:54:C6:9F:FB:E6:C8:04:60:2C:37:57:27:B7:EF:AC:C0:6B Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Certificate serial: 0FC6 Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/AHV8VMaf--bIBGAsN1cnt--swGs.roa Signing time: Fri 22 Aug 2025 08:50:24 +0000 ROA not before: Fri 22 Aug 2025 08:50:24 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38843 IP address blocks: 223.27.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4038 (0xfc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Validity Not Before: Aug 22 08:50:24 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=00757C54C69FFBE6C804602C375727B7EFACC06B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d6:ef:54:c8:c5:27:08:b3:0a:25:77:a2:43: 3c:63:51:d5:ee:c8:57:e3:ab:69:64:01:16:2e:2b: f7:ba:2e:02:91:82:d9:c7:ef:03:59:d8:f4:38:51: 7c:c7:ea:eb:0c:21:26:1f:87:78:7b:1b:27:0b:f9: 08:66:07:01:3a:70:4e:9c:0a:ba:4c:bf:4e:a6:3e: 70:ce:11:ac:c0:87:46:c6:56:3b:f8:8a:06:db:ec: 3f:e9:8d:cd:6f:4a:77:c4:35:f9:d2:14:b1:54:a4: fe:d8:ff:e3:df:39:99:eb:bb:b9:d1:a6:bb:71:7b: d6:c4:9a:52:e4:1e:97:2c:4c:b9:28:52:32:03:b0: 74:6f:a4:7f:54:4c:42:f0:ad:ac:aa:52:52:c0:55: 07:62:e9:6c:e4:2a:57:07:a8:a6:11:5c:48:60:d4: ee:4e:6b:e9:62:bf:c8:68:80:91:29:64:ea:5b:d8: 85:bd:bc:9f:c4:ad:ec:1c:3a:94:f3:a4:9a:69:d5: 25:07:9e:6a:e9:96:df:55:81:d9:ec:67:b9:fc:da: 88:de:fc:4f:c5:cf:d0:b0:46:d2:8a:ad:47:6b:0c: 9f:e2:45:42:e4:91:92:52:13:c7:c9:69:a6:d2:5c: 89:0d:dc:ee:66:e5:40:b1:e0:3d:77:4e:b4:d8:7a: 1b:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:75:7C:54:C6:9F:FB:E6:C8:04:60:2C:37:57:27:B7:EF:AC:C0:6B X509v3 Authority Key Identifier: keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/AHV8VMaf--bIBGAsN1cnt--swGs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.27.43.0/24 Signature Algorithm: sha256WithRSAEncryption 36:49:9d:54:f1:ec:bd:0a:14:64:de:1d:a4:7a:22:42:be:40: 81:1d:fa:09:46:92:2e:fa:8e:58:1f:a3:38:8c:07:16:2f:a4: 9c:bf:1b:57:d8:e1:27:39:7f:fc:1a:7d:78:9b:a7:44:98:a5: 67:89:92:ed:2d:85:d3:44:c9:f7:ec:a7:ad:33:df:6f:71:d7: bd:b1:ab:7e:eb:e0:f3:95:a7:4a:de:aa:10:77:57:b8:93:a0: 66:47:39:23:9b:3c:fe:42:ef:42:eb:a8:3d:48:38:08:ff:a7: b6:20:de:30:a3:c7:0d:03:1c:12:a7:11:8e:bd:66:ca:0f:03: b8:e6:6c:67:87:64:7b:3d:47:63:8c:5f:78:8e:77:0f:6f:e1: 13:17:96:34:19:13:09:31:17:b1:61:c6:bf:ff:02:9c:8c:69: 05:a4:f6:15:12:32:61:6f:a1:0d:11:af:f9:67:95:8a:08:08: 89:a2:9b:51:8f:40:5b:19:7c:ed:94:b9:c4:70:b5:5e:7f:c8: 9f:7e:21:c3:12:9a:f4:34:7b:6e:2a:34:15:da:85:54:34:07: f7:f4:c1:d9:f5:ea:3f:29:9b:01:99:d9:24:b6:11:14:6a:69: 0b:16:cc:60:e3:d9:0f:c0:48:80:44:99:4c:30:d9:ee:0e:09: 16:57:89:16 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICD8YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yNTA4MjIw ODUwMjRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDAwNzU3QzU0QzY5RkZC RTZDODA0NjAyQzM3NTcyN0I3RUZBQ0MwNkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCw1u9UyMUnCLMKJXeiQzxjUdXuyFfjq2lkARYuK/e6LgKRgtnH 7wNZ2PQ4UXzH6usMISYfh3h7GycL+QhmBwE6cE6cCrpMv06mPnDOEazAh0bGVjv4 igbb7D/pjc1vSnfENfnSFLFUpP7Y/+PfOZnru7nRprtxe9bEmlLkHpcsTLkoUjID sHRvpH9UTELwrayqUlLAVQdi6WzkKlcHqKYRXEhg1O5Oa+liv8hogJEpZOpb2IW9 vJ/ErewcOpTzpJpp1SUHnmrplt9VgdnsZ7n82oje/E/Fz9CwRtKKrUdrDJ/iRULk kZJSE8fJaabSXIkN3O5m5UCx4D13TrTYehsNAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUAHV8VMaf++bIBGAsN1cnt++swGswHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80 sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vQUhWOFZNYWYtLWJJQkdBc04xY250 LS1zd0dzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAN8bKzAN BgkqhkiG9w0BAQsFAAOCAQEANkmdVPHsvQoUZN4dpHoiQr5AgR36CUaSLvqOWB+j OIwHFi+knL8bV9jhJzl//Bp9eJunRJilZ4mS7S2F00TJ9+ynrTPfb3HXvbGrfuvg 85WnSt6qEHdXuJOgZkc5I5s8/kLvQuuoPUg4CP+ntiDeMKPHDQMcEqcRjr1myg8D uOZsZ4dkez1HY4xfeI53D2/hExeWNBkTCTEXsWHGv/8CnIxpBaT2FRIyYW+hDRGv +WeViggIiaKbUY9AWxl87ZS5xHC1Xn/In34hwxKa9DR7bio0FdqFVDQH9/TB2fXq PymbAZnZJLYRFGppCxbMYOPZD8BIgESZTDDZ7g4JFleJFg== -----END CERTIFICATE-----Generated at Sun Aug 24 09:44:56 2025 by rpki-client