$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/ZzgTF5OrV8sGMzLhEhjutvMrLts.roa File: ZzgTF5OrV8sGMzLhEhjutvMrLts.roa (raw, json) Hash identifier: Hw3MFmbSK0gO5KTgP0tZffZhL98fv20NeP4LBoGSso8= Subject key identifier: 67:38:13:17:93:AB:57:CB:06:33:32:E1:12:18:EE:B6:F3:2B:2E:DB Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Certificate serial: 0FC2 Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/ZzgTF5OrV8sGMzLhEhjutvMrLts.roa Signing time: Fri 22 Aug 2025 08:50:23 +0000 ROA not before: Fri 22 Aug 2025 08:50:23 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38843 IP address blocks: 223.27.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4034 (0xfc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Validity Not Before: Aug 22 08:50:23 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=6738131793AB57CB063332E11218EEB6F32B2EDB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:57:da:53:1e:bb:8b:f0:73:73:e3:e6:14:e5: fa:1c:8b:3a:23:e1:15:3b:cb:4a:10:a4:38:f1:70: a1:16:1e:90:ea:b9:e0:4e:b3:97:ad:6b:47:ed:4a: fc:2e:fd:30:47:b7:ff:c7:fd:ce:3c:74:4b:9a:29: f3:72:c1:b0:83:c8:42:7f:37:0a:b4:b6:2e:48:50: 3d:cd:2c:1c:d9:92:a2:78:6b:6d:59:2a:68:97:91: c7:d1:30:d5:45:90:1f:5b:64:1b:6a:15:83:85:16: 57:42:4f:9a:87:69:1e:21:c7:64:c8:1e:f3:e3:8c: a7:3a:1e:4b:fa:d4:ea:ba:d7:6e:5a:fc:32:cc:da: 91:de:4d:fe:13:09:67:cc:29:bd:fe:3f:9b:80:8d: 03:3f:89:0b:64:cb:38:88:18:01:02:20:df:c5:fa: 03:60:f6:81:17:2c:89:af:7d:5a:6e:7c:10:2f:c1: 4b:42:a0:08:64:f5:09:3e:0a:44:9c:fb:0a:41:8a: b1:54:b7:b6:50:24:0d:16:ac:4a:56:36:57:be:dd: 11:44:39:71:ea:98:93:25:0f:e3:ba:47:a3:4f:82: a2:29:b0:a2:3f:76:06:d2:9b:d6:13:ce:40:94:ac: 7e:36:c9:5c:c0:be:3c:d2:90:d7:81:94:52:fe:50: ac:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:38:13:17:93:AB:57:CB:06:33:32:E1:12:18:EE:B6:F3:2B:2E:DB X509v3 Authority Key Identifier: keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/ZzgTF5OrV8sGMzLhEhjutvMrLts.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.27.35.0/24 Signature Algorithm: sha256WithRSAEncryption 27:79:67:68:ca:6f:8e:65:a7:e5:a8:12:f3:e0:4b:3e:80:f0: 0b:4f:83:d8:e2:30:8c:df:a3:4c:c2:d4:47:3c:01:8c:a1:5a: bb:32:c9:39:a5:87:24:64:a0:14:c3:43:4b:4e:90:7d:36:7b: ef:4f:9f:8a:b0:f6:a1:95:13:10:8c:c8:7a:cd:30:ca:a1:1f: 59:55:ca:b9:a2:e6:1d:94:59:3a:78:30:f1:f9:29:e0:44:e7: 9a:60:00:3c:01:cc:8a:be:e4:0f:fd:ef:ce:14:da:8a:60:1e: 1a:02:73:d6:bb:1c:65:06:bf:32:37:ce:e3:ef:a4:60:b3:74: f5:8a:3a:48:ef:62:ab:95:4a:11:ce:78:ad:e1:e1:ff:e2:3a: 97:27:f5:d6:64:52:58:39:0e:eb:e2:7a:98:ef:be:1c:33:3f: d4:84:21:42:0f:c5:3f:a4:1d:d1:15:0c:33:c9:b8:1c:49:39: 3c:51:e7:b1:80:fe:16:3e:d0:f6:b1:24:a3:fe:fa:1c:77:c6: d4:6b:ae:11:d5:58:64:c2:e8:ec:85:15:0b:6b:c3:45:1a:73: e6:09:40:40:a2:28:e2:7c:09:de:9d:15:27:ec:9e:fb:f3:6e: 39:7a:47:07:4f:4e:af:b6:e1:26:e2:3b:90:84:c3:3e:25:30: b1:fd:9a:91 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICD8IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yNTA4MjIw ODUwMjNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDY3MzgxMzE3OTNBQjU3 Q0IwNjMzMzJFMTEyMThFRUI2RjMyQjJFREIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSV9pTHruL8HNz4+YU5focizoj4RU7y0oQpDjxcKEWHpDqueBO s5eta0ftSvwu/TBHt//H/c48dEuaKfNywbCDyEJ/Nwq0ti5IUD3NLBzZkqJ4a21Z KmiXkcfRMNVFkB9bZBtqFYOFFldCT5qHaR4hx2TIHvPjjKc6Hkv61Oq6125a/DLM 2pHeTf4TCWfMKb3+P5uAjQM/iQtkyziIGAECIN/F+gNg9oEXLImvfVpufBAvwUtC oAhk9Qk+CkSc+wpBirFUt7ZQJA0WrEpWNle+3RFEOXHqmJMlD+O6R6NPgqIpsKI/ dgbSm9YTzkCUrH42yVzAvjzSkNeBlFL+UKybAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUZzgTF5OrV8sGMzLhEhjutvMrLtswHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80 sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vWnpnVEY1T3JWOHNHTXpMaEVoanV0 dk1yTHRzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAN8bIzAN BgkqhkiG9w0BAQsFAAOCAQEAJ3lnaMpvjmWn5agS8+BLPoDwC0+D2OIwjN+jTMLU RzwBjKFauzLJOaWHJGSgFMNDS06QfTZ770+firD2oZUTEIzIes0wyqEfWVXKuaLm HZRZOngw8fkp4ETnmmAAPAHMir7kD/3vzhTaimAeGgJz1rscZQa/MjfO4++kYLN0 9Yo6SO9iq5VKEc54reHh/+I6lyf11mRSWDkO6+J6mO++HDM/1IQhQg/FP6Qd0RUM M8m4HEk5PFHnsYD+Fj7Q9rEko/76HHfG1GuuEdVYZMLo7IUVC2vDRRpz5glAQKIo 4nwJ3p0VJ+ye+/NuOXpHB09Or7bhJuI7kITDPiUwsf2akQ== -----END CERTIFICATE-----Generated at Sun Aug 24 11:42:36 2025 by rpki-client