$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/cAmxfxgn1Cy_EzoSpy9VipH9At0.roa File: cAmxfxgn1Cy_EzoSpy9VipH9At0.roa (raw, json) Hash identifier: JNOadk0yUGcqitx19zSixz+q6Mg50vCACVDggm0F0ko= Subject key identifier: 70:09:B1:7F:18:27:D4:2C:BF:13:3A:12:A7:2F:55:8A:91:FD:02:DD Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Certificate serial: 0FB6 Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/cAmxfxgn1Cy_EzoSpy9VipH9At0.roa Signing time: Fri 22 Aug 2025 08:50:21 +0000 ROA not before: Fri 22 Aug 2025 08:50:21 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38843 IP address blocks: 223.27.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4022 (0xfb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Validity Not Before: Aug 22 08:50:21 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7009B17F1827D42CBF133A12A72F558A91FD02DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c3:b8:2b:c8:9f:67:f0:fa:cc:b1:cb:9d:45: 41:5c:3c:be:c4:fa:16:18:0a:38:25:9f:a0:c5:4e: b5:d6:19:78:e6:0d:e4:9a:ae:17:23:02:50:1f:6c: 40:43:0f:97:8b:2d:68:0e:d2:b6:40:2d:e0:ef:3c: 49:b3:16:65:b8:c4:c0:7f:70:73:1d:4c:29:e6:a3: e9:a8:53:c7:cc:cd:88:de:da:a4:a4:de:22:e3:32: 38:6b:c1:20:14:d2:f3:41:ad:68:c6:b4:8d:0c:35: 72:fc:5b:49:9c:e1:dd:9a:db:4c:a9:3e:bf:26:11: c1:91:97:9d:ab:b7:b5:db:fb:45:52:ad:0a:a2:7b: 6b:a9:4b:95:12:4e:37:db:24:20:5d:51:46:7f:a9: b9:d7:a2:e8:47:4a:88:d3:2b:88:bf:c6:d6:22:a9: 11:df:7e:b3:5a:88:d8:7b:19:01:20:5a:1a:50:85: e5:eb:0f:5b:c0:61:e8:85:48:ab:71:95:26:bb:5e: 90:80:70:95:ce:ab:22:ca:e9:d6:de:4d:39:3b:fe: a8:c2:e8:f7:9f:1f:a7:0d:17:30:0d:3e:5c:8d:ed: 15:d5:e3:48:cd:91:67:39:d2:23:49:03:58:55:21: 39:09:c2:0c:bb:32:9d:a7:b1:80:d2:74:0a:4a:b3: 61:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:09:B1:7F:18:27:D4:2C:BF:13:3A:12:A7:2F:55:8A:91:FD:02:DD X509v3 Authority Key Identifier: keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/cAmxfxgn1Cy_EzoSpy9VipH9At0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.27.49.0/24 Signature Algorithm: sha256WithRSAEncryption 13:d7:25:0b:ef:73:98:69:15:de:ff:fd:09:80:75:3e:f4:25: d3:68:9e:91:57:27:20:ad:89:90:88:aa:e7:8b:ca:f6:97:cd: 32:21:24:ce:4a:28:e9:b8:2a:b4:d5:a1:79:4a:aa:e9:85:8c: f8:c4:20:e8:13:28:88:42:e3:5d:af:7f:9d:b5:18:29:83:9e: a2:ab:ed:d0:85:24:3f:14:a7:ee:3c:6a:77:c0:c0:36:4c:f6: 60:14:3d:b6:69:af:66:06:23:49:b7:ce:c9:0d:f7:d0:07:b5: 33:6c:eb:a3:17:d9:2c:4f:0a:74:f1:c2:2d:21:14:44:92:c3: 97:d3:55:96:c3:09:fa:b3:3e:2c:6d:e9:22:7b:c7:c8:3f:a3: 2a:a3:98:c4:9c:9e:22:bd:71:72:54:5b:6c:d0:be:d3:73:55: 62:99:aa:e9:bb:f0:1a:e7:ef:52:8e:3e:0c:1a:97:8d:ec:3b: c4:c6:ee:6e:52:4d:7a:3e:95:36:f1:c8:75:c8:27:e9:34:24: fa:92:b5:1b:a1:44:ad:f6:28:6d:c4:4f:31:75:6f:8d:11:ac: 76:ee:ab:3f:8c:ed:43:9c:79:a4:79:19:ff:be:a9:c8:0e:7f: 0e:fe:0a:ae:c4:20:30:f6:a4:af:c8:ff:2e:f1:03:e9:56:1c: 0d:6e:92:ba -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICD7YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yNTA4MjIw ODUwMjFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDcwMDlCMTdGMTgyN0Q0 MkNCRjEzM0ExMkE3MkY1NThBOTFGRDAyREQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/w7gryJ9n8PrMscudRUFcPL7E+hYYCjgln6DFTrXWGXjmDeSa rhcjAlAfbEBDD5eLLWgO0rZALeDvPEmzFmW4xMB/cHMdTCnmo+moU8fMzYje2qSk 3iLjMjhrwSAU0vNBrWjGtI0MNXL8W0mc4d2a20ypPr8mEcGRl52rt7Xb+0VSrQqi e2upS5USTjfbJCBdUUZ/qbnXouhHSojTK4i/xtYiqRHffrNaiNh7GQEgWhpQheXr D1vAYeiFSKtxlSa7XpCAcJXOqyLK6dbeTTk7/qjC6PefH6cNFzANPlyN7RXV40jN kWc50iNJA1hVITkJwgy7Mp2nsYDSdApKs2HDAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUcAmxfxgn1Cy/EzoSpy9VipH9At0wHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80 sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vY0FteGZ4Z24xQ3lfRXpvU3B5OVZp cEg5QXQwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAN8bMTAN BgkqhkiG9w0BAQsFAAOCAQEAE9clC+9zmGkV3v/9CYB1PvQl02iekVcnIK2JkIiq 54vK9pfNMiEkzkoo6bgqtNWheUqq6YWM+MQg6BMoiELjXa9/nbUYKYOeoqvt0IUk PxSn7jxqd8DANkz2YBQ9tmmvZgYjSbfOyQ330Ae1M2zroxfZLE8KdPHCLSEURJLD l9NVlsMJ+rM+LG3pInvHyD+jKqOYxJyeIr1xclRbbNC+03NVYpmq6bvwGufvUo4+ DBqXjew7xMbublJNej6VNvHIdcgn6TQk+pK1G6FErfYobcRPMXVvjRGsdu6rP4zt Q5x5pHkZ/76pyA5/Dv4KrsQgMPakr8j/LvED6VYcDW6Sug== -----END CERTIFICATE-----Generated at Sun Aug 24 09:40:29 2025 by rpki-client