$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/mI1g-y2yo_aoCpH--FZV4SqbhgM.roa File: mI1g-y2yo_aoCpH--FZV4SqbhgM.roa (raw, json) Hash identifier: HM62z0WcEv4DOH+ftfViJSu3Sp5OP/41+OnmWFGhPiM= Subject key identifier: 98:8D:60:FB:2D:B2:A3:F6:A8:0A:91:FE:F8:56:55:E1:2A:9B:86:03 Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Certificate serial: 0FB7 Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/mI1g-y2yo_aoCpH--FZV4SqbhgM.roa Signing time: Fri 22 Aug 2025 08:50:21 +0000 ROA not before: Fri 22 Aug 2025 08:50:21 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38843 IP address blocks: 124.150.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4023 (0xfb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Validity Not Before: Aug 22 08:50:21 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=988D60FB2DB2A3F6A80A91FEF85655E12A9B8603 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b4:54:2a:d8:bd:85:68:7c:bf:15:84:10:75: 91:b7:77:c5:00:74:49:cd:50:55:3e:89:02:0f:05: dc:01:7b:0c:c6:9a:dc:ab:b0:f9:50:df:17:fa:20: 6e:ad:83:28:f7:50:c9:74:89:71:ab:4c:a0:3e:0c: 9e:5a:9f:1c:7f:bf:bf:0e:49:6c:68:59:b4:35:1c: b3:b6:f9:d7:ce:b6:10:33:87:13:ee:48:98:8c:70: 14:02:ec:21:73:d6:23:bd:22:05:17:8c:03:06:61: 65:34:53:51:9c:3b:a1:0e:4f:89:8e:1c:1b:6e:0b: 5f:db:00:f5:08:44:7d:9c:ec:07:48:dc:a3:a6:bf: 29:79:51:b6:f8:34:47:66:70:84:3b:d0:0c:e1:c1: 3f:52:4d:0f:ef:07:13:66:4a:52:bc:75:15:7e:64: 42:6d:ad:e9:1e:8f:b4:33:6b:e7:ce:d7:2e:15:33: 16:cf:0a:dc:e9:f5:db:8a:36:7f:54:22:d9:54:61: 29:be:9f:51:6e:ad:c7:2e:73:64:d7:1c:e8:20:05: c2:da:7c:bc:72:a9:c9:26:5a:fe:80:98:b5:fd:52: 34:26:46:4a:9f:ed:b4:81:70:bd:d1:14:5f:24:8e: 15:b4:48:b3:be:cb:a2:41:9a:b8:2d:fe:ed:24:8a: 49:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:8D:60:FB:2D:B2:A3:F6:A8:0A:91:FE:F8:56:55:E1:2A:9B:86:03 X509v3 Authority Key Identifier: keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/mI1g-y2yo_aoCpH--FZV4SqbhgM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.150.129.0/24 Signature Algorithm: sha256WithRSAEncryption 19:3e:d1:e3:79:98:36:44:a3:c8:1a:b0:71:9d:31:0f:69:44: 53:f9:de:a1:e6:d0:7d:e1:40:e0:d2:3c:ce:8d:10:ad:3d:dc: 4d:cf:a6:91:e7:2d:3e:72:5a:a9:dc:e3:63:5f:2c:20:12:e2: 38:45:85:08:10:0c:51:9a:70:47:b1:23:c0:d1:48:cc:ce:f8: b9:be:9d:1f:9e:79:57:85:b9:af:75:1f:7e:4b:69:05:3c:5a: aa:28:47:18:ba:72:4d:44:32:30:a1:8f:40:1f:fd:cb:21:28: 01:05:7e:9e:95:ee:b3:36:53:8c:be:3a:5f:b3:f8:6b:2b:68: 6c:2c:42:42:c5:56:bf:66:c6:fc:33:da:80:82:64:d6:2a:34: 39:de:9e:20:bd:a2:52:1c:38:40:f3:15:b2:79:d4:10:aa:15: 3f:ed:92:8c:a4:7e:9e:a5:31:c3:19:0d:03:55:00:1b:7f:52: ab:27:40:81:11:a8:1e:cd:a7:bc:76:c9:95:b2:6f:93:71:27: 7e:44:36:0b:cf:b1:1f:81:97:a7:c2:03:64:db:a0:0a:32:65: 6e:41:85:bb:55:b3:72:16:2e:2e:1b:73:88:24:6c:46:c4:7b: 7c:ef:dd:dd:4a:e0:13:da:3d:82:db:e5:81:49:3a:5b:fb:27: a4:50:e1:01 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICD7cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yNTA4MjIw ODUwMjFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDk4OEQ2MEZCMkRCMkEz RjZBODBBOTFGRUY4NTY1NUUxMkE5Qjg2MDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+tFQq2L2FaHy/FYQQdZG3d8UAdEnNUFU+iQIPBdwBewzGmtyr sPlQ3xf6IG6tgyj3UMl0iXGrTKA+DJ5anxx/v78OSWxoWbQ1HLO2+dfOthAzhxPu SJiMcBQC7CFz1iO9IgUXjAMGYWU0U1GcO6EOT4mOHBtuC1/bAPUIRH2c7AdI3KOm vyl5Ubb4NEdmcIQ70AzhwT9STQ/vBxNmSlK8dRV+ZEJtrekej7Qza+fO1y4VMxbP Ctzp9duKNn9UItlUYSm+n1Furccuc2TXHOggBcLafLxyqckmWv6AmLX9UjQmRkqf 7bSBcL3RFF8kjhW0SLO+y6JBmrgt/u0kikm9AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUmI1g+y2yo/aoCpH++FZV4SqbhgMwHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80 sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vbUkxZy15MnlvX2FvQ3BILS1GWlY0 U3FiaGdNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHyWgTAN BgkqhkiG9w0BAQsFAAOCAQEAGT7R43mYNkSjyBqwcZ0xD2lEU/neoebQfeFA4NI8 zo0QrT3cTc+mkectPnJaqdzjY18sIBLiOEWFCBAMUZpwR7EjwNFIzM74ub6dH555 V4W5r3UffktpBTxaqihHGLpyTUQyMKGPQB/9yyEoAQV+npXuszZTjL46X7P4ayto bCxCQsVWv2bG/DPagIJk1io0Od6eIL2iUhw4QPMVsnnUEKoVP+2SjKR+nqUxwxkN A1UAG39SqydAgRGoHs2nvHbJlbJvk3EnfkQ2C8+xH4GXp8IDZNugCjJlbkGFu1Wz chYuLhtziCRsRsR7fO/d3UrgE9o9gtvlgUk6W/snpFDhAQ== -----END CERTIFICATE-----Generated at Sun Aug 24 11:44:01 2025 by rpki-client