$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/rKeVGT8lAAAy5tWcePSFewU5EG0.roa File: rKeVGT8lAAAy5tWcePSFewU5EG0.roa (raw, json) Hash identifier: TLIMbvu596udhz8p/Yr3RmBmXKtu9rPE8661tUEcyoc= Subject key identifier: AC:A7:95:19:3F:25:00:00:32:E6:D5:9C:78:F4:85:7B:05:39:10:6D Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Certificate serial: 0FD9 Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/rKeVGT8lAAAy5tWcePSFewU5EG0.roa Signing time: Fri 22 Aug 2025 08:50:29 +0000 ROA not before: Fri 22 Aug 2025 08:50:29 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38843 IP address blocks: 223.27.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4057 (0xfd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Validity Not Before: Aug 22 08:50:29 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=ACA795193F25000032E6D59C78F4857B0539106D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c0:07:0d:af:54:80:b6:94:ba:7b:5e:46:61: e3:ce:fa:50:7f:89:ec:25:fc:b1:ba:9c:93:fd:b2: 83:ed:b3:77:fa:36:5f:7d:4f:5b:e5:a0:be:42:cc: 8c:15:06:8e:09:9b:f6:a1:f4:f9:3b:a7:fd:70:72: aa:cd:47:d4:c8:92:c1:b6:f5:96:1d:22:df:f4:79: 62:83:44:69:ae:d6:a0:4f:40:d1:eb:ff:45:ca:c5: dd:e1:44:60:19:cb:c7:78:73:3a:22:59:a2:3d:3e: 53:8e:f4:99:5d:c9:21:2c:07:29:b1:70:f6:60:4f: 0b:68:70:d2:bc:67:8e:43:30:06:62:db:1b:33:6c: d5:53:5f:72:65:b1:b2:fc:44:35:f6:3a:85:63:02: 6f:3c:49:f9:bd:35:20:c8:91:fc:43:33:02:9e:c3: bf:83:8a:30:c1:7c:d6:a1:39:e1:be:53:80:83:45: c8:b1:13:6f:48:f4:30:b7:f8:3f:7e:0c:23:25:80: b3:6e:99:35:2d:22:4e:49:8f:57:bb:af:7e:87:f0: 8f:8b:f2:5d:d7:c6:b9:bf:66:c4:f4:bf:0d:b6:05: 65:38:b4:da:b0:f0:24:cf:c1:f7:2f:40:09:05:5f: 18:69:dd:5e:3a:47:e5:f6:71:cf:31:7f:ea:0b:f3: 65:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:A7:95:19:3F:25:00:00:32:E6:D5:9C:78:F4:85:7B:05:39:10:6D X509v3 Authority Key Identifier: keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/rKeVGT8lAAAy5tWcePSFewU5EG0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.27.38.0/24 Signature Algorithm: sha256WithRSAEncryption 76:84:df:9c:91:78:75:08:2a:a8:f7:1e:53:65:62:ad:dd:23: ae:7c:ff:f9:aa:d0:e3:25:79:e8:40:59:b4:ca:6a:eb:51:fc: 3c:5a:da:77:75:ec:c4:09:e1:d4:bd:5e:75:7b:6b:ba:fc:d6: cf:fd:a8:08:56:5c:45:27:35:a0:7f:a3:02:00:a3:5c:59:d6: b8:09:5a:83:2c:ec:e2:cc:4c:b6:29:1e:30:46:cd:30:46:af: 30:08:8a:c7:a8:1b:20:2b:1c:ee:ab:59:41:6e:20:ed:6a:cc: 0d:34:cb:67:71:ec:ee:49:7b:98:e8:f0:87:da:93:54:78:08: c8:ab:e8:7e:af:39:2a:e6:9b:8f:01:46:c3:12:a2:97:b2:b2: a1:98:bb:c8:f9:38:92:3c:7d:2b:53:b9:3b:d8:a2:8b:70:2a: 2b:d8:a2:44:a5:fe:3e:59:b7:d8:0b:c1:af:e4:82:03:0c:82: a5:ad:86:d1:fb:d3:c6:ac:e6:d1:54:b9:3f:fd:dd:7d:fe:d0: f0:c8:51:55:5e:2b:2e:c6:85:f5:8c:1a:46:03:6e:03:98:df: 67:79:d7:7c:bb:55:3b:31:6f:48:0c:74:d0:b1:cc:50:98:d3: b4:da:9f:b1:4c:40:76:dd:ea:c7:ee:84:8c:b3:3d:fe:d7:1e: 2d:2f:fa:c4 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICD9kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yNTA4MjIw ODUwMjlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEFDQTc5NTE5M0YyNTAw MDAzMkU2RDU5Qzc4RjQ4NTdCMDUzOTEwNkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAwAcNr1SAtpS6e15GYePO+lB/iewl/LG6nJP9soPts3f6Nl99 T1vloL5CzIwVBo4Jm/ah9Pk7p/1wcqrNR9TIksG29ZYdIt/0eWKDRGmu1qBPQNHr /0XKxd3hRGAZy8d4czoiWaI9PlOO9JldySEsBymxcPZgTwtocNK8Z45DMAZi2xsz bNVTX3JlsbL8RDX2OoVjAm88Sfm9NSDIkfxDMwKew7+DijDBfNahOeG+U4CDRcix E29I9DC3+D9+DCMlgLNumTUtIk5Jj1e7r36H8I+L8l3Xxrm/ZsT0vw22BWU4tNqw 8CTPwfcvQAkFXxhp3V46R+X2cc8xf+oL82VtAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUrKeVGT8lAAAy5tWcePSFewU5EG0wHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80 sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vcktlVkdUOGxBQUF5NXRXY2VQU0Zl d1U1RUcwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAN8bJjAN BgkqhkiG9w0BAQsFAAOCAQEAdoTfnJF4dQgqqPceU2Vird0jrnz/+arQ4yV56EBZ tMpq61H8PFrad3XsxAnh1L1edXtruvzWz/2oCFZcRSc1oH+jAgCjXFnWuAlagyzs 4sxMtikeMEbNMEavMAiKx6gbICsc7qtZQW4g7WrMDTTLZ3Hs7kl7mOjwh9qTVHgI yKvofq85KuabjwFGwxKil7KyoZi7yPk4kjx9K1O5O9iii3AqK9iiRKX+Plm32AvB r+SCAwyCpa2G0fvTxqzm0VS5P/3dff7Q8MhRVV4rLsaF9YwaRgNuA5jfZ3nXfLtV OzFvSAx00LHMUJjTtNqfsUxAdt3qx+6EjLM9/tceLS/6xA== -----END CERTIFICATE-----Generated at Sun Aug 24 07:42:18 2025 by rpki-client