$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/sWuoK7Q0t-p3VADpS7JXNG5H_c4.roa File: sWuoK7Q0t-p3VADpS7JXNG5H_c4.roa (raw, json) Hash identifier: L71VJGKb03LcCwGquQ426YQ/ktPzUWFqktH6hE0FYk4= Subject key identifier: B1:6B:A8:2B:B4:34:B7:EA:77:54:00:E9:4B:B2:57:34:6E:47:FD:CE Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Certificate serial: 0FD1 Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/sWuoK7Q0t-p3VADpS7JXNG5H_c4.roa Signing time: Fri 22 Aug 2025 08:50:27 +0000 ROA not before: Fri 22 Aug 2025 08:50:27 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38843 IP address blocks: 223.27.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4049 (0xfd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Validity Not Before: Aug 22 08:50:27 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B16BA82BB434B7EA775400E94BB257346E47FDCE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:7a:27:e0:c3:f6:dd:6b:be:be:84:95:df:2c: d0:cb:61:38:3e:09:eb:3a:79:ba:1e:d8:1b:b7:6f: 3a:f6:31:fc:db:49:bb:1c:a6:69:e8:a2:29:53:8f: bd:a9:9d:09:77:08:58:dd:38:54:99:ca:96:7d:f1: 7e:90:35:8e:1c:e5:43:a5:32:b5:91:59:94:f6:2a: 20:87:ee:f0:59:d7:89:50:2e:cd:6a:ec:6d:2b:f7: 78:4a:e8:84:b8:57:11:3c:d1:39:df:c6:bb:d3:2f: 63:f7:4a:c8:64:97:e1:bb:52:8d:69:d8:60:78:31: 6e:62:df:fa:fa:18:fc:00:af:07:a8:d9:31:4a:a4: 38:4a:fd:91:42:95:9c:58:c5:07:9c:8b:59:59:42: 33:78:10:a0:8a:3f:2d:e0:6c:8f:0e:99:a6:37:0e: 0d:0f:e2:9e:14:90:a1:95:1c:f8:9e:d5:67:66:ff: 86:32:c9:23:68:73:d4:26:c4:16:ce:74:9a:4b:60: 69:b9:95:c0:33:3f:5e:ea:87:a5:20:ee:7a:6d:32: a8:c5:f9:d5:24:ae:a2:c0:22:66:cb:53:e5:fe:58: 24:cb:e8:0c:7d:4a:31:75:14:29:60:c2:63:2e:bb: 74:e7:4e:7a:ac:96:6c:24:82:4e:78:64:fa:59:8a: 05:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:6B:A8:2B:B4:34:B7:EA:77:54:00:E9:4B:B2:57:34:6E:47:FD:CE X509v3 Authority Key Identifier: keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/sWuoK7Q0t-p3VADpS7JXNG5H_c4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.27.57.0/24 Signature Algorithm: sha256WithRSAEncryption aa:0b:8f:cc:8e:5d:8b:0a:b4:c5:be:ce:71:f7:ba:a1:e4:1f: ba:ac:65:6a:5f:a4:3c:da:1c:19:a3:bd:e9:80:17:25:7c:22: e5:b0:62:bf:7f:61:5b:1d:73:4b:7c:7b:1c:5c:de:49:48:11: 19:d7:70:e5:84:fc:1c:c4:34:25:52:13:59:43:1c:bb:13:ad: af:13:3d:fe:f6:d8:5c:5b:2c:62:11:d6:29:4f:28:c6:ca:ee: 73:0e:77:81:99:a5:42:75:48:a3:78:30:61:a1:ef:56:7e:84: b3:db:88:41:31:a3:df:26:33:93:11:7d:bd:e8:df:37:0e:34: d4:c6:1e:ab:93:cd:cd:c0:70:85:cc:65:99:e7:19:3a:66:b4: cf:78:93:c1:7e:19:7e:00:6f:68:37:75:9c:f7:63:ce:57:0f: 9b:f1:1e:e6:b2:78:e3:f0:b4:9c:6c:7e:7d:5a:02:9d:f1:15: c6:32:01:3e:20:cd:d7:cb:1f:be:d5:28:c2:44:fa:8a:05:e6: 56:15:26:8e:1f:a3:ff:a5:31:28:49:29:6c:96:7b:95:21:e8: 66:d7:b3:52:38:f7:44:6b:72:ea:74:1a:3b:0d:85:6b:4f:a6: d1:9d:39:a8:da:a7:fa:f4:99:f8:31:3a:26:e8:ac:20:ac:26: 80:9c:41:57 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICD9EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yNTA4MjIw ODUwMjdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEIxNkJBODJCQjQzNEI3 RUE3NzU0MDBFOTRCQjI1NzM0NkU0N0ZEQ0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCheifgw/bda76+hJXfLNDLYTg+Ces6eboe2Bu3bzr2MfzbSbsc pmnooilTj72pnQl3CFjdOFSZypZ98X6QNY4c5UOlMrWRWZT2KiCH7vBZ14lQLs1q 7G0r93hK6IS4VxE80TnfxrvTL2P3Sshkl+G7Uo1p2GB4MW5i3/r6GPwArweo2TFK pDhK/ZFClZxYxQeci1lZQjN4EKCKPy3gbI8OmaY3Dg0P4p4UkKGVHPie1Wdm/4Yy ySNoc9QmxBbOdJpLYGm5lcAzP17qh6Ug7nptMqjF+dUkrqLAImbLU+X+WCTL6Ax9 SjF1FClgwmMuu3TnTnqslmwkgk54ZPpZigWvAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUsWuoK7Q0t+p3VADpS7JXNG5H/c4wHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80 sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vc1d1b0s3UTB0LXAzVkFEcFM3SlhO RzVIX2M0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAN8bOTAN BgkqhkiG9w0BAQsFAAOCAQEAqguPzI5diwq0xb7Ocfe6oeQfuqxlal+kPNocGaO9 6YAXJXwi5bBiv39hWx1zS3x7HFzeSUgRGddw5YT8HMQ0JVITWUMcuxOtrxM9/vbY XFssYhHWKU8oxsrucw53gZmlQnVIo3gwYaHvVn6Es9uIQTGj3yYzkxF9vejfNw40 1MYeq5PNzcBwhcxlmecZOma0z3iTwX4ZfgBvaDd1nPdjzlcPm/Ee5rJ44/C0nGx+ fVoCnfEVxjIBPiDN18sfvtUowkT6igXmVhUmjh+j/6UxKEkpbJZ7lSHoZtezUjj3 RGty6nQaOw2Fa0+m0Z05qNqn+vSZ+DE6JuisIKwmgJxBVw== -----END CERTIFICATE-----Generated at Sun Aug 24 07:43:36 2025 by rpki-client