$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/w7N7idzesQho2EL31tSG7ATo6VY.roa File: w7N7idzesQho2EL31tSG7ATo6VY.roa (raw, json) Hash identifier: OkudVPU8HL4u5jLU8ctrJbbY0mhOhsgnfVAMch7hHQc= Subject key identifier: C3:B3:7B:89:DC:DE:B1:08:68:D8:42:F7:D6:D4:86:EC:04:E8:E9:56 Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Certificate serial: 0FCE Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/w7N7idzesQho2EL31tSG7ATo6VY.roa Signing time: Fri 22 Aug 2025 08:50:26 +0000 ROA not before: Fri 22 Aug 2025 08:50:26 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38843 IP address blocks: 124.150.132.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4046 (0xfce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Validity Not Before: Aug 22 08:50:26 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C3B37B89DCDEB10868D842F7D6D486EC04E8E956 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:a9:4b:50:d7:f2:1f:d0:14:bc:d6:bf:0a:00: 0d:da:1d:e8:8d:9b:c7:1c:b6:98:9d:93:c1:cc:05: 2f:cf:17:51:de:b5:c6:c4:88:c8:01:de:d1:d5:f4: 31:5f:30:c2:c7:06:c0:27:5f:d5:df:ae:bb:4d:10: a9:14:46:4d:80:09:98:96:01:52:cd:02:62:55:a3: 1d:13:d5:13:cf:bc:eb:17:ed:7c:62:56:16:e6:55: f7:26:d1:1f:81:24:20:25:84:d4:5e:1a:5a:af:63: 96:04:a2:15:f0:03:6c:26:70:e8:e0:0c:17:71:5a: d3:66:f1:9e:d5:e2:44:bc:34:3c:66:fc:63:89:e0: 47:8f:b5:ae:3a:4a:84:16:92:f5:3b:26:96:b3:15: 19:8b:d2:42:65:60:1b:0b:e5:f8:d5:34:63:a4:14: db:3c:c7:73:6a:5b:d2:fb:b6:99:ac:36:77:a5:5f: a0:8f:0c:f0:92:88:a5:88:1c:0a:3c:c1:a7:90:33: b7:b2:e8:49:68:ae:82:63:4b:ce:e6:55:6e:16:d6: e2:1d:73:57:03:f5:9e:dc:6e:78:6d:ee:f8:5d:ba: 78:b0:cf:2c:ca:44:25:d4:47:66:4c:cc:00:6d:b9: 86:62:6c:11:f7:b2:ba:69:bc:0f:55:61:77:76:c0: 9b:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:B3:7B:89:DC:DE:B1:08:68:D8:42:F7:D6:D4:86:EC:04:E8:E9:56 X509v3 Authority Key Identifier: keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/w7N7idzesQho2EL31tSG7ATo6VY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.150.132.0/22 Signature Algorithm: sha256WithRSAEncryption 27:23:4d:3e:4d:98:9c:c3:bb:e3:04:4d:60:7d:75:7b:3a:bb: 2a:2e:81:fb:d0:f7:30:90:c3:83:bf:dc:76:d2:e4:30:a9:6f: 87:1b:9b:dc:e9:e1:75:4a:04:2b:52:d8:5f:ff:0d:0b:0b:d1: 27:56:60:60:99:72:1d:90:00:60:b3:de:2f:7f:74:d6:3e:83: 04:cc:e7:61:da:37:a9:5a:f6:71:7a:e1:0e:f0:d9:63:3d:31: ee:f7:77:92:ff:dc:b6:2e:48:a0:62:fc:f6:5f:95:5c:8a:c2: 5b:96:87:7e:5b:10:1b:66:56:d8:f3:a5:5d:04:98:aa:98:ac: b6:3a:2b:0d:bf:1b:06:15:b5:bc:c2:12:77:68:40:01:b6:42: af:fc:48:39:c0:21:e9:cd:3b:53:bc:13:b6:af:a3:14:90:72: 48:73:ea:56:54:69:dc:05:bf:77:ed:fd:3d:04:33:26:2a:00: c4:5e:4b:92:14:1e:5f:18:8b:52:d6:65:ac:98:eb:aa:bc:a2: 3f:27:63:d5:83:63:9c:86:06:d5:8b:cf:8a:da:93:78:ea:19: ad:38:d4:62:d8:e8:b9:a7:61:72:78:e9:13:0c:45:86:9f:6a: 13:6f:1a:ef:3a:75:f5:b2:dd:ea:f8:f4:85:3b:af:af:62:f3: 85:8b:01:54 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICD84wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yNTA4MjIw ODUwMjZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEMzQjM3Qjg5RENERUIx MDg2OEQ4NDJGN0Q2RDQ4NkVDMDRFOEU5NTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCbqUtQ1/If0BS81r8KAA3aHeiNm8cctpidk8HMBS/PF1HetcbE iMgB3tHV9DFfMMLHBsAnX9XfrrtNEKkURk2ACZiWAVLNAmJVox0T1RPPvOsX7Xxi VhbmVfcm0R+BJCAlhNReGlqvY5YEohXwA2wmcOjgDBdxWtNm8Z7V4kS8NDxm/GOJ 4EePta46SoQWkvU7JpazFRmL0kJlYBsL5fjVNGOkFNs8x3NqW9L7tpmsNnelX6CP DPCSiKWIHAo8waeQM7ey6EloroJjS87mVW4W1uIdc1cD9Z7cbnht7vhduniwzyzK RCXUR2ZMzABtuYZibBH3srppvA9VYXd2wJvlAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUw7N7idzesQho2EL31tSG7ATo6VYwHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80 sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vdzdON2lkemVzUWhvMkVMMzF0U0c3 QVRvNlZZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAnyWhDAN BgkqhkiG9w0BAQsFAAOCAQEAJyNNPk2YnMO74wRNYH11ezq7Ki6B+9D3MJDDg7/c dtLkMKlvhxub3OnhdUoEK1LYX/8NCwvRJ1ZgYJlyHZAAYLPeL3901j6DBMznYdo3 qVr2cXrhDvDZYz0x7vd3kv/cti5IoGL89l+VXIrCW5aHflsQG2ZW2POlXQSYqpis tjorDb8bBhW1vMISd2hAAbZCr/xIOcAh6c07U7wTtq+jFJBySHPqVlRp3AW/d+39 PQQzJioAxF5LkhQeXxiLUtZlrJjrqryiPydj1YNjnIYG1YvPitqTeOoZrTjUYtjo uadhcnjpEwxFhp9qE28a7zp19bLd6vj0hTuvr2LzhYsBVA== -----END CERTIFICATE-----Generated at Sun Aug 24 07:44:28 2025 by rpki-client