$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/zzPx3ZbU277MXILxgkrZ5j2yQ70.roa File: zzPx3ZbU277MXILxgkrZ5j2yQ70.roa (raw, json) Hash identifier: VXpoUTRADRVn778bsJg5qNOQcG+n/9jS862L8hDiR8I= Subject key identifier: CF:33:F1:DD:96:D4:DB:BE:CC:5C:82:F1:82:4A:D9:E6:3D:B2:43:BD Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Certificate serial: 0FDD Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/zzPx3ZbU277MXILxgkrZ5j2yQ70.roa Signing time: Fri 22 Aug 2025 08:50:30 +0000 ROA not before: Fri 22 Aug 2025 08:50:30 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38843 IP address blocks: 223.27.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4061 (0xfdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Validity Not Before: Aug 22 08:50:30 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=CF33F1DD96D4DBBECC5C82F1824AD9E63DB243BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:af:2b:1b:ba:37:73:a0:f4:2e:de:28:79:9e: a0:0b:79:14:94:da:da:8e:0d:a8:f0:fc:7c:d6:f8: 8a:99:b2:cf:d8:b9:c9:2d:8b:54:3d:24:9a:8c:f7: 19:7d:38:a2:90:a0:bc:27:3b:cb:48:8c:c7:3d:85: 84:a2:9e:41:96:da:bf:d1:a1:72:f3:c7:12:48:9d: 33:f1:76:ee:e6:a8:f1:b6:22:ed:ab:49:86:1d:0b: 8d:49:12:7d:4b:cc:ed:5c:54:60:2d:29:fd:59:0a: 68:6f:ea:dd:49:85:e5:ff:09:a0:7a:63:f2:2d:b8: 45:1a:e5:c1:f0:4d:20:ed:51:e6:ef:e2:ab:31:e2: 9f:f1:78:95:c8:8d:69:9a:26:30:52:96:37:43:6f: e2:f2:1c:9a:f8:83:38:70:7d:23:59:35:f2:cd:97: b1:db:05:6a:de:74:ab:76:ec:fd:f7:83:0f:a1:15: dd:54:3f:b0:d3:b5:ff:ad:ea:4f:d9:c7:1a:46:2e: 69:00:94:64:28:84:f3:65:21:b9:42:7b:a2:61:57: f4:d1:00:82:bd:6b:2d:34:d3:4a:2d:97:9b:34:3b: 41:21:95:83:42:a6:6d:94:f8:48:0f:fd:97:d6:79: ed:95:76:c0:09:07:d7:75:c8:90:dc:83:c7:e3:3e: a3:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:33:F1:DD:96:D4:DB:BE:CC:5C:82:F1:82:4A:D9:E6:3D:B2:43:BD X509v3 Authority Key Identifier: keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/zzPx3ZbU277MXILxgkrZ5j2yQ70.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.27.55.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:97:48:98:49:6d:9b:94:f3:4b:10:c0:a2:0d:94:2e:f0:1d: 64:15:aa:b2:a1:dc:7a:07:e9:bd:8a:1a:90:4b:03:55:85:c3: 5d:60:04:87:e5:bf:09:6c:98:09:ef:a0:03:f4:76:d1:9a:c4: 9e:05:d6:30:f1:c3:b0:0f:48:c1:27:23:1a:1c:8b:14:f4:07: cf:08:85:ac:c6:ea:5b:f2:92:dc:e0:6f:6b:10:0e:77:2f:ba: b3:d8:71:d2:f3:0a:c9:84:b0:51:1e:53:d8:81:22:74:db:c3: 0b:dc:ed:bb:ec:f1:4a:5c:a8:ac:b4:20:a9:23:81:65:30:48: 77:a5:60:2f:68:24:ce:14:21:81:c9:f4:ca:5f:fd:b6:b2:e7: f3:0e:b5:ae:0b:f7:a9:ca:46:13:56:5e:ea:56:09:8d:f2:ba: 3a:0b:d4:d2:2d:55:45:c4:9e:be:a8:d7:13:a8:8c:2f:b0:72: a9:41:49:33:10:a0:7a:0c:a7:8e:c9:14:88:d5:3f:7b:a6:18: 1c:4e:8d:3c:be:e9:5e:cd:9f:c9:4f:df:d2:19:61:6f:fc:00: c2:63:47:cd:81:c2:58:9c:ea:ba:a4:7c:b0:15:4f:f0:c9:b4: 70:c1:e0:fc:38:d5:42:3f:f1:ea:e8:85:31:32:bc:b2:85:06: 96:2f:4f:7c -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICD90wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yNTA4MjIw ODUwMzBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKENGMzNGMUREOTZENERC QkVDQzVDODJGMTgyNEFEOUU2M0RCMjQzQkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRrysbujdzoPQu3ih5nqALeRSU2tqODajw/HzW+IqZss/Yuckt i1Q9JJqM9xl9OKKQoLwnO8tIjMc9hYSinkGW2r/RoXLzxxJInTPxdu7mqPG2Iu2r SYYdC41JEn1LzO1cVGAtKf1ZCmhv6t1JheX/CaB6Y/ItuEUa5cHwTSDtUebv4qsx 4p/xeJXIjWmaJjBSljdDb+LyHJr4gzhwfSNZNfLNl7HbBWredKt27P33gw+hFd1U P7DTtf+t6k/ZxxpGLmkAlGQohPNlIblCe6JhV/TRAIK9ay0000otl5s0O0EhlYNC pm2U+EgP/ZfWee2VdsAJB9d1yJDcg8fjPqO/AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUzzPx3ZbU277MXILxgkrZ5j2yQ70wHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80 sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8venpQeDNaYlUyNzdNWElMeGdrclo1 ajJ5UTcwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAN8bNzAN BgkqhkiG9w0BAQsFAAOCAQEALJdImEltm5TzSxDAog2ULvAdZBWqsqHcegfpvYoa kEsDVYXDXWAEh+W/CWyYCe+gA/R20ZrEngXWMPHDsA9IwScjGhyLFPQHzwiFrMbq W/KS3OBvaxAOdy+6s9hx0vMKyYSwUR5T2IEidNvDC9ztu+zxSlyorLQgqSOBZTBI d6VgL2gkzhQhgcn0yl/9trLn8w61rgv3qcpGE1Ze6lYJjfK6OgvU0i1VRcSevqjX E6iML7ByqUFJMxCgegynjskUiNU/e6YYHE6NPL7pXs2fyU/f0hlhb/wAwmNHzYHC WJzquqR8sBVP8Mm0cMHg/DjVQj/x6uiFMTK8soUGli9PfA== -----END CERTIFICATE-----Generated at Sun Aug 24 09:45:09 2025 by rpki-client