$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SYSNET/m_PEBBby9K-uzGdxXbBG1o57EFQ.roa File: m_PEBBby9K-uzGdxXbBG1o57EFQ.roa (raw, json) Hash identifier: j22YQr7Xe6uEe3arTEkw7KD2nOtt/bjrl22Y59vCjXU= Subject key identifier: 9B:F3:C4:04:16:F2:F4:AF:AE:CC:67:71:5D:B0:46:D6:8E:7B:10:54 Certificate issuer: /CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC Certificate serial: 0DDA Authority key identifier: 96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/m_PEBBby9K-uzGdxXbBG1o57EFQ.roa Signing time: Fri 22 Aug 2025 08:55:13 +0000 ROA not before: Fri 22 Aug 2025 08:55:13 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4783 IP address blocks: 202.39.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3546 (0xdda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC Validity Not Before: Aug 22 08:55:13 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=9BF3C40416F2F4AFAECC67715DB046D68E7B1054 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:71:4f:2b:7a:19:5a:4a:44:20:c9:98:40:4b: 4f:fb:24:e5:4c:f7:a8:ea:5f:94:7e:31:45:02:df: 8a:a8:6b:b9:bc:c2:32:39:66:e2:4c:16:7e:17:b0: 38:a7:97:e7:62:78:01:64:b6:dc:ab:ed:23:21:df: 7e:b3:bc:72:0e:28:cc:bc:86:47:c8:cd:82:07:1c: bd:24:f9:96:b8:4d:70:48:24:9b:57:15:37:f4:ab: 1d:66:b0:d8:69:9d:83:31:05:52:58:30:f2:48:78: 37:4e:52:aa:ce:c6:0b:bc:53:c8:cf:55:d9:79:fa: 8f:ba:fd:1d:11:ad:aa:0c:69:dd:36:68:4b:0b:26: 99:f7:2f:16:e3:10:14:e4:7a:ad:96:89:b7:4a:ea: b5:c4:a5:c4:24:5d:de:7e:1f:b6:39:a6:54:b4:00: 70:df:4f:91:6e:c5:c9:01:f9:9f:96:38:85:4c:f7: f1:9c:62:95:78:8c:5d:27:c9:cc:a8:c0:0e:da:f6: 4a:4a:15:1e:c2:05:0e:85:f5:45:b0:bd:2a:26:d0: 8f:17:a0:16:1c:3b:ed:64:7e:53:07:9d:fd:e9:fb: c3:a1:f5:ad:f1:70:3c:66:fd:da:73:f2:48:51:dc: 73:19:46:ce:68:1c:fa:b1:a5:52:03:2d:71:8d:c7: 06:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:F3:C4:04:16:F2:F4:AF:AE:CC:67:71:5D:B0:46:D6:8E:7B:10:54 X509v3 Authority Key Identifier: keyid:96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/m_PEBBby9K-uzGdxXbBG1o57EFQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.39.96.0/20 Signature Algorithm: sha256WithRSAEncryption 13:6a:18:44:06:e1:57:ee:78:b5:a0:b7:63:91:a7:6e:0e:54: 9a:17:eb:59:68:74:cf:05:12:44:31:f9:f2:4f:15:91:f4:08: ab:9f:10:91:4f:da:52:80:02:48:4d:bb:7f:9c:f8:52:76:a4: 2b:ee:1a:20:c5:96:16:f5:be:90:25:ca:f1:6e:17:3a:a5:04: 56:8e:fb:c3:9f:5a:a2:ad:72:e6:43:fd:9e:0b:05:a5:79:2f: 55:a7:52:f2:e9:79:bd:9d:b1:c0:4b:0e:9c:1f:de:7a:31:f7: e4:c5:05:23:1b:a7:3c:97:d0:0e:6b:51:f6:23:3d:4c:f1:68: 80:d0:30:39:33:b2:53:23:e3:72:5c:a2:d9:37:38:99:8e:51: 81:44:fc:52:9a:02:e5:8a:49:fc:21:cf:38:4b:91:d0:a0:e1: 18:d7:a3:d5:76:81:e7:cc:46:d0:f4:4f:aa:3f:f9:f1:40:1c: c9:c8:a4:a4:f6:8e:7f:9d:f3:8a:be:d4:f6:e9:ed:df:9a:45: cd:6b:d0:06:77:88:31:36:f9:f0:77:75:ba:bd:e5:09:ff:96: 90:30:db:5c:1a:25:ea:bf:ae:4e:6f:02:e4:83:e4:6e:db:ba: 29:cc:27:34:df:25:2a:79:e7:a4:74:9b:fa:76:2d:12:b7:cd: 65:9f:d5:04 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDdowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTZC Qjk0QjQ1N0Y5RDgyQTI5QjVCMkZEOUYzQTQ0MTg4OTlFNzFFQzAeFw0yNTA4MjIw ODU1MTNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDlCRjNDNDA0MTZGMkY0 QUZBRUNDNjc3MTVEQjA0NkQ2OEU3QjEwNTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCVcU8rehlaSkQgyZhAS0/7JOVM96jqX5R+MUUC34qoa7m8wjI5 ZuJMFn4XsDinl+dieAFkttyr7SMh336zvHIOKMy8hkfIzYIHHL0k+Za4TXBIJJtX FTf0qx1msNhpnYMxBVJYMPJIeDdOUqrOxgu8U8jPVdl5+o+6/R0RraoMad02aEsL Jpn3LxbjEBTkeq2WibdK6rXEpcQkXd5+H7Y5plS0AHDfT5FuxckB+Z+WOIVM9/Gc YpV4jF0nycyowA7a9kpKFR7CBQ6F9UWwvSom0I8XoBYcO+1kflMHnf3p+8Oh9a3x cDxm/dpz8khR3HMZRs5oHPqxpVIDLXGNxwZPAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUm/PEBBby9K+uzGdxXbBG1o57EFQwHwYDVR0jBBgwFoAUlruUtFf52CoptbL9 nzpEGImecewwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1lTTkVU L2xydVV0RmY1MkNvcHRiTDluenBFR0ltZWNldy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbHJ1VXRGZjUyQ29wdGJMOW56cEVHSW1lY2V3LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1lTTkVUL21fUEVCQmJ5OUstdXpHZHhY YkJHMW81N0VGUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATK J2AwDQYJKoZIhvcNAQELBQADggEBABNqGEQG4VfueLWgt2ORp24OVJoX61lodM8F EkQx+fJPFZH0CKufEJFP2lKAAkhNu3+c+FJ2pCvuGiDFlhb1vpAlyvFuFzqlBFaO +8OfWqKtcuZD/Z4LBaV5L1WnUvLpeb2dscBLDpwf3nox9+TFBSMbpzyX0A5rUfYj PUzxaIDQMDkzslMj43Jcotk3OJmOUYFE/FKaAuWKSfwhzzhLkdCg4RjXo9V2gefM RtD0T6o/+fFAHMnIpKT2jn+d84q+1Pbp7d+aRc1r0AZ3iDE2+fB3dbq95Qn/lpAw 21waJeq/rk5vAuSD5G7buinMJzTfJSp556R0m/p2LRK3zWWf1QQ= -----END CERTIFICATE-----Generated at Sun Aug 24 13:38:09 2025 by rpki-client