$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TSMC/PB2MH2gXc0iK1_xYSNlRqZc37eQ.roa File: PB2MH2gXc0iK1_xYSNlRqZc37eQ.roa (raw, json) Hash identifier: IBHQRpljx8SOtyn7p/B67p0cKFxaTn4LAuw2BlTW2wo= Subject key identifier: 3C:1D:8C:1F:68:17:73:48:8A:D7:FC:58:48:D9:51:A9:97:37:ED:E4 Certificate issuer: /CN=3A6BE8FAD78E95C4690ED99991FA79DF75F3D337 Certificate serial: 13FB Authority key identifier: 3A:6B:E8:FA:D7:8E:95:C4:69:0E:D9:99:91:FA:79:DF:75:F3:D3:37 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Omvo-teOlcRpDtmZkfp533Xz0zc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TSMC/PB2MH2gXc0iK1_xYSNlRqZc37eQ.roa Signing time: Fri 22 Aug 2025 09:01:37 +0000 ROA not before: Fri 22 Aug 2025 09:01:37 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 23675 IP address blocks: 202.126.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TSMC/Omvo-teOlcRpDtmZkfp533Xz0zc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TSMC/Omvo-teOlcRpDtmZkfp533Xz0zc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Omvo-teOlcRpDtmZkfp533Xz0zc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5115 (0x13fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3A6BE8FAD78E95C4690ED99991FA79DF75F3D337 Validity Not Before: Aug 22 09:01:37 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=3C1D8C1F681773488AD7FC5848D951A99737EDE4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:5c:5c:be:03:c9:42:f3:1c:c7:33:fc:56:05: e3:85:7a:b0:b7:5b:ad:2d:92:cb:7f:ad:b1:70:b6: c6:40:1f:0a:7c:1d:2e:fd:cc:b9:83:8c:1c:10:23: 82:52:ea:36:21:ab:3d:dc:4c:a4:ec:a2:ef:f9:2b: 22:0e:7e:cb:b3:12:d4:f2:16:ae:75:b7:b7:23:31: a7:b1:32:cc:1d:e3:a3:4a:8a:c7:c8:47:c5:a9:e6: 07:42:bf:bf:5e:d9:f1:2b:7c:22:fe:01:ca:4f:a4: 34:91:7b:dd:c5:76:08:97:46:6b:ca:a3:48:67:21: 01:bf:63:ff:72:63:c4:0d:30:c6:d2:e4:10:f8:c2: 0c:90:9c:75:2d:df:8e:82:25:15:2b:29:a2:69:54: 22:92:7e:02:98:64:b1:df:21:d2:07:a1:2f:f3:5b: 63:12:b0:6d:04:24:0c:07:56:5d:7e:56:50:1a:e7: 00:91:ce:7d:60:f5:fe:89:6a:46:3c:55:d5:c4:1e: aa:87:3e:5d:65:cd:b5:26:45:9c:ba:41:0f:77:90: e0:b4:1f:7e:40:3d:54:92:ac:ac:55:f5:7e:7f:64: c1:99:80:86:32:0a:e9:6e:c7:d1:e7:56:82:1f:36: 62:1e:8d:34:7e:e6:bb:51:e7:c6:0f:9b:3d:8d:77: fc:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:1D:8C:1F:68:17:73:48:8A:D7:FC:58:48:D9:51:A9:97:37:ED:E4 X509v3 Authority Key Identifier: keyid:3A:6B:E8:FA:D7:8E:95:C4:69:0E:D9:99:91:FA:79:DF:75:F3:D3:37 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TSMC/Omvo-teOlcRpDtmZkfp533Xz0zc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Omvo-teOlcRpDtmZkfp533Xz0zc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TSMC/PB2MH2gXc0iK1_xYSNlRqZc37eQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.126.64.0/20 Signature Algorithm: sha256WithRSAEncryption 5b:7a:41:65:55:fb:0b:3d:02:64:c1:73:8f:e6:d6:50:f1:b4: f7:01:b4:1a:42:ff:26:54:f4:96:07:78:12:92:f1:65:da:21: bd:a1:ba:77:48:95:85:4a:db:c8:72:d6:48:e3:b3:1b:47:9d: 16:18:44:90:13:a5:57:81:37:77:88:9a:d0:9c:40:5e:04:56: a5:bb:44:a3:d1:18:96:e8:3a:a1:86:3b:9f:19:89:7a:69:7a: 65:38:e0:1f:d2:24:5e:83:6b:5c:c8:fd:f2:b0:33:f6:d2:66: b8:ee:79:38:ab:31:9a:0d:40:65:9d:88:3d:69:15:82:37:4c: c6:90:85:82:c7:9a:4e:f5:c0:d2:b9:02:ab:96:59:0e:cb:7c: f9:f6:7d:da:5c:46:2e:87:b3:5a:89:ae:17:d7:a0:bc:f8:32: 9c:f5:11:86:b7:4c:5a:ab:d8:e1:ca:d7:a6:5e:3a:bd:c4:17: d9:20:ac:c4:29:f6:08:9e:35:3f:76:a2:95:76:c1:f0:4c:fd: b1:ef:18:1d:b0:77:62:a6:7d:5a:e6:52:2f:c6:20:1e:37:b8: 9a:76:25:3a:7d:e8:a8:1e:8d:1d:dd:cd:14:e6:9b:78:45:3a: 8e:3e:4c:81:f7:e1:49:2e:07:68:10:86:21:2a:68:ec:c1:e5: 54:4b:18:33 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICE/swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0E2 QkU4RkFENzhFOTVDNDY5MEVEOTk5OTFGQTc5REY3NUYzRDMzNzAeFw0yNTA4MjIw OTAxMzdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDNDMUQ4QzFGNjgxNzcz NDg4QUQ3RkM1ODQ4RDk1MUE5OTczN0VERTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVXFy+A8lC8xzHM/xWBeOFerC3W60tkst/rbFwtsZAHwp8HS79 zLmDjBwQI4JS6jYhqz3cTKTsou/5KyIOfsuzEtTyFq51t7cjMaexMswd46NKisfI R8Wp5gdCv79e2fErfCL+AcpPpDSRe93FdgiXRmvKo0hnIQG/Y/9yY8QNMMbS5BD4 wgyQnHUt346CJRUrKaJpVCKSfgKYZLHfIdIHoS/zW2MSsG0EJAwHVl1+VlAa5wCR zn1g9f6JakY8VdXEHqqHPl1lzbUmRZy6QQ93kOC0H35APVSSrKxV9X5/ZMGZgIYy Culux9HnVoIfNmIejTR+5rtR58YPmz2Nd/y7AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUPB2MH2gXc0iK1/xYSNlRqZc37eQwHwYDVR0jBBgwFoAUOmvo+teOlcRpDtmZ kfp533Xz0zcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFNNQy9P bXZvLXRlT2xjUnBEdG1aa2ZwNTMzWHowemMuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L09tdm8tdGVPbGNScER0bVprZnA1MzNYejB6Yy5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1RTTUMvUEIyTUgyZ1hjMGlLMV94WVNObFJx WmMzN2VRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMp+QDAN BgkqhkiG9w0BAQsFAAOCAQEAW3pBZVX7Cz0CZMFzj+bWUPG09wG0GkL/JlT0lgd4 EpLxZdohvaG6d0iVhUrbyHLWSOOzG0edFhhEkBOlV4E3d4ia0JxAXgRWpbtEo9EY lug6oYY7nxmJeml6ZTjgH9IkXoNrXMj98rAz9tJmuO55OKsxmg1AZZ2IPWkVgjdM xpCFgseaTvXA0rkCq5ZZDst8+fZ92lxGLoezWomuF9egvPgynPURhrdMWqvY4crX pl46vcQX2SCsxCn2CJ41P3ailXbB8Ez9se8YHbB3YqZ9WuZSL8YgHje4mnYlOn3o qB6NHd3NFOabeEU6jj5MgffhSS4HaBCGISpo7MHlVEsYMw== -----END CERTIFICATE-----Generated at Sun Aug 24 09:16:29 2025 by rpki-client