$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TSMC/y0zN-wpxH6g8TNi0wXxDwCxf2UU.roa File: y0zN-wpxH6g8TNi0wXxDwCxf2UU.roa (raw, json) Hash identifier: Hj4W2NphHeC6B1DqxUZc+lijWLRZlYkGvLigQiJkbck= Subject key identifier: CB:4C:CD:FB:0A:71:1F:A8:3C:4C:D8:B4:C1:7C:43:C0:2C:5F:D9:45 Certificate issuer: /CN=3A6BE8FAD78E95C4690ED99991FA79DF75F3D337 Certificate serial: 13F9 Authority key identifier: 3A:6B:E8:FA:D7:8E:95:C4:69:0E:D9:99:91:FA:79:DF:75:F3:D3:37 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Omvo-teOlcRpDtmZkfp533Xz0zc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TSMC/y0zN-wpxH6g8TNi0wXxDwCxf2UU.roa Signing time: Fri 22 Aug 2025 09:01:36 +0000 ROA not before: Fri 22 Aug 2025 09:01:36 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 3462 IP address blocks: 202.126.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TSMC/Omvo-teOlcRpDtmZkfp533Xz0zc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TSMC/Omvo-teOlcRpDtmZkfp533Xz0zc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Omvo-teOlcRpDtmZkfp533Xz0zc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5113 (0x13f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3A6BE8FAD78E95C4690ED99991FA79DF75F3D337 Validity Not Before: Aug 22 09:01:36 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=CB4CCDFB0A711FA83C4CD8B4C17C43C02C5FD945 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:24:db:42:96:7e:92:b5:e1:df:31:4c:4b:b3: b6:eb:c0:98:58:be:1d:63:e3:1e:11:19:9e:55:39: 2e:8d:29:6c:69:b7:2b:0a:21:fe:3c:7b:3e:f3:17: 18:52:0d:1a:ca:e2:16:50:95:64:ad:58:e6:f9:e7: 7e:2c:f0:03:ef:37:9b:03:45:94:0d:b6:7a:75:1c: 09:ec:6d:e0:b6:32:5f:db:c7:a7:c0:78:74:7b:d6: 4f:2f:e4:bb:2d:29:da:31:ee:88:ea:13:94:10:4d: 80:ca:e6:64:01:81:8d:cb:0d:30:23:d2:a8:0f:b5: fa:40:63:06:99:ff:5f:fa:a1:87:fe:d3:6f:39:67: b7:11:ac:be:1a:0b:5a:ff:bb:4b:39:86:47:52:8c: 79:f5:18:bd:37:6e:40:ad:49:54:46:df:86:1c:6b: f1:d2:a6:b1:3a:90:d7:af:4f:f0:c4:9d:63:1a:80: 73:ff:e5:f1:5f:86:ef:42:75:b0:d7:87:7c:15:f5: 8d:11:d1:3f:8b:c2:bd:21:f2:16:b7:b1:55:9d:af: e3:43:ba:cc:06:7c:23:54:e2:88:62:0e:7d:4e:90: 9c:33:db:48:19:71:58:11:52:93:fb:9f:06:b3:21: 1d:c6:4f:05:b6:bc:5f:45:fc:69:c0:2f:ce:03:a7: d8:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:4C:CD:FB:0A:71:1F:A8:3C:4C:D8:B4:C1:7C:43:C0:2C:5F:D9:45 X509v3 Authority Key Identifier: keyid:3A:6B:E8:FA:D7:8E:95:C4:69:0E:D9:99:91:FA:79:DF:75:F3:D3:37 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TSMC/Omvo-teOlcRpDtmZkfp533Xz0zc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Omvo-teOlcRpDtmZkfp533Xz0zc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TSMC/y0zN-wpxH6g8TNi0wXxDwCxf2UU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.126.64.0/20 Signature Algorithm: sha256WithRSAEncryption 28:2b:0c:36:f4:43:f9:60:8f:94:c2:1c:97:75:05:59:60:1f: 53:bb:6e:8a:bf:45:f2:13:6f:b4:8a:c0:be:d8:64:f7:24:be: 8c:b0:94:3b:ec:9c:52:dd:e7:f6:28:e0:23:63:de:42:62:02: 03:a6:19:7f:8f:64:e4:2c:9e:e8:ba:e9:a7:59:5e:18:62:d2: 70:7a:14:20:23:80:31:8f:cb:74:a3:04:95:51:33:60:95:a1: 3f:fb:46:46:21:99:5c:cd:51:4e:29:b1:cd:51:f1:39:92:9c: 2e:fb:0d:9c:b8:0b:f3:c0:1c:7a:69:0c:6a:86:06:3e:a1:55: 0a:ca:56:38:ef:63:50:d6:0a:13:d6:a8:01:d3:55:fa:b3:09: b1:27:e4:e5:37:be:fe:1e:aa:86:c3:a5:11:9b:48:cb:7c:73: f9:3f:7f:7a:96:07:d9:74:59:8a:f0:89:26:02:46:bc:93:d0: 49:a4:d9:3a:12:f5:cf:fd:3f:e4:a9:0d:7e:27:54:04:35:95: dc:7d:65:36:fc:84:fd:a7:e2:5f:f4:6d:98:b1:46:65:1d:8e: 79:25:ac:bb:f1:1d:e6:4c:b4:eb:d2:9a:f8:a5:bf:e2:9c:6f: 07:a2:d1:9e:77:16:eb:4f:bf:2c:56:b8:d0:2e:c8:4a:e4:96: 30:cd:73:66 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICE/kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0E2 QkU4RkFENzhFOTVDNDY5MEVEOTk5OTFGQTc5REY3NUYzRDMzNzAeFw0yNTA4MjIw OTAxMzZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKENCNENDREZCMEE3MTFG QTgzQzRDRDhCNEMxN0M0M0MwMkM1RkQ5NDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAJNtCln6SteHfMUxLs7brwJhYvh1j4x4RGZ5VOS6NKWxptysK If48ez7zFxhSDRrK4hZQlWStWOb5534s8APvN5sDRZQNtnp1HAnsbeC2Ml/bx6fA eHR71k8v5LstKdox7ojqE5QQTYDK5mQBgY3LDTAj0qgPtfpAYwaZ/1/6oYf+0285 Z7cRrL4aC1r/u0s5hkdSjHn1GL03bkCtSVRG34Yca/HSprE6kNevT/DEnWMagHP/ 5fFfhu9CdbDXh3wV9Y0R0T+Lwr0h8ha3sVWdr+NDuswGfCNU4ohiDn1OkJwz20gZ cVgRUpP7nwazIR3GTwW2vF9F/GnAL84Dp9hLAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUy0zN+wpxH6g8TNi0wXxDwCxf2UUwHwYDVR0jBBgwFoAUOmvo+teOlcRpDtmZ kfp533Xz0zcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFNNQy9P bXZvLXRlT2xjUnBEdG1aa2ZwNTMzWHowemMuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L09tdm8tdGVPbGNScER0bVprZnA1MzNYejB6Yy5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1RTTUMveTB6Ti13cHhINmc4VE5pMHdYeER3 Q3hmMlVVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMp+QDAN BgkqhkiG9w0BAQsFAAOCAQEAKCsMNvRD+WCPlMIcl3UFWWAfU7tuir9F8hNvtIrA vthk9yS+jLCUO+ycUt3n9ijgI2PeQmICA6YZf49k5Cye6Lrpp1leGGLScHoUICOA MY/LdKMElVEzYJWhP/tGRiGZXM1RTimxzVHxOZKcLvsNnLgL88AcemkMaoYGPqFV CspWOO9jUNYKE9aoAdNV+rMJsSfk5Te+/h6qhsOlEZtIy3xz+T9/epYH2XRZivCJ JgJGvJPQSaTZOhL1z/0/5KkNfidUBDWV3H1lNvyE/afiX/RtmLFGZR2OeSWsu/Ed 5ky069Ka+KW/4pxvB6LRnncW60+/LFa40C7ISuSWMM1zZg== -----END CERTIFICATE-----Generated at Sun Aug 24 09:20:30 2025 by rpki-client