$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/PjuFv-cHJl1U1NRos7-i5XtJWFI.roa File: PjuFv-cHJl1U1NRos7-i5XtJWFI.roa (raw, json) Hash identifier: GKa+NZY1X6D7Aa52E2mtdOgtTWnennJrcxeIgMF3IfY= Subject key identifier: 3E:3B:85:BF:E7:07:26:5D:54:D4:D4:68:B3:BF:A2:E5:7B:49:58:52 Certificate issuer: /CN=6E398C52CC2A079DA90148210AC85328C11BBE96 Certificate serial: 0B01 Authority key identifier: 6E:39:8C:52:CC:2A:07:9D:A9:01:48:21:0A:C8:53:28:C1:1B:BE:96 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/PjuFv-cHJl1U1NRos7-i5XtJWFI.roa Signing time: Fri 22 Aug 2025 08:57:55 +0000 ROA not before: Fri 22 Aug 2025 08:57:55 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131674 IP address blocks: 103.147.130.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/bjmMUswqB52pAUghCshTKMEbvpY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/bjmMUswqB52pAUghCshTKMEbvpY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 01:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2817 (0xb01) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6E398C52CC2A079DA90148210AC85328C11BBE96 Validity Not Before: Aug 22 08:57:55 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=3E3B85BFE707265D54D4D468B3BFA2E57B495852 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:9b:0c:dc:af:dc:ba:20:52:e0:af:ea:77:9f: 36:73:d2:97:27:a4:97:7c:a9:b0:f3:ec:37:89:3b: f5:7e:3e:75:d7:37:49:a4:9b:cc:87:ec:3b:cd:50: db:60:e8:bc:20:c2:43:69:c0:ee:f0:ce:0b:aa:ee: 65:7d:a2:db:49:d0:0d:c3:a9:d5:7f:a0:c6:ee:e1: 56:10:38:d2:1e:83:a6:9f:8a:9b:57:c0:28:09:5b: 30:50:d4:1e:fe:e8:6f:a6:d4:a1:fd:43:79:84:64: 3c:26:4a:ba:9e:08:ba:fe:60:54:52:c2:4a:18:13: af:28:6d:23:f3:28:37:e6:b9:37:7e:c5:21:ba:e7: 9c:0d:82:7c:85:72:b1:3f:76:bc:ae:66:f9:fd:22: 67:40:4b:ec:00:a2:ba:00:0b:d3:1f:c3:51:f4:da: 7e:07:e4:9f:fb:57:c3:03:cd:75:39:61:c2:26:9d: f5:16:d3:2c:d3:21:98:4a:5a:6d:2e:34:38:2c:d6: 40:03:d0:85:51:41:72:d9:02:d1:26:cf:d6:d1:0d: 7f:79:c3:94:07:bf:b8:21:33:ab:0e:55:bd:3c:3c: 8e:02:c6:f8:82:16:93:8e:57:7f:6c:f3:da:ab:d3: 47:0e:1b:1b:0c:fb:e1:78:ef:48:62:41:f6:86:db: c2:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:3B:85:BF:E7:07:26:5D:54:D4:D4:68:B3:BF:A2:E5:7B:49:58:52 X509v3 Authority Key Identifier: keyid:6E:39:8C:52:CC:2A:07:9D:A9:01:48:21:0A:C8:53:28:C1:1B:BE:96 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/bjmMUswqB52pAUghCshTKMEbvpY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/PjuFv-cHJl1U1NRos7-i5XtJWFI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.147.130.0/23 Signature Algorithm: sha256WithRSAEncryption 12:76:d6:ce:6a:82:dd:35:ac:53:ee:65:b8:7c:7b:78:58:af: bc:05:ba:92:99:9c:4f:f0:be:37:d8:85:20:ea:b0:4e:7f:1b: 54:b4:3b:53:23:b8:16:ba:d1:a9:b1:9d:54:70:58:e0:d6:6a: db:3e:c5:9b:fb:18:8c:87:3b:c7:46:80:43:13:63:d4:84:e4: c2:af:c3:0b:25:c3:48:69:97:fa:6c:97:b4:c9:9e:c7:59:0f: 20:25:76:84:e2:24:17:dc:ed:17:cb:76:a0:1d:81:e2:5b:f0: 60:ad:9d:22:35:b9:a7:01:75:59:ce:72:a6:09:9f:f3:eb:22: 1a:45:26:60:0f:01:55:f6:f4:44:5b:d8:a3:4f:9c:c2:c7:f1: c2:19:fc:8e:05:57:19:c0:fb:8d:85:0e:d3:4d:14:53:4b:e7: 08:5c:65:31:ba:00:02:38:b4:20:b4:73:b7:4b:a9:fa:c6:c3: 38:1b:66:d9:83:ee:7c:22:9f:60:63:27:0e:01:e5:33:ea:e1: f7:6f:57:4f:c8:3d:90:ac:59:60:71:4c:c0:75:b3:cc:a1:f9: 63:f9:3f:d5:5c:f9:67:30:65:85:cc:b9:88:3a:50:fd:d0:42: 62:28:fe:fe:b1:0a:30:bb:f3:cb:9d:21:33:9b:09:10:f4:75: 29:cc:c2:f7 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICCwEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkUz OThDNTJDQzJBMDc5REE5MDE0ODIxMEFDODUzMjhDMTFCQkU5NjAeFw0yNTA4MjIw ODU3NTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDNFM0I4NUJGRTcwNzI2 NUQ1NEQ0RDQ2OEIzQkZBMkU1N0I0OTU4NTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRmwzcr9y6IFLgr+p3nzZz0pcnpJd8qbDz7DeJO/V+PnXXN0mk m8yH7DvNUNtg6LwgwkNpwO7wzguq7mV9ottJ0A3DqdV/oMbu4VYQONIeg6afiptX wCgJWzBQ1B7+6G+m1KH9Q3mEZDwmSrqeCLr+YFRSwkoYE68obSPzKDfmuTd+xSG6 55wNgnyFcrE/dryuZvn9ImdAS+wAoroAC9Mfw1H02n4H5J/7V8MDzXU5YcImnfUW 0yzTIZhKWm0uNDgs1kAD0IVRQXLZAtEmz9bRDX95w5QHv7ghM6sOVb08PI4CxviC FpOOV39s89qr00cOGxsM++F470hiQfaG28I/AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUPjuFv+cHJl1U1NRos7+i5XtJWFIwHwYDVR0jBBgwFoAUbjmMUswqB52pAUgh CshTKMEbvpYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvT1BFTlJJ Q0gvYmptTVVzd3FCNTJwQVVnaENzaFRLTUVidnBZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9iam1NVXN3cUI1MnBBVWdoQ3NoVEtNRWJ2cFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9PUEVOUklDSC9QanVGdi1jSEpsMVUx TlJvczctaTVYdEpXRkkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ5OCMA0GCSqGSIb3DQEBCwUAA4IBAQASdtbOaoLdNaxT7mW4fHt4WK+8BbqS mZxP8L432IUg6rBOfxtUtDtTI7gWutGpsZ1UcFjg1mrbPsWb+xiMhzvHRoBDE2PU hOTCr8MLJcNIaZf6bJe0yZ7HWQ8gJXaE4iQX3O0Xy3agHYHiW/BgrZ0iNbmnAXVZ znKmCZ/z6yIaRSZgDwFV9vREW9ijT5zCx/HCGfyOBVcZwPuNhQ7TTRRTS+cIXGUx ugACOLQgtHO3S6n6xsM4G2bZg+58Ip9gYycOAeUz6uH3b1dPyD2QrFlgcUzAdbPM oflj+T/VXPlnMGWFzLmIOlD90EJiKP7+sQowu/PLnSEzmwkQ9HUpzML3 -----END CERTIFICATE-----Generated at Wed Nov 5 20:44:50 2025 by rpki-client