$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PNI/kMOJ6u-KQmgW284nTwd3yCk0yxw.roa File: kMOJ6u-KQmgW284nTwd3yCk0yxw.roa (raw, json) Hash identifier: IIUneilleSMvIN5fiEfd3GB1t3VXfzJudrnmYU0MURQ= Subject key identifier: 90:C3:89:EA:EF:8A:42:68:16:DB:CE:27:4F:07:77:C8:29:34:CB:1C Certificate issuer: /CN=3118C334DA58D7C0021DCAACA881DFB9DC8365FF Certificate serial: 09A9 Authority key identifier: 31:18:C3:34:DA:58:D7:C0:02:1D:CA:AC:A8:81:DF:B9:DC:83:65:FF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MRjDNNpY18ACHcqsqIHfudyDZf8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/kMOJ6u-KQmgW284nTwd3yCk0yxw.roa Signing time: Tue 17 Jun 2025 11:06:34 +0000 ROA not before: Tue 17 Jun 2025 11:06:34 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131642 IP address blocks: 211.76.176.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/MRjDNNpY18ACHcqsqIHfudyDZf8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/MRjDNNpY18ACHcqsqIHfudyDZf8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/MRjDNNpY18ACHcqsqIHfudyDZf8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 07:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2473 (0x9a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3118C334DA58D7C0021DCAACA881DFB9DC8365FF Validity Not Before: Jun 17 11:06:34 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=90C389EAEF8A426816DBCE274F0777C82934CB1C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ed:f0:3b:a6:dc:dc:19:e6:94:f2:b3:9b:c4: c2:11:f3:13:43:5b:f6:b2:e9:d1:2a:69:21:36:d4: 98:1c:ca:a8:82:f5:ce:d2:f6:0b:4d:ff:8d:24:74: 73:ba:bd:10:d2:c2:1d:69:40:6a:e0:90:7d:c5:38: d9:30:cd:dd:38:07:e1:93:9d:ea:da:71:50:7d:25: 33:ca:b4:05:ae:65:30:14:4c:58:49:43:3d:b4:68: 71:7b:59:ce:e6:e5:fc:af:8f:cb:dd:c3:df:29:fd: 36:21:b3:05:f0:7b:ce:f4:47:f0:d8:6c:a2:af:68: 2e:5b:e2:44:94:44:e8:47:c7:b7:19:e0:b3:4d:c6: 00:67:6e:00:05:f2:e7:ac:42:53:4d:c1:99:18:ff: 68:73:c4:85:56:e8:16:01:cd:75:a9:2c:b7:f9:34: 5e:a5:ea:06:b0:1e:ee:21:29:fb:9f:4c:74:94:ed: 31:26:23:40:22:80:ba:b5:22:24:e0:42:b5:87:31: bf:07:ac:db:25:ea:0a:ac:44:dd:56:4e:af:e0:e3: e8:26:64:c4:2d:da:db:6a:57:59:d9:1a:00:17:96: 0c:43:54:7f:ec:35:7e:03:ea:0d:df:28:aa:4f:aa: 31:e5:0b:49:47:b4:74:d8:20:c3:4f:99:f4:7a:7b: 2b:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:C3:89:EA:EF:8A:42:68:16:DB:CE:27:4F:07:77:C8:29:34:CB:1C X509v3 Authority Key Identifier: keyid:31:18:C3:34:DA:58:D7:C0:02:1D:CA:AC:A8:81:DF:B9:DC:83:65:FF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/MRjDNNpY18ACHcqsqIHfudyDZf8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MRjDNNpY18ACHcqsqIHfudyDZf8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/kMOJ6u-KQmgW284nTwd3yCk0yxw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.176.0/23 Signature Algorithm: sha256WithRSAEncryption 19:27:1f:20:c9:34:c2:d8:4f:04:62:ef:72:96:2e:c8:b7:59: 03:f7:e6:af:f8:f8:71:1d:33:70:27:23:10:d2:68:67:cb:9a: a4:71:cb:b7:51:c3:41:e6:82:1d:fb:c3:a9:45:8b:ec:38:c2: 53:db:84:89:ce:ad:e8:d6:c8:cd:16:b6:65:6b:b5:d3:94:a3: 50:61:31:32:b6:da:99:8c:6e:51:8a:71:ea:24:a3:21:b2:ec: 96:0f:bf:17:fa:ae:e4:e3:09:aa:12:6a:50:30:64:bf:62:bf: 1a:b8:d7:b2:fb:29:31:e2:48:ff:5a:d5:63:8f:2c:d4:cf:f2: d1:b1:4d:9b:93:e3:51:ff:e2:f7:e1:24:6d:aa:e4:40:7d:cb: 4b:43:1b:52:c8:93:4b:a4:51:b2:6b:8c:4f:2f:ce:16:15:9b: 65:95:64:f0:5f:22:b7:f6:42:5c:d4:d2:4c:e6:96:43:93:1a: 31:e1:09:b2:c1:d8:be:4d:0c:0f:a8:d5:49:2e:df:f2:42:9c: 71:9e:1e:b5:7e:f8:bf:b6:b8:65:43:ee:83:91:97:d3:88:a8: c7:fc:3c:07:4f:8c:c6:81:9e:72:7d:84:6f:af:8d:73:a3:06: 4a:b7:3b:4c:c2:e7:06:52:d1:41:5d:05:05:ed:a9:04:bd:71: 00:f9:5c:58 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICCakwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzEx OEMzMzREQTU4RDdDMDAyMURDQUFDQTg4MURGQjlEQzgzNjVGRjAeFw0yNTA2MTcx MTA2MzRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDkwQzM4OUVBRUY4QTQy NjgxNkRCQ0UyNzRGMDc3N0M4MjkzNENCMUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/7fA7ptzcGeaU8rObxMIR8xNDW/ay6dEqaSE21JgcyqiC9c7S 9gtN/40kdHO6vRDSwh1pQGrgkH3FONkwzd04B+GTneracVB9JTPKtAWuZTAUTFhJ Qz20aHF7Wc7m5fyvj8vdw98p/TYhswXwe870R/DYbKKvaC5b4kSUROhHx7cZ4LNN xgBnbgAF8uesQlNNwZkY/2hzxIVW6BYBzXWpLLf5NF6l6gawHu4hKfufTHSU7TEm I0AigLq1IiTgQrWHMb8HrNsl6gqsRN1WTq/g4+gmZMQt2ttqV1nZGgAXlgxDVH/s NX4D6g3fKKpPqjHlC0lHtHTYIMNPmfR6eytlAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUkMOJ6u+KQmgW284nTwd3yCk0yxwwHwYDVR0jBBgwFoAUMRjDNNpY18ACHcqs qIHfudyDZf8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUE5JL01S akROTnBZMThBQ0hjcXNxSUhmdWR5RFpmOC5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev TVJqRE5OcFkxOEFDSGNxc3FJSGZ1ZHlEWmY4LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvUE5JL2tNT0o2dS1LUW1nVzI4NG5Ud2QzeUNr MHl4dy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHTTLAwDQYJ KoZIhvcNAQELBQADggEBABknHyDJNMLYTwRi73KWLsi3WQP35q/4+HEdM3AnIxDS aGfLmqRxy7dRw0Hmgh37w6lFi+w4wlPbhInOrejWyM0WtmVrtdOUo1BhMTK22pmM blGKceokoyGy7JYPvxf6ruTjCaoSalAwZL9ivxq417L7KTHiSP9a1WOPLNTP8tGx TZuT41H/4vfhJG2q5EB9y0tDG1LIk0ukUbJrjE8vzhYVm2WVZPBfIrf2QlzU0kzm lkOTGjHhCbLB2L5NDA+o1Uku3/JCnHGeHrV++L+2uGVD7oORl9OIqMf8PAdPjMaB nnJ9hG+vjXOjBkq3O0zC5wZS0UFdBQXtqQS9cQD5XFg= -----END CERTIFICATE-----Generated at Wed Jun 25 05:57:48 2025 by rpki-client