$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/5nWcO0ucly9sF7PMEabzQ-jSuLI.roa File: 5nWcO0ucly9sF7PMEabzQ-jSuLI.roa (raw, json) Hash identifier: SABI6J7Xibp1gks7G3FLsrbw1X4kLcj4XPd7V4p5nr0= Subject key identifier: E6:75:9C:3B:4B:9C:97:2F:6C:17:B3:CC:11:A6:F3:43:E8:D2:B8:B2 Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Certificate serial: 0FDF Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/5nWcO0ucly9sF7PMEabzQ-jSuLI.roa Signing time: Fri 22 Aug 2025 08:50:31 +0000 ROA not before: Fri 22 Aug 2025 08:50:31 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38843 IP address blocks: 124.150.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 01:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4063 (0xfdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Validity Not Before: Aug 22 08:50:31 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E6759C3B4B9C972F6C17B3CC11A6F343E8D2B8B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:96:b7:f6:d1:61:5b:c4:8f:81:9d:bb:81:3d: 2a:de:db:80:e7:4b:ee:9d:4b:14:4c:cc:6e:23:e3: a3:11:a9:bf:c4:5e:42:be:04:5b:96:89:ae:f7:89: e6:6b:9b:51:19:13:3f:7a:37:c8:33:6d:37:d7:01: 4b:83:18:20:a5:af:cd:ce:f9:0b:17:b6:e7:3e:bc: b2:5b:46:58:a7:6b:7b:c4:5c:63:bf:81:03:2d:dc: 98:66:68:00:47:2e:fa:dc:60:dc:5b:b4:bd:7f:d2: 15:f6:09:fe:30:c0:1c:b0:5e:14:1b:8c:24:34:24: 30:ea:cd:26:e9:88:07:ad:80:69:37:8b:af:45:65: c3:5c:92:40:e0:b0:34:e2:b4:ac:9d:9a:31:b5:dd: 3a:0c:8a:f6:3c:01:2c:83:ac:4c:dc:fe:f2:a4:5e: 09:58:a5:2a:27:3f:96:be:1a:c7:ea:d6:6f:49:eb: 74:40:ab:1d:c6:92:af:cb:50:7d:ac:dd:4d:3d:7d: 3a:5b:6e:78:9f:4c:30:2f:33:ee:b4:bf:2e:06:66: be:93:61:8f:da:2d:f7:e4:c3:f1:93:3c:f5:ed:f3: 22:36:94:d2:32:86:25:49:5f:89:88:bd:6a:23:6d: d7:80:c0:16:17:15:c2:37:c1:d5:62:87:4d:10:48: 27:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:75:9C:3B:4B:9C:97:2F:6C:17:B3:CC:11:A6:F3:43:E8:D2:B8:B2 X509v3 Authority Key Identifier: keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/5nWcO0ucly9sF7PMEabzQ-jSuLI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.150.133.0/24 Signature Algorithm: sha256WithRSAEncryption 57:05:72:5f:66:ca:cb:5a:e6:a3:77:fc:8a:c6:08:2c:35:6a: 9e:94:4d:7d:34:71:34:82:dd:54:81:e6:bc:d3:ad:87:1a:c8: 77:5f:b8:22:87:29:06:4e:21:5e:f7:5b:5f:71:f5:b2:f0:dd: f1:89:46:ea:77:3f:af:6e:b8:5b:2e:5e:80:fb:fa:6e:c9:bf: 04:cc:17:55:34:2c:b7:fd:bc:39:8e:b4:15:bc:06:17:ee:d9: a1:80:60:ac:b0:09:c1:bf:a7:d3:d2:8f:3d:35:c9:2e:d0:ff: 88:53:b2:e1:36:be:f2:a0:a6:be:2f:b2:92:f9:59:88:a0:62: cb:29:9b:81:c1:06:b0:17:52:ea:32:5c:21:18:24:5e:bf:8b: 56:9c:3e:7f:a3:17:fb:ad:65:c7:60:91:32:9c:a1:d7:7b:1d: e1:2b:b4:94:f6:61:b4:5b:89:aa:dc:48:76:9c:4c:3a:4b:cb: 4b:08:0c:da:5f:00:af:c0:09:c6:db:2c:42:fb:1c:66:5f:bb: d9:4d:15:25:46:9e:a7:eb:67:f4:d6:a4:80:23:f6:81:bd:2d: b3:2b:57:25:38:63:93:a1:c7:41:86:f8:69:29:c2:af:8e:82: 37:46:7d:c0:0e:4c:7f:90:ab:bf:a2:69:86:9b:4b:27:3b:bb: fc:5d:05:f2 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICD98wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yNTA4MjIw ODUwMzFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEU2NzU5QzNCNEI5Qzk3 MkY2QzE3QjNDQzExQTZGMzQzRThEMkI4QjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCylrf20WFbxI+BnbuBPSre24DnS+6dSxRMzG4j46MRqb/EXkK+ BFuWia73ieZrm1EZEz96N8gzbTfXAUuDGCClr83O+QsXtuc+vLJbRlina3vEXGO/ gQMt3JhmaABHLvrcYNxbtL1/0hX2Cf4wwBywXhQbjCQ0JDDqzSbpiAetgGk3i69F ZcNckkDgsDTitKydmjG13ToMivY8ASyDrEzc/vKkXglYpSonP5a+Gsfq1m9J63RA qx3Gkq/LUH2s3U09fTpbbnifTDAvM+60vy4GZr6TYY/aLffkw/GTPPXt8yI2lNIy hiVJX4mIvWojbdeAwBYXFcI3wdVih00QSCdRAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU5nWcO0ucly9sF7PMEabzQ+jSuLIwHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80 sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vNW5XY08wdWNseTlzRjdQTUVhYnpR LWpTdUxJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHyWhTAN BgkqhkiG9w0BAQsFAAOCAQEAVwVyX2bKy1rmo3f8isYILDVqnpRNfTRxNILdVIHm vNOthxrId1+4IocpBk4hXvdbX3H1svDd8YlG6nc/r264Wy5egPv6bsm/BMwXVTQs t/28OY60FbwGF+7ZoYBgrLAJwb+n09KPPTXJLtD/iFOy4Ta+8qCmvi+ykvlZiKBi yymbgcEGsBdS6jJcIRgkXr+LVpw+f6MX+61lx2CRMpyh13sd4Su0lPZhtFuJqtxI dpxMOkvLSwgM2l8Ar8AJxtssQvscZl+72U0VJUaep+tn9NakgCP2gb0tsytXJThj k6HHQYb4aSnCr46CN0Z9wA5Mf5Crv6JphptLJzu7/F0F8g== -----END CERTIFICATE-----Generated at Wed Nov 5 22:11:29 2025 by rpki-client