$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/juW6dHs9Ia_DdBaiQZdcp6U8JgE.roa File: juW6dHs9Ia_DdBaiQZdcp6U8JgE.roa (raw, json) Hash identifier: wj1RglvoNTBPN/gGItpC3ffMS3cJ0XmdhRmcTo2Azfs= Subject key identifier: 8E:E5:BA:74:7B:3D:21:AF:C3:74:16:A2:41:97:5C:A7:A5:3C:26:01 Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Certificate serial: 0FB9 Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/juW6dHs9Ia_DdBaiQZdcp6U8JgE.roa Signing time: Fri 22 Aug 2025 08:50:21 +0000 ROA not before: Fri 22 Aug 2025 08:50:21 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38843 IP address blocks: 223.27.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 01:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4025 (0xfb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Validity Not Before: Aug 22 08:50:21 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8EE5BA747B3D21AFC37416A241975CA7A53C2601 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:2d:2e:ff:ce:7a:d3:58:7f:d7:a8:d9:9d:d0: 1d:5a:b6:78:e7:db:03:63:09:df:78:3c:98:f8:d8: 83:9a:11:9f:01:3a:64:07:12:d1:8f:f9:fb:12:39: e9:9a:71:5b:9c:8e:7b:b0:88:36:d5:e0:48:2d:cc: e6:46:cd:c5:ba:bc:b7:c1:83:b6:05:6e:d1:22:8f: 62:a5:b0:ef:10:21:76:16:5f:22:56:1c:db:a7:85: 5d:56:0f:0a:b8:b7:e2:8b:f8:46:97:f9:9e:8b:ea: 85:40:56:63:cd:e5:bb:77:66:4d:fe:fe:92:00:dc: a7:92:41:fa:7c:64:37:a3:73:1d:2b:70:08:ff:85: 07:fe:65:a7:2f:4d:d8:a1:95:d4:a4:8c:d2:99:31: 3d:d7:c2:55:fe:72:12:2f:60:d3:c2:bd:46:7d:ae: e7:4e:06:26:4c:43:44:8b:26:cb:d2:d7:a5:2c:f8: 01:86:94:a6:f8:55:41:c0:2d:6f:d8:7f:0e:69:7f: 19:c0:a7:5f:25:39:70:c1:69:b1:ef:4e:37:91:e1: 58:f1:6e:6d:bd:43:b4:bb:55:35:f8:c9:92:34:2e: 28:c9:35:15:1b:bb:c6:03:6a:10:ea:08:06:8e:ac: c4:f9:6b:5e:a9:0e:bb:f1:86:e4:5f:53:51:5f:d5: 44:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:E5:BA:74:7B:3D:21:AF:C3:74:16:A2:41:97:5C:A7:A5:3C:26:01 X509v3 Authority Key Identifier: keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/juW6dHs9Ia_DdBaiQZdcp6U8JgE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.27.53.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:24:8a:70:d9:76:4f:4e:51:58:7e:54:fe:47:bc:c1:4a:ae: 2f:78:9d:e5:06:21:ae:ec:a1:8d:aa:5d:f3:e3:c9:bf:34:6c: b0:15:cb:d9:c6:fb:db:17:c9:78:9d:84:87:81:2d:b8:df:2d: dc:92:ef:1a:8d:d7:cb:19:f7:4f:80:f7:1b:89:95:61:ef:4f: 28:0c:6c:00:18:d7:b4:02:f8:72:a3:23:c4:21:f8:71:0e:32: 77:c1:de:59:98:13:25:bd:36:31:8d:54:2f:67:af:a9:ff:b3: 51:2d:24:46:db:a0:ab:7a:c7:fc:6d:56:e1:c2:a0:43:62:72: a3:f9:67:ae:cf:f6:d3:09:a3:74:f8:a3:cd:c0:41:51:44:ef: 3b:be:70:f5:76:a6:d1:e9:84:66:c5:e7:10:91:68:6f:cc:ae: 4c:ac:7d:7e:c0:48:39:c2:b2:37:b7:83:2b:95:1a:b0:e8:ac: 1f:90:f9:12:23:e2:98:24:70:e7:fc:b3:fc:ed:b1:23:83:c8: 7b:23:cf:81:38:bf:58:c6:fb:4e:d9:5c:d7:6c:73:06:0c:f6: bf:40:61:ed:54:96:39:b0:48:0c:ec:c8:17:9e:3c:9d:85:2f: aa:8f:e4:02:f0:b3:aa:16:eb:79:63:15:2e:b2:90:7a:24:0e: 5b:02:37:45 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICD7kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yNTA4MjIw ODUwMjFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDhFRTVCQTc0N0IzRDIx QUZDMzc0MTZBMjQxOTc1Q0E3QTUzQzI2MDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtLS7/znrTWH/XqNmd0B1atnjn2wNjCd94PJj42IOaEZ8BOmQH EtGP+fsSOemacVucjnuwiDbV4EgtzOZGzcW6vLfBg7YFbtEij2KlsO8QIXYWXyJW HNunhV1WDwq4t+KL+EaX+Z6L6oVAVmPN5bt3Zk3+/pIA3KeSQfp8ZDejcx0rcAj/ hQf+ZacvTdihldSkjNKZMT3XwlX+chIvYNPCvUZ9rudOBiZMQ0SLJsvS16Us+AGG lKb4VUHALW/Yfw5pfxnAp18lOXDBabHvTjeR4Vjxbm29Q7S7VTX4yZI0LijJNRUb u8YDahDqCAaOrMT5a16pDrvxhuRfU1Ff1URJAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUjuW6dHs9Ia/DdBaiQZdcp6U8JgEwHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80 sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vanVXNmRIczlJYV9EZEJhaVFaZGNw NlU4SmdFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAN8bNTAN BgkqhkiG9w0BAQsFAAOCAQEATiSKcNl2T05RWH5U/ke8wUquL3id5QYhruyhjapd 8+PJvzRssBXL2cb72xfJeJ2Eh4EtuN8t3JLvGo3Xyxn3T4D3G4mVYe9PKAxsABjX tAL4cqMjxCH4cQ4yd8HeWZgTJb02MY1UL2evqf+zUS0kRtugq3rH/G1W4cKgQ2Jy o/lnrs/20wmjdPijzcBBUUTvO75w9Xam0emEZsXnEJFob8yuTKx9fsBIOcKyN7eD K5UasOisH5D5EiPimCRw5/yz/O2xI4PIeyPPgTi/WMb7Ttlc12xzBgz2v0Bh7VSW ObBIDOzIF548nYUvqo/kAvCzqhbreWMVLrKQeiQOWwI3RQ== -----END CERTIFICATE-----Generated at Wed Nov 5 22:11:26 2025 by rpki-client