$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/teRzT-XZ4gmN484LCuz4m04Epyk.roa File: teRzT-XZ4gmN484LCuz4m04Epyk.roa (raw, json) Hash identifier: +f+YIk7gk7EB0RCMFcRuSiO6KL+gmHVjDEx05ubKVJM= Subject key identifier: B5:E4:73:4F:E5:D9:E2:09:8D:E3:CE:0B:0A:EC:F8:9B:4E:04:A7:29 Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Certificate serial: 0FC1 Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/teRzT-XZ4gmN484LCuz4m04Epyk.roa Signing time: Fri 22 Aug 2025 08:50:23 +0000 ROA not before: Fri 22 Aug 2025 08:50:23 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38843 IP address blocks: 223.27.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 01:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4033 (0xfc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Validity Not Before: Aug 22 08:50:23 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B5E4734FE5D9E2098DE3CE0B0AECF89B4E04A729 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:07:7f:64:da:90:a7:15:d5:83:4c:f4:c9:d4: cf:dd:d8:85:0c:e3:5a:22:49:4b:f5:00:1b:bb:e2: d3:60:6a:43:86:b8:b6:a5:bf:92:c2:54:04:29:a2: f5:53:56:9a:6f:0d:55:5a:ee:34:ba:92:22:e8:47: 5f:ff:9c:f0:52:2b:57:62:0d:ed:79:27:e7:25:0f: db:3e:11:b0:9a:06:80:a3:b0:81:a8:18:9d:83:a5: 6a:6d:4b:34:0e:cd:bf:52:d3:41:80:dc:cd:bf:96: 7d:0d:ef:e8:9d:75:b9:7c:16:7a:c4:b0:fa:11:72: ef:8c:a2:87:2b:63:7d:aa:fd:f1:7e:bf:0e:1a:a2: 75:7d:a4:b0:bf:14:3e:e7:7f:23:b4:84:e9:a1:bc: 00:d2:09:79:dc:86:8a:ed:31:c7:64:eb:5e:9d:88: 13:5a:08:4a:dc:5c:2c:73:b0:c4:cb:5b:ab:78:bd: 73:a6:7b:b4:85:09:66:4b:5c:fe:09:aa:f7:0c:1e: e4:12:86:8f:b4:f3:45:de:1a:0b:e9:c1:ee:4f:68: 89:cc:f1:e5:f4:cf:da:99:73:70:da:2b:e1:68:e1: 5a:ff:aa:f9:a5:b9:ee:62:83:51:2d:d4:d7:7c:41: 7f:83:38:66:85:15:3f:82:74:ac:1c:29:09:52:77: 73:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:E4:73:4F:E5:D9:E2:09:8D:E3:CE:0B:0A:EC:F8:9B:4E:04:A7:29 X509v3 Authority Key Identifier: keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/teRzT-XZ4gmN484LCuz4m04Epyk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.27.32.0/19 Signature Algorithm: sha256WithRSAEncryption 96:42:a1:40:78:79:c3:21:3c:e4:24:f8:47:4a:38:8f:15:e9: 0b:4a:9f:c8:4d:d8:43:83:65:bd:dc:58:b7:a2:9b:24:64:7c: 82:28:23:e3:65:ef:49:ba:ad:e5:70:93:61:a4:13:af:d5:7c: 43:97:90:55:24:1f:d2:2d:8d:32:09:43:72:99:15:f2:89:97: 82:0d:6a:5a:fd:66:2f:d1:f9:04:b0:a3:9f:c1:87:7b:98:01: 55:26:fb:ca:55:cb:47:9d:31:e1:3e:d6:e7:1a:33:51:37:c4: fc:28:2f:e6:63:40:3c:be:2f:78:4c:1d:55:6f:ec:99:c6:02: e8:d4:53:f7:1a:80:4d:94:c3:49:9c:70:80:bb:80:79:a4:5b: 61:20:b2:a6:57:a4:2c:1a:ac:5f:6e:ab:68:6e:8f:54:c7:ed: 94:79:23:a7:4f:3e:2a:c9:e2:02:61:ed:a7:29:b8:f9:f4:5e: 0e:f2:73:b7:ce:06:eb:26:7f:db:cc:cc:1d:c2:f2:89:89:bf: 5b:06:8d:eb:90:26:ee:e9:e8:66:7d:37:78:6a:09:f8:fb:dc: 55:89:8e:ca:3c:fd:d1:d6:35:0a:93:e5:6b:fc:bf:bd:30:74: bd:17:6b:c9:0c:8c:ff:4c:49:a8:54:85:ed:c1:b5:0f:5d:e7: 12:88:73:92 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICD8EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yNTA4MjIw ODUwMjNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEI1RTQ3MzRGRTVEOUUy MDk4REUzQ0UwQjBBRUNGODlCNEUwNEE3MjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyB39k2pCnFdWDTPTJ1M/d2IUM41oiSUv1ABu74tNgakOGuLal v5LCVAQpovVTVppvDVVa7jS6kiLoR1//nPBSK1diDe15J+clD9s+EbCaBoCjsIGo GJ2DpWptSzQOzb9S00GA3M2/ln0N7+iddbl8FnrEsPoRcu+MoocrY32q/fF+vw4a onV9pLC/FD7nfyO0hOmhvADSCXnchortMcdk616diBNaCErcXCxzsMTLW6t4vXOm e7SFCWZLXP4JqvcMHuQSho+080XeGgvpwe5PaInM8eX0z9qZc3DaK+Fo4Vr/qvml ue5ig1Et1Nd8QX+DOGaFFT+CdKwcKQlSd3PHAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUteRzT+XZ4gmN484LCuz4m04EpykwHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80 sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vdGVSelQtWFo0Z21ONDg0TEN1ejRt MDRFcHlrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBd8bIDAN BgkqhkiG9w0BAQsFAAOCAQEAlkKhQHh5wyE85CT4R0o4jxXpC0qfyE3YQ4NlvdxY t6KbJGR8gigj42XvSbqt5XCTYaQTr9V8Q5eQVSQf0i2NMglDcpkV8omXgg1qWv1m L9H5BLCjn8GHe5gBVSb7ylXLR50x4T7W5xozUTfE/Cgv5mNAPL4veEwdVW/smcYC 6NRT9xqATZTDSZxwgLuAeaRbYSCyplekLBqsX26raG6PVMftlHkjp08+KsniAmHt pym4+fReDvJzt84G6yZ/28zMHcLyiYm/WwaN65Am7unoZn03eGoJ+PvcVYmOyjz9 0dY1CpPla/y/vTB0vRdryQyM/0xJqFSF7cG1D13nEohzkg== -----END CERTIFICATE-----Generated at Wed Nov 5 22:11:43 2025 by rpki-client