$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PNI/44sG5xI6nObR0Nd-hc8TaTCdATg.roa File: 44sG5xI6nObR0Nd-hc8TaTCdATg.roa (raw, json) Hash identifier: FJ7Le5rn60lhby1vG/m2v/XL3EBad43cQPzlEDPMoKk= Subject key identifier: E3:8B:06:E7:12:3A:9C:E6:D1:D0:D7:7E:85:CF:13:69:30:9D:01:38 Certificate issuer: /CN=3118C334DA58D7C0021DCAACA881DFB9DC8365FF Certificate serial: 0A10 Authority key identifier: 31:18:C3:34:DA:58:D7:C0:02:1D:CA:AC:A8:81:DF:B9:DC:83:65:FF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MRjDNNpY18ACHcqsqIHfudyDZf8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/44sG5xI6nObR0Nd-hc8TaTCdATg.roa Signing time: Sat 25 Oct 2025 13:23:23 +0000 ROA not before: Sat 25 Oct 2025 13:23:23 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131642 IP address blocks: 202.148.222.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/MRjDNNpY18ACHcqsqIHfudyDZf8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/MRjDNNpY18ACHcqsqIHfudyDZf8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/MRjDNNpY18ACHcqsqIHfudyDZf8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:57:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2576 (0xa10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3118C334DA58D7C0021DCAACA881DFB9DC8365FF Validity Not Before: Oct 25 13:23:23 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E38B06E7123A9CE6D1D0D77E85CF1369309D0138 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:eb:17:10:54:5f:06:8d:30:f2:2a:07:74:ca: f1:8a:0e:f3:fe:31:c0:ab:9b:d0:29:59:22:99:6a: 6f:e5:4c:b9:f4:25:29:99:eb:2f:09:b8:15:ca:46: 56:93:3f:6c:8c:5b:42:51:b5:57:22:fa:b1:d8:b4: 0a:fe:be:dd:6d:85:19:e0:73:09:5e:b9:57:31:0c: 3e:56:43:f5:9c:8e:14:13:d1:62:f9:04:e6:d2:5b: 92:25:e1:59:3f:82:d7:5b:c3:da:86:dd:9f:d3:7a: 9c:5b:7b:8a:63:eb:21:3e:55:55:4b:07:f8:fe:12: 08:fe:5b:71:03:42:c9:28:88:e8:59:9d:50:4c:79: c6:24:a1:f4:1d:71:8e:71:e0:16:e3:a4:7b:b7:06: 2a:70:b6:32:1c:cf:ee:6e:03:4e:d3:9d:4b:7d:ed: 5b:e1:4f:16:69:c8:f6:a2:db:75:d2:79:b4:c8:b2: 0d:83:8c:ec:fc:fc:2c:4b:c4:91:55:7c:8b:00:dc: 82:06:74:7b:e1:27:68:2f:15:9f:5e:e7:55:e2:64: 24:cf:f0:3e:cf:8c:25:e8:29:87:05:29:9a:67:e4: c8:2f:5f:78:e6:db:d4:47:f7:f6:8b:d3:31:d0:40: 7b:f3:ac:69:de:67:b5:58:57:7e:cf:6f:d1:9a:e9: ad:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:8B:06:E7:12:3A:9C:E6:D1:D0:D7:7E:85:CF:13:69:30:9D:01:38 X509v3 Authority Key Identifier: keyid:31:18:C3:34:DA:58:D7:C0:02:1D:CA:AC:A8:81:DF:B9:DC:83:65:FF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/MRjDNNpY18ACHcqsqIHfudyDZf8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MRjDNNpY18ACHcqsqIHfudyDZf8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/44sG5xI6nObR0Nd-hc8TaTCdATg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.148.222.0/23 Signature Algorithm: sha256WithRSAEncryption 24:84:34:5d:58:1f:ef:50:9b:00:d4:9c:29:16:cf:80:74:4f: 3b:39:88:51:93:78:2b:7e:f6:06:4d:f3:93:3d:63:86:5e:81: 94:30:92:1b:7d:f7:c6:dd:1c:60:14:f5:c0:e3:8d:27:21:2d: 0b:ca:97:a5:f6:ed:3a:41:34:0b:33:b5:5b:56:74:c9:e1:ca: 58:71:36:07:1d:cb:fd:7d:74:1d:15:74:19:89:c7:33:a9:5b: 44:65:3f:3d:ef:68:9a:07:fd:cf:a3:71:06:ec:2e:e9:af:1f: 04:93:b3:14:dd:2b:41:72:49:03:25:0b:51:d6:42:5e:dd:af: 39:11:8e:45:7f:b0:9d:65:58:ca:88:13:e0:a1:5f:11:52:69: db:36:21:7b:f6:62:13:eb:55:2c:76:a2:9b:63:95:33:20:b7: 86:24:fc:57:b2:31:85:80:d6:32:f5:04:0c:12:b5:f8:0f:c7: 53:5b:c7:3a:0e:76:95:1e:1d:f5:39:60:b3:c2:72:f8:46:a3: 7f:c8:67:80:00:3d:f1:8a:6b:a2:30:7d:b1:e5:4a:15:7d:d7: 0d:1c:87:5d:b8:8b:8e:fa:65:9c:f3:9b:ac:4e:0e:53:7f:d9: f5:5a:6a:87:fc:ed:e3:bc:56:a2:65:f3:33:5e:69:da:19:aa: c8:0c:f6:ff -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICChAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzEx OEMzMzREQTU4RDdDMDAyMURDQUFDQTg4MURGQjlEQzgzNjVGRjAeFw0yNTEwMjUx MzIzMjNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEUzOEIwNkU3MTIzQTlD RTZEMUQwRDc3RTg1Q0YxMzY5MzA5RDAxMzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCn6xcQVF8GjTDyKgd0yvGKDvP+McCrm9ApWSKZam/lTLn0JSmZ 6y8JuBXKRlaTP2yMW0JRtVci+rHYtAr+vt1thRngcwleuVcxDD5WQ/WcjhQT0WL5 BObSW5Il4Vk/gtdbw9qG3Z/Tepxbe4pj6yE+VVVLB/j+Egj+W3EDQskoiOhZnVBM ecYkofQdcY5x4BbjpHu3BipwtjIcz+5uA07TnUt97VvhTxZpyPai23XSebTIsg2D jOz8/CxLxJFVfIsA3IIGdHvhJ2gvFZ9e51XiZCTP8D7PjCXoKYcFKZpn5MgvX3jm 29RH9/aL0zHQQHvzrGneZ7VYV37Pb9Ga6a3rAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU44sG5xI6nObR0Nd+hc8TaTCdATgwHwYDVR0jBBgwFoAUMRjDNNpY18ACHcqs qIHfudyDZf8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUE5JL01S akROTnBZMThBQ0hjcXNxSUhmdWR5RFpmOC5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev TVJqRE5OcFkxOEFDSGNxc3FJSGZ1ZHlEWmY4LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvUE5JLzQ0c0c1eEk2bk9iUjBOZC1oYzhUYVRD ZEFUZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKlN4wDQYJ KoZIhvcNAQELBQADggEBACSENF1YH+9QmwDUnCkWz4B0Tzs5iFGTeCt+9gZN85M9 Y4ZegZQwkht998bdHGAU9cDjjSchLQvKl6X27TpBNAsztVtWdMnhylhxNgcdy/19 dB0VdBmJxzOpW0RlPz3vaJoH/c+jcQbsLumvHwSTsxTdK0FySQMlC1HWQl7drzkR jkV/sJ1lWMqIE+ChXxFSads2IXv2YhPrVSx2optjlTMgt4Yk/FeyMYWA1jL1BAwS tfgPx1NbxzoOdpUeHfU5YLPCcvhGo3/IZ4AAPfGKa6IwfbHlShV91w0ch124i476 ZZzzm6xODlN/2fVaaof87eO8VqJl8zNeadoZqsgM9v8= -----END CERTIFICATE-----Generated at Sun Oct 26 03:38:29 2025 by rpki-client