$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/AMZN/v8spSP5EMlw6RDQpsm7MKj-CSMA.roa File: v8spSP5EMlw6RDQpsm7MKj-CSMA.roa (raw, json) Hash identifier: Cvkv1ROWjR3bug8gYbTMb6MzMMyK5eSDEtizPvkUgWQ= Subject key identifier: BF:CB:29:48:FE:44:32:5C:3A:44:34:29:B2:6E:CC:2A:3F:82:48:C0 Certificate issuer: /CN=655679B564FF9DD15745A99C75189C02FC81258E Certificate serial: 0281 Authority key identifier: 65:56:79:B5:64:FF:9D:D1:57:45:A9:9C:75:18:9C:02:FC:81:25:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZVZ5tWT_ndFXRamcdRicAvyBJY4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AMZN/v8spSP5EMlw6RDQpsm7MKj-CSMA.roa Signing time: Fri 22 Aug 2025 09:02:05 +0000 ROA not before: Fri 22 Aug 2025 09:02:05 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 7538 IP address blocks: 103.149.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/AMZN/ZVZ5tWT_ndFXRamcdRicAvyBJY4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/AMZN/ZVZ5tWT_ndFXRamcdRicAvyBJY4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ZVZ5tWT_ndFXRamcdRicAvyBJY4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 641 (0x281) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=655679B564FF9DD15745A99C75189C02FC81258E Validity Not Before: Aug 22 09:02:05 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=BFCB2948FE44325C3A443429B26ECC2A3F8248C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:d4:5a:c0:dd:79:1c:d8:af:2c:7f:a3:7b:39: 83:a5:fb:5c:8e:4e:4a:9e:db:0d:ce:dd:5e:55:86: 39:a9:0e:0e:2e:a7:8e:21:0b:d5:66:3e:39:b8:87: 78:0d:80:68:b4:fb:65:4f:a6:67:51:80:37:16:70: 38:92:03:55:15:5e:4f:b2:48:58:7a:1c:81:61:09: 16:47:dd:43:e3:9b:e7:43:ca:24:00:af:94:33:f7: 27:0a:c0:67:40:d4:e2:85:42:2c:44:95:c7:1b:5c: 9a:83:4a:25:a8:b4:04:8d:b7:11:54:6b:86:9e:e7: a2:a5:17:d3:af:7b:32:ba:21:98:a5:b8:26:1f:28: 97:a2:a5:c1:f8:c9:e1:ba:9f:a1:bf:fe:03:5e:f5: c0:d5:19:9d:2c:5a:a8:98:a9:eb:55:3f:57:6a:b2: 0c:f9:a6:0d:fb:8f:30:30:42:20:a4:9f:6e:7c:15: fa:2f:68:76:10:f0:89:fc:13:7f:2d:d8:36:3c:02: c0:19:e9:be:99:86:81:d7:88:fe:7c:5e:78:ce:fd: 1f:ff:c4:68:03:2d:ea:3e:4b:c8:97:45:c6:0c:ee: 26:5e:61:99:a3:e1:f8:d6:a4:d6:2e:a3:d1:38:ae: b5:c9:02:ab:2f:bd:41:54:13:ec:51:1e:d6:d6:35: 45:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:CB:29:48:FE:44:32:5C:3A:44:34:29:B2:6E:CC:2A:3F:82:48:C0 X509v3 Authority Key Identifier: keyid:65:56:79:B5:64:FF:9D:D1:57:45:A9:9C:75:18:9C:02:FC:81:25:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AMZN/ZVZ5tWT_ndFXRamcdRicAvyBJY4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZVZ5tWT_ndFXRamcdRicAvyBJY4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AMZN/v8spSP5EMlw6RDQpsm7MKj-CSMA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.149.151.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:b2:7a:db:9d:e6:aa:4f:9c:30:14:41:90:d0:6a:46:c1:a3: f7:40:ba:23:6e:0d:33:e2:6c:0d:92:75:8e:34:d8:a1:65:a1: c5:cb:4a:ea:98:e1:a1:8d:a7:41:eb:65:7a:ba:f6:6c:f3:37: af:44:e6:16:cd:49:9d:95:84:12:2d:2a:da:56:72:a2:3f:a6: 2b:42:c9:9f:2f:7f:6d:da:3e:50:a7:1e:79:c2:7e:88:1b:e1: 8f:c6:ee:82:74:d6:4c:70:a8:27:04:ea:b3:6d:9e:cf:e0:dd: 81:ce:4d:71:a2:94:22:bb:10:c0:20:97:0d:9e:5a:e7:41:e5: f4:d4:86:7d:ac:83:38:fe:02:ad:5e:0a:83:e1:29:d5:46:ef: 8c:78:48:ac:bc:f0:0b:7b:52:d4:35:36:d4:0c:9a:78:7a:63: eb:9e:d8:bc:f3:20:d4:1a:02:b5:ce:42:c2:d1:b2:9f:35:5b: fd:31:ac:c0:38:64:14:48:00:ee:c5:ef:f0:23:bc:3c:7b:08: 78:74:41:c5:39:55:f5:fc:6d:33:16:37:c4:b5:f7:c3:7a:d1: 35:eb:3d:ea:45:fb:3b:3b:5a:94:dc:41:0e:1a:76:32:0b:33: 01:13:45:2b:b3:ff:2a:bb:80:8e:3a:b7:bf:10:05:c7:c0:5f: e3:00:49:89 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICAoEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjU1 Njc5QjU2NEZGOUREMTU3NDVBOTlDNzUxODlDMDJGQzgxMjU4RTAeFw0yNTA4MjIw OTAyMDVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEJGQ0IyOTQ4RkU0NDMy NUMzQTQ0MzQyOUIyNkVDQzJBM0Y4MjQ4QzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDY1FrA3Xkc2K8sf6N7OYOl+1yOTkqe2w3O3V5VhjmpDg4up44h C9VmPjm4h3gNgGi0+2VPpmdRgDcWcDiSA1UVXk+ySFh6HIFhCRZH3UPjm+dDyiQA r5Qz9ycKwGdA1OKFQixElccbXJqDSiWotASNtxFUa4ae56KlF9OvezK6IZiluCYf KJeipcH4yeG6n6G//gNe9cDVGZ0sWqiYqetVP1dqsgz5pg37jzAwQiCkn258Ffov aHYQ8In8E38t2DY8AsAZ6b6ZhoHXiP58XnjO/R//xGgDLeo+S8iXRcYM7iZeYZmj 4fjWpNYuo9E4rrXJAqsvvUFUE+xRHtbWNUWfAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUv8spSP5EMlw6RDQpsm7MKj+CSMAwHwYDVR0jBBgwFoAUZVZ5tWT/ndFXRamc dRicAvyBJY4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQU1aTi9a Vlo1dFdUX25kRlhSYW1jZFJpY0F2eUJKWTQuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L1pWWjV0V1RfbmRGWFJhbWNkUmljQXZ5QkpZNC5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0FNWk4vdjhzcFNQNUVNbHc2UkRRcHNtN01L ai1DU01BLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeVlzAN BgkqhkiG9w0BAQsFAAOCAQEAKrJ6253mqk+cMBRBkNBqRsGj90C6I24NM+JsDZJ1 jjTYoWWhxctK6pjhoY2nQetlerr2bPM3r0TmFs1JnZWEEi0q2lZyoj+mK0LJny9/ bdo+UKceecJ+iBvhj8bugnTWTHCoJwTqs22ez+Ddgc5NcaKUIrsQwCCXDZ5a50Hl 9NSGfayDOP4CrV4Kg+Ep1UbvjHhIrLzwC3tS1DU21AyaeHpj657YvPMg1BoCtc5C wtGynzVb/TGswDhkFEgA7sXv8CO8PHsIeHRBxTlV9fxtMxY3xLX3w3rRNes96kX7 OztalNxBDhp2MgszARNFK7P/KruAjjq3vxAFx8Bf4wBJiQ== -----END CERTIFICATE-----Generated at Sun Aug 24 09:55:42 2025 by rpki-client