$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CLARK/-zOZ-3_fo8tpQIfEWc2NXMfhUCM.roa File: -zOZ-3_fo8tpQIfEWc2NXMfhUCM.roa (raw, json) Hash identifier: LHQTyIR3LBJdsKp6X31L7Vt1B4EE8ydFAkCGpIgZpuY= Subject key identifier: FB:33:99:FB:7F:DF:A3:CB:69:40:87:C4:59:CD:8D:5C:C7:E1:50:23 Certificate issuer: /CN=74AF0402FEF56C34A192D1D2185E6FB546AA702C Certificate serial: 02CD Authority key identifier: 74:AF:04:02:FE:F5:6C:34:A1:92:D1:D2:18:5E:6F:B5:46:AA:70:2C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/-zOZ-3_fo8tpQIfEWc2NXMfhUCM.roa Signing time: Fri 22 Aug 2025 08:58:40 +0000 ROA not before: Fri 22 Aug 2025 08:58:40 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 63910 IP address blocks: 103.130.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 717 (0x2cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=74AF0402FEF56C34A192D1D2185E6FB546AA702C Validity Not Before: Aug 22 08:58:40 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=FB3399FB7FDFA3CB694087C459CD8D5CC7E15023 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:85:cc:d2:bf:f1:ce:11:96:83:7b:8c:d1:af: c4:80:c5:b4:6a:5f:88:95:16:1d:a1:01:08:eb:9f: 4a:2e:0a:2f:dc:a2:14:e6:8e:5e:9a:f5:17:6e:00: 99:67:df:79:37:c4:36:38:8d:fa:1d:1f:aa:7f:e0: 07:df:53:df:82:2d:3d:95:f8:4a:75:72:69:87:c0: d4:a3:2c:9a:37:97:93:4d:d9:56:ae:7b:99:c2:ec: d7:ba:8c:ec:b6:50:b3:83:5d:c5:ea:57:ab:94:9e: 84:5c:38:2b:60:02:c3:a7:82:03:07:c1:75:55:2c: 0b:68:d2:fd:4a:bf:c9:55:35:78:57:60:20:20:60: 78:d0:58:3e:21:e5:70:64:02:4f:f2:41:10:c1:1c: 96:25:0b:e5:38:22:1b:69:af:d7:4c:78:bd:a6:bc: 29:35:90:5a:eb:85:57:e7:94:b5:4d:d6:7f:28:52: 94:8e:5e:14:1f:35:0b:0e:a1:0b:16:a6:7f:5f:a7: a0:ae:a5:65:20:0b:04:d0:12:9b:54:30:2d:a7:ba: 20:ef:6d:cd:69:84:71:66:61:28:94:5f:11:fe:ba: 9d:7a:91:76:f2:82:76:f8:b7:17:2e:18:65:2b:52: 53:34:f2:ac:a5:b7:3f:c9:9a:a1:26:dd:24:3b:cc: 85:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:33:99:FB:7F:DF:A3:CB:69:40:87:C4:59:CD:8D:5C:C7:E1:50:23 X509v3 Authority Key Identifier: keyid:74:AF:04:02:FE:F5:6C:34:A1:92:D1:D2:18:5E:6F:B5:46:AA:70:2C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/-zOZ-3_fo8tpQIfEWc2NXMfhUCM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.130.236.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:eb:53:c4:04:f2:64:84:a3:98:2c:6c:eb:03:9f:52:3e:86: df:64:a5:f0:e0:b3:b6:5e:b8:04:6e:b0:ca:f7:6b:e3:e2:f4: 96:d0:35:dc:74:93:67:d5:ee:49:75:01:c2:33:6f:13:1e:72: 85:06:9d:23:43:2a:78:2d:73:a8:86:04:74:5b:8e:c5:47:95: 2d:d1:59:af:53:6a:99:0b:f8:63:19:38:8d:48:6e:76:2b:6c: 26:96:3f:c4:78:e1:e3:8b:e2:dc:fd:95:75:68:a1:00:c4:34: 0c:b1:dd:8a:51:5d:1f:62:e1:51:9e:a4:bf:86:04:b4:80:c1: d5:45:a3:06:62:aa:18:18:48:db:4d:25:2a:26:d8:85:5b:99: 9b:eb:2b:5e:d8:06:77:3d:14:dd:a4:c9:88:53:bc:2e:03:b7: ad:1f:73:bb:5a:87:bb:c7:05:0d:98:ae:53:0a:8b:09:92:d0: fc:50:c5:45:31:de:d9:8e:70:48:94:5e:2a:4a:60:54:3b:04: 6d:76:5d:7a:6e:49:f8:c3:41:aa:c6:4b:1f:77:7a:87:d1:20: 57:a5:59:88:c5:cb:01:83:a4:14:8a:f3:ce:8c:f7:57:c8:67: 69:bc:2b:ea:a4:a6:f7:9e:bc:dd:82:c3:81:4b:30:c9:af:62: 11:88:8d:37 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICAs0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzRB RjA0MDJGRUY1NkMzNEExOTJEMUQyMTg1RTZGQjU0NkFBNzAyQzAeFw0yNTA4MjIw ODU4NDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEZCMzM5OUZCN0ZERkEz Q0I2OTQwODdDNDU5Q0Q4RDVDQzdFMTUwMjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0hczSv/HOEZaDe4zRr8SAxbRqX4iVFh2hAQjrn0ouCi/cohTm jl6a9RduAJln33k3xDY4jfodH6p/4AffU9+CLT2V+Ep1cmmHwNSjLJo3l5NN2Vau e5nC7Ne6jOy2ULODXcXqV6uUnoRcOCtgAsOnggMHwXVVLAto0v1Kv8lVNXhXYCAg YHjQWD4h5XBkAk/yQRDBHJYlC+U4Ihtpr9dMeL2mvCk1kFrrhVfnlLVN1n8oUpSO XhQfNQsOoQsWpn9fp6CupWUgCwTQEptUMC2nuiDvbc1phHFmYSiUXxH+up16kXby gnb4txcuGGUrUlM08qyltz/JmqEm3SQ7zIVFAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU+zOZ+3/fo8tpQIfEWc2NXMfhUCMwHwYDVR0jBBgwFoAUdK8EAv71bDShktHS GF5vtUaqcCwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0xBUksv ZEs4RUF2NzFiRFNoa3RIU0dGNXZ0VWFxY0N3LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9kSzhFQXY3MWJEU2hrdEhTR0Y1dnRVYXFjQ3cuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DTEFSSy8tek9aLTNfZm84dHBRSWZFV2My TlhNZmhVQ00ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4Ls MA0GCSqGSIb3DQEBCwUAA4IBAQCL61PEBPJkhKOYLGzrA59SPobfZKXw4LO2XrgE brDK92vj4vSW0DXcdJNn1e5JdQHCM28THnKFBp0jQyp4LXOohgR0W47FR5Ut0Vmv U2qZC/hjGTiNSG52K2wmlj/EeOHji+Lc/ZV1aKEAxDQMsd2KUV0fYuFRnqS/hgS0 gMHVRaMGYqoYGEjbTSUqJtiFW5mb6yte2AZ3PRTdpMmIU7wuA7etH3O7Woe7xwUN mK5TCosJktD8UMVFMd7ZjnBIlF4qSmBUOwRtdl16bkn4w0Gqxksfd3qH0SBXpVmI xcsBg6QUivPOjPdXyGdpvCvqpKb3nrzdgsOBSzDJr2IRiI03 -----END CERTIFICATE-----Generated at Sun Aug 24 09:39:33 2025 by rpki-client