$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CLARK/7TkXfDVq1uzZaKFfiFc7RC7dXt0.roa File: 7TkXfDVq1uzZaKFfiFc7RC7dXt0.roa (raw, json) Hash identifier: 6K3vxXAtFqfR+S22KzKUxLd6J62nFcd9DwibHNPlyGg= Subject key identifier: ED:39:17:7C:35:6A:D6:EC:D9:68:A1:5F:88:57:3B:44:2E:DD:5E:DD Certificate issuer: /CN=74AF0402FEF56C34A192D1D2185E6FB546AA702C Certificate serial: 02CA Authority key identifier: 74:AF:04:02:FE:F5:6C:34:A1:92:D1:D2:18:5E:6F:B5:46:AA:70:2C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/7TkXfDVq1uzZaKFfiFc7RC7dXt0.roa Signing time: Fri 22 Aug 2025 08:58:39 +0000 ROA not before: Fri 22 Aug 2025 08:58:39 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 63910 IP address blocks: 103.130.236.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 714 (0x2ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=74AF0402FEF56C34A192D1D2185E6FB546AA702C Validity Not Before: Aug 22 08:58:39 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=ED39177C356AD6ECD968A15F88573B442EDD5EDD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:4d:2f:fc:6c:a7:ae:44:4d:3d:87:0d:ab:bb: 99:0e:1e:e2:ce:29:cc:ae:f2:5e:31:2b:1e:e6:90: 25:e9:a3:ac:80:45:eb:72:96:64:90:24:a6:6f:1a: d3:b7:9c:c1:bd:26:be:ee:c1:83:be:10:31:49:26: 0b:7a:7d:33:cf:58:ab:3e:0a:94:16:aa:a4:ba:d6: 4a:48:eb:61:83:85:b3:7b:62:2f:0e:b8:e6:25:a7: f3:0e:d2:c5:62:42:1c:b4:bd:c5:dc:24:dc:7b:5b: a2:ba:e6:ea:d6:9a:f7:67:77:04:7f:d5:28:df:9f: 6d:fb:74:5c:1e:f1:5e:5c:fd:fc:a2:02:21:d9:03: e2:72:7e:82:ca:e7:a4:ce:7d:24:e2:77:ac:1f:d0: 23:21:e7:8c:24:65:0f:35:e5:b2:b5:ac:0a:07:87: a7:9b:69:bc:58:2b:32:46:c9:87:c5:35:6f:25:11: 9a:2c:95:44:50:21:e6:b7:dd:f1:25:bf:77:f8:37: f9:58:be:94:f8:2a:fe:b8:8d:04:df:3a:be:82:ed: 12:58:63:2b:fd:35:88:d4:53:c1:01:2d:e9:71:1d: 50:75:54:a4:5e:fa:56:d2:c5:e6:e3:45:cb:8e:a6: 93:94:00:e0:f5:57:16:0a:5a:67:ce:20:4d:ee:ec: 2f:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:39:17:7C:35:6A:D6:EC:D9:68:A1:5F:88:57:3B:44:2E:DD:5E:DD X509v3 Authority Key Identifier: keyid:74:AF:04:02:FE:F5:6C:34:A1:92:D1:D2:18:5E:6F:B5:46:AA:70:2C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/7TkXfDVq1uzZaKFfiFc7RC7dXt0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.130.236.0/23 Signature Algorithm: sha256WithRSAEncryption b6:31:c1:61:f7:f1:44:3a:a2:0b:b0:c9:c5:ac:91:a7:e8:7b: 97:da:02:54:7c:ee:2c:cd:62:d1:f2:1a:25:26:cc:e7:5d:dc: 5a:81:8f:87:14:6f:32:2d:5c:70:39:0a:92:42:1f:8a:3e:07: d8:1f:0e:f5:4c:c4:15:96:1c:75:6f:40:07:7a:06:93:81:01: 38:df:ab:d7:39:52:8d:70:7a:c6:3c:8a:87:0c:aa:cb:4b:e3: 2a:72:4b:05:78:72:86:4f:c4:b5:62:b0:8a:50:b5:34:2e:3d: 83:1b:65:48:67:63:fc:23:eb:81:33:f0:14:c0:1c:0a:6f:8e: d0:e5:80:42:61:02:ba:e9:53:16:34:7a:bb:a3:70:dd:f4:b8: 56:7f:90:80:89:30:7b:9e:3c:42:a7:65:7c:22:2c:33:ea:f1: bf:8b:22:c2:2e:7d:b6:a1:a6:b7:d7:dd:97:98:6c:12:7f:33: b7:80:35:60:c7:04:c6:68:58:74:ad:ae:ae:04:17:43:0d:4e: 78:85:97:5a:36:79:9c:fa:1d:4f:d4:28:06:c7:75:bd:fb:90: cd:f3:50:bf:5c:6c:3b:5e:ce:60:40:5c:51:43:8a:99:56:b7: 2f:ab:27:f1:49:96:25:4e:5e:f9:24:90:bd:22:6a:05:75:50: c2:3c:2d:83 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICAsowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzRB RjA0MDJGRUY1NkMzNEExOTJEMUQyMTg1RTZGQjU0NkFBNzAyQzAeFw0yNTA4MjIw ODU4MzlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEVEMzkxNzdDMzU2QUQ2 RUNEOTY4QTE1Rjg4NTczQjQ0MkVERDVFREQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvTS/8bKeuRE09hw2ru5kOHuLOKcyu8l4xKx7mkCXpo6yARety lmSQJKZvGtO3nMG9Jr7uwYO+EDFJJgt6fTPPWKs+CpQWqqS61kpI62GDhbN7Yi8O uOYlp/MO0sViQhy0vcXcJNx7W6K65urWmvdndwR/1Sjfn237dFwe8V5c/fyiAiHZ A+JyfoLK56TOfSTid6wf0CMh54wkZQ815bK1rAoHh6ebabxYKzJGyYfFNW8lEZos lURQIea33fElv3f4N/lYvpT4Kv64jQTfOr6C7RJYYyv9NYjUU8EBLelxHVB1VKRe +lbSxebjRcuOppOUAOD1VxYKWmfOIE3u7C+VAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU7TkXfDVq1uzZaKFfiFc7RC7dXt0wHwYDVR0jBBgwFoAUdK8EAv71bDShktHS GF5vtUaqcCwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0xBUksv ZEs4RUF2NzFiRFNoa3RIU0dGNXZ0VWFxY0N3LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9kSzhFQXY3MWJEU2hrdEhTR0Y1dnRVYXFjQ3cuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DTEFSSy83VGtYZkRWcTF1elphS0ZmaUZj N1JDN2RYdDAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4Ls MA0GCSqGSIb3DQEBCwUAA4IBAQC2McFh9/FEOqILsMnFrJGn6HuX2gJUfO4szWLR 8holJsznXdxagY+HFG8yLVxwOQqSQh+KPgfYHw71TMQVlhx1b0AHegaTgQE436vX OVKNcHrGPIqHDKrLS+MqcksFeHKGT8S1YrCKULU0Lj2DG2VIZ2P8I+uBM/AUwBwK b47Q5YBCYQK66VMWNHq7o3Dd9LhWf5CAiTB7njxCp2V8Iiwz6vG/iyLCLn22oaa3 192XmGwSfzO3gDVgxwTGaFh0ra6uBBdDDU54hZdaNnmc+h1P1CgGx3W9+5DN81C/ XGw7Xs5gQFxRQ4qZVrcvqyfxSZYlTl75JJC9ImoFdVDCPC2D -----END CERTIFICATE-----Generated at Sun Aug 24 09:39:01 2025 by rpki-client