$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CLARK/Ng4TCzfCqmXS1Gw47EAvoDedOn8.roa File: Ng4TCzfCqmXS1Gw47EAvoDedOn8.roa (raw, json) Hash identifier: PsNPD1JWOR3rJrJ/JEy/1EaRwA0fhlpzjqJVHc/Pd6w= Subject key identifier: 36:0E:13:0B:37:C2:AA:65:D2:D4:6C:38:EC:40:2F:A0:37:9D:3A:7F Certificate issuer: /CN=74AF0402FEF56C34A192D1D2185E6FB546AA702C Certificate serial: 02CC Authority key identifier: 74:AF:04:02:FE:F5:6C:34:A1:92:D1:D2:18:5E:6F:B5:46:AA:70:2C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/Ng4TCzfCqmXS1Gw47EAvoDedOn8.roa Signing time: Fri 22 Aug 2025 08:58:40 +0000 ROA not before: Fri 22 Aug 2025 08:58:40 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 63910 IP address blocks: 103.130.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 716 (0x2cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=74AF0402FEF56C34A192D1D2185E6FB546AA702C Validity Not Before: Aug 22 08:58:40 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=360E130B37C2AA65D2D46C38EC402FA0379D3A7F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:64:ac:9c:fd:32:df:2d:3c:34:8e:51:25:9d: e4:77:80:f5:b1:b5:f7:7c:de:e0:0f:0c:da:d4:ad: 8c:a7:fb:32:3a:b4:4a:ef:4d:41:3c:0c:36:5d:72: 28:ba:a2:48:eb:f7:3f:3d:87:91:49:87:02:3a:ed: ef:64:75:87:34:48:78:b9:63:04:80:f6:b1:b4:b3: ff:19:66:06:72:bd:fb:26:9b:08:89:a8:28:07:8d: 6c:ff:d0:b6:18:01:4c:72:b4:b5:3d:a7:2e:da:a8: 43:f8:e8:2b:23:cb:99:47:bf:af:ec:0e:e1:89:fc: 10:c9:a3:22:b9:03:34:17:27:d0:cc:b6:b3:84:9d: dd:44:b4:94:d3:a8:4b:dd:82:4e:f3:f7:8b:68:65: 46:92:74:04:a5:06:c2:76:95:58:87:88:06:6e:a0: a8:04:c9:94:f9:fd:7d:75:11:dc:64:3a:1c:e5:fd: e6:d7:9b:1d:94:e9:c9:00:6a:d7:f5:0c:71:6a:bf: e1:2b:46:4c:5b:0c:fa:d2:37:5e:0b:00:a6:75:90: 74:b7:61:ac:71:08:f9:3d:1d:b1:32:91:eb:67:10: 6c:42:bf:31:b3:c9:bc:a2:14:4d:64:bc:51:bc:bc: 5c:56:85:24:45:43:01:fe:2f:35:13:09:ad:f4:df: ca:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:0E:13:0B:37:C2:AA:65:D2:D4:6C:38:EC:40:2F:A0:37:9D:3A:7F X509v3 Authority Key Identifier: keyid:74:AF:04:02:FE:F5:6C:34:A1:92:D1:D2:18:5E:6F:B5:46:AA:70:2C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/Ng4TCzfCqmXS1Gw47EAvoDedOn8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.130.237.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:77:4c:57:fc:4c:2c:ae:e8:2a:fe:98:9f:71:1e:5f:8f:b3: 53:1f:b4:ee:65:44:56:6c:e7:2a:b6:48:d6:21:d3:09:a8:30: 7b:f7:95:29:b8:62:c6:6f:b0:47:5d:1c:d9:99:3e:bd:67:95: 41:2e:08:29:19:52:4d:d6:4d:3f:21:c9:96:00:5e:1e:0b:3d: 82:f6:40:9a:5d:27:0e:df:a7:8e:74:66:b1:7c:78:fa:2f:58: 15:c2:90:27:b4:af:dd:4e:dd:62:51:f0:16:b8:9a:45:f1:97: b7:7e:34:cb:84:41:0e:d7:d3:f8:59:eb:7a:6f:79:66:d2:8d: 7b:10:5c:3b:ce:25:c3:d3:8c:f4:53:bf:29:39:8a:90:9f:20: 7c:b2:5d:71:99:65:f8:a4:45:c5:40:f4:a3:fe:cc:41:82:1e: ca:a6:16:2b:f6:1f:90:15:4a:0c:02:f4:57:2e:95:43:57:a0: 6c:b9:de:f7:a7:a5:2f:5c:3d:6c:9b:26:6b:ad:1d:77:bb:9b: 7f:a1:05:bf:d3:e6:e5:2d:3c:11:74:43:d0:43:e5:2a:12:21: b1:d8:ef:c8:02:12:e2:d0:d4:de:60:20:79:ea:5a:cc:15:f4: 46:23:3f:8c:94:23:83:16:04:eb:57:bb:08:de:8f:dd:3c:0d: 31:5b:1a:7c -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICAswwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzRB RjA0MDJGRUY1NkMzNEExOTJEMUQyMTg1RTZGQjU0NkFBNzAyQzAeFw0yNTA4MjIw ODU4NDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDM2MEUxMzBCMzdDMkFB NjVEMkQ0NkMzOEVDNDAyRkEwMzc5RDNBN0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQChZKyc/TLfLTw0jlElneR3gPWxtfd83uAPDNrUrYyn+zI6tErv TUE8DDZdcii6okjr9z89h5FJhwI67e9kdYc0SHi5YwSA9rG0s/8ZZgZyvfsmmwiJ qCgHjWz/0LYYAUxytLU9py7aqEP46Csjy5lHv6/sDuGJ/BDJoyK5AzQXJ9DMtrOE nd1EtJTTqEvdgk7z94toZUaSdASlBsJ2lViHiAZuoKgEyZT5/X11EdxkOhzl/ebX mx2U6ckAatf1DHFqv+ErRkxbDPrSN14LAKZ1kHS3YaxxCPk9HbEyketnEGxCvzGz ybyiFE1kvFG8vFxWhSRFQwH+LzUTCa3038rpAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUNg4TCzfCqmXS1Gw47EAvoDedOn8wHwYDVR0jBBgwFoAUdK8EAv71bDShktHS GF5vtUaqcCwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0xBUksv ZEs4RUF2NzFiRFNoa3RIU0dGNXZ0VWFxY0N3LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9kSzhFQXY3MWJEU2hrdEhTR0Y1dnRVYXFjQ3cuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DTEFSSy9OZzRUQ3pmQ3FtWFMxR3c0N0VB dm9EZWRPbjgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4Lt MA0GCSqGSIb3DQEBCwUAA4IBAQB8d0xX/Ewsrugq/pifcR5fj7NTH7TuZURWbOcq tkjWIdMJqDB795UpuGLGb7BHXRzZmT69Z5VBLggpGVJN1k0/IcmWAF4eCz2C9kCa XScO36eOdGaxfHj6L1gVwpAntK/dTt1iUfAWuJpF8Ze3fjTLhEEO19P4Wet6b3lm 0o17EFw7ziXD04z0U78pOYqQnyB8sl1xmWX4pEXFQPSj/sxBgh7KphYr9h+QFUoM AvRXLpVDV6Bsud73p6UvXD1smyZrrR13u5t/oQW/0+blLTwRdEPQQ+UqEiGx2O/I AhLi0NTeYCB56lrMFfRGIz+MlCODFgTrV7sI3o/dPA0xWxp8 -----END CERTIFICATE-----Generated at Sun Aug 24 09:43:20 2025 by rpki-client