$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LANDBANK/YHleF7_kz3sN9-MS2zVeEnMZDBg.roa File: YHleF7_kz3sN9-MS2zVeEnMZDBg.roa (raw, json) Hash identifier: ru+ssyvLkWfTwnR5xt0ukIc4VPKj+oh3xy8lz14ETvY= Subject key identifier: 60:79:5E:17:BF:E4:CF:7B:0D:F7:E3:12:DB:35:5E:12:73:19:0C:18 Certificate issuer: /CN=9ECBF170F7F7D2290E6AED39CA8D238F66072B7A Certificate serial: 0D81 Authority key identifier: 9E:CB:F1:70:F7:F7:D2:29:0E:6A:ED:39:CA:8D:23:8F:66:07:2B:7A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/nsvxcPf30ikOau05yo0jj2YHK3o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LANDBANK/YHleF7_kz3sN9-MS2zVeEnMZDBg.roa Signing time: Fri 22 Aug 2025 08:57:12 +0000 ROA not before: Fri 22 Aug 2025 08:57:12 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 3462 IP address blocks: 2407:4700::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LANDBANK/nsvxcPf30ikOau05yo0jj2YHK3o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LANDBANK/nsvxcPf30ikOau05yo0jj2YHK3o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/nsvxcPf30ikOau05yo0jj2YHK3o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3457 (0xd81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ECBF170F7F7D2290E6AED39CA8D238F66072B7A Validity Not Before: Aug 22 08:57:12 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=60795E17BFE4CF7B0DF7E312DB355E1273190C18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:9a:98:0a:27:b3:7e:c0:45:6b:ee:98:91:da: 40:56:7a:0c:3a:b2:03:79:42:ea:21:a7:23:01:35: 57:ba:f5:32:ce:af:9c:bf:42:7b:2c:c0:a2:c3:ea: b3:68:c5:7a:c0:93:cb:4d:c8:d7:de:a5:48:5a:4c: 66:c9:1c:de:fa:26:84:08:30:a9:cf:3a:5f:ed:83: 21:11:4d:df:09:39:2a:33:85:e8:16:b0:74:31:d1: f4:63:76:80:5c:1f:78:da:ab:23:f5:89:69:d5:9e: 6d:bb:bf:bf:36:87:d3:4c:56:54:f1:93:c0:73:a6: 37:b4:97:84:39:c8:a6:63:33:55:64:fe:9d:a7:fc: 6d:a3:5b:d9:f8:be:53:ed:26:d4:d9:0c:44:26:49: 94:97:4c:83:ab:14:a2:0b:58:db:5c:d7:23:63:7f: b7:f2:2e:fe:fd:2e:18:49:ed:e1:a8:65:17:f5:6e: df:b6:77:a0:20:f0:96:f5:d6:6c:08:cc:5f:fb:8b: f9:78:00:2d:a5:60:85:d3:11:bc:0f:14:5e:ae:c8: 4c:e5:e4:0d:f0:7b:ce:3a:f6:42:21:2a:c1:c7:1a: 64:29:bd:f8:dc:7a:b0:6f:da:cb:7e:66:ad:6e:35: ea:d9:cf:fd:d4:83:b4:9c:06:f0:3b:02:68:a7:55: 06:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:79:5E:17:BF:E4:CF:7B:0D:F7:E3:12:DB:35:5E:12:73:19:0C:18 X509v3 Authority Key Identifier: keyid:9E:CB:F1:70:F7:F7:D2:29:0E:6A:ED:39:CA:8D:23:8F:66:07:2B:7A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LANDBANK/nsvxcPf30ikOau05yo0jj2YHK3o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/nsvxcPf30ikOau05yo0jj2YHK3o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LANDBANK/YHleF7_kz3sN9-MS2zVeEnMZDBg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:4700::/32 Signature Algorithm: sha256WithRSAEncryption 28:80:8d:df:e9:ec:ca:32:24:1b:6a:06:fa:93:a4:57:6b:89: bb:e2:b4:ab:c4:aa:f2:7f:d6:8b:0c:e4:ee:b8:92:44:85:84: e7:01:c6:5f:90:17:5c:6d:f1:61:d6:1d:29:17:ba:d0:fc:e1: 68:c5:96:26:a1:6c:84:d5:b9:18:1c:c0:1f:d6:89:a7:0c:fb: 6f:a8:da:be:4f:2e:16:38:d6:fc:e1:96:49:ca:88:f2:7a:31: e0:bf:15:89:d1:5b:ce:20:c4:c0:c2:7f:1b:af:53:d1:27:a8: 21:95:53:f6:f5:b2:63:4a:46:04:a6:9a:15:73:ea:e6:41:70: 5c:5a:30:d8:c8:a1:76:15:1f:52:7e:99:d0:fe:f8:d0:c0:bf: db:49:d5:90:a2:8f:49:4c:53:d2:46:16:d2:9e:82:57:17:84: 7d:57:c0:d7:31:ec:45:38:97:d0:eb:35:43:6f:2a:a7:3e:c2: 35:c7:27:bd:f1:f7:b6:5a:6d:1a:15:b6:3f:c1:7a:0b:8f:9c: 7d:1c:44:a1:79:a4:81:48:39:a8:96:39:eb:fc:df:27:36:c3: f8:bf:ff:06:8f:ac:5b:82:a5:8f:4b:26:0f:a0:c5:3a:87:c6: 9f:5b:bd:fc:64:84:07:99:e9:46:d4:91:c7:96:45:6d:b0:3c: f4:d7:95:80 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICDYEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUVD QkYxNzBGN0Y3RDIyOTBFNkFFRDM5Q0E4RDIzOEY2NjA3MkI3QTAeFw0yNTA4MjIw ODU3MTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDYwNzk1RTE3QkZFNENG N0IwREY3RTMxMkRCMzU1RTEyNzMxOTBDMTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQmpgKJ7N+wEVr7piR2kBWegw6sgN5QuohpyMBNVe69TLOr5y/ QnsswKLD6rNoxXrAk8tNyNfepUhaTGbJHN76JoQIMKnPOl/tgyERTd8JOSozhegW sHQx0fRjdoBcH3jaqyP1iWnVnm27v782h9NMVlTxk8Bzpje0l4Q5yKZjM1Vk/p2n /G2jW9n4vlPtJtTZDEQmSZSXTIOrFKILWNtc1yNjf7fyLv79LhhJ7eGoZRf1bt+2 d6Ag8Jb11mwIzF/7i/l4AC2lYIXTEbwPFF6uyEzl5A3we8469kIhKsHHGmQpvfjc erBv2st+Zq1uNerZz/3Ug7ScBvA7AminVQZ7AgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUYHleF7/kz3sN9+MS2zVeEnMZDBgwHwYDVR0jBBgwFoAUnsvxcPf30ikOau05 yo0jj2YHK3owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTEFOREJB TksvbnN2eGNQZjMwaWtPYXUwNXlvMGpqMllISzNvLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9uc3Z4Y1BmMzBpa09hdTA1eW8wamoyWUhLM28uY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MQU5EQkFOSy9ZSGxlRjdfa3ozc045 LU1TMnpWZUVuTVpEQmcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH AwUAJAdHADANBgkqhkiG9w0BAQsFAAOCAQEAKICN3+nsyjIkG2oG+pOkV2uJu+K0 q8Sq8n/Wiwzk7riSRIWE5wHGX5AXXG3xYdYdKRe60PzhaMWWJqFshNW5GBzAH9aJ pwz7b6javk8uFjjW/OGWScqI8nox4L8VidFbziDEwMJ/G69T0SeoIZVT9vWyY0pG BKaaFXPq5kFwXFow2MihdhUfUn6Z0P740MC/20nVkKKPSUxT0kYW0p6CVxeEfVfA 1zHsRTiX0Os1Q28qpz7CNccnvfH3tlptGhW2P8F6C4+cfRxEoXmkgUg5qJY56/zf JzbD+L//Bo+sW4Klj0smD6DFOofGn1u9/GSEB5npRtSRx5ZFbbA89NeVgA== -----END CERTIFICATE-----Generated at Sun Aug 24 09:43:40 2025 by rpki-client