$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/M2NIM/g_1Ymf_bQjUgkOmBlknnGtHLDe8.roa File: g_1Ymf_bQjUgkOmBlknnGtHLDe8.roa (raw, json) Hash identifier: kRKYcsGpQgL1SqyljOqGJhyghBvkSsyDGunAjkDhX2E= Subject key identifier: 83:FD:58:99:FF:DB:42:35:20:90:E9:81:96:49:E7:1A:D1:CB:0D:EF Certificate issuer: /CN=07D3E73EC5EB3D704863889E221845B7695D409C Certificate serial: 01E2 Authority key identifier: 07:D3:E7:3E:C5:EB:3D:70:48:63:88:9E:22:18:45:B7:69:5D:40:9C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/B9PnPsXrPXBIY4ieIhhFt2ldQJw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/M2NIM/g_1Ymf_bQjUgkOmBlknnGtHLDe8.roa Signing time: Fri 22 Aug 2025 08:44:09 +0000 ROA not before: Fri 22 Aug 2025 08:44:09 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 139358 IP address blocks: 157.20.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/M2NIM/B9PnPsXrPXBIY4ieIhhFt2ldQJw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/M2NIM/B9PnPsXrPXBIY4ieIhhFt2ldQJw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/B9PnPsXrPXBIY4ieIhhFt2ldQJw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 482 (0x1e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=07D3E73EC5EB3D704863889E221845B7695D409C Validity Not Before: Aug 22 08:44:09 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=83FD5899FFDB42352090E9819649E71AD1CB0DEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:47:99:fd:c7:8e:ea:15:eb:c1:83:0a:83:0d: 3f:f7:f3:2f:46:84:d0:72:dc:62:36:74:e3:29:88: c2:5a:40:66:63:e5:7b:c9:81:71:62:ba:ce:01:ad: 81:c6:4b:74:47:12:aa:c7:d3:6d:b5:61:28:0a:43: 57:1b:fa:89:95:7f:8e:a5:8d:61:6a:c3:6c:fd:fa: 19:01:1b:ee:c5:d1:f3:13:95:1b:c3:4e:c4:b0:24: 2f:9b:7b:5f:43:1d:c3:63:42:5b:65:8c:44:d8:c5: b8:1f:06:d3:9e:53:6a:d6:12:80:23:bc:f1:92:68: 15:33:b9:db:40:72:2f:50:54:bc:b8:22:f8:77:49: 6e:0b:4b:d1:f1:14:4e:59:f0:d2:89:bc:a5:57:31: cb:6f:b6:d9:92:39:b8:47:1f:f8:0d:e8:1a:40:7c: f0:12:04:35:92:97:dc:9d:63:c5:be:c1:59:63:73: cc:55:a0:16:6e:00:b2:36:e7:b7:e2:39:6f:93:f0: 42:cb:78:29:6f:0e:31:1d:9a:67:cc:59:ff:be:40: 9d:12:3c:40:cf:48:89:ca:e1:b2:ef:0b:f4:7c:5c: b9:c2:e7:69:1c:db:60:86:cc:1c:d9:b6:6e:bb:47: ae:37:b5:8e:57:0d:b7:e5:c8:0b:07:8f:c8:a4:79: 7a:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:FD:58:99:FF:DB:42:35:20:90:E9:81:96:49:E7:1A:D1:CB:0D:EF X509v3 Authority Key Identifier: keyid:07:D3:E7:3E:C5:EB:3D:70:48:63:88:9E:22:18:45:B7:69:5D:40:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/M2NIM/B9PnPsXrPXBIY4ieIhhFt2ldQJw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/B9PnPsXrPXBIY4ieIhhFt2ldQJw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/M2NIM/g_1Ymf_bQjUgkOmBlknnGtHLDe8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.135.0/24 Signature Algorithm: sha256WithRSAEncryption 23:0f:bd:4c:cc:4c:69:7b:98:8f:2e:3e:5e:af:8f:49:f0:7c: 5c:95:d5:b0:ae:85:ee:3b:f7:13:23:01:82:03:44:c9:f0:1e: 92:71:f8:6b:c6:7e:fc:f8:27:0f:b9:f0:5a:17:18:fb:78:e2: b9:0d:6d:69:89:1c:f6:55:e8:9a:cc:71:80:10:b2:50:ea:2f: 24:42:72:f1:e9:15:a2:43:cc:44:1e:38:42:ae:72:3d:38:34: 58:d5:b2:93:65:4e:d9:19:31:5b:98:2a:65:90:ae:1a:5e:cd: df:41:29:e9:d6:d3:4a:62:2a:f0:51:89:79:67:04:f4:5f:d5: 3c:1a:9d:c8:6c:9a:c7:c5:ef:10:49:94:2b:ef:6d:65:6e:e5: 8b:cb:f6:24:08:5d:f1:22:84:7e:56:2f:53:3b:ed:69:2d:70: 63:ca:82:da:f7:27:d1:01:a8:3f:39:9f:f5:1c:d0:f2:0d:64: 60:dc:29:60:df:e5:68:73:ad:40:36:c0:c6:53:7d:0c:ae:b1: 51:cb:fd:c7:54:6b:e6:85:18:98:4e:82:37:4c:80:f6:e0:1d: 85:6d:40:ac:1a:55:d1:d7:be:65:95:67:f8:0a:a6:91:73:a9: c7:79:67:22:3e:45:60:3a:4c:df:91:71:f0:36:9a:40:45:93: 1a:92:b6:e9 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICAeIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDdE M0U3M0VDNUVCM0Q3MDQ4NjM4ODlFMjIxODQ1Qjc2OTVENDA5QzAeFw0yNTA4MjIw ODQ0MDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDgzRkQ1ODk5RkZEQjQy MzUyMDkwRTk4MTk2NDlFNzFBRDFDQjBERUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtR5n9x47qFevBgwqDDT/38y9GhNBy3GI2dOMpiMJaQGZj5XvJ gXFius4BrYHGS3RHEqrH0221YSgKQ1cb+omVf46ljWFqw2z9+hkBG+7F0fMTlRvD TsSwJC+be19DHcNjQltljETYxbgfBtOeU2rWEoAjvPGSaBUzudtAci9QVLy4Ivh3 SW4LS9HxFE5Z8NKJvKVXMctvttmSObhHH/gN6BpAfPASBDWSl9ydY8W+wVljc8xV oBZuALI257fiOW+T8ELLeClvDjEdmmfMWf++QJ0SPEDPSInK4bLvC/R8XLnC52kc 22CGzBzZtm67R643tY5XDbflyAsHj8ikeXpjAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUg/1Ymf/bQjUgkOmBlknnGtHLDe8wHwYDVR0jBBgwFoAUB9PnPsXrPXBIY4ie IhhFt2ldQJwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTTJOSU0v QjlQblBzWHJQWEJJWTRpZUloaEZ0MmxkUUp3LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9COVBuUHNYclBYQklZNGllSWhoRnQybGRRSncuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9NMk5JTS9nXzFZbWZfYlFqVWdrT21CbGtu bkd0SExEZTgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRSH MA0GCSqGSIb3DQEBCwUAA4IBAQAjD71MzExpe5iPLj5er49J8HxcldWwroXuO/cT IwGCA0TJ8B6Scfhrxn78+CcPufBaFxj7eOK5DW1piRz2VeiazHGAELJQ6i8kQnLx 6RWiQ8xEHjhCrnI9ODRY1bKTZU7ZGTFbmCplkK4aXs3fQSnp1tNKYirwUYl5ZwT0 X9U8Gp3IbJrHxe8QSZQr721lbuWLy/YkCF3xIoR+Vi9TO+1pLXBjyoLa9yfRAag/ OZ/1HNDyDWRg3Clg3+Voc61ANsDGU30MrrFRy/3HVGvmhRiYToI3TID24B2FbUCs GlXR175llWf4CqaRc6nHeWciPkVgOkzfkXHwNppARZMakrbp -----END CERTIFICATE-----Generated at Sun Aug 24 05:33:57 2025 by rpki-client