$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MCK/S7ePVrNdt90oUwr8JJ6WQ3EkxGc.roa File: S7ePVrNdt90oUwr8JJ6WQ3EkxGc.roa (raw, json) Hash identifier: WZa4tCz/mpk5KdLBpXJUfQgS55f+gHvePuhC8QcVbxA= Subject key identifier: 4B:B7:8F:56:B3:5D:B7:DD:28:53:0A:FC:24:9E:96:43:71:24:C4:67 Certificate issuer: /CN=83CF8C19843BACDE6445D4BD4A1E66441B23F3E3 Certificate serial: 0980 Authority key identifier: 83:CF:8C:19:84:3B:AC:DE:64:45:D4:BD:4A:1E:66:44:1B:23:F3:E3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/g8-MGYQ7rN5kRdS9Sh5mRBsj8-M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MCK/S7ePVrNdt90oUwr8JJ6WQ3EkxGc.roa Signing time: Fri 22 Aug 2025 08:50:39 +0000 ROA not before: Fri 22 Aug 2025 08:50:39 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131618 IP address blocks: 103.148.68.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MCK/g8-MGYQ7rN5kRdS9Sh5mRBsj8-M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MCK/g8-MGYQ7rN5kRdS9Sh5mRBsj8-M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/g8-MGYQ7rN5kRdS9Sh5mRBsj8-M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2432 (0x980) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83CF8C19843BACDE6445D4BD4A1E66441B23F3E3 Validity Not Before: Aug 22 08:50:39 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=4BB78F56B35DB7DD28530AFC249E96437124C467 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:df:00:37:bc:44:2d:0e:ff:0f:f8:26:df:c8: 7b:53:7b:ea:11:ec:a7:70:46:d8:2c:7a:b4:d9:ab: 6b:55:26:f2:f1:a0:44:06:24:da:ff:80:fd:62:f3: 95:d8:5e:2a:50:a4:21:88:99:9a:67:b3:de:6d:bd: 36:29:92:b0:d8:ee:43:d0:dd:89:9f:c6:ee:e9:e9: 9c:92:ae:de:39:ac:90:01:eb:dd:27:a4:a6:b9:f2: 2b:81:03:bb:fb:17:df:c4:b1:61:9a:a7:64:db:8f: 99:bc:fc:9b:56:7a:b6:e2:8f:73:57:5c:46:90:d3: 82:80:ca:c6:c9:9c:c5:e5:33:b5:fa:4b:a6:de:12: 48:b8:08:97:ca:e8:c7:a1:10:fe:86:d7:f5:6a:5d: eb:86:00:70:b5:49:ea:34:b2:5d:63:61:94:27:ad: 44:ea:76:78:eb:3d:24:a4:90:03:0a:eb:5e:fb:01: 2b:6a:7b:20:b7:fe:65:e0:82:86:1e:43:8b:a2:0c: aa:7b:af:52:b1:f4:0b:50:bd:f1:b0:9f:11:46:81: 0f:bb:a2:02:87:68:03:e5:16:59:59:73:c1:c7:7a: b0:9a:a1:89:39:d4:72:1b:2e:5f:72:3c:9c:f2:8e: e9:a7:fe:16:2c:f3:67:aa:16:2d:6e:ad:10:b2:65: c8:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:B7:8F:56:B3:5D:B7:DD:28:53:0A:FC:24:9E:96:43:71:24:C4:67 X509v3 Authority Key Identifier: keyid:83:CF:8C:19:84:3B:AC:DE:64:45:D4:BD:4A:1E:66:44:1B:23:F3:E3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MCK/g8-MGYQ7rN5kRdS9Sh5mRBsj8-M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/g8-MGYQ7rN5kRdS9Sh5mRBsj8-M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MCK/S7ePVrNdt90oUwr8JJ6WQ3EkxGc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.148.68.0/23 Signature Algorithm: sha256WithRSAEncryption 1d:ed:11:09:88:52:64:af:58:6b:4f:3e:4e:9d:43:80:1b:e2: dd:cf:5b:9e:91:ec:e6:76:3f:a8:ca:f3:3c:e6:91:20:a5:aa: d3:23:6d:ff:d6:7d:76:6a:73:4d:72:18:7a:94:ea:75:d5:c0: dd:63:55:c7:bf:e2:f4:1a:6d:d2:2c:59:c6:3c:cc:a6:a3:17: ba:ca:19:1f:52:dd:81:86:8d:9b:8b:04:e0:ba:7a:b1:43:13: ea:24:41:0d:f9:7f:a3:22:32:68:31:04:f5:2c:32:cb:f1:44: 0b:7a:63:a5:05:84:cc:e7:25:0a:ad:80:b0:8f:59:4f:85:89: d3:ed:7e:d5:06:69:a8:e0:a4:53:e1:20:d6:dc:c7:16:f3:42: 4c:bf:a9:d7:09:69:ec:34:b4:87:20:19:e5:dd:b2:04:92:9a: 92:1c:69:37:1e:6a:29:f4:10:2e:64:59:b4:6b:19:06:15:12: ad:29:65:3a:ab:47:a1:77:2d:79:c9:a7:51:e8:c6:b7:52:6c: 15:c3:d0:01:e5:ca:8d:3d:fa:bd:d4:e9:5f:37:8b:94:a5:8c: cd:be:3e:4e:d7:1a:26:60:a7:09:e9:29:8d:27:4e:d3:52:41: b6:a7:52:78:a4:8a:87:da:cf:97:4e:41:22:56:08:57:fd:38: 05:5f:dc:cc -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICCYAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODND RjhDMTk4NDNCQUNERTY0NDVENEJENEExRTY2NDQxQjIzRjNFMzAeFw0yNTA4MjIw ODUwMzlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDRCQjc4RjU2QjM1REI3 REQyODUzMEFGQzI0OUU5NjQzNzEyNEM0NjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC73wA3vEQtDv8P+CbfyHtTe+oR7KdwRtgserTZq2tVJvLxoEQG JNr/gP1i85XYXipQpCGImZpns95tvTYpkrDY7kPQ3Ymfxu7p6ZySrt45rJAB690n pKa58iuBA7v7F9/EsWGap2Tbj5m8/JtWerbij3NXXEaQ04KAysbJnMXlM7X6S6be Eki4CJfK6MehEP6G1/VqXeuGAHC1Seo0sl1jYZQnrUTqdnjrPSSkkAMK6177AStq eyC3/mXggoYeQ4uiDKp7r1Kx9AtQvfGwnxFGgQ+7ogKHaAPlFllZc8HHerCaoYk5 1HIbLl9yPJzyjumn/hYs82eqFi1urRCyZchRAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUS7ePVrNdt90oUwr8JJ6WQ3EkxGcwHwYDVR0jBBgwFoAUg8+MGYQ7rN5kRdS9 Sh5mRBsj8+MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUNLL2c4 LU1HWVE3ck41a1JkUzlTaDVtUkJzajgtTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev ZzgtTUdZUTdyTjVrUmRTOVNoNW1SQnNqOC1NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvTUNLL1M3ZVBWck5kdDkwb1V3cjhKSjZXUTNF a3hHYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnlEQwDQYJ KoZIhvcNAQELBQADggEBAB3tEQmIUmSvWGtPPk6dQ4Ab4t3PW56R7OZ2P6jK8zzm kSClqtMjbf/WfXZqc01yGHqU6nXVwN1jVce/4vQabdIsWcY8zKajF7rKGR9S3YGG jZuLBOC6erFDE+okQQ35f6MiMmgxBPUsMsvxRAt6Y6UFhMznJQqtgLCPWU+FidPt ftUGaajgpFPhINbcxxbzQky/qdcJaew0tIcgGeXdsgSSmpIcaTceain0EC5kWbRr GQYVEq0pZTqrR6F3LXnJp1HoxrdSbBXD0AHlyo09+r3U6V83i5SljM2+Pk7XGiZg pwnpKY0nTtNSQbanUnikiofaz5dOQSJWCFf9OAVf3Mw= -----END CERTIFICATE-----Generated at Sun Aug 24 13:36:47 2025 by rpki-client