$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/nbl_j7EZZauFWRsZ3nU9uvCOpms.roa File: nbl_j7EZZauFWRsZ3nU9uvCOpms.roa (raw, json) Hash identifier: 4uowiLXGxuWX8sm5I/FnQ7T+5hqChjrtuttfTdYXDy0= Subject key identifier: 9D:B9:7F:8F:B1:19:65:AB:85:59:1B:19:DE:75:3D:BA:F0:8E:A6:6B Certificate issuer: /CN=3122A9292CC930152ADE5A25848C1BDC4044C902 Certificate serial: 0503 Authority key identifier: 31:22:A9:29:2C:C9:30:15:2A:DE:5A:25:84:8C:1B:DC:40:44:C9:02 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MSKpKSzJMBUq3lolhIwb3EBEyQI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/nbl_j7EZZauFWRsZ3nU9uvCOpms.roa Signing time: Fri 22 Aug 2025 08:52:17 +0000 ROA not before: Fri 22 Aug 2025 08:52:17 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 31972 IP address blocks: 202.148.212.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/MSKpKSzJMBUq3lolhIwb3EBEyQI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/MSKpKSzJMBUq3lolhIwb3EBEyQI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/MSKpKSzJMBUq3lolhIwb3EBEyQI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1283 (0x503) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3122A9292CC930152ADE5A25848C1BDC4044C902 Validity Not Before: Aug 22 08:52:17 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=9DB97F8FB11965AB85591B19DE753DBAF08EA66B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:78:d0:a6:fd:a4:b2:69:82:ce:82:20:56:b0: 6e:14:f4:59:c2:b4:59:9a:70:0b:07:7a:70:c8:d4: 88:85:9e:23:1a:41:74:d6:7f:92:c8:19:2d:78:f6: bc:f2:d4:86:2b:23:da:76:48:dc:86:b3:4a:a6:84: 31:0f:9e:db:e1:6c:8a:0c:9c:1f:e4:a1:6e:0f:13: 85:a4:15:28:3b:ae:54:2f:3c:d8:33:14:4f:7f:81: f2:fa:b2:79:0a:5a:7c:46:21:db:92:e5:f1:a3:36: d9:c1:19:9c:e7:f9:2f:3b:d2:5c:1c:1d:6f:15:32: 34:70:a2:38:39:3e:48:e9:a3:a5:f0:d9:9a:b2:07: 31:5d:36:22:99:0f:58:0e:60:0e:3c:74:78:aa:cd: 8e:5d:80:13:91:f7:9b:9a:5d:1d:8a:4c:fa:4e:63: bf:fe:48:04:22:c9:ee:5e:dd:d4:7e:1a:f4:48:9f: 6e:69:98:f1:fa:3d:15:c5:dd:de:ea:c7:70:3a:5a: 20:7c:0a:f4:9a:63:c5:25:5d:b9:58:ba:d0:68:55: 23:8f:da:f4:5b:4e:e9:5f:3c:ae:53:db:8d:2f:58: 5b:9f:71:6b:46:01:96:38:2a:66:c4:8c:47:cd:3d: 9d:c7:a6:d7:5c:79:2a:22:5b:ff:3a:65:e5:c8:df: f3:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:B9:7F:8F:B1:19:65:AB:85:59:1B:19:DE:75:3D:BA:F0:8E:A6:6B X509v3 Authority Key Identifier: keyid:31:22:A9:29:2C:C9:30:15:2A:DE:5A:25:84:8C:1B:DC:40:44:C9:02 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/MSKpKSzJMBUq3lolhIwb3EBEyQI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MSKpKSzJMBUq3lolhIwb3EBEyQI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/nbl_j7EZZauFWRsZ3nU9uvCOpms.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.148.212.0/23 Signature Algorithm: sha256WithRSAEncryption 35:12:77:2e:3b:52:b9:e4:7c:5e:bb:53:bb:0a:4f:4d:78:fb: b4:26:4f:a6:de:11:bf:9f:17:9d:53:32:d9:98:70:72:d6:97: a0:2c:d4:06:79:1a:0b:44:37:dc:e2:5b:2e:57:0b:99:5c:0f: 4d:a0:50:cc:74:60:85:37:4a:13:36:a5:52:c2:01:bd:25:8c: fc:da:1f:a3:bf:db:97:10:4c:ae:89:e1:3e:6e:74:39:83:20: 60:34:4e:92:cc:2a:de:2b:be:da:c7:b0:7d:20:c7:23:54:7a: 65:0d:4f:a0:46:1e:72:82:77:0f:3c:a1:71:da:2d:8f:8b:e7: fb:b8:35:38:40:bc:c8:85:f6:91:e1:b9:e0:ec:9c:90:ed:5d: a4:7b:e7:32:c6:e3:ab:8f:10:b8:78:0e:0b:67:d2:7d:fe:6d: 24:8f:85:a6:d5:cf:33:61:1b:19:78:55:a4:4f:ca:0e:63:bb: 3f:99:ff:1d:c1:28:29:f2:0e:49:85:e2:bd:bd:5e:c8:58:a0: 4a:e7:fe:96:b0:68:a3:85:68:75:89:ef:8b:ef:0c:36:bf:2a: 72:14:b0:4e:23:39:c0:af:f2:1c:d9:f6:61:ad:ea:11:1f:65: b4:7e:60:6b:a3:39:70:1e:5b:a2:aa:da:a5:36:28:2d:57:72: 06:48:17:c6 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICBQMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzEy MkE5MjkyQ0M5MzAxNTJBREU1QTI1ODQ4QzFCREM0MDQ0QzkwMjAeFw0yNTA4MjIw ODUyMTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDlEQjk3RjhGQjExOTY1 QUI4NTU5MUIxOURFNzUzREJBRjA4RUE2NkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5eNCm/aSyaYLOgiBWsG4U9FnCtFmacAsHenDI1IiFniMaQXTW f5LIGS149rzy1IYrI9p2SNyGs0qmhDEPntvhbIoMnB/koW4PE4WkFSg7rlQvPNgz FE9/gfL6snkKWnxGIduS5fGjNtnBGZzn+S870lwcHW8VMjRwojg5Pkjpo6Xw2Zqy BzFdNiKZD1gOYA48dHiqzY5dgBOR95uaXR2KTPpOY7/+SAQiye5e3dR+GvRIn25p mPH6PRXF3d7qx3A6WiB8CvSaY8UlXblYutBoVSOP2vRbTulfPK5T240vWFufcWtG AZY4KmbEjEfNPZ3HptdceSoiW/86ZeXI3/PpAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUnbl/j7EZZauFWRsZ3nU9uvCOpmswHwYDVR0jBBgwFoAUMSKpKSzJMBUq3lol hIwb3EBEyQIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTklNQlVT Q09NL01TS3BLU3pKTUJVcTNsb2xoSXdiM0VCRXlRSS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvTVNLcEtTekpNQlVxM2xvbGhJd2IzRUJFeVFJLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTklNQlVTQ09NL25ibF9qN0VaWmF1 RldSc1ozblU5dXZDT3Btcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHKlNQwDQYJKoZIhvcNAQELBQADggEBADUSdy47UrnkfF67U7sKT014+7Qm T6beEb+fF51TMtmYcHLWl6As1AZ5GgtEN9ziWy5XC5lcD02gUMx0YIU3ShM2pVLC Ab0ljPzaH6O/25cQTK6J4T5udDmDIGA0TpLMKt4rvtrHsH0gxyNUemUNT6BGHnKC dw88oXHaLY+L5/u4NThAvMiF9pHhueDsnJDtXaR75zLG46uPELh4Dgtn0n3+bSSP habVzzNhGxl4VaRPyg5juz+Z/x3BKCnyDkmF4r29XshYoErn/pawaKOFaHWJ74vv DDa/KnIUsE4jOcCv8hzZ9mGt6hEfZbR+YGujOXAeW6Kq2qU2KC1XcgZIF8Y= -----END CERTIFICATE-----Generated at Sun Aug 24 05:45:12 2025 by rpki-client