$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NTCL/ky4sut692-O_-YJp6L76tR2r2TY.roa File: ky4sut692-O_-YJp6L76tR2r2TY.roa (raw, json) Hash identifier: iaNsBxG57ix79G0EGOD5rHu5efh0DQkgE+K9V6t8Crg= Subject key identifier: 93:2E:2C:BA:DE:BD:DB:E3:BF:F9:82:69:E8:BE:FA:B5:1D:AB:D9:36 Certificate issuer: /CN=0F7FB4302F21F301AB0EAFC5B80184BEED3FB198 Certificate serial: 0EBD Authority key identifier: 0F:7F:B4:30:2F:21:F3:01:AB:0E:AF:C5:B8:01:84:BE:ED:3F:B1:98 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/D3-0MC8h8wGrDq_FuAGEvu0_sZg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCL/ky4sut692-O_-YJp6L76tR2r2TY.roa Signing time: Fri 22 Aug 2025 08:48:45 +0000 ROA not before: Fri 22 Aug 2025 08:48:45 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 32242 IP address blocks: 103.140.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCL/D3-0MC8h8wGrDq_FuAGEvu0_sZg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCL/D3-0MC8h8wGrDq_FuAGEvu0_sZg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/D3-0MC8h8wGrDq_FuAGEvu0_sZg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3773 (0xebd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0F7FB4302F21F301AB0EAFC5B80184BEED3FB198 Validity Not Before: Aug 22 08:48:45 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=932E2CBADEBDDBE3BFF98269E8BEFAB51DABD936 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:7e:a0:a9:1a:95:bd:bb:e0:4a:5d:45:7e:9a: 77:e3:92:d4:cb:17:8b:4e:64:63:fa:84:e1:39:63: 41:67:59:e3:65:86:53:68:71:92:d5:05:89:08:b4: 8d:09:05:fe:b8:de:d9:40:89:87:73:af:8f:f8:43: bc:5d:f8:98:e2:d4:f5:84:c4:14:ca:a7:ee:3a:e1: 57:6a:3b:3a:e3:6e:07:2a:61:9b:92:31:3c:bd:5d: 76:b9:39:44:db:96:22:a7:cc:e9:77:e9:55:e3:2a: c3:86:ac:81:6f:cb:be:7a:bc:57:f9:0b:09:61:bf: 2a:6d:0e:b8:ea:b5:9a:c2:dc:ff:58:b6:bf:e3:d0: 8e:29:03:b3:ce:d1:90:c6:53:90:cd:bf:1c:74:18: e8:e8:66:d3:83:45:0b:11:54:50:d8:4d:bc:3f:e1: 70:05:b6:1e:ad:34:e6:3c:e8:83:12:f0:0c:d8:a0: 3c:eb:d6:d1:bf:45:eb:d0:a1:2c:f0:df:d2:02:06: 9e:05:2c:31:b5:77:28:e6:57:8b:3d:7e:db:03:ed: 00:a1:4d:f1:48:c1:4d:6b:17:2b:4a:42:2f:be:30: 5d:6d:8b:20:f1:46:60:24:67:05:34:e5:71:96:29: 82:63:14:92:3e:d6:76:db:ff:ca:c5:60:8b:d8:e0: d7:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:2E:2C:BA:DE:BD:DB:E3:BF:F9:82:69:E8:BE:FA:B5:1D:AB:D9:36 X509v3 Authority Key Identifier: keyid:0F:7F:B4:30:2F:21:F3:01:AB:0E:AF:C5:B8:01:84:BE:ED:3F:B1:98 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCL/D3-0MC8h8wGrDq_FuAGEvu0_sZg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/D3-0MC8h8wGrDq_FuAGEvu0_sZg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCL/ky4sut692-O_-YJp6L76tR2r2TY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.140.233.0/24 Signature Algorithm: sha256WithRSAEncryption 17:50:df:4c:f0:21:6a:11:2f:06:10:91:f2:5f:7f:a4:88:21: 32:bb:29:f9:a4:3c:46:20:c3:c1:ec:bd:53:34:04:ba:60:fb: 8c:de:ca:8f:7b:6b:4f:d3:8f:28:14:35:db:48:4b:01:80:81: d4:4c:33:cd:71:56:20:5f:d7:09:6c:31:59:97:09:22:3e:d6: 6d:c2:f7:f1:39:77:f6:fe:ba:03:c8:a3:45:b9:da:12:61:b1: 7d:06:28:1d:52:8b:ac:96:4e:ef:95:dc:a4:4f:2d:1b:11:9a: 4a:64:af:6c:e7:23:87:16:96:a3:3f:42:35:54:49:45:d9:0c: 1d:91:db:bd:d9:e2:90:48:7a:a5:7b:f7:57:24:96:b8:fe:a8: e1:a9:39:3a:62:ce:16:61:31:5e:25:21:e7:76:83:2f:0c:77: bf:48:9d:40:93:f0:2d:52:fa:a3:7f:42:b5:6e:73:1e:3d:2a: f4:51:b2:01:3c:46:f4:f6:2d:d9:66:5d:0e:1d:80:b2:4b:65: 59:07:b3:ef:64:19:fc:4d:04:84:2a:71:94:f8:57:d4:e8:e7: dc:5e:a1:00:25:7c:24:e7:dd:ac:14:e9:1d:19:84:35:86:8c: 05:78:b4:7f:7b:b8:66:94:dc:c7:61:b1:2a:3b:db:c6:1c:d4: 95:93:d1:cf -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDr0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEY3 RkI0MzAyRjIxRjMwMUFCMEVBRkM1QjgwMTg0QkVFRDNGQjE5ODAeFw0yNTA4MjIw ODQ4NDVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDkzMkUyQ0JBREVCRERC RTNCRkY5ODI2OUU4QkVGQUI1MURBQkQ5MzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTfqCpGpW9u+BKXUV+mnfjktTLF4tOZGP6hOE5Y0FnWeNlhlNo cZLVBYkItI0JBf643tlAiYdzr4/4Q7xd+Jji1PWExBTKp+464VdqOzrjbgcqYZuS MTy9XXa5OUTbliKnzOl36VXjKsOGrIFvy756vFf5CwlhvyptDrjqtZrC3P9Ytr/j 0I4pA7PO0ZDGU5DNvxx0GOjoZtODRQsRVFDYTbw/4XAFth6tNOY86IMS8AzYoDzr 1tG/RevQoSzw39ICBp4FLDG1dyjmV4s9ftsD7QChTfFIwU1rFytKQi++MF1tiyDx RmAkZwU05XGWKYJjFJI+1nbb/8rFYIvY4Nf7AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUky4sut692+O/+YJp6L76tR2r2TYwHwYDVR0jBBgwFoAUD3+0MC8h8wGrDq/F uAGEvu0/sZgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTlRDTC9E My0wTUM4aDh3R3JEcV9GdUFHRXZ1MF9zWmcuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0QzLTBNQzhoOHdHckRxX0Z1QUdFdnUwX3NaZy5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05UQ0wva3k0c3V0NjkyLU9fLVlKcDZMNzZ0 UjJyMlRZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeM6TAN BgkqhkiG9w0BAQsFAAOCAQEAF1DfTPAhahEvBhCR8l9/pIghMrsp+aQ8RiDDwey9 UzQEumD7jN7Kj3trT9OPKBQ120hLAYCB1EwzzXFWIF/XCWwxWZcJIj7WbcL38Tl3 9v66A8ijRbnaEmGxfQYoHVKLrJZO75XcpE8tGxGaSmSvbOcjhxaWoz9CNVRJRdkM HZHbvdnikEh6pXv3VySWuP6o4ak5OmLOFmExXiUh53aDLwx3v0idQJPwLVL6o39C tW5zHj0q9FGyATxG9PYt2WZdDh2AsktlWQez72QZ/E0EhCpxlPhX1Ojn3F6hACV8 JOfdrBTpHRmENYaMBXi0f3u4ZpTcx2GxKjvbxhzUlZPRzw== -----END CERTIFICATE-----Generated at Sun Aug 24 05:10:31 2025 by rpki-client