$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/BqIswN-mE-Kbf0RLl_gOWMMZKZw.roa File: BqIswN-mE-Kbf0RLl_gOWMMZKZw.roa (raw, json) Hash identifier: f7cfpZPyeM9Ruvc9G7dnb1FE8yWRbG9ZJ4JyaUa0ZQ8= Subject key identifier: 06:A2:2C:C0:DF:A6:13:E2:9B:7F:44:4B:97:F8:0E:58:C3:19:29:9C Certificate issuer: /CN=0264A41A741E5F00AED2BD7E4A7A42F5B1D758D5 Certificate serial: 0292 Authority key identifier: 02:64:A4:1A:74:1E:5F:00:AE:D2:BD:7E:4A:7A:42:F5:B1:D7:58:D5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/BqIswN-mE-Kbf0RLl_gOWMMZKZw.roa Signing time: Fri 22 Aug 2025 09:01:47 +0000 ROA not before: Fri 22 Aug 2025 09:01:47 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 134823 IP address blocks: 103.123.132.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 658 (0x292) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0264A41A741E5F00AED2BD7E4A7A42F5B1D758D5 Validity Not Before: Aug 22 09:01:47 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=06A22CC0DFA613E29B7F444B97F80E58C319299C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b4:6e:5f:a0:e2:fe:22:52:34:7d:8c:a7:04: 7e:04:52:ff:4b:47:30:18:53:ac:b5:2b:67:15:9c: ca:3d:f1:d3:65:e8:2c:e7:aa:8a:a5:f4:6d:61:41: a0:ab:8e:46:f6:0a:11:77:5c:4d:80:3f:3c:73:00: 28:1d:17:e8:82:3f:44:47:47:c0:8d:52:07:94:7a: 78:c6:b8:c9:4c:f0:b2:10:f4:64:61:68:16:df:d5: cd:de:c1:83:b5:10:34:57:cf:f9:5d:f5:5a:4f:c9: 4a:72:a5:52:52:89:02:bf:31:a1:7c:5a:20:23:00: f4:66:4a:b9:a3:19:ea:87:e0:b6:bf:7c:7d:43:81: 91:8d:aa:87:ff:88:52:73:80:a9:3b:03:9e:4b:da: c6:4f:ca:10:ab:a4:32:83:be:ce:23:ad:8a:fa:99: c8:03:2a:f3:0e:8b:24:95:ba:45:6d:ea:c5:2d:e0: 08:30:7a:e0:7e:45:9c:29:5a:6d:51:c8:41:59:e3: 42:30:15:ef:2b:e2:41:ba:8c:34:d9:d1:68:47:f6: 05:22:c7:8c:8b:bf:c0:18:c3:cb:15:06:93:39:d8: b1:e2:75:c6:11:1e:65:c3:da:34:3f:f7:79:52:2f: ee:4c:cc:ca:63:07:b2:e1:b1:5f:ab:74:5f:64:ed: 2a:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:A2:2C:C0:DF:A6:13:E2:9B:7F:44:4B:97:F8:0E:58:C3:19:29:9C X509v3 Authority Key Identifier: keyid:02:64:A4:1A:74:1E:5F:00:AE:D2:BD:7E:4A:7A:42:F5:B1:D7:58:D5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/BqIswN-mE-Kbf0RLl_gOWMMZKZw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.123.132.0/22 Signature Algorithm: sha256WithRSAEncryption 67:95:fc:e0:93:1b:38:96:13:dd:1c:93:5e:94:48:91:8c:95: dc:f3:b6:d4:be:c0:2d:5b:e2:4f:8f:8e:f4:38:70:65:bc:36: ac:70:11:52:4f:03:6d:0f:47:32:8f:eb:d5:c4:6c:7f:c4:21: 55:24:fa:eb:2e:7e:45:17:29:8f:5a:11:4b:94:2d:25:83:c7: 42:9b:bd:6f:34:73:b7:55:88:0b:57:ae:5d:54:35:5b:30:52: 96:c9:19:49:8e:47:53:cd:9b:15:9c:72:4e:55:56:5c:08:85: 69:7f:62:61:89:5c:6f:76:ba:e1:de:c4:7a:b5:2f:7c:82:a6: e6:52:d0:92:96:3d:3f:ff:52:7c:72:7a:24:47:47:52:a7:a4: e3:24:74:16:71:4f:6f:12:d2:8c:e1:0e:6e:b1:76:25:c7:1b: fd:7e:ec:c4:c2:bf:41:81:c5:a0:49:0a:e9:48:d3:b1:a6:1d: 07:e2:c6:90:1a:ad:2e:38:f3:10:a1:cd:02:2a:8e:5d:6c:31: 1f:0e:d6:56:ba:5a:c7:15:f1:5d:8a:8c:60:4e:80:e9:08:54: 0e:b8:12:c3:da:57:dd:b0:c8:db:54:b7:73:c8:9d:d6:c4:67: e5:a4:1c:30:19:b2:fb:70:bd:a1:bf:5c:ff:8e:6d:18:b4:cd: 92:df:46:22 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICApIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDI2 NEE0MUE3NDFFNUYwMEFFRDJCRDdFNEE3QTQyRjVCMUQ3NThENTAeFw0yNTA4MjIw OTAxNDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDA2QTIyQ0MwREZBNjEz RTI5QjdGNDQ0Qjk3RjgwRTU4QzMxOTI5OUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxtG5foOL+IlI0fYynBH4EUv9LRzAYU6y1K2cVnMo98dNl6Czn qoql9G1hQaCrjkb2ChF3XE2APzxzACgdF+iCP0RHR8CNUgeUenjGuMlM8LIQ9GRh aBbf1c3ewYO1EDRXz/ld9VpPyUpypVJSiQK/MaF8WiAjAPRmSrmjGeqH4La/fH1D gZGNqof/iFJzgKk7A55L2sZPyhCrpDKDvs4jrYr6mcgDKvMOiySVukVt6sUt4Agw euB+RZwpWm1RyEFZ40IwFe8r4kG6jDTZ0WhH9gUix4yLv8AYw8sVBpM52LHidcYR HmXD2jQ/93lSL+5MzMpjB7LhsV+rdF9k7SqjAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUBqIswN+mE+Kbf0RLl/gOWMMZKZwwHwYDVR0jBBgwFoAUAmSkGnQeXwCu0r1+ SnpC9bHXWNUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0RDTC1U Vy9BbVNrR25RZVh3Q3UwcjEtU25wQzliSFhXTlUuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0FtU2tHblFlWHdDdTByMS1TbnBDOWJIWFdOVS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NEQ0wtVFcvQnFJc3dOLW1FLUtiZjBS TGxfZ09XTU1aS1p3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME Amd7hDANBgkqhkiG9w0BAQsFAAOCAQEAZ5X84JMbOJYT3RyTXpRIkYyV3PO21L7A LVviT4+O9DhwZbw2rHARUk8DbQ9HMo/r1cRsf8QhVST66y5+RRcpj1oRS5QtJYPH Qpu9bzRzt1WIC1euXVQ1WzBSlskZSY5HU82bFZxyTlVWXAiFaX9iYYlcb3a64d7E erUvfIKm5lLQkpY9P/9SfHJ6JEdHUqek4yR0FnFPbxLSjOEObrF2Jccb/X7sxMK/ QYHFoEkK6UjTsaYdB+LGkBqtLjjzEKHNAiqOXWwxHw7WVrpaxxXxXYqMYE6A6QhU DrgSw9pX3bDI21S3c8id1sRn5aQcMBmy+3C9ob9c/45tGLTNkt9GIg== -----END CERTIFICATE-----Generated at Sun Aug 24 05:08:11 2025 by rpki-client