$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/N8sNQYMaUr64xsjzS9eOh3PlF6A.roa File: N8sNQYMaUr64xsjzS9eOh3PlF6A.roa (raw, json) Hash identifier: kCIhQAixUhCaglQ62159p3Nzv80OcVvL+6NYr8vbW8M= Subject key identifier: 37:CB:0D:41:83:1A:52:BE:B8:C6:C8:F3:4B:D7:8E:87:73:E5:17:A0 Certificate issuer: /CN=0264A41A741E5F00AED2BD7E4A7A42F5B1D758D5 Certificate serial: 0294 Authority key identifier: 02:64:A4:1A:74:1E:5F:00:AE:D2:BD:7E:4A:7A:42:F5:B1:D7:58:D5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/N8sNQYMaUr64xsjzS9eOh3PlF6A.roa Signing time: Fri 22 Aug 2025 09:01:47 +0000 ROA not before: Fri 22 Aug 2025 09:01:47 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 134823 IP address blocks: 123.253.140.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 660 (0x294) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0264A41A741E5F00AED2BD7E4A7A42F5B1D758D5 Validity Not Before: Aug 22 09:01:47 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=37CB0D41831A52BEB8C6C8F34BD78E8773E517A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:73:7a:df:5a:74:85:3e:f6:4e:5c:62:ec:6b: b4:7a:05:84:2b:94:ca:aa:98:90:78:8c:74:5f:f7: 36:ec:25:db:c8:2b:6d:a7:2a:bd:49:81:4b:b6:58: 51:ec:e2:a3:23:49:ed:1c:03:5c:20:ac:59:17:03: 33:2a:70:7e:ad:a4:07:b7:a4:73:70:bd:ae:67:d1: db:08:33:08:24:d9:ff:61:82:81:e8:00:0d:57:7e: 70:98:bb:ae:1e:1d:6c:12:48:64:3a:05:97:db:64: db:24:ee:76:b6:39:02:5e:99:28:a1:d7:a8:d7:cc: d1:92:0d:c4:4a:86:dc:f4:6b:5a:66:69:a4:63:9f: 92:b2:a5:af:2c:37:78:b9:f5:67:03:75:0c:3d:58: 92:a1:3a:c8:16:7a:6b:55:25:5c:1a:32:be:88:12: fb:87:33:c3:17:49:c3:7f:ee:ff:f2:38:cc:8a:40: d5:8b:82:a6:d3:ee:e9:89:f7:6b:d7:f4:f5:44:6f: ef:0a:1d:38:fc:a3:c6:fc:d6:cc:f2:81:75:5d:b9: d9:bc:fe:0c:48:2c:5c:b0:a2:9d:d9:47:a2:1d:67: e1:6c:b1:82:d3:44:a9:ad:27:7a:10:e0:e5:63:9c: 9d:bd:6e:77:0e:e4:94:61:b7:d6:e5:2a:fa:e4:15: fd:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:CB:0D:41:83:1A:52:BE:B8:C6:C8:F3:4B:D7:8E:87:73:E5:17:A0 X509v3 Authority Key Identifier: keyid:02:64:A4:1A:74:1E:5F:00:AE:D2:BD:7E:4A:7A:42:F5:B1:D7:58:D5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/N8sNQYMaUr64xsjzS9eOh3PlF6A.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.253.140.0/23 Signature Algorithm: sha256WithRSAEncryption 72:22:74:de:fe:61:54:34:01:4b:65:33:2c:1e:0d:0c:9d:b6: 04:4d:f1:24:d2:45:29:e7:ed:80:f3:6f:11:bd:50:b1:bf:08: 19:de:ab:7c:fc:81:6b:e1:d1:04:00:14:c5:fd:b7:61:e1:ec: 27:33:6e:ea:22:94:6f:7d:f8:50:9e:c1:44:3c:a3:ce:0a:bf: e4:fd:75:ea:09:46:ee:07:ea:03:64:60:61:3e:0a:9d:51:d4: 8b:65:5f:1c:d8:15:71:05:af:c6:c0:ec:33:1f:12:a8:cd:9a: 94:b5:03:a5:dc:3d:31:18:e2:bd:db:b5:ff:23:d0:07:2d:c0: 94:8d:bb:63:80:25:7d:05:f7:95:f3:4f:8f:11:fe:6e:32:95: 6b:27:fb:c9:cd:29:7d:3f:43:2d:75:3d:b1:4c:1e:2f:36:db: 06:48:0f:4c:b3:8f:d0:db:69:9b:ad:14:b6:a4:23:e4:29:b1: 9a:1b:ce:f3:15:69:e8:07:ee:a5:a8:61:60:70:60:23:97:79: 94:a7:38:40:b7:a2:26:e6:97:6c:57:3d:48:1f:b3:cf:d1:b0: a9:fb:3b:cc:83:d4:ef:44:03:21:18:37:7f:d8:bb:6c:80:c3: 22:d1:bd:23:ce:f7:e5:ab:b0:66:b1:18:47:ba:9e:43:2d:6e: 17:68:7f:08 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICApQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDI2 NEE0MUE3NDFFNUYwMEFFRDJCRDdFNEE3QTQyRjVCMUQ3NThENTAeFw0yNTA4MjIw OTAxNDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDM3Q0IwRDQxODMxQTUy QkVCOEM2QzhGMzRCRDc4RTg3NzNFNTE3QTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPc3rfWnSFPvZOXGLsa7R6BYQrlMqqmJB4jHRf9zbsJdvIK22n Kr1JgUu2WFHs4qMjSe0cA1wgrFkXAzMqcH6tpAe3pHNwva5n0dsIMwgk2f9hgoHo AA1XfnCYu64eHWwSSGQ6BZfbZNsk7na2OQJemSih16jXzNGSDcRKhtz0a1pmaaRj n5Kypa8sN3i59WcDdQw9WJKhOsgWemtVJVwaMr6IEvuHM8MXScN/7v/yOMyKQNWL gqbT7umJ92vX9PVEb+8KHTj8o8b81szygXVdudm8/gxILFywop3ZR6IdZ+FssYLT RKmtJ3oQ4OVjnJ29bncO5JRht9blKvrkFf1LAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUN8sNQYMaUr64xsjzS9eOh3PlF6AwHwYDVR0jBBgwFoAUAmSkGnQeXwCu0r1+ SnpC9bHXWNUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0RDTC1U Vy9BbVNrR25RZVh3Q3UwcjEtU25wQzliSFhXTlUuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0FtU2tHblFlWHdDdTByMS1TbnBDOWJIWFdOVS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NEQ0wtVFcvTjhzTlFZTWFVcjY0eHNq elM5ZU9oM1BsRjZBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AXv9jDANBgkqhkiG9w0BAQsFAAOCAQEAciJ03v5hVDQBS2UzLB4NDJ22BE3xJNJF KeftgPNvEb1Qsb8IGd6rfPyBa+HRBAAUxf23YeHsJzNu6iKUb334UJ7BRDyjzgq/ 5P116glG7gfqA2RgYT4KnVHUi2VfHNgVcQWvxsDsMx8SqM2alLUDpdw9MRjivdu1 /yPQBy3AlI27Y4AlfQX3lfNPjxH+bjKVayf7yc0pfT9DLXU9sUweLzbbBkgPTLOP 0Ntpm60UtqQj5CmxmhvO8xVp6AfupahhYHBgI5d5lKc4QLeiJuaXbFc9SB+zz9Gw qfs7zIPU70QDIRg3f9i7bIDDItG9I8735auwZrEYR7qeQy1uF2h/CA== -----END CERTIFICATE-----Generated at Sun Aug 24 05:08:56 2025 by rpki-client