$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/h1qCZm3k4t1XP83h31SNs_EPBww.roa File: h1qCZm3k4t1XP83h31SNs_EPBww.roa (raw, json) Hash identifier: NjFEVj+dya88gfG6jUYXpfa7rn+9ee0kY0vV4E+vj5M= Subject key identifier: 87:5A:82:66:6D:E4:E2:DD:57:3F:CD:E1:DF:54:8D:B3:F1:0F:07:0C Certificate issuer: /CN=0264A41A741E5F00AED2BD7E4A7A42F5B1D758D5 Certificate serial: 0296 Authority key identifier: 02:64:A4:1A:74:1E:5F:00:AE:D2:BD:7E:4A:7A:42:F5:B1:D7:58:D5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/h1qCZm3k4t1XP83h31SNs_EPBww.roa Signing time: Fri 22 Aug 2025 09:01:48 +0000 ROA not before: Fri 22 Aug 2025 09:01:48 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 134823 IP address blocks: 103.208.196.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 662 (0x296) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0264A41A741E5F00AED2BD7E4A7A42F5B1D758D5 Validity Not Before: Aug 22 09:01:48 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=875A82666DE4E2DD573FCDE1DF548DB3F10F070C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ab:92:a0:47:12:d2:20:a3:16:63:9f:b2:ac: 02:34:13:29:33:17:8f:84:7f:a3:78:be:04:6f:2b: 71:9b:d1:a8:74:14:5e:35:ab:3f:1c:64:1f:16:e5: 96:ea:35:65:54:f2:2b:92:f0:09:89:b8:88:d9:a9: 72:d6:23:0c:b0:91:70:c8:e6:a2:03:5e:2c:45:25: c3:85:51:4b:cc:93:e4:d8:be:aa:70:90:09:37:59: cb:26:bd:e2:50:28:fd:7a:7a:85:01:72:81:36:ea: dc:a4:e3:28:3e:98:4b:73:5f:db:28:05:92:a1:81: 81:b8:eb:23:66:3d:bc:ef:e9:f2:61:7a:1d:9c:a9: af:46:56:fc:2e:c2:0f:1d:5f:b5:75:01:78:ad:45: ab:a4:92:81:a0:c4:47:48:b5:30:99:52:db:53:1e: 19:d8:bd:b0:fd:f0:15:15:60:c7:8d:53:8d:75:c7: 27:96:ae:c5:a8:e7:0a:e5:de:8f:0f:91:f2:4b:f9: 4a:8a:68:8f:95:2f:e9:a7:50:82:82:b1:af:25:fe: 0d:92:7f:44:02:8f:8f:d8:be:03:aa:0f:b4:fd:02: 6d:35:f8:17:e8:88:65:ff:60:49:a7:36:b7:6d:e6: 87:a8:f0:69:e1:c9:06:2f:b2:27:49:4d:63:0e:6b: b4:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:5A:82:66:6D:E4:E2:DD:57:3F:CD:E1:DF:54:8D:B3:F1:0F:07:0C X509v3 Authority Key Identifier: keyid:02:64:A4:1A:74:1E:5F:00:AE:D2:BD:7E:4A:7A:42:F5:B1:D7:58:D5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/h1qCZm3k4t1XP83h31SNs_EPBww.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.208.196.0/23 Signature Algorithm: sha256WithRSAEncryption b9:79:99:e7:d6:fb:17:c7:9f:4f:1b:0d:d8:34:94:b8:dd:95: fb:14:1a:56:26:9d:3b:8c:14:d5:39:15:3e:04:6e:be:18:2a: bf:74:a6:21:3d:3b:ec:7b:23:aa:80:70:e8:25:b8:b3:c0:8b: 93:98:2d:34:0e:df:5e:9c:47:af:59:86:50:7e:1e:43:a2:e3: 32:d0:ef:c6:52:35:95:af:38:a9:35:46:1d:37:29:96:bf:e5: 72:04:60:e9:d2:b0:85:e4:8f:ad:44:d9:14:2e:f1:3e:b9:17: 10:ca:f3:c9:2f:85:00:57:22:4e:48:b2:60:cd:79:c8:16:5c: 83:ba:9c:ce:c4:fb:df:ec:c3:d5:55:e3:ed:ce:df:9d:54:88: 27:3f:4f:bb:eb:44:11:5c:f7:82:7d:2f:a2:ec:53:86:e2:0b: c6:4e:d4:ce:6e:5b:18:ea:10:84:95:61:83:6d:e9:f1:f1:6b: a3:43:71:74:ba:60:30:4b:b4:39:b5:6b:fc:5e:3a:de:e4:7f: 26:fc:1d:6a:73:08:b3:aa:ab:89:e3:c2:c6:bc:e4:f6:bc:cf: 1e:a2:11:30:92:b2:12:39:d4:d2:b9:62:5c:25:c3:72:3b:71: 96:c7:8c:a7:83:4e:dd:80:cd:0f:b7:78:ef:f7:56:d0:92:86: 38:76:09:24 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICApYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDI2 NEE0MUE3NDFFNUYwMEFFRDJCRDdFNEE3QTQyRjVCMUQ3NThENTAeFw0yNTA4MjIw OTAxNDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDg3NUE4MjY2NkRFNEUy REQ1NzNGQ0RFMURGNTQ4REIzRjEwRjA3MEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRq5KgRxLSIKMWY5+yrAI0EykzF4+Ef6N4vgRvK3Gb0ah0FF41 qz8cZB8W5ZbqNWVU8iuS8AmJuIjZqXLWIwywkXDI5qIDXixFJcOFUUvMk+TYvqpw kAk3WcsmveJQKP16eoUBcoE26tyk4yg+mEtzX9soBZKhgYG46yNmPbzv6fJheh2c qa9GVvwuwg8dX7V1AXitRaukkoGgxEdItTCZUttTHhnYvbD98BUVYMeNU411xyeW rsWo5wrl3o8PkfJL+UqKaI+VL+mnUIKCsa8l/g2Sf0QCj4/YvgOqD7T9Am01+Bfo iGX/YEmnNrdt5oeo8GnhyQYvsidJTWMOa7THAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUh1qCZm3k4t1XP83h31SNs/EPBwwwHwYDVR0jBBgwFoAUAmSkGnQeXwCu0r1+ SnpC9bHXWNUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0RDTC1U Vy9BbVNrR25RZVh3Q3UwcjEtU25wQzliSFhXTlUuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0FtU2tHblFlWHdDdTByMS1TbnBDOWJIWFdOVS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NEQ0wtVFcvaDFxQ1ptM2s0dDFYUDgz aDMxU05zX0VQQnd3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AWfQxDANBgkqhkiG9w0BAQsFAAOCAQEAuXmZ59b7F8efTxsN2DSUuN2V+xQaViad O4wU1TkVPgRuvhgqv3SmIT077HsjqoBw6CW4s8CLk5gtNA7fXpxHr1mGUH4eQ6Lj MtDvxlI1la84qTVGHTcplr/lcgRg6dKwheSPrUTZFC7xPrkXEMrzyS+FAFciTkiy YM15yBZcg7qczsT73+zD1VXj7c7fnVSIJz9Pu+tEEVz3gn0vouxThuILxk7Uzm5b GOoQhJVhg23p8fFro0NxdLpgMEu0ObVr/F463uR/JvwdanMIs6qriePCxrzk9rzP HqIRMJKyEjnU0rliXCXDcjtxlseMp4NO3YDND7d47/dW0JKGOHYJJA== -----END CERTIFICATE-----Generated at Sun Aug 24 05:08:07 2025 by rpki-client