$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/iNS1bYOzbmFi937pgXBU3YtezhM.roa File: iNS1bYOzbmFi937pgXBU3YtezhM.roa (raw, json) Hash identifier: tTZ0ylXTHF8SiLz5i7F7GNMmZ5iDNzdQeSTyRcI4USw= Subject key identifier: 88:D4:B5:6D:83:B3:6E:61:62:F7:7E:E9:81:70:54:DD:8B:5E:CE:13 Certificate issuer: /CN=0264A41A741E5F00AED2BD7E4A7A42F5B1D758D5 Certificate serial: 0295 Authority key identifier: 02:64:A4:1A:74:1E:5F:00:AE:D2:BD:7E:4A:7A:42:F5:B1:D7:58:D5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/iNS1bYOzbmFi937pgXBU3YtezhM.roa Signing time: Fri 22 Aug 2025 09:01:48 +0000 ROA not before: Fri 22 Aug 2025 09:01:48 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 134823 IP address blocks: 103.246.218.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 661 (0x295) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0264A41A741E5F00AED2BD7E4A7A42F5B1D758D5 Validity Not Before: Aug 22 09:01:48 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=88D4B56D83B36E6162F77EE9817054DD8B5ECE13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f0:af:20:ff:10:a2:2c:f0:4d:ee:b5:db:c8: 6c:be:7a:c7:76:65:b2:e2:b1:aa:07:ac:f7:e5:1a: fd:31:01:47:db:c7:fe:58:b6:7e:5f:1d:11:3e:bc: a5:d9:7f:e8:14:2b:15:df:b0:59:18:7d:4c:97:b2: 41:1c:2a:30:46:4e:9a:78:d9:41:7c:d4:85:80:e7: c1:3d:b0:f1:b7:b1:06:93:7e:f8:8c:82:95:ab:68: 74:bc:cb:2e:85:1f:4d:1d:f5:5b:15:5f:ed:95:a8: 96:e4:57:c0:81:5d:53:4e:e2:57:ba:20:13:ec:38: 82:05:44:ad:33:20:25:d4:49:b7:4c:22:e6:8a:18: a5:e6:a6:a4:c1:4a:e2:b3:7b:ed:f6:3b:59:62:13: d7:90:fe:ff:4b:43:d2:a2:92:71:58:e3:f8:61:ca: bd:40:1e:1a:8b:51:84:51:8f:5f:3c:15:5b:78:d8: 12:a9:45:73:9a:cf:25:57:22:2c:31:e5:09:e0:f7: dd:88:01:2e:65:d5:1c:57:ad:26:cc:b7:3d:27:6a: b5:a8:04:00:53:c5:1e:bf:6a:33:10:75:98:fa:f8: 57:8b:99:ea:43:9c:cd:1b:9c:4b:cb:91:e1:62:99: 89:7c:01:31:72:70:7f:89:6c:1d:1f:98:2f:e4:d5: be:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:D4:B5:6D:83:B3:6E:61:62:F7:7E:E9:81:70:54:DD:8B:5E:CE:13 X509v3 Authority Key Identifier: keyid:02:64:A4:1A:74:1E:5F:00:AE:D2:BD:7E:4A:7A:42:F5:B1:D7:58:D5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/iNS1bYOzbmFi937pgXBU3YtezhM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.246.218.0/23 Signature Algorithm: sha256WithRSAEncryption 69:be:a1:67:08:55:13:ca:f6:cf:8b:b4:1f:7c:56:8d:04:5a: 16:2c:11:cf:ec:86:e3:1b:52:11:ad:c3:ea:f8:0e:28:e4:26: 61:33:6d:7c:ad:10:bb:a8:51:db:f0:26:58:56:ee:4f:44:65: 9c:e1:e9:88:bd:e0:9e:83:2a:fc:e8:2a:1b:f6:f7:a7:13:78: bd:5e:a8:26:e2:b7:dd:db:66:69:59:2c:a1:7a:f2:5d:c4:b4: b9:54:62:bb:fe:25:05:94:77:5a:15:88:bd:d9:57:54:e1:44: 87:78:01:7c:33:58:24:05:bf:65:b2:fa:39:1d:28:09:22:29: e5:e8:85:83:3c:08:6a:07:39:0b:6e:d0:12:ee:39:be:1a:4f: 89:38:c1:ef:bd:67:63:e1:b6:c9:ed:7f:1f:9b:b7:62:09:71: d5:44:9c:bc:c6:70:c2:85:8b:f7:2a:48:0f:67:c1:ac:d9:4b: b6:5b:b4:45:30:25:3e:f5:f4:e6:5f:73:ea:15:d7:ec:9f:52: a2:9f:c0:8f:18:be:18:c6:85:ef:ee:15:a3:48:c3:5c:0f:e9: df:99:e4:30:33:36:ad:6d:69:e7:97:0a:9f:ab:8d:00:f7:71: e5:92:75:cd:6d:16:66:dd:10:e0:92:f8:94:c9:3b:08:46:c2: de:18:de:bc -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICApUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDI2 NEE0MUE3NDFFNUYwMEFFRDJCRDdFNEE3QTQyRjVCMUQ3NThENTAeFw0yNTA4MjIw OTAxNDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDg4RDRCNTZEODNCMzZF NjE2MkY3N0VFOTgxNzA1NEREOEI1RUNFMTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDR8K8g/xCiLPBN7rXbyGy+esd2ZbLisaoHrPflGv0xAUfbx/5Y tn5fHRE+vKXZf+gUKxXfsFkYfUyXskEcKjBGTpp42UF81IWA58E9sPG3sQaTfviM gpWraHS8yy6FH00d9VsVX+2VqJbkV8CBXVNO4le6IBPsOIIFRK0zICXUSbdMIuaK GKXmpqTBSuKze+32O1liE9eQ/v9LQ9KiknFY4/hhyr1AHhqLUYRRj188FVt42BKp RXOazyVXIiwx5Qng992IAS5l1RxXrSbMtz0narWoBABTxR6/ajMQdZj6+FeLmepD nM0bnEvLkeFimYl8ATFycH+JbB0fmC/k1b4HAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUiNS1bYOzbmFi937pgXBU3YtezhMwHwYDVR0jBBgwFoAUAmSkGnQeXwCu0r1+ SnpC9bHXWNUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0RDTC1U Vy9BbVNrR25RZVh3Q3UwcjEtU25wQzliSFhXTlUuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0FtU2tHblFlWHdDdTByMS1TbnBDOWJIWFdOVS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NEQ0wtVFcvaU5TMWJZT3pibUZpOTM3 cGdYQlUzWXRlemhNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AWf22jANBgkqhkiG9w0BAQsFAAOCAQEAab6hZwhVE8r2z4u0H3xWjQRaFiwRz+yG 4xtSEa3D6vgOKOQmYTNtfK0Qu6hR2/AmWFbuT0RlnOHpiL3gnoMq/OgqG/b3pxN4 vV6oJuK33dtmaVksoXryXcS0uVRiu/4lBZR3WhWIvdlXVOFEh3gBfDNYJAW/ZbL6 OR0oCSIp5eiFgzwIagc5C27QEu45vhpPiTjB771nY+G2ye1/H5u3Yglx1UScvMZw woWL9ypID2fBrNlLtlu0RTAlPvX05l9z6hXX7J9Sop/Ajxi+GMaF7+4Vo0jDXA/p 35nkMDM2rW1p55cKn6uNAPdx5ZJ1zW0WZt0Q4JL4lMk7CEbC3hjevA== -----END CERTIFICATE-----Generated at Sun Aug 24 05:08:25 2025 by rpki-client