$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/lLtR-kTiLFr36tEfo7vP_POrfa8.roa File: lLtR-kTiLFr36tEfo7vP_POrfa8.roa (raw, json) Hash identifier: ryavoI1N9SCSrZWHEAcVFaK4DkXOVaSCU5jrthYE5yQ= Subject key identifier: 94:BB:51:FA:44:E2:2C:5A:F7:EA:D1:1F:A3:BB:CF:FC:F3:AB:7D:AF Certificate issuer: /CN=0264A41A741E5F00AED2BD7E4A7A42F5B1D758D5 Certificate serial: 0297 Authority key identifier: 02:64:A4:1A:74:1E:5F:00:AE:D2:BD:7E:4A:7A:42:F5:B1:D7:58:D5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/lLtR-kTiLFr36tEfo7vP_POrfa8.roa Signing time: Fri 22 Aug 2025 09:01:48 +0000 ROA not before: Fri 22 Aug 2025 09:01:48 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 134823 IP address blocks: 202.153.4.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 663 (0x297) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0264A41A741E5F00AED2BD7E4A7A42F5B1D758D5 Validity Not Before: Aug 22 09:01:48 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=94BB51FA44E22C5AF7EAD11FA3BBCFFCF3AB7DAF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:b9:e1:86:b6:75:cd:93:bb:66:af:b3:6e:b2: 53:c0:eb:12:42:60:c9:f3:aa:f6:25:5e:9f:10:3c: 1b:d2:89:5e:0c:08:22:8a:77:3a:b1:df:e0:23:97: 89:e0:fb:35:40:27:cf:d7:3e:e9:a9:58:c9:f2:fb: 61:95:c4:f8:92:62:8c:20:f4:a4:60:ff:83:80:fe: 6c:86:79:0f:b0:91:7f:5e:d1:99:9c:5c:2d:e5:81: d1:9b:f8:10:6a:2d:9b:7f:2c:37:d7:dc:6b:cf:a7: ed:a7:bf:0d:18:74:07:6d:37:1c:fd:54:96:d1:c7: 31:50:e2:9d:88:26:90:a6:d6:39:f3:a6:fd:12:4e: b3:5b:ef:b8:a6:05:b8:f6:43:66:5b:15:64:0f:06: fe:e8:73:c3:66:e4:15:4d:f2:df:25:e0:1e:ef:6d: 9d:d2:b7:eb:8c:af:4c:bc:2f:fd:03:82:ab:86:36: 6e:3a:2c:db:53:a7:d5:68:e4:64:80:39:ab:1b:95: fb:aa:64:fc:7d:76:a3:bc:cb:41:57:69:ea:07:0b: d6:2a:45:ad:17:7c:3e:dd:2f:1a:51:1d:c0:be:7f: de:9e:ad:22:18:8c:ec:89:5b:e4:b8:ab:d5:5f:72: 80:7a:49:01:c8:03:b1:f8:11:06:3c:c1:f9:bd:a5: de:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:BB:51:FA:44:E2:2C:5A:F7:EA:D1:1F:A3:BB:CF:FC:F3:AB:7D:AF X509v3 Authority Key Identifier: keyid:02:64:A4:1A:74:1E:5F:00:AE:D2:BD:7E:4A:7A:42:F5:B1:D7:58:D5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/lLtR-kTiLFr36tEfo7vP_POrfa8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.153.4.0/23 Signature Algorithm: sha256WithRSAEncryption 63:fb:fa:51:3e:4a:c7:1a:5f:04:af:2b:6f:d7:a8:ea:4b:91: 74:35:4d:44:52:7c:c0:3b:16:af:7b:4f:e9:5b:4c:ef:bb:4c: ba:ad:c5:66:d0:70:68:0d:7e:18:a8:d1:70:7d:87:4f:62:cc: 69:81:cc:29:a5:b6:4e:73:95:dd:50:f7:a1:70:01:da:19:5f: 19:11:cf:9f:8c:dc:61:22:ee:ee:bf:1e:25:b4:91:dc:05:f3: ce:62:6f:5a:23:21:d5:f8:49:0c:ee:6a:ac:a2:d6:42:53:24: 7e:fb:64:a7:fc:08:b5:73:80:51:46:5e:46:33:2b:a2:80:e8: 1d:ee:f7:ae:c0:6b:c5:c2:96:31:60:87:58:81:4f:78:1a:4d: e5:2c:a1:51:ba:c4:69:f9:be:87:66:f0:e1:75:d8:b8:72:3f: c4:94:bb:56:ea:3c:a7:37:f4:34:d6:50:e8:02:e3:74:6b:27: ba:f5:31:a9:34:4f:6a:f0:7e:23:60:67:64:5c:2f:65:c8:05: 8b:ef:6f:c1:1e:29:e7:2f:64:73:80:4a:37:dd:58:2e:ad:44: b2:3a:09:54:37:b6:e8:ee:fe:db:bc:a4:0f:69:69:67:35:ab: ca:1a:53:b1:33:65:c5:94:9a:4c:2e:55:84:66:4a:e3:70:6b: 78:8f:6e:67 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICApcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDI2 NEE0MUE3NDFFNUYwMEFFRDJCRDdFNEE3QTQyRjVCMUQ3NThENTAeFw0yNTA4MjIw OTAxNDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDk0QkI1MUZBNDRFMjJD NUFGN0VBRDExRkEzQkJDRkZDRjNBQjdEQUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOueGGtnXNk7tmr7NuslPA6xJCYMnzqvYlXp8QPBvSiV4MCCKK dzqx3+Ajl4ng+zVAJ8/XPumpWMny+2GVxPiSYowg9KRg/4OA/myGeQ+wkX9e0Zmc XC3lgdGb+BBqLZt/LDfX3GvPp+2nvw0YdAdtNxz9VJbRxzFQ4p2IJpCm1jnzpv0S TrNb77imBbj2Q2ZbFWQPBv7oc8Nm5BVN8t8l4B7vbZ3St+uMr0y8L/0DgquGNm46 LNtTp9Vo5GSAOasblfuqZPx9dqO8y0FXaeoHC9YqRa0XfD7dLxpRHcC+f96erSIY jOyJW+S4q9VfcoB6SQHIA7H4EQY8wfm9pd47AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUlLtR+kTiLFr36tEfo7vP/POrfa8wHwYDVR0jBBgwFoAUAmSkGnQeXwCu0r1+ SnpC9bHXWNUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0RDTC1U Vy9BbVNrR25RZVh3Q3UwcjEtU25wQzliSFhXTlUuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0FtU2tHblFlWHdDdTByMS1TbnBDOWJIWFdOVS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NEQ0wtVFcvbEx0Ui1rVGlMRnIzNnRF Zm83dlBfUE9yZmE4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AcqZBDANBgkqhkiG9w0BAQsFAAOCAQEAY/v6UT5KxxpfBK8rb9eo6kuRdDVNRFJ8 wDsWr3tP6VtM77tMuq3FZtBwaA1+GKjRcH2HT2LMaYHMKaW2TnOV3VD3oXAB2hlf GRHPn4zcYSLu7r8eJbSR3AXzzmJvWiMh1fhJDO5qrKLWQlMkfvtkp/wItXOAUUZe RjMrooDoHe73rsBrxcKWMWCHWIFPeBpN5SyhUbrEafm+h2bw4XXYuHI/xJS7Vuo8 pzf0NNZQ6ALjdGsnuvUxqTRPavB+I2BnZFwvZcgFi+9vwR4p5y9kc4BKN91YLq1E sjoJVDe26O7+27ykD2lpZzWryhpTsTNlxZSaTC5VhGZK43BreI9uZw== -----END CERTIFICATE-----Generated at Sun Aug 24 05:06:36 2025 by rpki-client