$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/3HsRnFmKU-KOfkIZQOrs7k4m4X4.roa File: 3HsRnFmKU-KOfkIZQOrs7k4m4X4.roa (raw, json) Hash identifier: bCmR7K6erbDBW/JFZi3Mwb/ur20k15+nPbwU4QkFpkI= Subject key identifier: DC:7B:11:9C:59:8A:53:E2:8E:7E:42:19:40:EA:EC:EE:4E:26:E1:7E Certificate issuer: /CN=0264A41A741E5F00AED2BD7E4A7A42F5B1D758D5 Certificate serial: 0270 Authority key identifier: 02:64:A4:1A:74:1E:5F:00:AE:D2:BD:7E:4A:7A:42:F5:B1:D7:58:D5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/3HsRnFmKU-KOfkIZQOrs7k4m4X4.roa Signing time: Tue 08 Jul 2025 00:41:38 +0000 ROA not before: Tue 08 Jul 2025 00:41:38 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 134823 IP address blocks: 211.76.186.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Jul 2025 20:36:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 624 (0x270) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0264A41A741E5F00AED2BD7E4A7A42F5B1D758D5 Validity Not Before: Jul 8 00:41:38 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DC7B119C598A53E28E7E421940EAECEE4E26E17E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:7c:8c:1c:51:1a:68:63:41:7b:f5:61:e5:41: e5:2c:36:f5:62:8d:64:12:8e:06:77:56:e8:1a:ca: a8:a9:98:45:01:8e:19:67:f4:04:f4:dc:1a:80:bd: eb:36:2d:5c:86:7c:ee:0e:d6:80:1c:0f:cf:4e:f2: 4d:37:64:39:2a:fe:32:20:3f:c1:33:82:29:48:3a: 57:16:ac:f8:be:ab:a2:61:a1:ca:44:c6:6b:ef:67: db:f5:96:83:6e:98:5b:d5:c4:43:06:0f:e3:67:95: 5d:72:f0:95:b6:4e:06:7a:76:54:f3:1d:c5:8a:9f: c7:ea:82:11:78:72:f8:e2:9b:02:10:78:9a:d4:03: 67:88:b9:63:3f:83:2b:c9:9a:6a:1b:55:cf:e2:f2: 5c:52:66:d7:ff:cd:1e:91:b1:b5:41:eb:de:bd:40: 68:2f:2a:e2:7e:9f:75:3f:28:6a:cb:14:34:6a:c3: eb:51:51:42:cc:a7:74:4b:76:0c:b7:fb:da:ac:1e: dc:8b:37:28:10:bd:60:e8:cb:e7:af:40:6f:ae:0a: 39:4f:6b:95:d9:30:c4:08:b7:59:5b:56:0a:4b:25: c3:ca:c4:a0:1f:32:09:cb:de:be:16:60:c8:57:83: 67:50:94:12:bd:02:ce:7f:af:53:0c:63:08:ca:15: 2a:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:7B:11:9C:59:8A:53:E2:8E:7E:42:19:40:EA:EC:EE:4E:26:E1:7E X509v3 Authority Key Identifier: keyid:02:64:A4:1A:74:1E:5F:00:AE:D2:BD:7E:4A:7A:42:F5:B1:D7:58:D5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/3HsRnFmKU-KOfkIZQOrs7k4m4X4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.186.0/23 Signature Algorithm: sha256WithRSAEncryption 4f:ef:d2:e4:cb:a3:dd:b4:38:68:53:02:62:a6:05:35:f3:37: 1d:2d:d5:2b:55:4f:5b:63:4c:3f:e9:90:cc:c7:0e:47:12:53: b2:80:64:05:89:6c:ce:ea:8b:f7:43:fe:9a:72:b0:08:74:bb: f7:77:d1:91:92:c7:52:2f:57:ad:de:59:ca:fe:47:09:b8:91: 8a:50:1c:b8:64:c8:11:79:0c:9c:d7:c5:4c:e5:f7:53:50:b7: 60:a2:80:70:d9:3c:f1:cf:5d:70:79:31:1e:87:35:fa:d9:c3: e2:20:24:07:1b:05:06:e9:26:09:0a:8f:6c:0a:c6:4b:6a:d1: 2d:e8:6c:56:bb:22:07:e3:bc:60:80:d6:ce:ec:94:cb:89:65: 7b:9e:01:61:23:25:94:e5:18:94:af:e7:77:bd:9d:00:a0:23: 70:69:9d:1d:86:57:43:62:b8:32:b4:67:f4:3f:cf:96:0d:66: 8d:5b:91:1f:3c:d7:f6:e8:97:48:66:09:56:f4:d7:4a:09:fc: 9a:96:65:f5:51:0d:ce:1e:49:e0:b4:40:a0:45:50:80:fd:4e: e6:1e:e5:80:93:0c:06:8d:76:93:26:13:56:c0:89:73:da:1b: 20:03:51:aa:62:60:ab:f8:51:b6:43:a2:5a:19:7a:35:9e:00: 62:07:59:d3 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICAnAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDI2 NEE0MUE3NDFFNUYwMEFFRDJCRDdFNEE3QTQyRjVCMUQ3NThENTAeFw0yNTA3MDgw MDQxMzhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERDN0IxMTlDNTk4QTUz RTI4RTdFNDIxOTQwRUFFQ0VFNEUyNkUxN0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHfIwcURpoY0F79WHlQeUsNvVijWQSjgZ3VugayqipmEUBjhln 9AT03BqAves2LVyGfO4O1oAcD89O8k03ZDkq/jIgP8EzgilIOlcWrPi+q6JhocpE xmvvZ9v1loNumFvVxEMGD+NnlV1y8JW2TgZ6dlTzHcWKn8fqghF4cvjimwIQeJrU A2eIuWM/gyvJmmobVc/i8lxSZtf/zR6RsbVB6969QGgvKuJ+n3U/KGrLFDRqw+tR UULMp3RLdgy3+9qsHtyLNygQvWDoy+evQG+uCjlPa5XZMMQIt1lbVgpLJcPKxKAf MgnL3r4WYMhXg2dQlBK9As5/r1MMYwjKFSqtAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU3HsRnFmKU+KOfkIZQOrs7k4m4X4wHwYDVR0jBBgwFoAUAmSkGnQeXwCu0r1+ SnpC9bHXWNUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0RDTC1U Vy9BbVNrR25RZVh3Q3UwcjEtU25wQzliSFhXTlUuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0FtU2tHblFlWHdDdTByMS1TbnBDOWJIWFdOVS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NEQ0wtVFcvM0hzUm5GbUtVLUtPZmtJ WlFPcnM3azRtNFg0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AdNMujANBgkqhkiG9w0BAQsFAAOCAQEAT+/S5Muj3bQ4aFMCYqYFNfM3HS3VK1VP W2NMP+mQzMcORxJTsoBkBYlszuqL90P+mnKwCHS793fRkZLHUi9Xrd5Zyv5HCbiR ilAcuGTIEXkMnNfFTOX3U1C3YKKAcNk88c9dcHkxHoc1+tnD4iAkBxsFBukmCQqP bArGS2rRLehsVrsiB+O8YIDWzuyUy4lle54BYSMllOUYlK/nd72dAKAjcGmdHYZX Q2K4MrRn9D/Plg1mjVuRHzzX9uiXSGYJVvTXSgn8mpZl9VENzh5J4LRAoEVQgP1O 5h7lgJMMBo12kyYTVsCJc9obIANRqmJgq/hRtkOiWhl6NZ4AYgdZ0w== -----END CERTIFICATE-----Generated at Sun Jul 20 19:14:57 2025 by rpki-client