$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DBSBANKSG/mYwIH9t8tfTovniDxBXdxS67N8o.roa File: mYwIH9t8tfTovniDxBXdxS67N8o.roa (raw, json) Hash identifier: uOfvi1QUFYZPq6yyqhx97ar+CpMs0NYFxsvJdwQMn48= Subject key identifier: 99:8C:08:1F:DB:7C:B5:F4:E8:BE:78:83:C4:15:DD:C5:2E:BB:37:CA Certificate issuer: /CN=603136CCA4FB40559F2F75778C389C9D02C23F40 Certificate serial: 2F Authority key identifier: 60:31:36:CC:A4:FB:40:55:9F:2F:75:77:8C:38:9C:9D:02:C2:3F:40 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YDE2zKT7QFWfL3V3jDicnQLCP0A.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKSG/mYwIH9t8tfTovniDxBXdxS67N8o.roa Signing time: Mon 25 Aug 2025 01:40:10 +0000 ROA not before: Mon 25 Aug 2025 01:40:10 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 136169 IP address blocks: 165.99.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKSG/YDE2zKT7QFWfL3V3jDicnQLCP0A.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKSG/YDE2zKT7QFWfL3V3jDicnQLCP0A.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/YDE2zKT7QFWfL3V3jDicnQLCP0A.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 15:18:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47 (0x2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=603136CCA4FB40559F2F75778C389C9D02C23F40 Validity Not Before: Aug 25 01:40:10 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=998C081FDB7CB5F4E8BE7883C415DDC52EBB37CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:1d:7f:24:1d:01:95:83:6b:49:ea:e4:22:40: e8:80:38:2d:3a:9d:31:3f:bd:58:34:a6:bc:4a:90: 7a:e8:a3:de:f1:55:c9:19:dd:60:15:78:89:eb:c5: 4e:52:46:1f:70:b4:bf:6d:44:59:e5:0c:2f:4f:e0: d3:3c:24:6e:4b:5f:ac:b2:8e:69:4d:4f:c9:cc:b2: 14:09:49:4e:ed:58:09:a3:76:d0:9b:84:2c:df:19: d4:4d:68:ea:2e:b5:ee:1b:28:57:d5:02:70:83:ed: a9:b7:5c:a0:f2:34:9c:29:1f:98:01:72:8b:4c:42: b9:aa:55:03:0a:dc:c9:6f:c4:c7:ae:ea:c0:d9:59: 61:cc:8c:99:d2:cf:7e:6a:bb:01:17:5f:13:06:a0: 86:af:4c:61:28:2b:33:d3:67:f2:f2:9c:e3:54:49: 63:87:3a:ac:45:ae:89:70:46:7a:76:c7:ca:ae:bb: fd:59:80:bd:36:f4:fe:0b:79:e6:28:a5:77:69:5d: 76:8d:70:30:aa:9c:28:65:c4:48:53:bf:9c:36:6d: b3:29:e8:b5:ff:bc:44:22:e0:0c:f8:56:bf:2d:5c: cb:84:7d:5d:de:21:e3:83:5b:82:12:fc:4b:1d:8a: 77:91:21:87:33:d4:ba:92:d5:39:45:01:94:5a:24: 4f:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:8C:08:1F:DB:7C:B5:F4:E8:BE:78:83:C4:15:DD:C5:2E:BB:37:CA X509v3 Authority Key Identifier: keyid:60:31:36:CC:A4:FB:40:55:9F:2F:75:77:8C:38:9C:9D:02:C2:3F:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKSG/YDE2zKT7QFWfL3V3jDicnQLCP0A.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YDE2zKT7QFWfL3V3jDicnQLCP0A.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKSG/mYwIH9t8tfTovniDxBXdxS67N8o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 165.99.171.0/24 Signature Algorithm: sha256WithRSAEncryption 25:19:de:a0:87:46:71:a9:35:a5:71:85:fd:1c:83:c9:80:c9: 76:2c:10:b3:b1:e9:96:83:be:f6:a6:2b:a9:a3:4b:17:fc:6b: 84:7c:8f:cc:50:f0:54:7b:bf:19:b6:86:29:3a:bc:5d:1b:22: 5d:a7:e7:75:8f:de:11:d0:0b:79:28:96:03:4e:a0:8f:b1:27: bf:fe:cd:87:b6:74:36:d1:3c:a3:4a:62:e8:87:66:e6:79:49: 5c:7d:0d:06:cb:de:0f:61:92:97:8b:9a:94:7d:f8:ee:41:de: 9b:77:23:2b:e4:5a:67:8d:04:66:21:f3:11:58:e4:e9:46:1d: ac:e6:4a:5a:83:44:2a:ca:03:29:7a:cd:86:89:c9:fe:15:6b: 4d:af:29:89:29:de:12:f2:04:f6:a2:6e:84:d2:83:43:47:aa: 99:e0:74:b1:aa:18:f8:4c:2a:aa:4e:26:5a:85:8a:46:b3:36: 0c:1c:a7:1c:93:24:39:55:aa:47:35:83:17:65:a1:c5:63:d7: e0:ee:2f:64:8d:bc:f4:d4:c3:61:f9:4e:3f:cc:98:da:ea:58: 73:af:eb:cc:79:0c:c8:83:41:49:a3:3f:3c:18:9c:fd:1f:a6: 65:c2:9e:91:3f:36:85:5c:b3:94:63:9e:81:78:12:44:e4:1f: 94:85:74:ab -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgIBLzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2MDMx MzZDQ0E0RkI0MDU1OUYyRjc1Nzc4QzM4OUM5RDAyQzIzRjQwMB4XDTI1MDgyNTAx NDAxMFoXDTI2MDgyMjA4MTQyOFowMzExMC8GA1UEAxMoOTk4QzA4MUZEQjdDQjVG NEU4QkU3ODgzQzQxNUREQzUyRUJCMzdDQTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMIdfyQdAZWDa0nq5CJA6IA4LTqdMT+9WDSmvEqQeuij3vFVyRnd YBV4ievFTlJGH3C0v21EWeUML0/g0zwkbktfrLKOaU1PycyyFAlJTu1YCaN20JuE LN8Z1E1o6i617hsoV9UCcIPtqbdcoPI0nCkfmAFyi0xCuapVAwrcyW/Ex67qwNlZ YcyMmdLPfmq7ARdfEwaghq9MYSgrM9Nn8vKc41RJY4c6rEWuiXBGenbHyq67/VmA vTb0/gt55iild2lddo1wMKqcKGXESFO/nDZtsynotf+8RCLgDPhWvy1cy4R9Xd4h 44NbghL8Sx2Kd5EhhzPUupLVOUUBlFokT8sCAwEAAaOCAfQwggHwMB0GA1UdDgQW BBSZjAgf23y19Oi+eIPEFd3FLrs3yjAfBgNVHSMEGDAWgBRgMTbMpPtAVZ8vdXeM OJydAsI/QDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF8GA1UdHwRYMFYwVKBS oFCGTnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9EQlNCQU5L U0cvWURFMnpLVDdRRldmTDNWM2pEaWNuUUxDUDBBLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9ZREUyektUN1FGV2ZMM1YzakRpY25RTENQMEEuY2VyMA4GA1UdDwEB/wQE AwIHgDCBnwYIKwYBBQUHAQsEgZIwgY8wWgYIKwYBBQUHMAuGTnJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9EQlNCQU5LU0cvbVl3SUg5dDh0ZlRv dm5pRHhCWGR4UzY3TjhvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3 bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAKVjqzANBgkqhkiG9w0BAQsFAAOCAQEAJRneoIdGcak1pXGF/RyDyYDJdiwQ s7HploO+9qYrqaNLF/xrhHyPzFDwVHu/GbaGKTq8XRsiXafndY/eEdALeSiWA06g j7Env/7Nh7Z0NtE8o0pi6Idm5nlJXH0NBsveD2GSl4ualH347kHem3cjK+RaZ40E ZiHzEVjk6UYdrOZKWoNEKsoDKXrNhonJ/hVrTa8piSneEvIE9qJuhNKDQ0eqmeB0 saoY+Ewqqk4mWoWKRrM2DBynHJMkOVWqRzWDF2WhxWPX4O4vZI289NTDYflOP8yY 2upYc6/rzHkMyINBSaM/PBic/R+mZcKekT82hVyzlGOegXgSROQflIV0qw== -----END CERTIFICATE-----Generated at Sat Sep 6 14:30:35 2025 by rpki-client