$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/4sPB_u7fbVKrz8PvJ2ANd5wmvN4.roa File: 4sPB_u7fbVKrz8PvJ2ANd5wmvN4.roa (raw, json) Hash identifier: d22YNx89jY5XnBKXsXej+Z6EGmQRxBE0r5TbQJ3GCZc= Subject key identifier: E2:C3:C1:FE:EE:DF:6D:52:AB:CF:C3:EF:27:60:0D:77:9C:26:BC:DE Certificate issuer: /CN=307E1DEA08C58B5FCEC8F57CBB774EEE8E515C99 Certificate serial: 2C Authority key identifier: 30:7E:1D:EA:08:C5:8B:5F:CE:C8:F5:7C:BB:77:4E:EE:8E:51:5C:99 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MH4d6gjFi1_OyPV8u3dO7o5RXJk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/4sPB_u7fbVKrz8PvJ2ANd5wmvN4.roa Signing time: Mon 25 Aug 2025 01:38:10 +0000 ROA not before: Mon 25 Aug 2025 01:38:10 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 152628 IP address blocks: 165.99.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/MH4d6gjFi1_OyPV8u3dO7o5RXJk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/MH4d6gjFi1_OyPV8u3dO7o5RXJk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/MH4d6gjFi1_OyPV8u3dO7o5RXJk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 18:46:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44 (0x2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=307E1DEA08C58B5FCEC8F57CBB774EEE8E515C99 Validity Not Before: Aug 25 01:38:10 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E2C3C1FEEEDF6D52ABCFC3EF27600D779C26BCDE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:79:fb:8b:41:62:1f:7e:7a:e5:94:76:05:21: f2:1d:6e:c2:9a:d7:04:43:e9:3d:1e:47:e2:65:6f: e6:49:de:28:70:ff:07:ed:dc:51:fc:37:54:f8:b4: 17:57:0e:62:a2:8e:33:0e:b5:fc:30:86:df:45:6e: bd:bf:32:6d:bd:5a:a7:3d:80:13:4a:78:e0:69:96: dc:44:96:e9:b6:a2:ae:bc:69:7c:77:69:90:ab:97: d3:91:48:03:f2:13:da:85:bb:f9:24:84:60:6f:cd: 80:92:09:01:0c:cd:29:70:e7:db:cb:a2:ab:95:7f: dd:63:f4:93:8c:1f:c6:97:7e:a6:56:24:ee:cc:fb: c4:47:67:d4:32:15:c6:c4:c5:22:5d:54:ca:bf:de: 74:f1:99:fb:5f:38:9a:d8:ba:a8:4f:a2:5e:06:8f: 52:06:28:4f:15:a1:6c:10:5d:e6:e0:1d:01:8d:2b: 23:cc:ee:a7:bd:0f:b2:80:25:7c:d7:87:27:8a:97: 5f:d5:6f:4a:7c:d6:cc:6e:d3:b3:27:6a:0e:b9:49: 7a:c4:37:ac:13:4b:1b:dc:9e:d5:5a:4a:51:83:cc: f3:a2:21:a9:26:63:fe:c9:3b:cb:2a:0e:83:e8:90: c7:da:25:05:52:91:82:b0:73:09:a5:bf:2a:d8:31: 87:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:C3:C1:FE:EE:DF:6D:52:AB:CF:C3:EF:27:60:0D:77:9C:26:BC:DE X509v3 Authority Key Identifier: keyid:30:7E:1D:EA:08:C5:8B:5F:CE:C8:F5:7C:BB:77:4E:EE:8E:51:5C:99 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/MH4d6gjFi1_OyPV8u3dO7o5RXJk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MH4d6gjFi1_OyPV8u3dO7o5RXJk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/4sPB_u7fbVKrz8PvJ2ANd5wmvN4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 165.99.168.0/24 Signature Algorithm: sha256WithRSAEncryption 95:92:cf:93:22:e4:cf:6f:a5:cf:fb:10:7f:ad:5c:92:46:76: 6f:5f:77:b6:47:7d:94:e8:b0:2c:f1:50:2e:5e:6a:f3:c1:c3: de:9a:81:2a:ee:2c:2f:81:a5:7b:87:d8:5d:0f:0f:14:c2:ec: 6a:2e:8b:d6:0d:d5:d4:7f:dd:54:40:53:bb:b4:84:37:ef:e4: 01:5b:40:7f:39:1b:f2:b1:ab:fa:f8:7f:c7:c7:54:e9:3b:1d: 22:d5:80:12:60:b4:22:8e:e5:18:2a:4c:c9:ad:a9:d6:aa:16: ce:b6:36:1a:17:44:9e:c3:a4:dc:5f:3d:8a:42:5a:10:6b:ce: dd:d2:58:32:95:b7:b4:ce:2f:ae:62:30:84:a2:17:ef:32:c7: 1c:23:a2:70:e9:be:3e:dd:13:aa:9b:c2:e7:8e:5d:c2:f5:6f: 76:f0:6b:8b:d3:95:23:15:bb:17:7c:ae:be:d6:2d:6f:a5:bc: 26:38:b0:88:83:6f:19:0d:8a:34:14:c8:34:16:a6:02:30:22: 48:c7:5d:cb:de:bc:3d:88:6a:45:cc:a8:83:ef:21:dd:ab:9c: 1b:7b:39:0a:cb:a2:ca:75:1c:ac:d0:b5:f0:f7:6c:e3:21:bc: f8:13:ce:b6:45:d1:6d:c3:d0:51:a9:2d:26:bd:c4:45:58:bc: d8:c8:f2:ac -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgIBLDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzMDdF MURFQTA4QzU4QjVGQ0VDOEY1N0NCQjc3NEVFRThFNTE1Qzk5MB4XDTI1MDgyNTAx MzgxMFoXDTI2MDgyMjA4MTQyOFowMzExMC8GA1UEAxMoRTJDM0MxRkVFRURGNkQ1 MkFCQ0ZDM0VGMjc2MDBENzc5QzI2QkNERTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKZ5+4tBYh9+euWUdgUh8h1uwprXBEPpPR5H4mVv5kneKHD/B+3c Ufw3VPi0F1cOYqKOMw61/DCG30Vuvb8ybb1apz2AE0p44GmW3ESW6bairrxpfHdp kKuX05FIA/IT2oW7+SSEYG/NgJIJAQzNKXDn28uiq5V/3WP0k4wfxpd+plYk7sz7 xEdn1DIVxsTFIl1Uyr/edPGZ+184mti6qE+iXgaPUgYoTxWhbBBd5uAdAY0rI8zu p70PsoAlfNeHJ4qXX9VvSnzWzG7TsydqDrlJesQ3rBNLG9ye1VpKUYPM86IhqSZj /sk7yyoOg+iQx9olBVKRgrBzCaW/Ktgxh8ECAwEAAaOCAfQwggHwMB0GA1UdDgQW BBTiw8H+7t9tUqvPw+8nYA13nCa83jAfBgNVHSMEGDAWgBQwfh3qCMWLX87I9Xy7 d07ujlFcmTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF8GA1UdHwRYMFYwVKBS oFCGTnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9EQlNCQU5L VFcvTUg0ZDZnakZpMV9PeVBWOHUzZE83bzVSWEprLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9NSDRkNmdqRmkxX095UFY4dTNkTzdvNVJYSmsuY2VyMA4GA1UdDwEB/wQE AwIHgDCBnwYIKwYBBQUHAQsEgZIwgY8wWgYIKwYBBQUHMAuGTnJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9EQlNCQU5LVFcvNHNQQl91N2ZiVkty ejhQdkoyQU5kNXdtdk40LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3 bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAKVjqDANBgkqhkiG9w0BAQsFAAOCAQEAlZLPkyLkz2+lz/sQf61ckkZ2b193 tkd9lOiwLPFQLl5q88HD3pqBKu4sL4Gle4fYXQ8PFMLsai6L1g3V1H/dVEBTu7SE N+/kAVtAfzkb8rGr+vh/x8dU6TsdItWAEmC0Io7lGCpMya2p1qoWzrY2GhdEnsOk 3F89ikJaEGvO3dJYMpW3tM4vrmIwhKIX7zLHHCOicOm+Pt0TqpvC545dwvVvdvBr i9OVIxW7F3yuvtYtb6W8JjiwiINvGQ2KNBTINBamAjAiSMddy968PYhqRcyog+8h 3aucG3s5CsuiynUcrNC18Pds4yG8+BPOtkXRbcPQUaktJr3ERVi82MjyrA== -----END CERTIFICATE-----Generated at Sun Sep 7 17:20:14 2025 by rpki-client