$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/Sg5T9EB1MarDInUIhbPko52VS3o.roa File: Sg5T9EB1MarDInUIhbPko52VS3o.roa (raw, json) Hash identifier: e9ocAxS5rq4dSA0hejCpBmkwVoD5lcM3dG/p61jeJ/Q= Subject key identifier: 4A:0E:53:F4:40:75:31:AA:C3:22:75:08:85:B3:E4:A3:9D:95:4B:7A Certificate issuer: /CN=307E1DEA08C58B5FCEC8F57CBB774EEE8E515C99 Certificate serial: 2A Authority key identifier: 30:7E:1D:EA:08:C5:8B:5F:CE:C8:F5:7C:BB:77:4E:EE:8E:51:5C:99 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MH4d6gjFi1_OyPV8u3dO7o5RXJk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/Sg5T9EB1MarDInUIhbPko52VS3o.roa Signing time: Mon 25 Aug 2025 01:37:28 +0000 ROA not before: Mon 25 Aug 2025 01:37:28 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 139690 IP address blocks: 165.99.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/MH4d6gjFi1_OyPV8u3dO7o5RXJk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/MH4d6gjFi1_OyPV8u3dO7o5RXJk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/MH4d6gjFi1_OyPV8u3dO7o5RXJk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 15:18:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=307E1DEA08C58B5FCEC8F57CBB774EEE8E515C99 Validity Not Before: Aug 25 01:37:28 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=4A0E53F4407531AAC322750885B3E4A39D954B7A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:d4:dc:db:b0:21:f2:5c:5e:95:a8:51:7e:bc: 0a:55:10:15:6c:82:c8:c9:3d:73:8b:e6:7f:40:d6: 4e:df:d1:44:89:38:3d:bb:8f:a4:43:b4:c4:28:54: ff:32:59:75:93:5b:0e:14:0d:70:8c:72:04:27:9a: 3a:29:88:82:c6:91:82:d4:33:5b:08:ba:e6:5f:4f: 68:b8:e7:27:39:da:f6:9a:5c:3e:5d:20:25:30:dd: 5a:18:6b:0e:1b:8e:cd:31:25:1a:50:9d:ca:ca:81: bb:72:a5:1a:77:08:76:4c:7b:c4:fe:18:d7:2b:bf: 69:4e:e6:b1:17:b4:ed:09:98:82:c4:33:a9:e0:8c: 8f:fe:86:6b:bb:02:f9:d7:9b:94:5a:f4:c2:99:27: a4:d0:0e:ba:03:0d:bd:36:1e:ac:74:ea:a8:9d:71: ce:28:3c:e1:49:c8:4b:0f:83:12:43:6e:8a:f1:1e: af:4f:7c:99:15:be:48:e3:74:40:8f:58:23:e3:1f: 81:92:09:2a:58:03:ee:9f:67:3f:29:c9:e5:af:4f: 4f:45:f4:e3:e7:15:c6:2c:9d:bc:3d:0e:c6:9a:a9: 13:1f:84:c5:24:c7:e8:bb:2d:86:62:d3:ff:02:d7: b6:ee:c0:6a:83:eb:8b:55:65:c1:96:4f:36:8e:73: f9:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:0E:53:F4:40:75:31:AA:C3:22:75:08:85:B3:E4:A3:9D:95:4B:7A X509v3 Authority Key Identifier: keyid:30:7E:1D:EA:08:C5:8B:5F:CE:C8:F5:7C:BB:77:4E:EE:8E:51:5C:99 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/MH4d6gjFi1_OyPV8u3dO7o5RXJk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MH4d6gjFi1_OyPV8u3dO7o5RXJk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/Sg5T9EB1MarDInUIhbPko52VS3o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 165.99.169.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:0e:3d:5d:85:2b:cc:0d:56:90:54:18:9f:6d:76:d3:d0:5f: 91:18:a1:20:22:70:e2:9a:71:e8:6c:77:8b:62:52:51:4f:62: 0c:d0:77:fd:32:9d:4b:e8:46:b9:f3:78:f2:d4:25:b8:bb:57: 19:d7:3c:b7:7d:3a:88:84:15:40:fa:f1:60:8c:9a:c1:6c:8e: 37:8e:4f:7d:dd:2a:19:07:6d:14:1a:5d:3d:d6:ef:bb:9d:05: 6d:5a:2d:9c:dd:4b:66:77:48:3f:c7:11:c0:56:0d:ff:9b:f6: 51:88:b7:ab:a7:ae:df:f5:47:84:f6:38:61:9d:6d:72:d8:4b: 34:19:b7:e2:4c:77:6f:c7:78:d6:2b:41:b5:00:0f:54:68:c7: 63:5c:a1:08:aa:98:8e:ef:90:6d:29:b1:2e:6b:ee:27:8b:1b: 65:e5:63:b1:3b:37:b9:d5:f5:3a:e6:4d:b4:47:10:dd:d9:05: 33:97:45:86:b1:a8:73:1b:17:16:e9:a8:a7:87:fd:86:50:68: c7:fb:eb:39:a1:eb:33:7a:af:5c:b1:49:c4:07:66:d2:f2:fb: 14:ea:8f:3d:cf:a3:cb:97:a1:b9:49:a9:3d:44:bb:14:b2:0d: 46:4e:ff:e0:5d:5b:8a:61:42:bc:12:66:83:41:e9:36:e0:d2: 29:c8:01:d2 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgIBKjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzMDdF MURFQTA4QzU4QjVGQ0VDOEY1N0NCQjc3NEVFRThFNTE1Qzk5MB4XDTI1MDgyNTAx MzcyOFoXDTI2MDgyMjA4MTQyOFowMzExMC8GA1UEAxMoNEEwRTUzRjQ0MDc1MzFB QUMzMjI3NTA4ODVCM0U0QTM5RDk1NEI3QTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOTU3NuwIfJcXpWoUX68ClUQFWyCyMk9c4vmf0DWTt/RRIk4PbuP pEO0xChU/zJZdZNbDhQNcIxyBCeaOimIgsaRgtQzWwi65l9PaLjnJzna9ppcPl0g JTDdWhhrDhuOzTElGlCdysqBu3KlGncIdkx7xP4Y1yu/aU7msRe07QmYgsQzqeCM j/6Ga7sC+deblFr0wpknpNAOugMNvTYerHTqqJ1xzig84UnISw+DEkNuivEer098 mRW+SON0QI9YI+MfgZIJKlgD7p9nPynJ5a9PT0X04+cVxiydvD0OxpqpEx+ExSTH 6LsthmLT/wLXtu7AaoPri1VlwZZPNo5z+aUCAwEAAaOCAfQwggHwMB0GA1UdDgQW BBRKDlP0QHUxqsMidQiFs+SjnZVLejAfBgNVHSMEGDAWgBQwfh3qCMWLX87I9Xy7 d07ujlFcmTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF8GA1UdHwRYMFYwVKBS oFCGTnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9EQlNCQU5L VFcvTUg0ZDZnakZpMV9PeVBWOHUzZE83bzVSWEprLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9NSDRkNmdqRmkxX095UFY4dTNkTzdvNVJYSmsuY2VyMA4GA1UdDwEB/wQE AwIHgDCBnwYIKwYBBQUHAQsEgZIwgY8wWgYIKwYBBQUHMAuGTnJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9EQlNCQU5LVFcvU2c1VDlFQjFNYXJE SW5VSWhiUGtvNTJWUzNvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3 bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAKVjqTANBgkqhkiG9w0BAQsFAAOCAQEAKw49XYUrzA1WkFQYn21209BfkRih ICJw4ppx6Gx3i2JSUU9iDNB3/TKdS+hGufN48tQluLtXGdc8t306iIQVQPrxYIya wWyON45Pfd0qGQdtFBpdPdbvu50FbVotnN1LZndIP8cRwFYN/5v2UYi3q6eu3/VH hPY4YZ1tcthLNBm34kx3b8d41itBtQAPVGjHY1yhCKqYju+QbSmxLmvuJ4sbZeVj sTs3udX1OuZNtEcQ3dkFM5dFhrGocxsXFumop4f9hlBox/vrOaHrM3qvXLFJxAdm 0vL7FOqPPc+jy5ehuUmpPUS7FLINRk7/4F1bimFCvBJmg0HpNuDSKcgB0g== -----END CERTIFICATE-----Generated at Sat Sep 6 15:05:41 2025 by rpki-client