$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/ScLGIsknhkSPh1oRlzdmof-MtJc.roa File: ScLGIsknhkSPh1oRlzdmof-MtJc.roa (raw, json) Hash identifier: FjAsLbZxW/EdLwxDN0W8BPA4toYBR9idbL9GTMR+w5A= Subject key identifier: 49:C2:C6:22:C9:27:86:44:8F:87:5A:11:97:37:66:A1:FF:8C:B4:97 Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803 Certificate serial: 02B7 Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/ScLGIsknhkSPh1oRlzdmof-MtJc.roa Signing time: Wed 03 Sep 2025 23:30:47 +0000 ROA not before: Wed 03 Sep 2025 23:30:47 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 152609 IP address blocks: 157.20.248.20/30 maxlen: 30 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Sep 2025 20:49:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 695 (0x2b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803 Validity Not Before: Sep 3 23:30:47 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=49C2C622C92786448F875A11973766A1FF8CB497 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:bc:78:c4:a7:43:d9:9a:ce:e3:7c:b1:99:45: 83:94:47:5f:a8:78:2c:09:4b:06:bc:fa:ab:ba:56: ef:23:4d:85:59:e0:0d:ed:a6:5b:8f:30:de:50:6b: 61:8b:fd:7e:33:ff:6c:c7:41:f7:45:c4:1e:65:94: e5:cc:56:b9:e5:8c:ab:07:1a:28:af:fc:9f:8f:1c: cc:1f:9b:43:1b:1b:27:92:84:3f:1d:82:e0:90:9a: 3f:f9:ae:17:0e:c3:a1:4d:a2:cd:f1:54:3a:30:7f: 50:da:84:b3:0c:b3:56:b4:9a:13:8c:87:4e:7e:11: 00:c0:12:2a:62:8b:8b:f4:a2:16:86:24:f0:80:f6: d1:b9:8f:57:cb:b6:09:21:28:47:84:fb:f3:5c:4e: 78:9a:0c:62:b4:5c:e1:fe:c5:07:01:40:97:eb:0f: 22:89:7f:a1:a2:5b:db:44:2c:f0:5b:29:52:70:1c: 88:cd:a7:8d:7f:0b:d7:45:a3:8d:d6:88:f2:2a:e0: b5:38:b7:48:1e:fc:25:76:b9:71:7a:d8:3a:a8:aa: 0e:9f:c1:1e:61:3d:d1:98:8b:2d:25:d6:65:36:55: d5:e8:26:c1:46:8a:01:37:fe:a5:50:ee:b6:c7:a8: 58:48:20:21:fd:3c:98:cf:a2:2f:88:89:0b:43:96: b4:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:C2:C6:22:C9:27:86:44:8F:87:5A:11:97:37:66:A1:FF:8C:B4:97 X509v3 Authority Key Identifier: keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/ScLGIsknhkSPh1oRlzdmof-MtJc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.248.20/30 Signature Algorithm: sha256WithRSAEncryption 31:69:0b:43:ab:f6:6c:bb:46:07:54:3d:8e:7d:8d:6f:eb:3a: 05:60:0a:19:4b:b7:a6:ff:78:76:7f:d0:5d:fb:54:33:3b:eb: b0:10:e0:bd:d3:ff:23:45:bb:60:d7:d0:2c:05:68:4f:aa:e4: 57:bd:9b:46:77:01:08:93:18:45:28:77:c1:8d:31:fd:2e:19: 0d:07:80:6e:75:6f:7e:a4:97:ab:c5:77:4c:a8:69:05:65:9e: 26:61:d9:3d:20:1f:3c:87:69:44:bf:17:5c:c2:8c:e3:57:19: be:39:ad:5f:21:d5:fa:e6:13:fe:ad:79:36:84:2e:bd:0b:ce: 65:1d:81:86:ec:c7:ba:56:58:a4:5e:78:6c:53:44:8e:4b:87: 05:03:df:cd:9b:05:a4:a2:f9:5c:c2:b1:66:34:5a:0d:a5:2d: 53:0e:75:d9:a0:76:e2:03:c2:e5:f0:bd:1d:4e:0e:bf:55:38: 75:a2:bd:46:aa:57:00:5e:67:08:7a:56:a6:d7:25:15:67:6f: 3c:cf:a0:6b:4b:a5:21:20:39:b5:30:94:d3:05:4b:88:1b:d3: c2:85:67:59:b0:9b:14:10:66:cb:2f:00:aa:10:35:81:78:d8: 76:31:15:d4:23:35:c1:59:4f:ba:1d:c7:88:6c:11:01:9e:a4: 58:8f:8d:62 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICArcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjMz QTcyQUFGNzk4MTA1QkIyNzdGMDk0NDU4RTQ2NEI0NjU5RjgwMzAeFw0yNTA5MDMy MzMwNDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQ5QzJDNjIyQzkyNzg2 NDQ4Rjg3NUExMTk3Mzc2NkExRkY4Q0I0OTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCdvHjEp0PZms7jfLGZRYOUR1+oeCwJSwa8+qu6Vu8jTYVZ4A3t pluPMN5Qa2GL/X4z/2zHQfdFxB5llOXMVrnljKsHGiiv/J+PHMwfm0MbGyeShD8d guCQmj/5rhcOw6FNos3xVDowf1DahLMMs1a0mhOMh05+EQDAEipii4v0ohaGJPCA 9tG5j1fLtgkhKEeE+/NcTniaDGK0XOH+xQcBQJfrDyKJf6GiW9tELPBbKVJwHIjN p41/C9dFo43WiPIq4LU4t0ge/CV2uXF62Dqoqg6fwR5hPdGYiy0l1mU2VdXoJsFG igE3/qVQ7rbHqFhIICH9PJjPoi+IiQtDlrSxAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUScLGIsknhkSPh1oRlzdmof+MtJcwHwYDVR0jBBgwFoAU8zpyqveYEFuyd/CU RY5GS0ZZ+AMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUFNVC84 enB5cXZlWUVGdXlkX0NVUlk1R1MwWlotQU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB Lzh6cHlxdmVZRUZ1eWRfQ1VSWTVHUzBaWi1BTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0lBTVQvU2NMR0lza25oa1NQaDFvUmx6ZG1v Zi1NdEpjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAEwBwMFAp0U+BQw DQYJKoZIhvcNAQELBQADggEBADFpC0Or9my7RgdUPY59jW/rOgVgChlLt6b/eHZ/ 0F37VDM767AQ4L3T/yNFu2DX0CwFaE+q5Fe9m0Z3AQiTGEUod8GNMf0uGQ0HgG51 b36kl6vFd0yoaQVlniZh2T0gHzyHaUS/F1zCjONXGb45rV8h1frmE/6teTaELr0L zmUdgYbsx7pWWKReeGxTRI5LhwUD382bBaSi+VzCsWY0Wg2lLVMOddmgduIDwuXw vR1ODr9VOHWivUaqVwBeZwh6VqbXJRVnbzzPoGtLpSEgObUwlNMFS4gb08KFZ1mw mxQQZssvAKoQNYF42HYxFdQjNcFZT7odx4hsEQGepFiPjWI= -----END CERTIFICATE-----Generated at Thu Sep 18 16:10:10 2025 by rpki-client