$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCCC/EcLIjp-oHv7NRSPYmYdilYbGKDg.roa File: EcLIjp-oHv7NRSPYmYdilYbGKDg.roa (raw, json) Hash identifier: s78jBINGSV+chNUf1bOaC/HfWBapa4G2bzxYUWktEk4= Subject key identifier: 11:C2:C8:8E:9F:A8:1E:FE:CD:45:23:D8:99:87:62:95:86:C6:28:38 Certificate issuer: /CN=07E36A3D219A8AFC84F88B30553E638CE6C2CECE Certificate serial: 01ED Authority key identifier: 07:E3:6A:3D:21:9A:8A:FC:84:F8:8B:30:55:3E:63:8C:E6:C2:CE:CE Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/B-NqPSGaivyE-IswVT5jjObCzs4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCCC/EcLIjp-oHv7NRSPYmYdilYbGKDg.roa Signing time: Fri 22 Aug 2025 09:01:27 +0000 ROA not before: Fri 22 Aug 2025 09:01:27 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 19551 IP address blocks: 157.20.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCCC/B-NqPSGaivyE-IswVT5jjObCzs4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCCC/B-NqPSGaivyE-IswVT5jjObCzs4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/B-NqPSGaivyE-IswVT5jjObCzs4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 10:46:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 493 (0x1ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=07E36A3D219A8AFC84F88B30553E638CE6C2CECE Validity Not Before: Aug 22 09:01:27 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=11C2C88E9FA81EFECD4523D89987629586C62838 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:99:c7:cb:0c:49:66:26:f3:1d:48:d9:3c:2c: b5:8c:15:53:09:33:b7:67:74:1e:07:5b:59:10:35: aa:15:ef:7e:c3:af:d0:18:53:a7:30:9c:33:e9:1f: b7:de:07:e5:4a:21:24:2c:42:39:2b:cf:dc:2c:d2: 5c:6d:85:1a:9a:d4:e9:7a:01:fd:6d:c3:1d:1a:1b: ba:31:59:73:17:ba:b8:41:1f:96:09:ce:5e:78:58: d4:73:cc:6f:1c:e2:4b:c8:df:b9:08:da:b1:1a:00: a0:a6:d4:30:68:77:08:fb:27:37:05:88:a8:07:a4: e7:e9:42:a8:bd:44:3d:63:b4:81:af:8c:10:76:51: d3:11:c4:15:2a:cf:48:d9:5d:f5:78:49:a6:91:27: 26:64:93:2f:fb:45:dd:ed:e8:4c:52:56:38:a2:ab: 1d:44:1b:8e:cd:c0:e7:32:80:bd:14:3c:aa:d8:43: 0b:c2:91:ab:0c:c7:33:e7:37:b0:a8:df:74:d1:ae: 2f:6d:3a:c0:a4:40:ee:43:8f:06:e5:dd:57:b0:14: 24:bb:27:32:b5:3c:38:10:5c:1a:58:66:28:19:5b: 87:24:5d:f3:47:8c:3b:36:a3:f3:af:f6:7e:47:cd: 74:73:c5:e1:cf:ef:44:23:6e:ba:e5:f1:6c:7e:1f: 66:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:C2:C8:8E:9F:A8:1E:FE:CD:45:23:D8:99:87:62:95:86:C6:28:38 X509v3 Authority Key Identifier: keyid:07:E3:6A:3D:21:9A:8A:FC:84:F8:8B:30:55:3E:63:8C:E6:C2:CE:CE X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCCC/B-NqPSGaivyE-IswVT5jjObCzs4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/B-NqPSGaivyE-IswVT5jjObCzs4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCCC/EcLIjp-oHv7NRSPYmYdilYbGKDg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.106.0/24 Signature Algorithm: sha256WithRSAEncryption c5:8f:9a:b4:2e:a3:cd:d2:a0:8f:8e:5e:a4:a2:b4:34:64:2f: a8:e5:fd:7e:66:11:6c:11:df:eb:c3:bf:60:57:75:ae:fb:2b: a7:52:8c:e9:e6:e6:15:af:62:bb:81:89:e2:2a:32:f7:ef:69: 4a:be:af:40:f9:b0:8e:1f:14:e2:a2:23:59:97:9d:7d:4b:16: 89:b2:f9:04:13:2a:18:f2:80:f2:36:58:a8:a4:97:88:74:45: 94:45:44:fd:1d:92:ca:2e:c1:43:85:cd:93:96:be:86:e6:b9: cb:f7:d4:15:47:09:d7:08:72:34:32:17:5b:ca:ee:74:b9:cd: 3b:74:84:d3:c1:69:8c:f8:46:fa:8a:c3:7d:51:ce:a7:9a:25: 16:6c:67:ec:93:d4:de:01:88:c1:0e:63:fb:42:df:94:f8:eb: 09:d2:25:4e:e5:c1:9a:e5:40:a5:54:f0:79:11:5d:cb:14:61: 59:de:62:1f:0f:63:0e:1a:00:8d:2a:5f:c1:03:92:62:dc:ee: 7a:ef:41:6e:80:79:38:bd:ab:75:72:30:72:6b:e9:68:f2:48: 7b:60:9c:eb:83:9c:1a:49:d4:a0:19:73:06:8e:a6:bc:2b:c9: e0:fc:c3:3c:13:f4:6e:f5:2e:2b:69:19:ad:4c:64:fd:00:8b: 37:9c:c3:9a -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICAe0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDdF MzZBM0QyMTlBOEFGQzg0Rjg4QjMwNTUzRTYzOENFNkMyQ0VDRTAeFw0yNTA4MjIw OTAxMjdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDExQzJDODhFOUZBODFF RkVDRDQ1MjNEODk5ODc2Mjk1ODZDNjI4MzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2mcfLDElmJvMdSNk8LLWMFVMJM7dndB4HW1kQNaoV737Dr9AY U6cwnDPpH7feB+VKISQsQjkrz9ws0lxthRqa1Ol6Af1twx0aG7oxWXMXurhBH5YJ zl54WNRzzG8c4kvI37kI2rEaAKCm1DBodwj7JzcFiKgHpOfpQqi9RD1jtIGvjBB2 UdMRxBUqz0jZXfV4SaaRJyZkky/7Rd3t6ExSVjiiqx1EG47NwOcygL0UPKrYQwvC kasMxzPnN7Co33TRri9tOsCkQO5Djwbl3VewFCS7JzK1PDgQXBpYZigZW4ckXfNH jDs2o/Ov9n5HzXRzxeHP70Qjbrrl8Wx+H2YvAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUEcLIjp+oHv7NRSPYmYdilYbGKDgwHwYDVR0jBBgwFoAUB+NqPSGaivyE+Isw VT5jjObCzs4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNDQy9C LU5xUFNHYWl2eUUtSXN3VlQ1ampPYkN6czQuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0ItTnFQU0dhaXZ5RS1Jc3dWVDVqak9iQ3pzNC5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DQ0MvRWNMSWpwLW9IdjdOUlNQWW1ZZGls WWJHS0RnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0UajAN BgkqhkiG9w0BAQsFAAOCAQEAxY+atC6jzdKgj45epKK0NGQvqOX9fmYRbBHf68O/ YFd1rvsrp1KM6ebmFa9iu4GJ4ioy9+9pSr6vQPmwjh8U4qIjWZedfUsWibL5BBMq GPKA8jZYqKSXiHRFlEVE/R2Syi7BQ4XNk5a+hua5y/fUFUcJ1whyNDIXW8rudLnN O3SE08FpjPhG+orDfVHOp5olFmxn7JPU3gGIwQ5j+0LflPjrCdIlTuXBmuVApVTw eRFdyxRhWd5iHw9jDhoAjSpfwQOSYtzueu9BboB5OL2rdXIwcmvpaPJIe2Cc64Oc GknUoBlzBo6mvCvJ4PzDPBP0bvUuK2kZrUxk/QCLN5zDmg== -----END CERTIFICATE-----Generated at Sat Sep 6 08:56:38 2025 by rpki-client