$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCCC/naPEHJPkepJdq6AAYc-FSaJmd2Y.roa File: naPEHJPkepJdq6AAYc-FSaJmd2Y.roa (raw, json) Hash identifier: rNIdjmUS7y27ihgvl4m5d+KMP6zU/NV05lM3iFd9HxE= Subject key identifier: 9D:A3:C4:1C:93:E4:7A:92:5D:AB:A0:00:61:CF:85:49:A2:66:77:66 Certificate issuer: /CN=07E36A3D219A8AFC84F88B30553E638CE6C2CECE Certificate serial: 01EA Authority key identifier: 07:E3:6A:3D:21:9A:8A:FC:84:F8:8B:30:55:3E:63:8C:E6:C2:CE:CE Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/B-NqPSGaivyE-IswVT5jjObCzs4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCCC/naPEHJPkepJdq6AAYc-FSaJmd2Y.roa Signing time: Fri 22 Aug 2025 09:01:26 +0000 ROA not before: Fri 22 Aug 2025 09:01:26 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 198949 IP address blocks: 157.20.106.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCCC/B-NqPSGaivyE-IswVT5jjObCzs4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCCC/B-NqPSGaivyE-IswVT5jjObCzs4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/B-NqPSGaivyE-IswVT5jjObCzs4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 10:46:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 490 (0x1ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=07E36A3D219A8AFC84F88B30553E638CE6C2CECE Validity Not Before: Aug 22 09:01:26 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=9DA3C41C93E47A925DABA00061CF8549A2667766 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ae:b4:17:21:3c:88:6e:d7:8b:4e:98:49:42: 0e:ed:42:9d:84:10:87:64:b0:2e:87:63:44:4e:05: 22:7f:fc:7f:88:60:eb:2a:1e:89:ed:0e:af:2b:91: 60:33:42:cd:70:02:69:88:50:46:cd:6c:ad:e9:7d: 63:28:5a:c8:66:a8:1e:14:05:8e:ac:e3:07:aa:d6: ff:ad:c4:35:6b:be:ae:9d:38:6e:92:69:0e:73:ef: 46:f6:20:f3:2b:60:ce:19:66:a3:37:b7:ab:49:a7: e7:71:51:86:64:c0:c8:4d:3a:16:4a:1d:4a:86:79: 9b:91:06:8c:60:71:b2:6c:94:15:46:91:92:bb:df: b6:a7:b8:60:99:80:4c:aa:0b:2a:13:93:3b:26:7d: 92:58:ba:80:0e:19:ed:d9:2e:ad:fd:7f:0f:98:26: 6c:c5:36:8f:a5:f0:d2:15:7f:f3:a0:94:39:52:61: bc:af:1d:b4:c5:0d:0c:67:28:fe:fa:eb:21:32:a3: 8c:7a:2a:20:77:51:5c:b6:0c:2f:09:42:7a:18:7f: e1:ea:f2:46:da:f9:5e:34:e6:84:31:7a:ec:7c:fd: c0:bf:f0:c9:e7:7f:fe:c3:e0:46:19:d1:02:e5:51: 88:77:74:8f:23:ac:06:4c:0e:d7:3e:9a:51:ef:b2: 6c:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:A3:C4:1C:93:E4:7A:92:5D:AB:A0:00:61:CF:85:49:A2:66:77:66 X509v3 Authority Key Identifier: keyid:07:E3:6A:3D:21:9A:8A:FC:84:F8:8B:30:55:3E:63:8C:E6:C2:CE:CE X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCCC/B-NqPSGaivyE-IswVT5jjObCzs4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/B-NqPSGaivyE-IswVT5jjObCzs4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCCC/naPEHJPkepJdq6AAYc-FSaJmd2Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.106.0/23 Signature Algorithm: sha256WithRSAEncryption 76:08:dc:47:ca:56:be:48:27:bd:ea:08:a2:16:8f:8e:80:60: fb:fd:80:78:e6:30:9c:40:80:3e:d1:2d:32:b1:cc:0d:61:40: 31:6d:43:9a:21:44:c2:06:6c:98:ea:10:54:b4:39:6e:d5:b0: da:cb:40:c3:c7:08:aa:6f:51:cd:98:33:24:e6:95:b5:b0:76: 55:be:74:81:46:1e:93:25:fb:f3:fd:c1:f0:c9:f8:f0:2b:6d: 38:bd:0f:ce:a6:a3:99:f5:a2:b3:a0:ad:f9:03:76:c3:eb:16: 9d:1e:d3:48:60:6b:fe:a7:e0:a2:22:ab:f4:bf:24:bc:94:d4: 27:d8:8f:61:c6:12:51:23:57:a9:11:fb:54:67:46:ed:42:e8: 05:b4:15:c4:92:89:1b:84:b0:9b:56:27:c5:62:17:62:77:8d: 92:36:51:0e:9c:97:41:98:72:cc:57:92:29:48:a4:f5:3d:05: d7:78:5e:0e:57:62:d5:8b:ac:43:9a:33:aa:9c:cb:6d:22:b9: cb:e7:f0:01:44:9b:e3:91:0a:3d:e6:e3:47:3e:30:42:c8:b9: 9b:f8:b5:90:25:1f:42:9e:34:7e:48:0f:c6:04:f4:6c:96:45: 8d:4e:77:fe:47:53:d0:cc:b0:bb:b5:55:0e:cf:e7:39:3e:d2: 37:c6:09:5a -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICAeowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDdF MzZBM0QyMTlBOEFGQzg0Rjg4QjMwNTUzRTYzOENFNkMyQ0VDRTAeFw0yNTA4MjIw OTAxMjZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDlEQTNDNDFDOTNFNDdB OTI1REFCQTAwMDYxQ0Y4NTQ5QTI2Njc3NjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJrrQXITyIbteLTphJQg7tQp2EEIdksC6HY0ROBSJ//H+IYOsq HontDq8rkWAzQs1wAmmIUEbNbK3pfWMoWshmqB4UBY6s4weq1v+txDVrvq6dOG6S aQ5z70b2IPMrYM4ZZqM3t6tJp+dxUYZkwMhNOhZKHUqGeZuRBoxgcbJslBVGkZK7 37anuGCZgEyqCyoTkzsmfZJYuoAOGe3ZLq39fw+YJmzFNo+l8NIVf/OglDlSYbyv HbTFDQxnKP766yEyo4x6KiB3UVy2DC8JQnoYf+Hq8kba+V405oQxeux8/cC/8Mnn f/7D4EYZ0QLlUYh3dI8jrAZMDtc+mlHvsmzLAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUnaPEHJPkepJdq6AAYc+FSaJmd2YwHwYDVR0jBBgwFoAUB+NqPSGaivyE+Isw VT5jjObCzs4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNDQy9C LU5xUFNHYWl2eUUtSXN3VlQ1ampPYkN6czQuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0ItTnFQU0dhaXZ5RS1Jc3dWVDVqak9iQ3pzNC5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DQ0MvbmFQRUhKUGtlcEpkcTZBQVljLUZT YUptZDJZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ0UajAN BgkqhkiG9w0BAQsFAAOCAQEAdgjcR8pWvkgnveoIohaPjoBg+/2AeOYwnECAPtEt MrHMDWFAMW1DmiFEwgZsmOoQVLQ5btWw2stAw8cIqm9RzZgzJOaVtbB2Vb50gUYe kyX78/3B8Mn48CttOL0PzqajmfWis6Ct+QN2w+sWnR7TSGBr/qfgoiKr9L8kvJTU J9iPYcYSUSNXqRH7VGdG7ULoBbQVxJKJG4Swm1YnxWIXYneNkjZRDpyXQZhyzFeS KUik9T0F13heDldi1YusQ5ozqpzLbSK5y+fwAUSb45EKPebjRz4wQsi5m/i1kCUf Qp40fkgPxgT0bJZFjU53/kdT0Mywu7VVDs/nOT7SN8YJWg== -----END CERTIFICATE-----Generated at Sat Sep 6 09:00:45 2025 by rpki-client