$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCCC/o86J4K9GRBQKOYWEVMiBeqc5KD8.roa File: o86J4K9GRBQKOYWEVMiBeqc5KD8.roa (raw, json) Hash identifier: FRAv3DFgJ90SC7UzRMbxw6dQIHUGd+faJbdDjN+dF8M= Subject key identifier: A3:CE:89:E0:AF:46:44:14:0A:39:85:84:54:C8:81:7A:A7:39:28:3F Certificate issuer: /CN=07E36A3D219A8AFC84F88B30553E638CE6C2CECE Certificate serial: 01EB Authority key identifier: 07:E3:6A:3D:21:9A:8A:FC:84:F8:8B:30:55:3E:63:8C:E6:C2:CE:CE Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/B-NqPSGaivyE-IswVT5jjObCzs4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCCC/o86J4K9GRBQKOYWEVMiBeqc5KD8.roa Signing time: Fri 22 Aug 2025 09:01:26 +0000 ROA not before: Fri 22 Aug 2025 09:01:26 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 3462 IP address blocks: 157.20.106.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCCC/B-NqPSGaivyE-IswVT5jjObCzs4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCCC/B-NqPSGaivyE-IswVT5jjObCzs4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/B-NqPSGaivyE-IswVT5jjObCzs4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 05:46:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 491 (0x1eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=07E36A3D219A8AFC84F88B30553E638CE6C2CECE Validity Not Before: Aug 22 09:01:26 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=A3CE89E0AF4644140A39858454C8817AA739283F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:37:37:38:86:37:f0:de:c9:ec:b6:ee:fe:8b: 49:99:d9:cb:48:54:85:a6:94:90:21:ab:17:e0:43: 0e:6e:8e:57:1c:e0:3b:8b:be:13:65:a3:49:03:00: 9e:66:18:50:70:0a:e8:e3:56:38:43:6c:39:66:82: 19:40:d6:80:41:da:3b:24:30:dd:59:4b:b2:2e:2b: 81:aa:02:e7:dd:f7:d9:53:b7:84:8b:fd:02:b1:f7: d3:84:35:5f:d9:7c:2c:55:45:d3:00:c7:e9:e2:72: 15:e8:7a:84:2b:5e:b2:e0:d1:04:b6:ee:b1:11:d1: 7e:b7:59:0c:78:74:3a:d0:6d:f0:ec:82:e0:70:89: 74:0a:d3:e8:f8:16:3e:9b:c6:02:01:af:2a:5b:f4: 21:09:14:50:c3:06:bd:5b:d3:6e:ca:86:cc:db:84: d7:19:18:e9:77:1b:0a:10:79:e3:a9:7c:e6:92:55: a7:86:24:12:83:fd:7e:7e:f2:e4:f8:98:09:07:d8: b6:c5:9e:56:89:5f:28:2e:a5:bd:d4:df:cf:94:7b: 3b:80:62:e4:7b:de:87:df:3e:d3:3c:49:9b:81:e6: 99:80:63:7f:34:5b:4c:b4:f5:bd:29:3e:fd:84:c8: 2f:b2:1b:14:1b:1c:3b:9a:83:a7:70:f5:b0:93:94: 7d:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:CE:89:E0:AF:46:44:14:0A:39:85:84:54:C8:81:7A:A7:39:28:3F X509v3 Authority Key Identifier: keyid:07:E3:6A:3D:21:9A:8A:FC:84:F8:8B:30:55:3E:63:8C:E6:C2:CE:CE X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCCC/B-NqPSGaivyE-IswVT5jjObCzs4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/B-NqPSGaivyE-IswVT5jjObCzs4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCCC/o86J4K9GRBQKOYWEVMiBeqc5KD8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.106.0/23 Signature Algorithm: sha256WithRSAEncryption cc:8a:bf:03:85:f4:53:2d:63:99:3c:59:44:38:52:b6:f6:6d: 03:6a:e3:74:1a:9d:6e:c9:e6:fe:a3:d4:03:f8:4f:4b:e2:9d: ed:44:c6:33:5c:6e:8c:f0:ee:32:fb:58:15:a6:e5:89:93:a0: 99:f0:2b:3a:2e:5e:93:c1:99:d1:73:c0:6a:2a:cc:1f:36:ff: 12:d6:4c:2a:cb:48:52:b8:79:c0:c8:55:6e:e0:a1:8b:6f:56: ab:ab:a9:2f:8f:47:67:2a:03:97:53:23:ab:0f:4d:0c:79:4c: a3:05:cd:50:90:2c:b4:40:27:5f:d7:64:73:a8:54:15:95:a8: 4e:88:91:1b:cd:fc:32:f7:c3:e6:9d:d8:89:91:f9:9d:23:31: 90:39:93:0a:5a:33:8f:bb:f9:4c:e0:eb:f6:3f:58:89:6c:fa: be:89:b3:e4:14:93:72:17:cf:e6:88:79:ce:b1:8b:6a:95:66: 4f:1e:05:b8:c2:e1:c5:3e:68:36:1e:30:e4:ee:85:b6:61:d5: 4f:e6:f3:fb:c4:79:6e:35:56:68:f3:e1:aa:b1:a8:3a:ea:c6: ef:d0:d5:81:9e:c6:78:fb:8b:6d:93:5f:53:ec:d7:ab:ae:b8: f1:fc:9b:d4:03:5b:a6:f6:db:df:56:9e:a5:db:63:4e:e9:e3: bf:14:60:c1 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICAeswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDdF MzZBM0QyMTlBOEFGQzg0Rjg4QjMwNTUzRTYzOENFNkMyQ0VDRTAeFw0yNTA4MjIw OTAxMjZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEEzQ0U4OUUwQUY0NjQ0 MTQwQTM5ODU4NDU0Qzg4MTdBQTczOTI4M0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7Nzc4hjfw3snstu7+i0mZ2ctIVIWmlJAhqxfgQw5ujlcc4DuL vhNlo0kDAJ5mGFBwCujjVjhDbDlmghlA1oBB2jskMN1ZS7IuK4GqAufd99lTt4SL /QKx99OENV/ZfCxVRdMAx+nichXoeoQrXrLg0QS27rER0X63WQx4dDrQbfDsguBw iXQK0+j4Fj6bxgIBrypb9CEJFFDDBr1b027KhszbhNcZGOl3GwoQeeOpfOaSVaeG JBKD/X5+8uT4mAkH2LbFnlaJXygupb3U38+UezuAYuR73offPtM8SZuB5pmAY380 W0y09b0pPv2EyC+yGxQbHDuag6dw9bCTlH0LAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUo86J4K9GRBQKOYWEVMiBeqc5KD8wHwYDVR0jBBgwFoAUB+NqPSGaivyE+Isw VT5jjObCzs4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNDQy9C LU5xUFNHYWl2eUUtSXN3VlQ1ampPYkN6czQuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0ItTnFQU0dhaXZ5RS1Jc3dWVDVqak9iQ3pzNC5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DQ0Mvbzg2SjRLOUdSQlFLT1lXRVZNaUJl cWM1S0Q4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ0UajAN BgkqhkiG9w0BAQsFAAOCAQEAzIq/A4X0Uy1jmTxZRDhStvZtA2rjdBqdbsnm/qPU A/hPS+Kd7UTGM1xujPDuMvtYFabliZOgmfArOi5ek8GZ0XPAairMHzb/EtZMKstI Urh5wMhVbuChi29Wq6upL49HZyoDl1Mjqw9NDHlMowXNUJAstEAnX9dkc6hUFZWo ToiRG838MvfD5p3YiZH5nSMxkDmTClozj7v5TODr9j9YiWz6vomz5BSTchfP5oh5 zrGLapVmTx4FuMLhxT5oNh4w5O6FtmHVT+bz+8R5bjVWaPPhqrGoOurG79DVgZ7G ePuLbZNfU+zXq6648fyb1ANbpvbb31aepdtjTunjvxRgwQ== -----END CERTIFICATE-----Generated at Sat Sep 6 01:19:43 2025 by rpki-client