$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/-AbFKjB4rG_YJOxwr7iwO6cvcf8.roa File: -AbFKjB4rG_YJOxwr7iwO6cvcf8.roa (raw, json) Hash identifier: /3fjGyiAUSIn16fm1Iw9hwmSWt10adyG4/zJUat3T+0= Subject key identifier: F8:06:C5:2A:30:78:AC:6F:D8:24:EC:70:AF:B8:B0:3B:A7:2F:71:FF Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 19C0 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/-AbFKjB4rG_YJOxwr7iwO6cvcf8.roa Signing time: Fri 22 Aug 2025 08:53:20 +0000 ROA not before: Fri 22 Aug 2025 08:53:20 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4780 IP address blocks: 210.243.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6592 (0x19c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:20 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F806C52A3078AC6FD824EC70AFB8B03BA72F71FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:78:2f:27:89:c0:00:eb:e4:92:54:b5:e3:ef: c9:9c:b2:2d:7f:ad:2d:15:a1:68:9f:04:f1:ff:bb: bc:0a:b8:89:ab:29:e3:db:a8:13:c2:e5:c8:f8:07: 63:92:b4:51:64:de:3b:f4:24:ad:98:f1:18:3e:94: b5:87:35:40:bc:ce:22:0f:8f:d8:59:12:ff:47:2a: a9:78:4c:e1:99:8e:0a:67:c1:3c:1c:7c:2a:91:eb: 75:55:09:54:1f:b3:5c:e9:4d:9e:3a:7e:20:51:09: 4a:91:ff:86:a0:81:ba:43:77:23:07:05:71:33:1d: c7:b8:ac:60:6d:f7:de:e0:d0:90:71:e5:6b:7b:97: 6f:a7:28:7a:9c:f4:96:51:6b:5d:25:09:ac:61:04: 26:a6:83:29:50:7c:ed:6a:ae:3d:d9:5e:38:47:d1: 6c:b7:5c:ee:d9:df:0a:13:4c:2e:c6:bf:6a:5c:c3: 01:fa:16:83:88:f8:8a:6c:80:5f:48:6a:7b:2c:e2: 26:4f:8f:e8:2f:01:f9:d3:f6:cf:03:29:93:81:84: bf:b7:a0:4b:b2:69:14:c6:8f:30:cc:82:b0:5e:ff: e5:76:4e:f7:cd:50:73:4d:05:1e:13:d2:54:a3:15: 41:cb:fd:c1:d9:02:0b:ab:d3:1e:ac:27:d9:c2:93: 78:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:06:C5:2A:30:78:AC:6F:D8:24:EC:70:AF:B8:B0:3B:A7:2F:71:FF X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/-AbFKjB4rG_YJOxwr7iwO6cvcf8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.243.128.0/17 Signature Algorithm: sha256WithRSAEncryption ae:c9:fb:5a:97:be:ba:2b:0d:af:df:28:4a:65:aa:64:95:61: 2c:fc:2c:52:ac:67:0f:5e:c5:ba:0f:a3:f3:6c:f6:19:4a:f5: 29:83:4a:6d:b8:83:4b:ca:4f:78:f8:68:58:07:54:f3:72:a6: bf:b8:8e:f8:07:65:79:3a:b7:46:f7:20:71:c6:48:a4:ed:81: f1:fd:aa:6d:26:9d:27:f9:bf:d1:71:b7:56:81:ff:b6:dd:02: 30:1e:ab:ff:92:16:7d:1a:2c:40:3f:ca:af:68:a9:01:6c:ef: d9:74:c8:73:ca:40:da:c4:3f:f1:8a:1b:00:50:00:f4:8b:f2: 5b:0b:41:6b:3e:f5:37:46:ea:34:67:f7:44:1b:b4:64:6d:ea: 45:25:28:d9:c3:e9:fb:71:4b:1f:23:99:c2:bd:71:2c:7f:e8: 6f:8f:15:cd:76:82:e3:56:e1:c7:6a:49:37:55:ff:b1:e3:fe: fb:43:67:c1:ce:a5:40:c8:c9:b0:b2:2f:0d:e5:ac:45:34:f2: 97:6a:3c:69:76:bc:9d:18:14:e9:d4:69:83:b3:2e:54:b6:07: f1:ed:af:83:a4:ee:d2:89:29:80:5d:20:c8:63:57:73:78:57: 69:bf:64:39:f6:4b:8c:c4:be:d7:3e:32:75:4b:65:a9:e2:bd: 18:49:d2:ab -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGcAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzMjBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEY4MDZDNTJBMzA3OEFD NkZEODI0RUM3MEFGQjhCMDNCQTcyRjcxRkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGeC8nicAA6+SSVLXj78mcsi1/rS0VoWifBPH/u7wKuImrKePb qBPC5cj4B2OStFFk3jv0JK2Y8Rg+lLWHNUC8ziIPj9hZEv9HKql4TOGZjgpnwTwc fCqR63VVCVQfs1zpTZ46fiBRCUqR/4aggbpDdyMHBXEzHce4rGBt997g0JBx5Wt7 l2+nKHqc9JZRa10lCaxhBCamgylQfO1qrj3ZXjhH0Wy3XO7Z3woTTC7Gv2pcwwH6 FoOI+IpsgF9Ianss4iZPj+gvAfnT9s8DKZOBhL+3oEuyaRTGjzDMgrBe/+V2TvfN UHNNBR4T0lSjFUHL/cHZAgur0x6sJ9nCk3ipAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU+AbFKjB4rG/YJOxwr7iwO6cvcf8wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvLUFiRktqQjRyR19ZSk94d3I3aXdP NmN2Y2Y4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB9LzgDAN BgkqhkiG9w0BAQsFAAOCAQEArsn7Wpe+uisNr98oSmWqZJVhLPwsUqxnD17Fug+j 82z2GUr1KYNKbbiDS8pPePhoWAdU83Kmv7iO+AdleTq3RvcgccZIpO2B8f2qbSad J/m/0XG3VoH/tt0CMB6r/5IWfRosQD/Kr2ipAWzv2XTIc8pA2sQ/8YobAFAA9Ivy WwtBaz71N0bqNGf3RBu0ZG3qRSUo2cPp+3FLHyOZwr1xLH/ob48VzXaC41bhx2pJ N1X/seP++0Nnwc6lQMjJsLIvDeWsRTTyl2o8aXa8nRgU6dRpg7MuVLYH8e2vg6Tu 0okpgF0gyGNXc3hXab9kOfZLjMS+1z4ydUtlqeK9GEnSqw== -----END CERTIFICATE-----Generated at Sat Sep 6 12:07:48 2025 by rpki-client