$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/0pj2hwmQzgsSyBS0n4w1YPe4dA8.roa File: 0pj2hwmQzgsSyBS0n4w1YPe4dA8.roa (raw, json) Hash identifier: IHZ+UbJT53jdhrLG8wcI4uiDnXUVXjq2YmlQPafGGbo= Subject key identifier: D2:98:F6:87:09:90:CE:0B:12:C8:14:B4:9F:8C:35:60:F7:B8:74:0F Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1AD3 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/0pj2hwmQzgsSyBS0n4w1YPe4dA8.roa Signing time: Wed 27 Aug 2025 09:21:50 +0000 ROA not before: Wed 27 Aug 2025 09:21:50 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4780 IP address blocks: 61.61.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 23:46:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6867 (0x1ad3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 27 09:21:50 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=D298F6870990CE0B12C814B49F8C3560F7B8740F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:b9:15:1f:aa:82:bd:fc:08:11:38:6f:5f:02: 66:9e:27:b2:ad:64:7a:3f:c7:c8:0a:90:2e:22:cb: d0:a1:8f:78:a7:39:a6:1f:c6:aa:a3:5a:fe:e9:fd: db:f0:98:2d:f5:5e:22:3c:6a:da:02:30:5b:30:dd: 16:0c:c7:ba:4c:39:ae:71:14:05:b5:56:6e:e0:71: dc:f9:45:02:b1:37:6b:07:63:f9:56:a7:d0:58:a3: be:28:4c:01:ee:5b:30:31:15:5a:24:b0:47:c0:86: 60:fa:39:01:7c:e9:e8:fa:6a:14:c3:a4:d5:34:9a: 62:6a:4b:bb:48:9a:50:c2:84:c2:61:42:b9:d5:e0: 41:1d:0c:2f:eb:53:3d:26:e1:27:ca:2e:29:ed:67: 4c:de:3c:41:51:13:48:ac:bc:ce:f7:ed:c9:af:6c: cc:15:94:48:44:1a:9c:fc:08:c1:dc:08:00:a8:9a: af:07:df:38:39:9d:6f:56:cb:cf:76:fe:ae:20:73: a9:fe:b8:29:c0:02:9b:a1:31:72:de:5f:5e:27:d6: 7b:04:16:2d:d5:71:63:05:70:3a:56:9d:7b:e8:1e: c9:09:3b:4b:1c:ae:b4:a0:0d:ab:2e:8b:8f:15:b0: c0:1e:3e:13:11:b7:17:80:82:cc:d8:1e:92:30:bb: 21:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:98:F6:87:09:90:CE:0B:12:C8:14:B4:9F:8C:35:60:F7:B8:74:0F X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/0pj2hwmQzgsSyBS0n4w1YPe4dA8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.6.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:4d:56:1d:b7:1f:5e:a7:9c:5c:9c:cd:0e:68:ff:85:95:0f: a4:f8:3f:01:d9:9f:6a:4d:a9:e7:56:a2:0e:b5:0b:ad:42:2b: 99:e3:a9:fe:ae:ad:d2:f8:58:71:e3:3e:8e:15:ce:1c:10:34: 39:24:bd:48:37:17:fc:44:f2:88:f0:a4:dd:41:97:4d:f4:f0: 30:78:6e:26:e9:34:23:84:ef:75:1b:48:66:8d:10:50:e1:ab: 35:b5:83:20:14:a8:26:9b:10:3b:84:fd:b2:3f:2a:34:03:a9: db:10:bb:f0:20:34:ef:cf:73:b3:2a:8b:6a:ed:10:d4:5a:01: 40:cb:c2:b5:a9:7b:1d:52:ef:25:5a:20:ed:aa:65:37:22:0b: ac:51:aa:d6:aa:7c:f0:8b:bf:a8:1a:ba:24:00:11:14:55:db: c1:9e:64:c5:fc:6b:f9:10:4f:75:14:6b:1e:50:56:34:d5:b6: 69:a7:af:49:9c:d2:ac:45:45:2e:c2:ec:d4:a3:94:93:3c:ee: 81:07:3e:2d:e5:f8:61:e0:76:3d:bb:71:53:e2:27:ea:d2:35: 8c:f3:d4:39:fd:e7:a2:08:db:a0:03:d8:d3:15:6d:42:be:97: f5:08:80:32:ff:4f:ab:b4:41:de:3f:2d:e5:41:22:05:e3:b8: 4e:1f:8b:ca -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGtMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4Mjcw OTIxNTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEQyOThGNjg3MDk5MENF MEIxMkM4MTRCNDlGOEMzNTYwRjdCODc0MEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCeuRUfqoK9/AgROG9fAmaeJ7KtZHo/x8gKkC4iy9Chj3inOaYf xqqjWv7p/dvwmC31XiI8atoCMFsw3RYMx7pMOa5xFAW1Vm7gcdz5RQKxN2sHY/lW p9BYo74oTAHuWzAxFVoksEfAhmD6OQF86ej6ahTDpNU0mmJqS7tImlDChMJhQrnV 4EEdDC/rUz0m4SfKLintZ0zePEFRE0isvM737cmvbMwVlEhEGpz8CMHcCAComq8H 3zg5nW9Wy892/q4gc6n+uCnAApuhMXLeX14n1nsEFi3VcWMFcDpWnXvoHskJO0sc rrSgDasui48VsMAePhMRtxeAgszYHpIwuyFnAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU0pj2hwmQzgsSyBS0n4w1YPe4dA8wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvMHBqMmh3bVF6Z3NTeUJTMG40dzFZ UGU0ZEE4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAD09BjAN BgkqhkiG9w0BAQsFAAOCAQEAa01WHbcfXqecXJzNDmj/hZUPpPg/Admfak2p51ai DrULrUIrmeOp/q6t0vhYceM+jhXOHBA0OSS9SDcX/ETyiPCk3UGXTfTwMHhuJuk0 I4TvdRtIZo0QUOGrNbWDIBSoJpsQO4T9sj8qNAOp2xC78CA0789zsyqLau0Q1FoB QMvCtal7HVLvJVog7aplNyILrFGq1qp88Iu/qBq6JAARFFXbwZ5kxfxr+RBPdRRr HlBWNNW2aaevSZzSrEVFLsLs1KOUkzzugQc+LeX4YeB2PbtxU+In6tI1jPPUOf3n ogjboAPY0xVtQr6X9QiAMv9Pq7RB3j8t5UEiBeO4Th+Lyg== -----END CERTIFICATE-----Generated at Sat Sep 6 19:41:24 2025 by rpki-client