$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/3KbUwVpFARE9pMOFOcsPF7m1H_I.roa File: 3KbUwVpFARE9pMOFOcsPF7m1H_I.roa (raw, json) Hash identifier: AmcC2j1of2cdB6HZhSE0+a/WQ4vqGzAVERklmReofZw= Subject key identifier: DC:A6:D4:C1:5A:45:01:11:3D:A4:C3:85:39:CB:0F:17:B9:B5:1F:F2 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1AB5 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/3KbUwVpFARE9pMOFOcsPF7m1H_I.roa Signing time: Wed 27 Aug 2025 09:18:25 +0000 ROA not before: Wed 27 Aug 2025 09:18:25 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9919 IP address blocks: 61.61.48.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 03:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6837 (0x1ab5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 27 09:18:25 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=DCA6D4C15A4501113DA4C38539CB0F17B9B51FF2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b6:df:0f:24:28:18:dc:ae:7d:ed:43:a0:23: 08:4a:dd:db:72:0d:60:d4:af:d1:47:21:42:b4:de: d3:d2:30:64:be:0f:6c:dc:cb:bf:65:96:1a:1b:e4: d0:be:1a:fc:84:4c:c3:dd:ea:6f:76:75:8f:5e:82: 13:eb:2a:36:59:76:57:f3:44:93:87:9e:32:c0:94: ea:1b:98:62:36:7a:5c:b3:66:fa:c0:d6:2c:fb:60: 9c:6f:b8:46:80:b5:05:bf:49:2f:31:40:24:d6:02: 2e:98:a8:f8:5f:e1:b2:56:6c:f4:8b:eb:f0:e7:12: 31:83:c9:8c:f6:2d:2b:cf:77:54:ca:20:02:66:7c: 16:97:b2:27:e0:76:9c:a2:a0:c8:6b:3a:7d:7e:6d: c3:3a:71:c3:09:fc:b2:9d:7e:85:1d:8e:93:4a:d6: a9:2c:a8:29:6b:4c:51:0c:ac:05:27:f7:63:71:44: 74:54:4a:24:62:4d:32:5e:97:b1:49:11:d2:cc:be: 17:56:3f:37:6f:83:89:eb:2e:92:a2:5c:4f:6d:6a: a5:d3:be:57:52:21:6c:d8:13:ef:55:ed:21:21:ff: 49:62:81:4c:7d:97:92:91:93:8e:db:2a:ac:e7:77: 6f:f3:eb:ac:23:e5:e0:1a:b6:f9:f6:b2:5e:65:9e: 15:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:A6:D4:C1:5A:45:01:11:3D:A4:C3:85:39:CB:0F:17:B9:B5:1F:F2 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/3KbUwVpFARE9pMOFOcsPF7m1H_I.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.48.0/24 Signature Algorithm: sha256WithRSAEncryption 15:04:0d:11:ee:2a:14:35:3e:38:e4:e1:38:96:ae:3a:e1:94: 2f:32:ab:4d:ad:45:f9:7e:f5:58:d9:6f:fc:5f:3f:58:6e:d6: 6e:d4:e2:96:ed:1f:ea:44:32:d2:27:f8:bd:34:f3:bf:ac:75: bc:e0:13:6c:7b:91:ea:5d:23:e1:7a:5f:93:c2:61:4d:af:1b: c5:94:2c:5f:a8:2d:e5:1e:9a:c7:4f:e2:72:12:99:f6:ca:2d: 01:44:a5:4e:8a:fe:a7:f1:83:02:40:47:ab:91:f9:93:b5:ac: 49:5a:1a:0b:fa:69:92:be:06:c1:fc:0b:83:2f:09:c8:89:58: d2:ae:bc:5d:73:fa:88:2b:32:08:a3:41:4a:49:97:3c:3f:f7: 64:7f:54:0d:0f:65:43:c5:f6:76:0b:24:48:b6:8a:8c:8f:de: 8f:05:21:5a:11:af:0a:e3:15:20:c8:f9:bf:50:a7:b7:dc:c6: 29:0c:33:0a:db:35:3b:fa:00:81:35:01:28:fc:8c:93:4e:c1: 2f:b7:e5:3d:8b:35:63:d0:9c:4f:50:cf:91:a5:34:fe:5f:21: 13:e6:3a:8c:6d:66:24:c6:7a:78:9a:0c:49:5e:a0:41:a4:e2: 0c:07:be:62:7a:ab:9e:43:7d:f9:0a:06:9a:27:14:35:0c:3c: bf:f6:72:6d -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGrUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4Mjcw OTE4MjVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKERDQTZENEMxNUE0NTAx MTEzREE0QzM4NTM5Q0IwRjE3QjlCNTFGRjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCytt8PJCgY3K597UOgIwhK3dtyDWDUr9FHIUK03tPSMGS+D2zc y79llhob5NC+GvyETMPd6m92dY9eghPrKjZZdlfzRJOHnjLAlOobmGI2elyzZvrA 1iz7YJxvuEaAtQW/SS8xQCTWAi6YqPhf4bJWbPSL6/DnEjGDyYz2LSvPd1TKIAJm fBaXsifgdpyioMhrOn1+bcM6ccMJ/LKdfoUdjpNK1qksqClrTFEMrAUn92NxRHRU SiRiTTJel7FJEdLMvhdWPzdvg4nrLpKiXE9taqXTvldSIWzYE+9V7SEh/0ligUx9 l5KRk47bKqznd2/z66wj5eAatvn2sl5lnhVhAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU3KbUwVpFARE9pMOFOcsPF7m1H/IwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvM0tiVXdWcEZBUkU5cE1PRk9jc1BG N20xSF9JLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAD09MDAN BgkqhkiG9w0BAQsFAAOCAQEAFQQNEe4qFDU+OOThOJauOuGULzKrTa1F+X71WNlv /F8/WG7WbtTilu0f6kQy0if4vTTzv6x1vOATbHuR6l0j4Xpfk8JhTa8bxZQsX6gt 5R6ax0/ichKZ9sotAUSlTor+p/GDAkBHq5H5k7WsSVoaC/ppkr4GwfwLgy8JyIlY 0q68XXP6iCsyCKNBSkmXPD/3ZH9UDQ9lQ8X2dgskSLaKjI/ejwUhWhGvCuMVIMj5 v1Cnt9zGKQwzCts1O/oAgTUBKPyMk07BL7flPYs1Y9CcT1DPkaU0/l8hE+Y6jG1m JMZ6eJoMSV6gQaTiDAe+YnqrnkN9+QoGmicUNQw8v/ZybQ== -----END CERTIFICATE-----Generated at Sun Sep 7 23:34:16 2025 by rpki-client