$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/43SsG6XuGwnQPdDyyY12sr5-73Y.roa File: 43SsG6XuGwnQPdDyyY12sr5-73Y.roa (raw, json) Hash identifier: pVmNsh0lMzLVf8ndFPiNP2NBBHi0V2Gbj4FoYKWcufk= Subject key identifier: E3:74:AC:1B:A5:EE:1B:09:D0:3D:D0:F2:C9:8D:76:B2:BE:7E:EF:76 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 19EA Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/43SsG6XuGwnQPdDyyY12sr5-73Y.roa Signing time: Fri 22 Aug 2025 08:53:31 +0000 ROA not before: Fri 22 Aug 2025 08:53:31 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4780 IP address blocks: 218.32.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6634 (0x19ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:31 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E374AC1BA5EE1B09D03DD0F2C98D76B2BE7EEF76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:09:9d:f1:ea:c8:8b:e9:51:48:62:9a:5a:47: f6:e7:cc:58:59:b6:ba:53:99:05:53:fc:df:6b:74: 5c:9e:78:78:e7:54:a4:cf:e3:3a:f2:b1:e8:a5:db: 79:39:42:55:cc:1c:3d:0b:df:52:dc:dd:d1:ba:49: 98:94:10:9c:8f:d1:17:0a:a1:82:a4:91:94:fb:04: aa:a0:8d:a6:24:73:70:f5:56:0e:ce:d6:3f:79:c2: 68:97:8c:5d:68:14:00:93:3f:9d:4a:55:94:2a:88: 97:90:90:68:39:10:0e:08:de:26:36:46:29:e2:e1: 00:15:80:18:a8:5c:a5:3e:fc:29:cf:45:92:49:74: 17:d4:03:b7:4c:28:02:c3:d4:0b:b9:5e:9a:2c:0d: 44:85:2d:29:5c:34:58:5a:0b:1f:40:e7:df:75:36: 84:12:98:79:ba:4a:ea:7c:38:f3:f7:fd:8b:c5:6e: 83:db:59:3e:54:67:3a:57:fc:20:0d:77:4e:ef:b3: 0b:c6:9b:e6:e0:71:01:ae:dc:ce:8e:40:d2:70:1e: 3d:be:d6:0e:91:62:29:8f:31:c1:cb:c6:e3:fa:c6: 9f:56:e7:7c:b6:ae:aa:4c:d0:09:6f:e4:f3:37:52: 4d:a5:06:67:23:30:49:f9:b9:5e:72:23:17:d7:f4: 2a:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:74:AC:1B:A5:EE:1B:09:D0:3D:D0:F2:C9:8D:76:B2:BE:7E:EF:76 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/43SsG6XuGwnQPdDyyY12sr5-73Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 218.32.0.0/16 Signature Algorithm: sha256WithRSAEncryption 66:4c:a7:59:5b:00:37:38:08:58:b0:2e:63:c2:2c:16:2e:02: 87:2c:e7:b0:45:60:f5:5f:3b:8f:c4:94:8b:4a:53:21:e9:91: 1b:e7:a1:9f:af:1c:a8:15:b9:4a:f2:4f:8c:15:16:ce:45:29: d2:15:ae:c4:8e:89:c5:32:2f:a1:0f:bf:46:f5:8c:c8:e6:19: 50:93:ab:c3:5c:ab:69:42:13:db:b5:6a:ed:cb:0b:83:38:e5: ea:5e:c3:4c:6f:6e:30:89:45:c8:bb:e4:b5:d2:70:70:e2:3b: c7:4b:4d:ea:43:0e:04:70:0d:b3:79:7c:07:51:15:69:9d:d3: 12:7c:e9:b8:11:9e:86:3e:8e:94:c7:9f:c7:da:c6:18:a4:ef: a5:cb:81:5d:c8:21:b2:5f:91:34:b7:a6:36:89:32:3c:7f:2b: 4a:d2:41:e4:63:98:b0:1a:f5:5c:4e:73:ee:2f:c3:84:e7:9d: 37:bb:f5:f7:f3:24:d4:28:08:e7:dd:0e:23:08:9b:e9:6a:e7: dc:71:0d:97:99:22:cd:c3:72:e7:51:06:f7:a3:b2:d0:21:d4: d9:38:f0:97:20:33:25:db:f4:c6:9e:c5:c4:c4:44:d3:2a:88: 66:b4:38:93:ae:b3:9d:d2:e8:e8:38:20:10:e2:10:24:a4:28: 13:48:05:61 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICGeowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzMzFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEUzNzRBQzFCQTVFRTFC MDlEMDNERDBGMkM5OEQ3NkIyQkU3RUVGNzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDsCZ3x6siL6VFIYppaR/bnzFhZtrpTmQVT/N9rdFyeeHjnVKTP 4zryseil23k5QlXMHD0L31Lc3dG6SZiUEJyP0RcKoYKkkZT7BKqgjaYkc3D1Vg7O 1j95wmiXjF1oFACTP51KVZQqiJeQkGg5EA4I3iY2Rini4QAVgBioXKU+/CnPRZJJ dBfUA7dMKALD1Au5XposDUSFLSlcNFhaCx9A5991NoQSmHm6Sup8OPP3/YvFboPb WT5UZzpX/CANd07vswvGm+bgcQGu3M6OQNJwHj2+1g6RYimPMcHLxuP6xp9W53y2 rqpM0Alv5PM3Uk2lBmcjMEn5uV5yIxfX9CpjAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQU43SsG6XuGwnQPdDyyY12sr5+73YwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvNDNTc0c2WHVHd25RUGREeXlZMTJz cjUtNzNZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDANogMA0G CSqGSIb3DQEBCwUAA4IBAQBmTKdZWwA3OAhYsC5jwiwWLgKHLOewRWD1XzuPxJSL SlMh6ZEb56GfrxyoFblK8k+MFRbORSnSFa7EjonFMi+hD79G9YzI5hlQk6vDXKtp QhPbtWrtywuDOOXqXsNMb24wiUXIu+S10nBw4jvHS03qQw4EcA2zeXwHURVpndMS fOm4EZ6GPo6Ux5/H2sYYpO+ly4FdyCGyX5E0t6Y2iTI8fytK0kHkY5iwGvVcTnPu L8OE5503u/X38yTUKAjn3Q4jCJvpaufccQ2XmSLNw3LnUQb3o7LQIdTZOPCXIDMl 2/TGnsXExETTKohmtDiTrrOd0ujoOCAQ4hAkpCgTSAVh -----END CERTIFICATE-----Generated at Sat Sep 6 12:07:50 2025 by rpki-client