$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/48TL3ZcteEy4yB9iFIVn4r30rTo.roa File: 48TL3ZcteEy4yB9iFIVn4r30rTo.roa (raw, json) Hash identifier: 8knAvf+Key5STH6F2JPZbvdFfR5iUMMKR9mQZJyge+8= Subject key identifier: E3:C4:CB:DD:97:2D:78:4C:B8:C8:1F:62:14:85:67:E2:BD:F4:AD:3A Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1A8B Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/48TL3ZcteEy4yB9iFIVn4r30rTo.roa Signing time: Wed 27 Aug 2025 09:11:32 +0000 ROA not before: Wed 27 Aug 2025 09:11:32 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131627 IP address blocks: 61.61.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6795 (0x1a8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 27 09:11:32 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E3C4CBDD972D784CB8C81F62148567E2BDF4AD3A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:e5:58:03:be:ed:a2:7b:87:ab:bf:49:c2:f0: a3:48:e1:a7:e7:96:f4:50:65:9f:84:b4:0b:6f:73: d9:01:68:3d:a5:e1:16:5f:59:71:87:d9:56:7b:d9: 52:5c:3a:e1:10:43:56:51:bd:0a:52:9b:82:e2:c9: b8:8f:72:9b:66:bf:5e:f1:93:c2:57:cc:46:06:c5: ba:cd:d1:1d:b6:17:31:f4:1d:4a:1f:5b:6d:c4:16: 7b:68:a6:ea:d1:04:42:7e:30:c5:9f:78:f9:66:1d: c9:b0:8e:ce:4c:52:59:fa:21:c8:e3:b3:7a:59:da: 27:ed:2e:6a:6f:a1:1e:4f:80:8f:b1:0d:23:2e:2b: dc:a6:2d:4a:aa:41:5b:f6:75:3e:97:fa:a3:25:b3: dd:9c:dc:9d:c2:71:47:88:d2:14:a0:cb:8a:f6:9b: 9b:53:34:87:28:af:19:0d:35:5a:08:0c:b6:a8:a1: d1:12:80:a6:0e:a3:e1:10:89:e1:f5:c9:ac:7f:d0: a5:10:18:b5:20:27:6d:80:db:24:69:17:53:28:49: ee:93:d7:bb:66:33:70:a1:09:e9:a2:31:41:ad:da: a4:e2:4b:e8:86:10:36:88:44:f9:97:bd:17:3f:1d: 2f:b2:22:e0:9d:20:c7:a6:8f:c9:ee:96:ae:d7:fd: cd:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:C4:CB:DD:97:2D:78:4C:B8:C8:1F:62:14:85:67:E2:BD:F4:AD:3A X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/48TL3ZcteEy4yB9iFIVn4r30rTo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.69.0/24 Signature Algorithm: sha256WithRSAEncryption b8:27:be:9a:49:6e:58:de:a8:b6:01:a5:b1:cd:b0:38:d2:10: e2:ca:b0:6e:6a:b4:11:7f:28:17:40:46:ee:e5:f7:2d:5f:96: 78:c5:6b:d3:af:e3:d9:54:47:cd:8a:cb:5a:0a:83:ed:d9:53: 19:56:c4:bb:6b:ef:00:5d:c0:b3:cf:6d:2d:3d:5f:69:06:de: 6d:5c:b8:f1:6d:1a:1e:db:50:9e:0a:9b:92:15:83:61:d2:46: c7:eb:61:54:9b:44:ea:b5:96:a6:32:ae:17:2b:4f:66:2e:a9: 56:b6:68:f3:d9:e0:05:a8:c8:ec:41:ba:7c:58:9e:72:5e:a5: 46:41:aa:66:34:2b:34:28:7f:aa:11:58:3e:f6:a8:da:70:40: d1:32:0a:2e:fd:51:a9:cb:bc:54:98:6b:d2:e8:70:40:d6:e9: 15:67:9a:09:cc:ad:c3:01:32:c8:1f:10:0e:7c:75:f7:c3:7e: d7:b5:29:8a:0d:29:59:c2:cf:c5:92:48:f7:9e:53:ee:6b:6b: e2:f3:0d:0b:57:d7:0b:42:c6:ab:2c:60:3f:83:08:0a:f5:c1: 9b:5e:33:96:08:da:04:13:61:4f:fa:3f:48:db:4b:4e:df:c6: cb:81:9e:f4:eb:d0:91:da:64:a6:ca:8a:08:42:25:81:b1:80: db:16:94:f6 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGoswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4Mjcw OTExMzJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEUzQzRDQkREOTcyRDc4 NENCOEM4MUY2MjE0ODU2N0UyQkRGNEFEM0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDp5VgDvu2ie4erv0nC8KNI4afnlvRQZZ+EtAtvc9kBaD2l4RZf WXGH2VZ72VJcOuEQQ1ZRvQpSm4LiybiPcptmv17xk8JXzEYGxbrN0R22FzH0HUof W23EFntopurRBEJ+MMWfePlmHcmwjs5MUln6Icjjs3pZ2iftLmpvoR5PgI+xDSMu K9ymLUqqQVv2dT6X+qMls92c3J3CcUeI0hSgy4r2m5tTNIcorxkNNVoIDLaoodES gKYOo+EQieH1yax/0KUQGLUgJ22A2yRpF1MoSe6T17tmM3ChCemiMUGt2qTiS+iG EDaIRPmXvRc/HS+yIuCdIMemj8nulq7X/c0fAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU48TL3ZcteEy4yB9iFIVn4r30rTowHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvNDhUTDNaY3RlRXk0eUI5aUZJVm40 cjMwclRvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAD09RTAN BgkqhkiG9w0BAQsFAAOCAQEAuCe+mkluWN6otgGlsc2wONIQ4sqwbmq0EX8oF0BG 7uX3LV+WeMVr06/j2VRHzYrLWgqD7dlTGVbEu2vvAF3As89tLT1faQbebVy48W0a HttQngqbkhWDYdJGx+thVJtE6rWWpjKuFytPZi6pVrZo89ngBajI7EG6fFiecl6l RkGqZjQrNCh/qhFYPvao2nBA0TIKLv1Rqcu8VJhr0uhwQNbpFWeaCcytwwEyyB8Q Dnx198N+17Upig0pWcLPxZJI955T7mtr4vMNC1fXC0LGqyxgP4MICvXBm14zlgja BBNhT/o/SNtLTt/Gy4Ge9OvQkdpkpsqKCEIlgbGA2xaU9g== -----END CERTIFICATE-----Generated at Sat Sep 6 13:50:30 2025 by rpki-client