$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/4T4E2_VXRwmvbdMff4Vw-VcwX1I.roa File: 4T4E2_VXRwmvbdMff4Vw-VcwX1I.roa (raw, json) Hash identifier: AESr1mw93vi3fkHpml/1sCDWQZgbHtilfxguCYWGO1A= Subject key identifier: E1:3E:04:DB:F5:57:47:09:AF:6D:D3:1F:7F:85:70:F9:57:30:5F:52 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 19E9 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/4T4E2_VXRwmvbdMff4Vw-VcwX1I.roa Signing time: Fri 22 Aug 2025 08:53:31 +0000 ROA not before: Fri 22 Aug 2025 08:53:31 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9919 IP address blocks: 106.106.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 03:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6633 (0x19e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:31 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E13E04DBF5574709AF6DD31F7F8570F957305F52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:50:a6:bb:c4:63:33:94:e9:f2:d4:cc:12:34: 8f:9b:71:34:22:ce:6c:90:14:b7:78:f2:43:6b:60: d2:ec:c9:f6:c8:eb:00:5f:4f:e6:b6:68:0b:8d:01: d0:0c:bd:2c:f8:c5:1c:0f:95:04:1a:0b:fd:2a:d6: d1:c8:d9:a4:cc:12:69:94:c4:68:d3:09:c4:34:89: 95:ae:03:99:33:af:dc:51:04:cc:f6:ca:35:f5:a3: 86:2d:f0:ec:36:f9:2e:53:fc:8d:77:3b:a1:0a:49: 0c:ef:c7:24:f3:92:21:b5:b3:51:69:35:fd:5c:95: 31:03:1c:cb:96:46:12:ab:cf:47:6f:1c:50:c8:ba: 65:4c:b5:ef:32:27:94:34:92:2d:4c:b2:59:79:86: 9b:31:11:f2:4d:95:2e:28:04:9d:31:8e:f3:57:0d: 3f:df:01:a8:d5:bb:6b:61:df:3b:9f:b8:25:4c:5e: 77:d2:a2:74:fd:10:bb:08:03:7a:e6:7a:e2:c4:d6: ba:23:6e:a0:7b:a8:28:e2:04:6e:56:2b:7c:7d:c2: 97:6e:72:a9:7f:82:96:3e:98:7b:39:af:e5:59:36: 73:34:aa:4d:19:ef:a2:dc:76:c6:0f:2b:b9:fc:b6: 72:57:d1:e0:6c:c4:17:85:48:7a:ac:9f:77:74:e1: 2d:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:3E:04:DB:F5:57:47:09:AF:6D:D3:1F:7F:85:70:F9:57:30:5F:52 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/4T4E2_VXRwmvbdMff4Vw-VcwX1I.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.106.197.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:e1:7a:cf:9f:59:5d:6f:58:21:59:17:59:19:b0:77:9c:ca: e7:7d:77:4b:4d:62:93:a6:87:3c:ed:ca:cb:ec:28:25:1e:a1: c0:14:a9:02:78:88:41:5f:d4:44:86:bf:0b:14:ef:d8:47:a1: 08:9e:35:b8:c5:c7:79:40:5a:98:42:a4:42:12:bb:eb:f1:68: 8a:54:b0:0e:e6:14:12:45:73:93:00:93:99:f8:ae:b8:76:0e: ee:e0:d2:6f:4a:cb:ce:dd:b5:87:65:68:93:da:0b:9d:46:da: f1:0b:8c:e0:a1:db:43:16:38:cc:0c:7a:c1:3f:cb:1d:ff:e2: 25:30:50:3f:0c:5a:88:7d:bc:dc:01:92:f8:a5:85:61:77:4f: 30:4e:93:e7:bb:e2:50:38:68:5a:82:1b:b1:18:9d:9e:08:84: ce:1a:84:56:00:b2:97:ea:0e:aa:db:e8:12:7b:9c:29:dd:c3: 75:dd:39:cd:93:da:df:44:f5:a1:c4:54:cc:e9:d7:c1:d6:1a: 0b:5a:fa:a0:90:b6:6f:42:fa:c0:0a:8c:dd:3b:7e:a8:61:6f: 87:22:b4:6f:52:fb:62:c9:13:12:bd:06:ea:61:d2:3f:87:d4: 2d:88:01:b6:83:f8:d8:ab:e5:ba:58:c2:17:4b:64:1d:89:d2: df:5f:a8:33 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGekwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzMzFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEUxM0UwNERCRjU1NzQ3 MDlBRjZERDMxRjdGODU3MEY5NTczMDVGNTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFUKa7xGMzlOny1MwSNI+bcTQizmyQFLd48kNrYNLsyfbI6wBf T+a2aAuNAdAMvSz4xRwPlQQaC/0q1tHI2aTMEmmUxGjTCcQ0iZWuA5kzr9xRBMz2 yjX1o4Yt8Ow2+S5T/I13O6EKSQzvxyTzkiG1s1FpNf1clTEDHMuWRhKrz0dvHFDI umVMte8yJ5Q0ki1Msll5hpsxEfJNlS4oBJ0xjvNXDT/fAajVu2th3zufuCVMXnfS onT9ELsIA3rmeuLE1rojbqB7qCjiBG5WK3x9wpducql/gpY+mHs5r+VZNnM0qk0Z 76LcdsYPK7n8tnJX0eBsxBeFSHqsn3d04S1HAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU4T4E2/VXRwmvbdMff4Vw+VcwX1IwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvNFQ0RTJfVlhSd212YmRNZmY0Vnct VmN3WDFJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGpqxTAN BgkqhkiG9w0BAQsFAAOCAQEAC+F6z59ZXW9YIVkXWRmwd5zK5313S01ik6aHPO3K y+woJR6hwBSpAniIQV/URIa/CxTv2EehCJ41uMXHeUBamEKkQhK76/FoilSwDuYU EkVzkwCTmfiuuHYO7uDSb0rLzt21h2Vok9oLnUba8QuM4KHbQxY4zAx6wT/LHf/i JTBQPwxaiH283AGS+KWFYXdPME6T57viUDhoWoIbsRidngiEzhqEVgCyl+oOqtvo EnucKd3Ddd05zZPa30T1ocRUzOnXwdYaC1r6oJC2b0L6wAqM3Tt+qGFvhyK0b1L7 YskTEr0G6mHSP4fULYgBtoP42KvluljCF0tkHYnS31+oMw== -----END CERTIFICATE-----Generated at Sun Sep 7 23:34:15 2025 by rpki-client