$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/4WsVQMEiy4CbFBoEnVgiDtGZES4.roa File: 4WsVQMEiy4CbFBoEnVgiDtGZES4.roa (raw, json) Hash identifier: fhoHTavOUxyWoazyFPIXlrctiSbilvS0+zckAuXXi7g= Subject key identifier: E1:6B:15:40:C1:22:CB:80:9B:14:1A:04:9D:58:22:0E:D1:99:11:2E Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 19D3 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/4WsVQMEiy4CbFBoEnVgiDtGZES4.roa Signing time: Fri 22 Aug 2025 08:53:25 +0000 ROA not before: Fri 22 Aug 2025 08:53:25 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4780 IP address blocks: 203.73.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6611 (0x19d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:25 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E16B1540C122CB809B141A049D58220ED199112E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:15:ac:d5:39:9d:e8:51:e4:7f:5e:ff:0d:1c: e2:7f:21:81:44:a0:a3:ce:f9:67:f4:1d:f7:36:29: 9f:a6:3c:b4:9b:9c:a4:04:a7:42:80:5d:3b:d5:cd: 1a:b2:82:d3:f8:ca:0f:76:59:b2:dc:e7:84:2f:30: c0:ec:15:40:da:3a:58:40:46:f3:8f:37:88:62:50: c6:89:d1:31:bc:d9:82:f3:9c:eb:d3:da:cd:6b:a7: c4:17:90:aa:7d:33:25:51:34:3f:1f:f4:0b:8e:06: f7:5f:a1:c0:f9:38:af:e9:6e:02:d8:b4:e0:d5:56: ab:d4:f1:37:50:fd:ba:93:8d:00:b2:ad:15:fe:50: 09:3f:db:3d:be:a9:fa:0e:02:1c:bf:26:6b:54:89: 66:e4:8c:de:08:94:9d:f4:8d:40:92:0b:3d:c8:97: 5c:1d:07:84:52:a3:b3:32:02:42:67:06:b6:1a:85: 05:bf:98:ab:94:af:b1:91:6f:e4:9d:39:07:a1:68: 9f:2c:76:58:5f:70:41:c2:55:ce:20:6c:a5:1b:f7: 32:7a:93:33:b4:0f:39:e6:37:87:d9:26:3f:35:57: 86:a3:c2:aa:dc:46:5d:f3:5b:21:01:66:a0:7f:05: e2:c9:ab:51:a9:b4:db:29:72:06:7f:04:8d:8b:ae: 4b:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:6B:15:40:C1:22:CB:80:9B:14:1A:04:9D:58:22:0E:D1:99:11:2E X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/4WsVQMEiy4CbFBoEnVgiDtGZES4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.73.0.0/16 Signature Algorithm: sha256WithRSAEncryption 80:26:38:b4:6a:60:23:6e:63:55:2b:0c:42:1e:35:2f:6c:53: b4:d9:0f:f3:d7:96:ae:6d:4d:ae:39:30:5e:a3:ae:bd:29:ac: e4:7d:0b:8b:78:23:70:64:d0:21:e6:a7:27:2b:98:6a:dc:aa: 5f:9c:67:be:47:0c:54:9e:b8:09:d9:e2:b2:31:a5:3e:03:25: b4:39:5d:d4:28:0c:e1:22:b9:dd:9c:90:60:79:46:6f:4b:7a: 58:54:a1:16:5d:73:d8:02:0b:ec:0c:08:c7:86:4c:ee:29:b4: c5:f9:bd:b7:1c:94:f8:e9:61:0d:e6:e4:b2:d8:aa:09:27:75: 0f:97:a1:34:17:5a:e9:1b:9a:97:93:52:a4:e9:51:dc:cc:dc: 3c:f0:bf:f1:da:3c:fa:a9:ed:38:d6:51:59:29:4c:3c:72:39: b7:ac:e1:a5:71:92:ae:76:4b:7c:f3:4e:bd:a4:8e:7a:5e:6e: 1e:40:93:be:89:92:11:01:de:f5:34:bf:f4:05:04:c1:00:fb: 40:97:be:8b:47:60:74:47:27:42:a6:60:80:5d:a7:9a:7e:0a: 04:58:60:23:5b:05:29:3a:d3:ba:dc:c4:13:54:5e:bd:c2:f9: a8:31:ea:af:57:1e:3d:30:e9:45:c1:60:4c:fb:0d:e6:21:90: 67:9f:f8:a2 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICGdMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzMjVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEUxNkIxNTQwQzEyMkNC ODA5QjE0MUEwNDlENTgyMjBFRDE5OTExMkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0FazVOZ3oUeR/Xv8NHOJ/IYFEoKPO+Wf0Hfc2KZ+mPLSbnKQE p0KAXTvVzRqygtP4yg92WbLc54QvMMDsFUDaOlhARvOPN4hiUMaJ0TG82YLznOvT 2s1rp8QXkKp9MyVRND8f9AuOBvdfocD5OK/pbgLYtODVVqvU8TdQ/bqTjQCyrRX+ UAk/2z2+qfoOAhy/JmtUiWbkjN4IlJ30jUCSCz3Il1wdB4RSo7MyAkJnBrYahQW/ mKuUr7GRb+SdOQehaJ8sdlhfcEHCVc4gbKUb9zJ6kzO0DznmN4fZJj81V4ajwqrc Rl3zWyEBZqB/BeLJq1GptNspcgZ/BI2Lrks9AgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQU4WsVQMEiy4CbFBoEnVgiDtGZES4wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvNFdzVlFNRWl5NENiRkJvRW5WZ2lE dEdaRVM0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAMtJMA0G CSqGSIb3DQEBCwUAA4IBAQCAJji0amAjbmNVKwxCHjUvbFO02Q/z15aubU2uOTBe o669KazkfQuLeCNwZNAh5qcnK5hq3KpfnGe+RwxUnrgJ2eKyMaU+AyW0OV3UKAzh IrndnJBgeUZvS3pYVKEWXXPYAgvsDAjHhkzuKbTF+b23HJT46WEN5uSy2KoJJ3UP l6E0F1rpG5qXk1Kk6VHczNw88L/x2jz6qe041lFZKUw8cjm3rOGlcZKudkt88069 pI56Xm4eQJO+iZIRAd71NL/0BQTBAPtAl76LR2B0RydCpmCAXaeafgoEWGAjWwUp OtO63MQTVF69wvmoMeqvVx49MOlFwWBM+w3mIZBnn/ii -----END CERTIFICATE-----Generated at Sat Sep 6 12:08:02 2025 by rpki-client