$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/4v-x2EdgtF_JOYnwcArQs1IWklo.roa File: 4v-x2EdgtF_JOYnwcArQs1IWklo.roa (raw, json) Hash identifier: cY47bENTfT+UmyUiRXiUu/h8h9IFyQkUvWRP1UoHnqU= Subject key identifier: E2:FF:B1:D8:47:60:B4:5F:C9:39:89:F0:70:0A:D0:B3:52:16:92:5A Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 19AA Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/4v-x2EdgtF_JOYnwcArQs1IWklo.roa Signing time: Fri 22 Aug 2025 08:53:14 +0000 ROA not before: Fri 22 Aug 2025 08:53:14 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9919 IP address blocks: 210.244.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 03:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6570 (0x19aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:14 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E2FFB1D84760B45FC93989F0700AD0B35216925A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:8f:63:b4:75:3c:00:4a:09:34:13:69:91:a9: 29:c2:4f:e3:8e:9f:d3:ff:72:08:1c:2a:c7:2f:d9: c9:b2:37:77:2e:1f:66:95:75:7d:ba:f6:1b:67:dd: 89:52:c2:1c:31:e0:66:45:3f:96:43:76:ce:16:71: 94:21:f0:19:93:a4:5a:9b:6d:3b:a4:8b:27:37:f1: 0a:f1:4a:f7:bb:13:90:26:80:29:2a:c3:90:1f:01: 23:16:fb:bc:ef:19:ab:71:0c:75:f1:ee:65:c0:8f: 32:3c:ae:5a:83:de:95:c7:e6:47:fe:08:e5:7f:35: a9:1d:69:a8:31:b2:ea:ac:fb:13:63:f2:0c:8d:9a: 6e:10:81:ad:03:31:39:0c:80:5b:72:d2:99:4c:63: eb:db:33:81:18:05:ad:f8:a2:a8:6a:ea:45:1c:d1: 21:84:5d:d0:1b:03:21:5f:c5:ca:53:a5:15:0a:97: f3:da:bf:f3:34:fd:b0:07:b4:2d:68:1f:40:db:a1: a2:0e:cd:7f:da:c6:87:0a:a1:f1:7b:5d:92:c1:73: 81:6f:0e:44:46:8b:52:53:ad:ed:58:f9:ab:98:b8: af:14:37:55:08:c8:99:3b:86:aa:37:40:e6:ad:8e: 55:1d:ab:11:09:20:f9:91:e7:79:fb:90:aa:88:eb: 97:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:FF:B1:D8:47:60:B4:5F:C9:39:89:F0:70:0A:D0:B3:52:16:92:5A X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/4v-x2EdgtF_JOYnwcArQs1IWklo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.244.0.0/17 Signature Algorithm: sha256WithRSAEncryption a8:e8:e0:b6:5c:5c:19:41:9a:13:e5:3e:cd:95:28:24:c3:55: 30:be:55:da:68:30:ca:b0:a3:36:02:a3:69:dd:d2:fe:07:37: 7e:84:43:a1:1b:f4:1a:e8:4f:1d:c1:b1:db:2f:1f:4c:5f:ec: f6:d1:8d:46:aa:53:4b:a1:6e:04:07:2e:88:e8:88:ac:d9:02: 46:ef:77:8d:fb:d5:06:12:1f:85:b8:3f:4a:84:6e:06:1b:8f: b5:1e:64:54:ef:68:ec:23:1c:db:1b:67:5a:05:94:7e:5a:27: 5c:da:aa:ea:dd:4b:9a:c8:5e:bf:c1:ec:4a:55:67:04:ac:9b: 6a:f6:9c:4c:8d:c0:73:cf:ef:0b:37:b6:7a:41:ea:44:3a:e2: 1f:cb:89:9e:09:c3:c1:84:ea:45:7e:87:68:6d:0e:e4:a4:58: f8:1b:3d:88:23:8c:2c:0a:3e:6a:e2:2f:13:35:9b:b9:bd:72: a4:32:18:ec:f1:49:7d:6f:80:fc:1d:50:53:cb:fd:c0:d7:4a: b4:14:fe:de:c4:27:a2:2b:67:3e:25:3a:66:8a:4c:97:08:6b: 48:b1:68:75:bd:3f:1f:91:e7:63:82:29:20:4f:55:98:d6:ad: 91:07:db:41:0a:c7:de:fb:d2:f1:2f:d4:4f:79:5a:73:b9:b7: 95:a1:a7:a8 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGaowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzMTRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEUyRkZCMUQ4NDc2MEI0 NUZDOTM5ODlGMDcwMEFEMEIzNTIxNjkyNUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5j2O0dTwASgk0E2mRqSnCT+OOn9P/cggcKscv2cmyN3cuH2aV dX269htn3YlSwhwx4GZFP5ZDds4WcZQh8BmTpFqbbTukiyc38QrxSve7E5AmgCkq w5AfASMW+7zvGatxDHXx7mXAjzI8rlqD3pXH5kf+COV/Nakdaagxsuqs+xNj8gyN mm4Qga0DMTkMgFty0plMY+vbM4EYBa34oqhq6kUc0SGEXdAbAyFfxcpTpRUKl/Pa v/M0/bAHtC1oH0DboaIOzX/axocKofF7XZLBc4FvDkRGi1JTre1Y+auYuK8UN1UI yJk7hqo3QOatjlUdqxEJIPmR53n7kKqI65eLAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU4v+x2EdgtF/JOYnwcArQs1IWklowHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvNHYteDJFZGd0Rl9KT1lud2NBclFz MUlXa2xvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB9L0ADAN BgkqhkiG9w0BAQsFAAOCAQEAqOjgtlxcGUGaE+U+zZUoJMNVML5V2mgwyrCjNgKj ad3S/gc3foRDoRv0GuhPHcGx2y8fTF/s9tGNRqpTS6FuBAcuiOiIrNkCRu93jfvV BhIfhbg/SoRuBhuPtR5kVO9o7CMc2xtnWgWUflonXNqq6t1Lmshev8HsSlVnBKyb avacTI3Ac8/vCze2ekHqRDriH8uJngnDwYTqRX6HaG0O5KRY+Bs9iCOMLAo+auIv EzWbub1ypDIY7PFJfW+A/B1QU8v9wNdKtBT+3sQnoitnPiU6ZopMlwhrSLFodb0/ H5HnY4IpIE9VmNatkQfbQQrH3vvS8S/UT3lac7m3laGnqA== -----END CERTIFICATE-----Generated at Sun Sep 7 23:33:27 2025 by rpki-client