$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/6frv1XpHV3NxXOOMPNcTS_rUvMM.roa File: 6frv1XpHV3NxXOOMPNcTS_rUvMM.roa (raw, json) Hash identifier: oXHh0h7/o0upA2oi0Q+NTjMN/ftd1Cx2p7QbHPow4sY= Subject key identifier: E9:FA:EF:D5:7A:47:57:73:71:5C:E3:8C:3C:D7:13:4B:FA:D4:BC:C3 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1994 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/6frv1XpHV3NxXOOMPNcTS_rUvMM.roa Signing time: Fri 22 Aug 2025 08:53:09 +0000 ROA not before: Fri 22 Aug 2025 08:53:09 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131627 IP address blocks: 106.105.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6548 (0x1994) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:09 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E9FAEFD57A475773715CE38C3CD7134BFAD4BCC3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:68:8e:e9:1e:57:42:a1:7d:39:3a:15:4f:ea: 03:a0:f5:85:f2:de:75:02:7e:eb:ac:e9:76:16:57: 26:4d:6a:27:a8:cb:f2:95:6d:c7:5f:99:4f:42:a4: 0f:81:f6:6f:c7:a9:39:b9:c6:25:58:49:5e:86:da: 68:48:2d:e5:4c:8f:0b:72:be:b6:f4:51:cc:22:0f: 5e:fd:5e:78:ab:3b:17:85:43:22:79:52:df:c5:2b: d5:e6:22:78:ca:19:3a:0c:39:9f:7b:b1:f4:3d:f9: 54:68:af:56:67:c2:36:bb:98:37:e7:24:c3:fb:6f: 01:ec:40:ad:92:f9:58:f6:2c:a4:cd:af:99:d5:cd: 85:0e:16:f2:0c:7c:6e:22:9d:58:fc:ab:70:bf:03: 6e:b5:28:bc:fa:93:2c:ad:6e:4e:63:c1:9b:1b:1f: 3b:5d:78:90:41:45:0d:3d:43:78:9d:45:38:93:6e: 0d:5d:37:85:42:64:e4:36:f1:16:be:c7:4f:f7:01: a1:a4:e9:cb:be:b5:a8:c0:e2:54:52:aa:2b:b1:a0: 85:6b:8b:33:03:49:d1:d9:c2:2e:20:8e:7f:ff:dc: f4:39:19:ae:2f:77:84:b7:55:dc:30:be:bf:b2:34: 7e:fa:27:c0:ab:b4:b1:e6:00:d0:d8:26:f2:56:b7: 86:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:FA:EF:D5:7A:47:57:73:71:5C:E3:8C:3C:D7:13:4B:FA:D4:BC:C3 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/6frv1XpHV3NxXOOMPNcTS_rUvMM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.105.249.0/24 Signature Algorithm: sha256WithRSAEncryption 30:43:f8:ce:cd:47:37:83:a6:f6:13:1d:9b:eb:63:e5:2f:4a: 57:45:22:b5:95:43:aa:c7:d7:48:e8:6b:25:9e:ce:b3:5e:c1: a5:0c:79:b9:62:21:df:6e:0b:ee:c4:42:79:d9:8e:e3:cd:98: 2a:d9:c2:ad:7f:06:a4:dc:fa:6c:91:eb:7e:37:ed:42:14:cb: 53:3d:d3:c9:d1:68:d1:84:b0:0d:88:9e:c5:58:1d:e5:85:20: 56:3c:92:06:52:10:c9:b2:9f:ae:69:ca:af:49:21:b4:a5:3a: 21:9e:ac:1d:e8:ff:10:11:6e:88:25:fa:b7:a7:5c:de:e6:d4: 51:3e:7a:78:db:00:05:8f:d7:ab:07:5a:de:bf:50:df:fa:bf: 63:e6:0b:97:a9:35:84:c7:9c:f4:ac:94:a3:c6:19:48:7f:e3: a5:a5:41:ff:60:9f:89:58:0c:25:f1:ab:c7:74:de:1c:43:55: b8:ab:72:23:10:3c:3f:22:44:8d:c2:f4:af:c6:1a:57:f8:9f: 9a:2c:31:a1:c1:05:75:33:dc:ab:a9:68:bc:c2:f0:9f:8d:af: df:8b:e2:cb:67:26:ef:4e:c0:99:21:98:9f:ac:a3:f8:cb:24: 86:36:c2:8f:40:ff:a2:f1:7d:a3:70:e3:8b:13:6e:d8:23:10: 5f:e0:0f:2e -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGZQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzMDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEU5RkFFRkQ1N0E0NzU3 NzM3MTVDRTM4QzNDRDcxMzRCRkFENEJDQzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+aI7pHldCoX05OhVP6gOg9YXy3nUCfuus6XYWVyZNaieoy/KV bcdfmU9CpA+B9m/HqTm5xiVYSV6G2mhILeVMjwtyvrb0UcwiD179XnirOxeFQyJ5 Ut/FK9XmInjKGToMOZ97sfQ9+VRor1Znwja7mDfnJMP7bwHsQK2S+Vj2LKTNr5nV zYUOFvIMfG4inVj8q3C/A261KLz6kyytbk5jwZsbHztdeJBBRQ09Q3idRTiTbg1d N4VCZOQ28Ra+x0/3AaGk6cu+tajA4lRSqiuxoIVrizMDSdHZwi4gjn//3PQ5Ga4v d4S3Vdwwvr+yNH76J8CrtLHmANDYJvJWt4afAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU6frv1XpHV3NxXOOMPNcTS/rUvMMwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvNmZydjFYcEhWM054WE9PTVBOY1RT X3JVdk1NLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGpp+TAN BgkqhkiG9w0BAQsFAAOCAQEAMEP4zs1HN4Om9hMdm+tj5S9KV0UitZVDqsfXSOhr JZ7Os17BpQx5uWIh324L7sRCedmO482YKtnCrX8GpNz6bJHrfjftQhTLUz3TydFo 0YSwDYiexVgd5YUgVjySBlIQybKfrmnKr0khtKU6IZ6sHej/EBFuiCX6t6dc3ubU UT56eNsABY/Xqwda3r9Q3/q/Y+YLl6k1hMec9KyUo8YZSH/jpaVB/2CfiVgMJfGr x3TeHENVuKtyIxA8PyJEjcL0r8YaV/ifmiwxocEFdTPcq6lovMLwn42v34viy2cm 707AmSGYn6yj+MskhjbCj0D/ovF9o3DjixNu2CMQX+APLg== -----END CERTIFICATE-----Generated at Sat Sep 6 13:50:55 2025 by rpki-client