$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/7Av3Gp0B8Qcfw_6knnrmX_2I73s.roa File: 7Av3Gp0B8Qcfw_6knnrmX_2I73s.roa (raw, json) Hash identifier: kZD9K4Z0DuqR2avbEkbXfEWK2b8ee6ZlSzbsntyf03U= Subject key identifier: EC:0B:F7:1A:9D:01:F1:07:1F:C3:FE:A4:9E:7A:E6:5F:FD:88:EF:7B Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 197D Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/7Av3Gp0B8Qcfw_6knnrmX_2I73s.roa Signing time: Fri 22 Aug 2025 08:53:02 +0000 ROA not before: Fri 22 Aug 2025 08:53:02 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9919 IP address blocks: 211.78.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 03:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6525 (0x197d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:02 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=EC0BF71A9D01F1071FC3FEA49E7AE65FFD88EF7B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:dd:6b:3f:c4:47:b4:1f:d8:c3:b6:2c:0b:53: 77:5f:5b:c3:83:fc:e5:da:19:7c:48:91:9f:ab:9a: 17:ef:c8:43:bd:aa:cf:b0:08:7a:b2:82:ef:e6:89: 42:b0:5b:48:45:4e:9e:77:75:7c:0e:5c:83:5b:65: 0c:89:22:25:8e:76:5a:66:8b:56:b2:2c:4d:f4:79: 3c:40:1c:7f:7e:3f:99:24:23:fa:b4:e7:eb:aa:12: 27:9e:ad:9b:e5:1e:b3:87:c0:b5:e4:2c:45:5a:d1: 51:4c:f2:1b:b3:55:dc:11:8f:d8:37:35:29:bf:3f: ed:46:1c:c7:6b:9a:a2:9a:4f:8e:6d:4b:f1:c9:75: af:56:3a:96:aa:a8:07:be:a6:e9:d9:28:6d:82:f7: 0f:f1:62:aa:e7:f3:5d:b1:87:c6:39:79:ff:cb:52: 61:90:5e:fa:ee:a2:8a:98:75:54:f9:82:67:0e:65: 63:55:9e:d6:cc:69:3e:78:c8:2e:db:98:24:c1:37: 7b:4f:46:e1:36:72:65:12:20:d6:ac:0b:72:dc:13: a5:34:fd:d5:8c:7d:9b:00:04:fd:f3:2d:83:36:11: cc:5e:77:97:45:c3:d0:a6:c1:8f:04:16:55:6a:b6: de:06:28:e2:36:24:5d:80:62:5a:ec:b6:83:78:b9: 92:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:0B:F7:1A:9D:01:F1:07:1F:C3:FE:A4:9E:7A:E6:5F:FD:88:EF:7B X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/7Av3Gp0B8Qcfw_6knnrmX_2I73s.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.78.160.0/19 Signature Algorithm: sha256WithRSAEncryption 2d:fa:ef:a5:91:cc:26:a3:5e:12:ae:3a:03:32:ae:47:a8:c8: 8e:b2:f3:4e:c5:16:54:e8:12:59:66:93:a6:7a:91:a5:aa:92: 80:a9:ff:cd:1c:55:f9:7c:7c:a1:ca:11:eb:79:08:eb:3f:b7: aa:36:0b:35:cc:7b:38:ee:64:6b:78:e7:cf:08:4d:4b:81:3f: 64:7c:bf:0b:6b:e6:55:a9:61:81:cb:41:b7:cc:b8:c0:c1:4e: ee:8e:14:e9:38:e1:78:76:95:75:1b:08:36:0d:e1:5d:2c:5a: f0:8e:c9:af:21:fa:3d:f5:98:9d:8b:43:59:4d:8b:05:2f:bb: 46:98:2d:f2:77:fb:f0:43:76:b4:3d:d4:72:c2:98:76:30:69: 76:74:92:0b:f2:ae:f2:72:a3:85:7b:4f:34:28:7e:33:bf:d5: 6d:53:49:f9:ad:89:94:54:8c:bf:7b:c2:59:ad:3a:ae:ef:1a: 10:88:70:35:5b:a0:16:1c:34:fe:42:15:08:4a:72:49:ed:5e: 48:4b:84:08:e0:88:7d:02:6a:dd:42:83:f9:a0:14:7c:a2:06: 80:5d:0c:34:90:2f:6c:6e:08:fd:91:9d:17:14:75:87:68:ed: 28:6f:7e:d0:9e:db:19:ce:f3:4b:65:e0:36:83:78:a5:25:82: c8:e3:d8:63 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGX0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzMDJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEVDMEJGNzFBOUQwMUYx MDcxRkMzRkVBNDlFN0FFNjVGRkQ4OEVGN0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCe3Ws/xEe0H9jDtiwLU3dfW8OD/OXaGXxIkZ+rmhfvyEO9qs+w CHqygu/miUKwW0hFTp53dXwOXINbZQyJIiWOdlpmi1ayLE30eTxAHH9+P5kkI/q0 5+uqEieerZvlHrOHwLXkLEVa0VFM8huzVdwRj9g3NSm/P+1GHMdrmqKaT45tS/HJ da9WOpaqqAe+punZKG2C9w/xYqrn812xh8Y5ef/LUmGQXvruooqYdVT5gmcOZWNV ntbMaT54yC7bmCTBN3tPRuE2cmUSINasC3LcE6U0/dWMfZsABP3zLYM2Ecxed5dF w9CmwY8EFlVqtt4GKOI2JF2AYlrstoN4uZJ7AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU7Av3Gp0B8Qcfw/6knnrmX/2I73swHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvN0F2M0dwMEI4UWNmd182a25ucm1Y XzJJNzNzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBdNOoDAN BgkqhkiG9w0BAQsFAAOCAQEALfrvpZHMJqNeEq46AzKuR6jIjrLzTsUWVOgSWWaT pnqRpaqSgKn/zRxV+Xx8ocoR63kI6z+3qjYLNcx7OO5ka3jnzwhNS4E/ZHy/C2vm ValhgctBt8y4wMFO7o4U6TjheHaVdRsINg3hXSxa8I7JryH6PfWYnYtDWU2LBS+7 Rpgt8nf78EN2tD3UcsKYdjBpdnSSC/Ku8nKjhXtPNCh+M7/VbVNJ+a2JlFSMv3vC Wa06ru8aEIhwNVugFhw0/kIVCEpySe1eSEuECOCIfQJq3UKD+aAUfKIGgF0MNJAv bG4I/ZGdFxR1h2jtKG9+0J7bGc7zS2XgNoN4pSWCyOPYYw== -----END CERTIFICATE-----Generated at Sun Sep 7 23:36:14 2025 by rpki-client