$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/7Oxlq5pfIfTKgsTFj4vBeFNwUh8.roa File: 7Oxlq5pfIfTKgsTFj4vBeFNwUh8.roa (raw, json) Hash identifier: 0aw9drAZ2d6ljr/kjxJmQiMWisjB7/8aktMlUdHzhaM= Subject key identifier: EC:EC:65:AB:9A:5F:21:F4:CA:82:C4:C5:8F:8B:C1:78:53:70:52:1F Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 19D2 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/7Oxlq5pfIfTKgsTFj4vBeFNwUh8.roa Signing time: Fri 22 Aug 2025 08:53:25 +0000 ROA not before: Fri 22 Aug 2025 08:53:25 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4780 IP address blocks: 123.51.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6610 (0x19d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:25 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=ECEC65AB9A5F21F4CA82C4C58F8BC1785370521F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:cb:c8:ce:f1:da:fc:2b:58:ce:ab:33:de:1d: c1:3e:74:ca:33:73:a5:8b:13:b7:98:c7:cd:3b:83: 98:40:7c:8e:d1:e7:7e:03:45:de:2b:a8:81:e0:da: 8e:84:da:d0:f6:78:2a:1c:c5:2b:7e:0b:c5:47:94: 8a:cd:b7:90:ca:9f:f7:72:d2:f5:2a:7a:15:33:cf: 20:2a:16:bf:a8:3f:ec:e2:4a:6e:c5:90:73:16:31: f7:93:8e:b6:f7:64:39:83:16:1e:28:58:a0:91:e6: 9d:c1:7f:da:71:3a:b6:a9:d2:18:95:93:1f:99:cc: c6:7b:d8:cb:79:23:db:66:b5:61:b0:22:cd:09:db: 83:75:1e:a3:34:e7:ef:ae:9f:04:1e:a2:36:30:a6: 19:ca:43:14:09:73:e3:62:bb:b5:25:0d:ff:ca:37: 0b:cd:69:33:03:4c:5a:a0:7d:0a:85:26:cf:56:51: 02:86:20:d3:41:c5:9b:36:e2:26:01:ab:a9:9b:7e: 84:2b:a2:43:54:cf:48:6a:f1:70:8d:ef:60:e4:5e: 17:c2:a3:bf:75:5c:fe:65:93:61:9f:8f:17:cc:fa: 94:86:ab:ec:2f:df:5a:7e:8e:bf:26:bb:ed:5e:1c: 8c:c6:bb:b2:f1:be:bf:2c:61:26:38:2b:87:18:2e: 7c:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:EC:65:AB:9A:5F:21:F4:CA:82:C4:C5:8F:8B:C1:78:53:70:52:1F X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/7Oxlq5pfIfTKgsTFj4vBeFNwUh8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.51.128.0/17 Signature Algorithm: sha256WithRSAEncryption 4c:fd:ac:ce:98:3a:70:c4:a9:37:09:bf:01:af:10:e9:91:2b: b0:ed:77:7b:cd:75:c7:48:68:e4:df:a3:5d:e0:51:81:b5:36: 8c:43:f2:db:03:5d:3b:44:4a:4d:9d:80:5e:b5:b4:ed:d7:40: 12:d9:bb:dc:4b:cb:d4:3e:2d:8b:77:e6:8c:b1:74:ea:31:d9: 46:18:6b:82:49:3c:bd:6d:d4:61:75:5c:bf:8f:d9:90:5f:01: 35:8c:09:a8:b8:d6:04:ee:b3:a1:d9:c5:96:35:e5:62:a5:ba: 16:c9:cb:66:56:e6:dc:1e:91:2b:da:c2:4a:9e:0d:df:91:ca: 82:7e:f9:4f:97:d4:26:a9:d1:e0:ae:a1:03:6f:1d:38:03:f0: c4:ab:92:07:c6:65:09:81:c1:d9:90:ad:ae:7d:62:6a:26:4e: 00:15:33:66:f4:d4:20:6b:dc:f7:b2:7e:46:9b:b5:4f:6c:85: cb:20:98:1a:28:a6:b2:6f:5a:ab:0c:6b:2a:84:db:23:e0:6b: 39:d2:55:0f:cf:c4:fb:3e:c5:ed:55:25:0c:a7:20:02:c2:ed: ab:f1:ea:75:14:99:63:ec:1c:9f:6d:db:a6:9c:89:93:1d:d9: fb:de:fb:6c:ef:06:1f:2d:c6:ad:a0:cf:7b:f6:c3:a3:3f:ff: b1:fb:e2:d1 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGdIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzMjVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEVDRUM2NUFCOUE1RjIx RjRDQTgyQzRDNThGOEJDMTc4NTM3MDUyMUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTy8jO8dr8K1jOqzPeHcE+dMozc6WLE7eYx807g5hAfI7R534D Rd4rqIHg2o6E2tD2eCocxSt+C8VHlIrNt5DKn/dy0vUqehUzzyAqFr+oP+ziSm7F kHMWMfeTjrb3ZDmDFh4oWKCR5p3Bf9pxOrap0hiVkx+ZzMZ72Mt5I9tmtWGwIs0J 24N1HqM05++unwQeojYwphnKQxQJc+Niu7UlDf/KNwvNaTMDTFqgfQqFJs9WUQKG INNBxZs24iYBq6mbfoQrokNUz0hq8XCN72DkXhfCo791XP5lk2GfjxfM+pSGq+wv 31p+jr8mu+1eHIzGu7Lxvr8sYSY4K4cYLny/AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU7Oxlq5pfIfTKgsTFj4vBeFNwUh8wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvN094bHE1cGZJZlRLZ3NURmo0dkJl Rk53VWg4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB3szgDAN BgkqhkiG9w0BAQsFAAOCAQEATP2szpg6cMSpNwm/Aa8Q6ZErsO13e811x0ho5N+j XeBRgbU2jEPy2wNdO0RKTZ2AXrW07ddAEtm73EvL1D4ti3fmjLF06jHZRhhrgkk8 vW3UYXVcv4/ZkF8BNYwJqLjWBO6zodnFljXlYqW6FsnLZlbm3B6RK9rCSp4N35HK gn75T5fUJqnR4K6hA28dOAPwxKuSB8ZlCYHB2ZCtrn1iaiZOABUzZvTUIGvc97J+ Rpu1T2yFyyCYGiimsm9aqwxrKoTbI+BrOdJVD8/E+z7F7VUlDKcgAsLtq/HqdRSZ Y+wcn23bppyJkx3Z+977bO8GHy3GraDPe/bDoz//sfvi0Q== -----END CERTIFICATE-----Generated at Sat Sep 6 12:07:48 2025 by rpki-client