$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/7kaBjrYN2nM_JBnYCNx2Tp20JIc.roa File: 7kaBjrYN2nM_JBnYCNx2Tp20JIc.roa (raw, json) Hash identifier: SQJx3F1B5ERE1wZg7NolQT/0J7vqTR66uv8+1hrobi8= Subject key identifier: EE:46:81:8E:B6:0D:DA:73:3F:24:19:D8:08:DC:76:4E:9D:B4:24:87 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 197A Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/7kaBjrYN2nM_JBnYCNx2Tp20JIc.roa Signing time: Fri 22 Aug 2025 08:53:01 +0000 ROA not before: Fri 22 Aug 2025 08:53:01 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4780 IP address blocks: 60.245.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6522 (0x197a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:01 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=EE46818EB60DDA733F2419D808DC764E9DB42487 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:b6:b8:69:24:84:c0:e7:e9:a4:90:74:06:1b: 68:82:2e:60:c9:f6:06:58:5c:21:07:47:87:1c:7f: 73:5c:43:78:04:a9:74:f1:8d:bd:45:9a:ff:a4:40: c2:50:a1:43:81:38:0c:b0:d0:e4:e4:f7:7b:7d:47: 79:08:f5:d0:0e:c8:9f:cd:84:50:fb:8f:c1:88:d9: 6e:a7:1d:48:6f:28:fc:d6:48:9a:a7:37:9d:58:18: 34:49:d3:63:22:b3:13:97:bc:70:c4:24:13:51:c0: ed:0e:69:10:5e:5f:c4:af:9d:28:b4:6d:52:bd:d7: 61:ad:04:be:9c:87:fd:56:67:71:55:69:cd:d4:a3: 38:65:cc:af:88:15:cc:f4:6c:b4:95:15:09:f4:1a: bb:90:d2:a0:34:2b:20:d7:10:07:97:b3:e6:58:ca: b1:72:15:29:3a:7e:8f:2e:ea:d0:56:1a:a6:dc:09: 4e:b8:36:7c:4b:58:95:7a:8a:fd:50:c1:da:5b:fa: ef:ee:9d:10:4c:56:36:db:64:45:16:1e:78:8d:b6: 89:74:42:6e:63:0a:cb:9d:f2:32:e3:a2:ef:64:7e: e9:1c:6b:a9:e9:a8:5f:02:86:9f:83:98:53:8f:b5: 30:2d:a6:70:08:e7:ed:f7:36:51:45:4d:b7:82:7e: 1d:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:46:81:8E:B6:0D:DA:73:3F:24:19:D8:08:DC:76:4E:9D:B4:24:87 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/7kaBjrYN2nM_JBnYCNx2Tp20JIc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.245.96.0/19 Signature Algorithm: sha256WithRSAEncryption 29:70:40:65:40:ca:67:b4:b6:9a:90:93:c6:71:f6:10:a5:86: 27:c5:a0:83:ca:ec:ad:57:af:35:8e:7c:1d:22:3f:00:dd:7d: b6:4b:e3:ed:0b:77:06:05:90:17:3c:4d:27:ec:02:e1:2a:3e: 10:09:0b:99:d3:a7:8e:e6:23:27:a4:69:ae:20:b3:a0:cc:e7: 6e:14:21:6b:78:85:a6:95:36:22:66:50:75:05:77:82:56:fc: 71:fb:d1:1b:95:4c:3f:c2:1e:61:e7:ad:08:5f:45:15:c1:48: 39:16:0d:f2:44:7b:4c:05:a9:2d:23:32:ea:bb:5e:a3:a5:1a: 6a:b1:0d:ff:29:c1:86:df:f2:ba:53:46:bb:f9:df:b1:3a:74: 38:b3:3e:d8:cb:3c:b0:99:86:4b:37:25:9b:9e:29:78:2a:26: e2:08:5f:46:e2:12:72:4c:64:6d:68:9c:11:f1:f6:85:ab:4e: 28:16:90:48:b5:45:09:ea:4b:5f:23:5d:b5:a8:f5:7f:67:32: 57:44:63:44:ee:60:16:b2:1b:8d:10:1b:a9:e4:bf:eb:86:d6: c3:c5:4a:ed:2d:a9:51:82:96:b0:29:d7:18:22:bd:d0:ce:86: ec:59:92:db:68:3f:7c:c3:d8:45:cc:22:84:8b:d5:e1:e5:65: e8:87:fa:0c -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGXowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzMDFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEVFNDY4MThFQjYwRERB NzMzRjI0MTlEODA4REM3NjRFOURCNDI0ODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCstrhpJITA5+mkkHQGG2iCLmDJ9gZYXCEHR4ccf3NcQ3gEqXTx jb1Fmv+kQMJQoUOBOAyw0OTk93t9R3kI9dAOyJ/NhFD7j8GI2W6nHUhvKPzWSJqn N51YGDRJ02MisxOXvHDEJBNRwO0OaRBeX8SvnSi0bVK912GtBL6ch/1WZ3FVac3U ozhlzK+IFcz0bLSVFQn0GruQ0qA0KyDXEAeXs+ZYyrFyFSk6fo8u6tBWGqbcCU64 NnxLWJV6iv1Qwdpb+u/unRBMVjbbZEUWHniNtol0Qm5jCsud8jLjou9kfukca6np qF8Chp+DmFOPtTAtpnAI5+33NlFFTbeCfh3tAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU7kaBjrYN2nM/JBnYCNx2Tp20JIcwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvN2thQmpyWU4ybk1fSkJuWUNOeDJU cDIwSkljLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBTz1YDAN BgkqhkiG9w0BAQsFAAOCAQEAKXBAZUDKZ7S2mpCTxnH2EKWGJ8Wgg8rsrVevNY58 HSI/AN19tkvj7Qt3BgWQFzxNJ+wC4So+EAkLmdOnjuYjJ6RpriCzoMznbhQha3iF ppU2ImZQdQV3glb8cfvRG5VMP8IeYeetCF9FFcFIORYN8kR7TAWpLSMy6rteo6Ua arEN/ynBht/yulNGu/nfsTp0OLM+2Ms8sJmGSzclm54peCom4ghfRuISckxkbWic EfH2hatOKBaQSLVFCepLXyNdtaj1f2cyV0RjRO5gFrIbjRAbqeS/64bWw8VK7S2p UYKWsCnXGCK90M6G7FmS22g/fMPYRcwihIvV4eVl6If6DA== -----END CERTIFICATE-----Generated at Sat Sep 6 12:07:54 2025 by rpki-client