$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/8IIU7e9D1m_PLuck2i6dDlU7G3c.roa File: 8IIU7e9D1m_PLuck2i6dDlU7G3c.roa (raw, json) Hash identifier: 2vtTYPr/nr1ocuYsvyJzkEdDYB8/F6jGA4Y9zMBaAvw= Subject key identifier: F0:82:14:ED:EF:43:D6:6F:CF:2E:E7:24:DA:2E:9D:0E:55:3B:1B:77 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1AC7 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/8IIU7e9D1m_PLuck2i6dDlU7G3c.roa Signing time: Wed 27 Aug 2025 09:20:18 +0000 ROA not before: Wed 27 Aug 2025 09:20:18 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131602 IP address blocks: 211.78.24.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 04:16:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6855 (0x1ac7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 27 09:20:18 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F08214EDEF43D66FCF2EE724DA2E9D0E553B1B77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:bc:b3:8d:b1:13:27:57:13:98:37:76:7b:93: 26:67:38:98:6f:35:2c:d3:bc:d6:62:22:c4:04:03: 7b:fc:b6:7a:b0:0b:04:5d:b0:5a:28:be:f7:8d:d5: 09:d7:16:9f:98:37:52:55:e3:3c:3e:a5:11:15:2b: bb:f6:ef:27:04:86:d7:23:71:ac:5a:ff:66:e7:c6: fb:1b:7d:4e:3c:28:32:4d:5b:4b:23:07:fb:d1:2f: 45:1e:0f:26:0e:1a:f8:06:51:28:d7:fd:5a:a8:9d: 4d:3a:31:31:86:c6:ba:05:e7:63:fe:8b:13:c5:1d: 23:b0:4e:30:7b:63:0f:41:ba:59:61:09:2b:7c:ab: 8e:3c:d9:d5:d6:97:7f:69:a4:7a:05:b0:05:96:68: 3e:33:8f:ca:91:a0:a8:30:11:5e:a8:7a:1d:9d:63: fe:97:eb:42:6e:e8:35:18:cc:dd:b9:d2:92:cf:a0: 2b:d7:cd:e9:ff:c6:43:af:b4:e3:16:22:f7:e4:f0: fc:0b:46:a9:6e:95:65:fa:9f:e4:99:fc:18:d8:52: 17:51:47:cc:39:69:92:c3:d7:c2:1f:bf:49:63:e5: 54:60:29:3f:84:b7:5d:6f:76:ad:43:59:5c:1f:5f: ff:ca:82:36:16:a6:e0:ff:e5:c7:00:48:79:ed:78: 81:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:82:14:ED:EF:43:D6:6F:CF:2E:E7:24:DA:2E:9D:0E:55:3B:1B:77 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/8IIU7e9D1m_PLuck2i6dDlU7G3c.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.78.24.0/21 Signature Algorithm: sha256WithRSAEncryption 0b:5c:0c:64:a0:11:8b:97:d8:8b:bf:9b:cc:57:53:a1:ef:96: d8:99:de:3f:91:36:45:96:a7:6d:8c:e4:d6:9d:09:b9:7f:dd: 42:57:49:7f:3b:d8:f0:85:fd:69:42:30:47:c1:8e:a7:54:d6: 03:e3:cb:14:80:8f:8c:28:f5:78:11:8c:16:57:11:da:24:e3: 64:c1:0f:e5:cc:44:d9:55:74:d7:0c:9b:73:60:ee:8d:09:a6: fa:67:9d:dd:4f:f7:bf:d4:18:66:4b:c4:f3:a8:56:74:e7:f9: e8:67:c5:de:ac:7b:0d:24:5a:ad:9f:48:7f:b8:ae:95:12:46: ac:96:eb:0d:3e:0b:16:f1:ec:16:7a:81:0b:d3:9b:ee:3d:72: 15:09:5c:6e:e9:aa:b3:06:0a:05:81:63:ad:30:a7:90:3e:dc: 01:26:63:92:d1:fa:ca:8b:df:28:64:97:4f:2e:47:2b:63:31: 44:46:75:a4:66:60:80:62:c7:37:e5:26:45:56:71:17:fe:3b: 1c:06:41:be:1a:1c:bb:26:13:3d:10:7f:fd:e8:f6:97:24:6c: 3a:f4:4d:32:7c:3c:4e:e8:bc:32:62:d5:e4:2e:c9:e3:d4:2c: cb:8d:91:59:c2:6c:23:b0:81:5a:5e:85:f1:25:04:22:b2:cf: 5a:da:4f:c5 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGscwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4Mjcw OTIwMThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEYwODIxNEVERUY0M0Q2 NkZDRjJFRTcyNERBMkU5RDBFNTUzQjFCNzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5vLONsRMnVxOYN3Z7kyZnOJhvNSzTvNZiIsQEA3v8tnqwCwRd sFoovveN1QnXFp+YN1JV4zw+pREVK7v27ycEhtcjcaxa/2bnxvsbfU48KDJNW0sj B/vRL0UeDyYOGvgGUSjX/VqonU06MTGGxroF52P+ixPFHSOwTjB7Yw9BullhCSt8 q4482dXWl39ppHoFsAWWaD4zj8qRoKgwEV6oeh2dY/6X60Ju6DUYzN250pLPoCvX zen/xkOvtOMWIvfk8PwLRqlulWX6n+SZ/BjYUhdRR8w5aZLD18Ifv0lj5VRgKT+E t11vdq1DWVwfX//KgjYWpuD/5ccASHnteIEDAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU8IIU7e9D1m/PLuck2i6dDlU7G3cwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvOElJVTdlOUQxbV9QTHVjazJpNmRE bFU3RzNjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA9NOGDAN BgkqhkiG9w0BAQsFAAOCAQEAC1wMZKARi5fYi7+bzFdToe+W2JneP5E2RZanbYzk 1p0JuX/dQldJfzvY8IX9aUIwR8GOp1TWA+PLFICPjCj1eBGMFlcR2iTjZMEP5cxE 2VV01wybc2DujQmm+med3U/3v9QYZkvE86hWdOf56GfF3qx7DSRarZ9If7iulRJG rJbrDT4LFvHsFnqBC9Ob7j1yFQlcbumqswYKBYFjrTCnkD7cASZjktH6yovfKGSX Ty5HK2MxREZ1pGZggGLHN+UmRVZxF/47HAZBvhocuyYTPRB//ej2lyRsOvRNMnw8 Tui8MmLV5C7J49Qsy42RWcJsI7CBWl6F8SUEIrLPWtpPxQ== -----END CERTIFICATE-----Generated at Sun Sep 7 03:31:53 2025 by rpki-client