$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/8jGc0_pNNZkjitoKnYDISQKIZQs.roa File: 8jGc0_pNNZkjitoKnYDISQKIZQs.roa (raw, json) Hash identifier: SA9IS/jWq0y69AWOyOLnxJUDegZPLnggfdUHTQ/FWTY= Subject key identifier: F2:31:9C:D3:FA:4D:35:99:23:8A:DA:0A:9D:80:C8:49:02:88:65:0B Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 19A8 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/8jGc0_pNNZkjitoKnYDISQKIZQs.roa Signing time: Fri 22 Aug 2025 08:53:14 +0000 ROA not before: Fri 22 Aug 2025 08:53:14 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9919 IP address blocks: 123.204.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 03:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6568 (0x19a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:14 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F2319CD3FA4D3599238ADA0A9D80C8490288650B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ff:79:2a:53:b6:9b:92:9d:a6:cd:2c:43:90: 3d:5f:52:82:ff:ab:f3:b1:9a:be:29:57:d7:08:f8: 0e:70:d6:37:e3:ed:2a:c2:b0:97:38:91:3d:ab:00: 27:55:dd:29:ac:2b:36:8f:ac:28:5c:d4:49:a9:70: 58:b4:0b:2a:e9:8b:35:01:ab:5d:38:aa:20:b4:85: ae:da:71:ab:a3:64:97:1b:8b:ad:70:e6:6b:e9:b9: be:94:a6:d6:26:d9:24:35:33:00:bc:a3:50:47:77: 47:fc:1a:2c:9e:7e:a1:6d:c9:b4:48:3c:d4:8f:97: 81:ff:65:2f:fb:c9:6d:18:1e:1e:d7:db:d3:2a:c9: bb:00:ed:99:87:fa:44:d9:84:ba:07:7d:68:8e:3d: f0:ad:30:9d:b6:a7:98:81:c0:5e:ad:f8:76:85:6e: ae:c3:ef:26:a3:57:58:e8:4a:7b:ac:88:18:39:24: bb:9f:e3:f5:2c:56:a5:9b:64:a1:4f:1a:97:eb:62: 23:a0:6d:e5:01:1f:a3:f6:f9:5f:a1:6b:a7:b2:e2: 49:2b:f7:0b:75:47:64:81:51:42:68:f4:4b:10:f5: fd:55:34:0f:12:cb:a3:b3:ca:24:69:c2:f3:4f:37: 6d:06:a0:a4:24:3b:ba:7e:5b:de:e8:7d:d3:12:8a: 03:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:31:9C:D3:FA:4D:35:99:23:8A:DA:0A:9D:80:C8:49:02:88:65:0B X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/8jGc0_pNNZkjitoKnYDISQKIZQs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.204.0.0/15 Signature Algorithm: sha256WithRSAEncryption 34:58:c1:99:1d:e8:98:ab:34:bd:ad:2e:21:c1:a7:d0:ad:b4: 4a:2b:08:b9:24:c8:13:17:1b:b3:d2:46:00:5e:2a:3d:54:f2: c3:bb:55:0b:bb:bf:88:35:8b:85:c0:38:11:da:f2:2b:63:ea: 48:5d:79:3d:da:93:4e:d4:49:0a:2a:07:66:43:4e:79:23:70: a0:0c:e5:84:7f:10:c5:e8:60:31:dd:94:21:9a:8a:9e:73:4b: 78:e9:dd:d0:9e:be:a8:59:c7:ea:33:08:b6:69:21:2f:a9:87: 02:8b:57:f6:de:44:3c:e3:f0:e5:dc:17:e1:cd:48:62:69:38: f5:48:74:3b:98:a5:8d:d9:d7:94:ab:80:ce:54:5b:b8:1f:ea: 86:af:7b:c0:c7:d1:9a:7c:83:81:7b:71:93:d6:81:17:69:8a: 55:f7:6d:fc:93:aa:bf:ac:8f:c1:aa:b2:d4:4b:62:09:d3:7f: e2:fa:2d:af:df:a6:f3:4d:cc:26:e3:3b:26:65:f3:1a:93:32: 6b:58:e2:0c:2c:a6:4b:6e:2d:42:ee:a1:66:d8:88:63:42:32: 25:94:5d:e1:aa:d5:21:67:0e:f8:66:d0:1e:12:eb:d3:01:b7: 29:7a:1d:a8:6c:69:0e:0b:27:8a:b5:ac:bc:ed:ee:ad:2d:7d: d1:50:a8:c6 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICGagwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzMTRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEYyMzE5Q0QzRkE0RDM1 OTkyMzhBREEwQTlEODBDODQ5MDI4ODY1MEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCw/3kqU7abkp2mzSxDkD1fUoL/q/Oxmr4pV9cI+A5w1jfj7SrC sJc4kT2rACdV3SmsKzaPrChc1EmpcFi0CyrpizUBq104qiC0ha7acaujZJcbi61w 5mvpub6UptYm2SQ1MwC8o1BHd0f8GiyefqFtybRIPNSPl4H/ZS/7yW0YHh7X29Mq ybsA7ZmH+kTZhLoHfWiOPfCtMJ22p5iBwF6t+HaFbq7D7yajV1joSnusiBg5JLuf 4/UsVqWbZKFPGpfrYiOgbeUBH6P2+V+ha6ey4kkr9wt1R2SBUUJo9EsQ9f1VNA8S y6OzyiRpwvNPN20GoKQkO7p+W97ofdMSigM7AgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQU8jGc0/pNNZkjitoKnYDISQKIZQswHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvOGpHYzBfcE5OWmtqaXRvS25ZRElT UUtJWlFzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAXvMMA0G CSqGSIb3DQEBCwUAA4IBAQA0WMGZHeiYqzS9rS4hwafQrbRKKwi5JMgTFxuz0kYA Xio9VPLDu1ULu7+INYuFwDgR2vIrY+pIXXk92pNO1EkKKgdmQ055I3CgDOWEfxDF 6GAx3ZQhmoqec0t46d3Qnr6oWcfqMwi2aSEvqYcCi1f23kQ84/Dl3BfhzUhiaTj1 SHQ7mKWN2deUq4DOVFu4H+qGr3vAx9GafIOBe3GT1oEXaYpV9238k6q/rI/BqrLU S2IJ03/i+i2v36bzTcwm4zsmZfMakzJrWOIMLKZLbi1C7qFm2IhjQjIllF3hqtUh Zw74ZtAeEuvTAbcpeh2obGkOCyeKtay87e6tLX3RUKjG -----END CERTIFICATE-----Generated at Sun Sep 7 23:33:27 2025 by rpki-client