$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/9F1np4jvSD6gIwnQM6L277odNjc.roa File: 9F1np4jvSD6gIwnQM6L277odNjc.roa (raw, json) Hash identifier: Tdm3Fawl4Jucbz19mRBAQ5Yr8z2YboM+vEqVGPBIYQA= Subject key identifier: F4:5D:67:A7:88:EF:48:3E:A0:23:09:D0:33:A2:F6:EF:BA:1D:36:37 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1AB9 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/9F1np4jvSD6gIwnQM6L277odNjc.roa Signing time: Wed 27 Aug 2025 09:18:54 +0000 ROA not before: Wed 27 Aug 2025 09:18:54 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18049 IP address blocks: 61.61.52.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 08:46:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6841 (0x1ab9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 27 09:18:54 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F45D67A788EF483EA02309D033A2F6EFBA1D3637 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:4a:42:02:fa:82:8e:84:9f:5f:d9:84:17:6e: f9:07:84:75:e4:ac:62:ac:ba:c9:6f:c5:78:4c:99: 2d:be:1d:31:78:b8:9d:71:79:f9:22:98:9b:32:81: 9a:87:31:24:2d:d3:f7:09:55:ad:06:ed:10:b1:dd: 0b:a8:bb:d8:e7:e0:ab:83:8b:e4:4f:ac:4a:4f:6e: 52:65:78:3e:7d:6d:be:ba:24:42:38:85:fc:f3:a1: 34:43:80:df:74:ed:06:cd:5c:67:12:88:90:ad:e6: f9:fa:b5:66:c4:ae:2b:67:46:b9:f6:e3:38:87:01: 0e:9a:e4:50:06:62:03:00:2c:61:3b:18:ff:32:6e: a4:e4:39:38:9f:0c:df:6f:33:90:ec:f5:31:c5:f6: 16:2b:9f:22:f5:89:09:18:43:7f:a6:98:16:f6:bb: 8e:3e:c3:dd:ee:81:8a:70:96:ab:d9:7d:c7:18:36: cf:db:07:7a:21:55:40:74:be:e8:aa:67:4f:57:1a: fc:5c:51:39:61:20:d7:0d:76:ce:25:30:90:7a:01: 44:7c:bf:1a:d8:68:2d:ee:3c:45:0b:b3:06:5a:86: 0e:36:e6:f2:d2:bb:1d:73:d0:85:f5:71:b2:8c:97: 1b:ee:d2:d6:2a:ff:7c:63:f6:a4:93:4e:5b:64:62: da:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:5D:67:A7:88:EF:48:3E:A0:23:09:D0:33:A2:F6:EF:BA:1D:36:37 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/9F1np4jvSD6gIwnQM6L277odNjc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.52.0/22 Signature Algorithm: sha256WithRSAEncryption 8a:74:fa:5d:1f:c1:95:68:81:c3:2f:cd:fe:3b:c9:e0:18:2d: 35:22:8e:18:1c:16:96:5d:66:f5:4b:51:65:fa:36:2f:fe:b2: 44:46:32:e0:69:af:a0:e2:6d:24:ab:16:41:11:b7:99:93:58: cc:35:c8:59:3b:44:28:db:d9:78:93:ca:ad:cb:db:ae:a7:01: 85:fb:22:b8:d2:c3:f6:1c:90:e8:47:c4:b3:3e:98:e5:46:67: b3:96:df:29:1f:b3:da:ea:55:d4:6d:24:fe:9c:c4:9e:47:74: 6e:af:61:1b:4f:fb:10:02:af:11:18:03:0f:89:b4:94:96:c8: 81:dc:be:49:9a:08:d6:9e:5e:52:cb:9f:f4:25:36:9c:59:8c: 2b:1d:e5:a4:56:46:47:3a:0f:09:45:1b:1b:92:f4:65:6d:87: 4e:a2:80:ea:60:f2:f3:86:da:88:fa:0b:28:33:b3:09:13:26: a0:83:5b:4e:e5:63:4d:36:4c:d1:7a:94:fb:1d:33:33:ea:ce: f1:55:1c:aa:93:99:77:03:8e:80:b6:95:cd:27:88:45:4f:81: 34:58:1d:e4:de:8e:45:92:f3:69:1a:04:cd:ae:58:19:4c:63: 3e:a4:d5:04:b1:d7:b9:ad:15:9f:a4:59:ac:94:cb:7e:5d:ba: cb:4a:8e:7b -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGrkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4Mjcw OTE4NTRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEY0NUQ2N0E3ODhFRjQ4 M0VBMDIzMDlEMDMzQTJGNkVGQkExRDM2MzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+SkIC+oKOhJ9f2YQXbvkHhHXkrGKsuslvxXhMmS2+HTF4uJ1x efkimJsygZqHMSQt0/cJVa0G7RCx3Quou9jn4KuDi+RPrEpPblJleD59bb66JEI4 hfzzoTRDgN907QbNXGcSiJCt5vn6tWbEritnRrn24ziHAQ6a5FAGYgMALGE7GP8y bqTkOTifDN9vM5Ds9THF9hYrnyL1iQkYQ3+mmBb2u44+w93ugYpwlqvZfccYNs/b B3ohVUB0vuiqZ09XGvxcUTlhINcNds4lMJB6AUR8vxrYaC3uPEULswZahg425vLS ux1z0IX1cbKMlxvu0tYq/3xj9qSTTltkYtrlAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU9F1np4jvSD6gIwnQM6L277odNjcwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvOUYxbnA0anZTRDZnSXduUU02TDI3 N29kTmpjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAj09NDAN BgkqhkiG9w0BAQsFAAOCAQEAinT6XR/BlWiBwy/N/jvJ4BgtNSKOGBwWll1m9UtR Zfo2L/6yREYy4GmvoOJtJKsWQRG3mZNYzDXIWTtEKNvZeJPKrcvbrqcBhfsiuNLD 9hyQ6EfEsz6Y5UZns5bfKR+z2upV1G0k/pzEnkd0bq9hG0/7EAKvERgDD4m0lJbI gdy+SZoI1p5eUsuf9CU2nFmMKx3lpFZGRzoPCUUbG5L0ZW2HTqKA6mDy84baiPoL KDOzCRMmoINbTuVjTTZM0XqU+x0zM+rO8VUcqpOZdwOOgLaVzSeIRU+BNFgd5N6O RZLzaRoEza5YGUxjPqTVBLHXua0Vn6RZrJTLfl26y0qOew== -----END CERTIFICATE-----Generated at Sun Sep 7 03:59:44 2025 by rpki-client