$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/9bG1-nBQXsvBCNAnzv1KRcxsHY8.roa File: 9bG1-nBQXsvBCNAnzv1KRcxsHY8.roa (raw, json) Hash identifier: wnL/Qc/Mi5yFB49TpVzsKESU55FbktEeEvdze+ox6bg= Subject key identifier: F5:B1:B5:FA:70:50:5E:CB:C1:08:D0:27:CE:FD:4A:45:CC:6C:1D:8F Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1A51 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/9bG1-nBQXsvBCNAnzv1KRcxsHY8.roa Signing time: Fri 22 Aug 2025 08:53:57 +0000 ROA not before: Fri 22 Aug 2025 08:53:57 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4780 IP address blocks: 122.146.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6737 (0x1a51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:57 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F5B1B5FA70505ECBC108D027CEFD4A45CC6C1D8F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:54:96:f7:56:62:68:69:3d:da:e8:9e:c2:25: 7a:e5:7a:aa:a2:8c:d1:f2:24:92:7e:31:d8:80:54: 6c:41:dc:cd:f6:b2:87:cb:f4:ca:1d:dd:e3:64:ed: 67:1f:dc:7a:bd:88:72:34:6b:17:c0:9c:5f:4a:7d: d3:26:6f:e2:64:b3:77:07:80:97:c8:51:c8:47:04: 5f:3e:25:71:0d:04:23:f8:51:72:6c:59:d4:f5:c2: 01:fc:6f:12:ea:b7:4d:b4:18:a7:4c:24:8b:da:f2: 89:10:14:27:cf:ed:fe:1f:1d:b6:d7:70:9a:c9:2d: 2e:8f:35:93:51:6c:e4:41:62:df:40:bb:4b:26:50: 2b:45:b8:9b:f1:8f:b6:07:16:e5:af:b2:62:2a:bd: f0:c9:5b:7d:4f:33:cd:e7:77:18:ff:56:6d:e8:a9: c4:1b:10:a4:29:ac:88:87:26:68:c1:d1:37:83:55: c1:05:9c:07:12:d0:0c:7b:2e:11:f3:5b:5c:20:11: f8:29:5f:51:1c:43:f6:24:de:35:9c:b2:e5:60:37: c9:c4:ef:58:1f:e4:27:31:d5:a6:5e:76:ce:59:34: 09:2d:ce:06:94:ed:55:78:3f:a8:09:59:99:f7:a8: 0c:63:f6:2f:c1:ee:5b:bc:4f:3b:22:42:70:74:9d: 1d:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:B1:B5:FA:70:50:5E:CB:C1:08:D0:27:CE:FD:4A:45:CC:6C:1D:8F X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/9bG1-nBQXsvBCNAnzv1KRcxsHY8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.146.0.0/15 Signature Algorithm: sha256WithRSAEncryption 89:7f:b3:ee:77:52:5a:53:7e:ff:90:63:1b:b4:ba:64:bc:75: 34:0b:77:e7:73:d3:27:3a:a4:35:b6:7f:08:31:fb:af:12:4f: 45:f8:8b:30:b3:4f:4f:64:f6:1d:e0:2d:d7:03:93:6f:15:83: a0:44:6f:d5:25:6c:85:b6:8b:e9:09:4c:04:c5:7c:aa:84:66: 1b:78:e7:cc:b4:c0:db:31:97:43:24:6d:9a:87:18:8b:29:a0: 71:51:27:c6:83:f3:13:e1:ce:4d:0a:6e:92:27:58:8a:ec:ba: ff:06:51:d9:2c:4a:a8:e8:cf:de:e3:ba:10:e0:82:87:87:7a: 98:44:78:0a:8d:3c:79:a8:83:25:f0:c7:22:f7:ee:c4:24:cc: a3:fe:d4:2a:c3:3d:d7:63:94:1d:91:7b:59:55:ca:ed:9e:d9: 2c:ba:37:8f:2a:31:a1:60:ea:8f:64:08:31:cb:8d:af:ef:44: 31:26:bf:67:ce:eb:2a:b0:20:2e:c4:98:b3:d8:62:4b:3d:0e: 55:99:46:5a:d7:99:cd:bd:1a:44:95:b2:31:ac:82:66:4b:b8: 35:98:28:dd:08:3f:62:a4:0b:d7:86:8f:e5:4a:1e:3d:7f:f5: 18:87:45:bc:97:0b:6a:94:82:9d:61:a5:5d:0a:6a:de:c8:c4: d0:8e:4a:4e -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICGlEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzNTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEY1QjFCNUZBNzA1MDVF Q0JDMTA4RDAyN0NFRkQ0QTQ1Q0M2QzFEOEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6VJb3VmJoaT3a6J7CJXrleqqijNHyJJJ+MdiAVGxB3M32sofL 9Mod3eNk7Wcf3Hq9iHI0axfAnF9KfdMmb+Jks3cHgJfIUchHBF8+JXENBCP4UXJs WdT1wgH8bxLqt020GKdMJIva8okQFCfP7f4fHbbXcJrJLS6PNZNRbORBYt9Au0sm UCtFuJvxj7YHFuWvsmIqvfDJW31PM83ndxj/Vm3oqcQbEKQprIiHJmjB0TeDVcEF nAcS0Ax7LhHzW1wgEfgpX1EcQ/Yk3jWcsuVgN8nE71gf5Ccx1aZeds5ZNAktzgaU 7VV4P6gJWZn3qAxj9i/B7lu8TzsiQnB0nR0xAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQU9bG1+nBQXsvBCNAnzv1KRcxsHY8wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvOWJHMS1uQlFYc3ZCQ05Bbnp2MUtS Y3hzSFk4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAXqSMA0G CSqGSIb3DQEBCwUAA4IBAQCJf7Pud1JaU37/kGMbtLpkvHU0C3fnc9MnOqQ1tn8I MfuvEk9F+Isws09PZPYd4C3XA5NvFYOgRG/VJWyFtovpCUwExXyqhGYbeOfMtMDb MZdDJG2ahxiLKaBxUSfGg/MT4c5NCm6SJ1iK7Lr/BlHZLEqo6M/e47oQ4IKHh3qY RHgKjTx5qIMl8Mci9+7EJMyj/tQqwz3XY5QdkXtZVcrtntksujePKjGhYOqPZAgx y42v70QxJr9nzusqsCAuxJiz2GJLPQ5VmUZa15nNvRpElbIxrIJmS7g1mCjdCD9i pAvXho/lSh49f/UYh0W8lwtqlIKdYaVdCmreyMTQjkpO -----END CERTIFICATE-----Generated at Sat Sep 6 12:07:54 2025 by rpki-client