$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/9kaxitSKR5LgdyymTHkupjIavLo.roa File: 9kaxitSKR5LgdyymTHkupjIavLo.roa (raw, json) Hash identifier: 3Rnci29IAM4dBiUV2f6AUGYBBzQxJ8Ca6oL9vUdYYKk= Subject key identifier: F6:46:B1:8A:D4:8A:47:92:E0:77:2C:A6:4C:79:2E:A6:32:1A:BC:BA Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 19A6 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/9kaxitSKR5LgdyymTHkupjIavLo.roa Signing time: Fri 22 Aug 2025 08:53:13 +0000 ROA not before: Fri 22 Aug 2025 08:53:13 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9919 IP address blocks: 113.196.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 03:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6566 (0x19a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:13 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F646B18AD48A4792E0772CA64C792EA6321ABCBA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:8d:f3:5b:00:d9:79:41:28:a3:55:f8:82:41: 87:f5:98:cc:da:73:33:ba:2c:eb:fd:6a:d4:a4:ed: fe:09:04:ea:2a:20:72:52:39:ea:88:5f:7e:b5:b4: 3e:db:ef:42:8e:cb:99:c3:2b:ec:42:d0:79:37:7e: c2:9d:34:5f:65:5a:a3:32:10:f6:bb:a7:e7:3f:26: 2d:d1:c0:ba:84:03:f2:36:25:72:ab:c2:f3:ec:3a: f7:c7:b3:b0:6f:87:18:4c:44:63:37:18:a3:be:08: aa:40:3d:c1:c6:5e:49:8e:45:36:52:59:96:f9:b2: 0b:9a:fc:64:fa:04:fe:95:33:c2:34:45:23:24:bd: d4:40:11:e0:fb:10:25:1d:25:1a:cf:a3:35:e5:e3: cf:8c:da:8d:07:9c:6d:cf:94:bf:4d:0a:43:0d:8b: bd:da:c1:be:6c:7e:55:75:1c:0d:31:58:51:f3:b1: 81:4e:bb:bf:19:2f:8b:7f:c9:d8:ac:7d:88:a6:22: f4:da:20:9e:43:c3:a0:58:07:e2:d0:8a:79:c2:70: 87:c2:dc:b6:b5:ec:b8:4c:22:97:8d:5f:fb:ab:72: 19:50:cd:44:14:9c:6f:91:ef:a1:f5:0d:04:6b:cf: 93:4c:3c:fb:a4:e4:89:22:a2:36:a9:9f:b5:02:d3: ee:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:46:B1:8A:D4:8A:47:92:E0:77:2C:A6:4C:79:2E:A6:32:1A:BC:BA X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/9kaxitSKR5LgdyymTHkupjIavLo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.196.160.0/19 Signature Algorithm: sha256WithRSAEncryption a8:be:3a:74:6b:01:ab:7b:a1:ec:8a:28:67:98:f0:08:31:9c: 9a:7c:83:da:ee:97:ec:2b:fa:d4:75:27:b2:2e:b3:72:dd:04: 89:eb:ca:c6:f8:0f:44:ae:df:e3:81:46:a0:88:49:7e:03:6b: 25:81:5a:0f:ed:56:75:57:c3:15:c5:54:a7:11:93:43:f9:0d: fb:ba:06:d9:7f:01:e6:02:ef:79:ba:e5:9e:03:ec:28:34:5d: d2:09:71:11:85:97:0d:2c:25:67:1b:ae:ce:ca:bc:a2:16:ae: 4a:6c:ae:f1:3d:c0:5e:87:72:3d:0c:44:fc:5f:c8:20:63:1b: be:3f:26:19:26:e0:e0:51:2f:91:4a:93:3f:9c:ef:1b:f6:01: d2:6c:a4:3b:31:12:5a:2f:c7:d8:b2:d6:97:85:97:34:0a:1a: 19:f4:0a:fe:bc:21:a3:11:29:79:ba:78:91:e0:67:1f:49:b6: 47:03:0e:cb:2e:c8:0b:9e:66:d4:ff:76:4b:50:1b:c4:f7:0a: 52:66:bb:a6:bb:c6:77:27:26:38:86:20:8a:86:9b:d5:d1:ac: 5f:d7:25:e4:13:47:36:4c:0e:38:92:50:4f:a3:ed:11:b6:80: 26:12:e6:6e:ca:46:bb:0a:5c:13:9c:8f:bf:36:67:75:ce:38: 18:43:56:ad -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGaYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzMTNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEY2NDZCMThBRDQ4QTQ3 OTJFMDc3MkNBNjRDNzkyRUE2MzIxQUJDQkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpjfNbANl5QSijVfiCQYf1mMzaczO6LOv9atSk7f4JBOoqIHJS OeqIX361tD7b70KOy5nDK+xC0Hk3fsKdNF9lWqMyEPa7p+c/Ji3RwLqEA/I2JXKr wvPsOvfHs7BvhxhMRGM3GKO+CKpAPcHGXkmORTZSWZb5sgua/GT6BP6VM8I0RSMk vdRAEeD7ECUdJRrPozXl48+M2o0HnG3PlL9NCkMNi73awb5sflV1HA0xWFHzsYFO u78ZL4t/ydisfYimIvTaIJ5Dw6BYB+LQinnCcIfC3La17LhMIpeNX/urchlQzUQU nG+R76H1DQRrz5NMPPuk5Ikiojapn7UC0+7PAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU9kaxitSKR5LgdyymTHkupjIavLowHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvOWtheGl0U0tSNUxnZHl5bVRIa3Vw aklhdkxvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBXHEoDAN BgkqhkiG9w0BAQsFAAOCAQEAqL46dGsBq3uh7IooZ5jwCDGcmnyD2u6X7Cv61HUn si6zct0EievKxvgPRK7f44FGoIhJfgNrJYFaD+1WdVfDFcVUpxGTQ/kN+7oG2X8B 5gLvebrlngPsKDRd0glxEYWXDSwlZxuuzsq8ohauSmyu8T3AXodyPQxE/F/IIGMb vj8mGSbg4FEvkUqTP5zvG/YB0mykOzESWi/H2LLWl4WXNAoaGfQK/rwhoxEpebp4 keBnH0m2RwMOyy7IC55m1P92S1AbxPcKUma7prvGdycmOIYgioab1dGsX9cl5BNH NkwOOJJQT6PtEbaAJhLmbspGuwpcE5yPvzZndc44GENWrQ== -----END CERTIFICATE-----Generated at Sun Sep 7 23:33:25 2025 by rpki-client