$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/A-QPgNQPXe0DujlpOG9hS3AbP8U.roa File: A-QPgNQPXe0DujlpOG9hS3AbP8U.roa (raw, json) Hash identifier: TcNQUNpqRSk5BPnbE+lgXtqM8/QDNPVdg2XNfk0C1Ok= Subject key identifier: 03:E4:0F:80:D4:0F:5D:ED:03:BA:39:69:38:6F:61:4B:70:1B:3F:C5 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1A75 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/A-QPgNQPXe0DujlpOG9hS3AbP8U.roa Signing time: Fri 22 Aug 2025 08:54:06 +0000 ROA not before: Fri 22 Aug 2025 08:54:06 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131627 IP address blocks: 218.210.32.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6773 (0x1a75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:54:06 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=03E40F80D40F5DED03BA3969386F614B701B3FC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:7d:37:0a:f2:7b:ce:d6:84:ff:03:9d:cc:fb: 2b:db:45:8c:41:07:a5:63:9d:aa:95:b4:91:d1:f4: da:4f:81:a9:6d:ed:fc:ce:2f:28:a1:d8:54:3f:21: f1:d2:01:2f:1c:bb:7e:f8:44:4b:a8:91:69:54:90: 50:6a:37:24:0c:41:fd:15:21:bd:09:9e:49:69:3a: 79:a6:64:6d:9b:87:b0:43:6b:57:c8:89:a0:ed:03: 43:9b:af:e2:a2:12:64:3f:7e:92:0f:a7:9c:52:2b: 2e:37:0b:8f:c4:f1:c9:48:5d:a0:8a:a7:11:ec:db: 91:5e:5a:d0:2a:85:c3:3d:b5:cf:8a:ec:cc:32:40: 36:13:27:03:95:ee:f3:18:a4:b8:e2:e0:d6:56:e8: 27:d9:d6:e1:9c:d6:cb:1e:e4:09:ca:46:b2:66:3c: 84:0c:57:a0:44:a9:4e:9e:fc:74:78:f8:67:1e:e6: b8:43:c9:00:5f:8b:f1:25:d1:b2:2b:bb:1f:6d:0e: 40:9c:ee:bc:c0:99:b8:57:4d:d4:3e:0f:84:d3:5c: cc:15:e5:01:65:11:43:73:ea:d4:e5:16:29:94:06: ec:c6:6b:ef:7d:7c:92:2c:13:5c:02:9d:99:53:5f: dc:60:db:3f:69:79:39:b3:59:56:10:29:fa:70:0c: 52:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:E4:0F:80:D4:0F:5D:ED:03:BA:39:69:38:6F:61:4B:70:1B:3F:C5 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/A-QPgNQPXe0DujlpOG9hS3AbP8U.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 218.210.32.0/20 Signature Algorithm: sha256WithRSAEncryption a5:ba:7b:86:c0:39:5e:76:da:8f:a3:ab:86:50:06:fc:c7:16: f5:5f:48:ef:84:01:de:be:0d:6f:0c:70:56:97:14:4f:0c:21: 6c:05:35:a2:c8:44:23:7d:7a:00:62:be:c7:27:70:c2:2c:d0: f0:62:7e:e6:59:84:24:05:e9:f8:e2:4c:c0:7b:b3:71:f5:fc: 72:8d:55:8b:c9:3a:3e:d1:d9:12:de:71:36:7c:56:80:46:a6: be:08:44:0b:e0:d2:36:5d:36:22:0a:32:ec:e1:83:6e:25:f0: 00:6f:49:a6:9a:79:35:55:6b:20:35:32:ad:aa:65:7b:31:e3: c6:60:d4:80:13:f6:8c:aa:99:90:09:8f:7e:e2:6f:46:9e:55: db:0b:27:f3:7f:3e:d6:11:0c:f6:3c:f2:c6:f0:a5:2e:51:c0: 29:7a:57:90:78:bc:38:df:c6:f0:c9:54:be:ab:27:6f:be:de: af:c6:e0:62:1e:f3:d3:48:64:9e:10:d3:cb:ea:fd:c1:0c:77: 2a:a1:bd:26:2b:09:e4:ce:6b:0c:64:3e:4e:5b:62:f6:7c:8b: fc:0b:06:0e:5c:97:c1:e0:46:65:4e:30:43:a0:a4:c4:2b:d9: bd:12:4b:7f:6e:07:86:34:ca:2d:9d:ad:d4:09:5b:96:11:5a: c0:17:c5:75 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGnUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODU0MDZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDAzRTQwRjgwRDQwRjVE RUQwM0JBMzk2OTM4NkY2MTRCNzAxQjNGQzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzfTcK8nvO1oT/A53M+yvbRYxBB6VjnaqVtJHR9NpPgalt7fzO Lyih2FQ/IfHSAS8cu374REuokWlUkFBqNyQMQf0VIb0JnklpOnmmZG2bh7BDa1fI iaDtA0Obr+KiEmQ/fpIPp5xSKy43C4/E8clIXaCKpxHs25FeWtAqhcM9tc+K7Mwy QDYTJwOV7vMYpLji4NZW6CfZ1uGc1sse5AnKRrJmPIQMV6BEqU6e/HR4+Gce5rhD yQBfi/El0bIrux9tDkCc7rzAmbhXTdQ+D4TTXMwV5QFlEUNz6tTlFimUBuzGa+99 fJIsE1wCnZlTX9xg2z9peTmzWVYQKfpwDFLZAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUA+QPgNQPXe0DujlpOG9hS3AbP8UwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvQS1RUGdOUVBYZTBEdWpscE9HOWhT M0FiUDhVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBNrSIDAN BgkqhkiG9w0BAQsFAAOCAQEApbp7hsA5Xnbaj6OrhlAG/McW9V9I74QB3r4Nbwxw VpcUTwwhbAU1oshEI316AGK+xydwwizQ8GJ+5lmEJAXp+OJMwHuzcfX8co1Vi8k6 PtHZEt5xNnxWgEamvghEC+DSNl02Igoy7OGDbiXwAG9Jppp5NVVrIDUyraplezHj xmDUgBP2jKqZkAmPfuJvRp5V2wsn838+1hEM9jzyxvClLlHAKXpXkHi8ON/G8MlU vqsnb77er8bgYh7z00hknhDTy+r9wQx3KqG9JisJ5M5rDGQ+Tlti9nyL/AsGDlyX weBGZU4wQ6CkxCvZvRJLf24HhjTKLZ2t1AlblhFawBfFdQ== -----END CERTIFICATE-----Generated at Sat Sep 6 13:51:31 2025 by rpki-client