$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/CLKO_uNHwQMmekqunzydOwGXhZ8.roa File: CLKO_uNHwQMmekqunzydOwGXhZ8.roa (raw, json) Hash identifier: 6ODWAoem7ocQEnlU+Lxgq396S/GhsSMBfEU2J8vwqeg= Subject key identifier: 08:B2:8E:FE:E3:47:C1:03:26:7A:4A:AE:9F:3C:9D:3B:01:97:85:9F Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 19CA Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/CLKO_uNHwQMmekqunzydOwGXhZ8.roa Signing time: Fri 22 Aug 2025 08:53:23 +0000 ROA not before: Fri 22 Aug 2025 08:53:23 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131627 IP address blocks: 106.105.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6602 (0x19ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:23 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=08B28EFEE347C103267A4AAE9F3C9D3B0197859F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e0:9a:27:20:b6:87:df:b0:ea:3f:ce:ec:1c: 9f:c3:80:9e:cb:b6:03:d1:64:23:80:73:17:a4:15: c1:cd:8e:a7:9f:54:c8:cb:d1:86:16:b0:3f:3b:3f: 12:ea:1a:4c:af:4b:d9:03:90:14:e1:d6:bd:2a:59: 5a:53:52:db:20:ec:de:82:1f:bd:85:af:47:9f:fd: fb:6a:69:bf:43:05:93:5b:43:15:90:23:36:07:1f: dd:69:1f:78:c4:5d:12:0d:17:81:96:0b:79:3b:53: c9:80:79:17:15:71:e8:6c:97:7b:71:d5:dd:45:9d: 0d:f7:63:de:d6:96:45:85:fd:ae:47:2a:e1:df:3b: 88:95:07:9f:af:9b:bc:56:03:03:77:4b:87:2c:ca: 1c:d4:7b:7c:e7:96:05:7f:20:44:47:45:4b:75:41: 24:7b:d5:a0:f1:4e:bb:49:f7:b4:ff:8b:fa:32:1d: 3f:48:40:67:4f:9c:29:d8:33:b5:09:5b:08:9c:8f: af:5a:10:36:d7:3c:31:65:c0:77:49:de:76:0a:74: d9:94:2e:79:1c:20:44:81:70:5f:fa:2d:e9:1c:75: 98:5d:d9:6a:a1:6f:02:89:00:4a:9d:51:a1:5f:ed: e7:a6:14:f3:eb:9a:3b:1c:67:3d:23:f4:a7:5d:60: 0a:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:B2:8E:FE:E3:47:C1:03:26:7A:4A:AE:9F:3C:9D:3B:01:97:85:9F X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/CLKO_uNHwQMmekqunzydOwGXhZ8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.105.96.0/19 Signature Algorithm: sha256WithRSAEncryption 77:28:3c:85:72:a2:13:22:82:ad:57:03:1c:9d:8f:22:97:c0: c3:08:4c:da:e4:1d:77:c9:b6:cb:4f:0a:8b:15:d3:01:10:17: 22:52:33:79:78:6a:02:14:4d:82:2f:bc:0b:46:4a:5b:09:e0: df:85:55:1f:df:63:eb:b6:a8:ea:77:a7:7a:3b:2e:53:db:58: 43:cf:7b:a1:ca:a9:2b:bc:ba:bc:e1:2d:5b:32:d8:39:ab:36: 77:87:90:93:14:dd:ab:af:65:93:cd:e1:b2:ab:4a:04:f0:5b: b7:b8:89:46:85:91:34:7d:cd:d9:9a:0e:7c:4b:66:f0:9d:80: a4:96:37:9b:0f:f4:94:31:e9:93:98:1d:cc:1e:e0:df:f0:f1: c9:46:c3:3d:9b:19:89:fd:69:44:4f:77:f0:d4:29:01:f0:3b: c9:32:fc:6a:f4:dc:34:b8:15:ea:11:19:52:de:4e:f5:a3:52: ac:1c:6d:62:22:95:5d:4b:58:75:c4:f6:08:8b:65:81:b8:28: c7:23:08:ae:b2:52:90:73:fb:40:0d:30:93:96:39:a7:bd:f4: da:1f:66:fe:9a:07:29:e2:eb:49:f5:1c:ab:eb:02:b2:c8:28: f2:91:3a:8c:0b:92:fc:cd:32:bf:60:9a:50:40:cc:27:c7:d9: 9c:43:5e:76 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGcowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzMjNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDA4QjI4RUZFRTM0N0Mx MDMyNjdBNEFBRTlGM0M5RDNCMDE5Nzg1OUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDE4JonILaH37DqP87sHJ/DgJ7LtgPRZCOAcxekFcHNjqefVMjL 0YYWsD87PxLqGkyvS9kDkBTh1r0qWVpTUtsg7N6CH72Fr0ef/ftqab9DBZNbQxWQ IzYHH91pH3jEXRINF4GWC3k7U8mAeRcVcehsl3tx1d1FnQ33Y97WlkWF/a5HKuHf O4iVB5+vm7xWAwN3S4csyhzUe3znlgV/IERHRUt1QSR71aDxTrtJ97T/i/oyHT9I QGdPnCnYM7UJWwicj69aEDbXPDFlwHdJ3nYKdNmULnkcIESBcF/6LekcdZhd2Wqh bwKJAEqdUaFf7eemFPPrmjscZz0j9KddYArxAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUCLKO/uNHwQMmekqunzydOwGXhZ8wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvQ0xLT191Tkh3UU1tZWtxdW56eWRP d0dYaFo4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBWppYDAN BgkqhkiG9w0BAQsFAAOCAQEAdyg8hXKiEyKCrVcDHJ2PIpfAwwhM2uQdd8m2y08K ixXTARAXIlIzeXhqAhRNgi+8C0ZKWwng34VVH99j67ao6nenejsuU9tYQ897ocqp K7y6vOEtWzLYOas2d4eQkxTdq69lk83hsqtKBPBbt7iJRoWRNH3N2ZoOfEtm8J2A pJY3mw/0lDHpk5gdzB7g3/DxyUbDPZsZif1pRE938NQpAfA7yTL8avTcNLgV6hEZ Ut5O9aNSrBxtYiKVXUtYdcT2CItlgbgoxyMIrrJSkHP7QA0wk5Y5p7302h9m/poH KeLrSfUcq+sCssgo8pE6jAuS/M0yv2CaUEDMJ8fZnENedg== -----END CERTIFICATE-----Generated at Sat Sep 6 13:55:12 2025 by rpki-client