$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/DVsOkfTTsynzHVhsw5FP4YukYdI.roa File: DVsOkfTTsynzHVhsw5FP4YukYdI.roa (raw, json) Hash identifier: eXmOeQFXNRN6zMuz624bt1anKbztFIYLGwrYloay1QY= Subject key identifier: 0D:5B:0E:91:F4:D3:B3:29:F3:1D:58:6C:C3:91:4F:E1:8B:A4:61:D2 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1A40 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/DVsOkfTTsynzHVhsw5FP4YukYdI.roa Signing time: Fri 22 Aug 2025 08:53:52 +0000 ROA not before: Fri 22 Aug 2025 08:53:52 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9919 IP address blocks: 210.64.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 03:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6720 (0x1a40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:52 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=0D5B0E91F4D3B329F31D586CC3914FE18BA461D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:44:9e:06:70:eb:7c:e4:d2:0f:1f:79:a6:a3: 92:78:4e:d7:1e:a0:4e:90:34:46:64:2d:38:cd:64: 74:27:e5:3a:5b:ff:70:66:c0:71:d0:81:c8:ef:cd: 7d:2b:31:e2:6c:e3:2e:05:ee:36:fe:74:e8:57:ab: 54:e6:7c:de:52:7c:73:cb:a2:33:07:3d:df:2c:57: 05:47:c9:85:2c:c4:2b:a3:c3:ed:52:aa:cc:72:20: 70:16:b9:bd:be:3b:64:3c:72:10:98:1d:9f:86:46: ed:ca:cb:ce:1e:16:51:6c:6e:67:f4:3c:97:3b:24: de:e5:d6:36:7c:99:1c:e8:95:51:50:0d:d9:49:5b: 8c:6b:21:1b:b7:63:ad:f3:d1:d0:40:0f:a7:69:c6: 7d:20:fd:98:39:cb:47:0b:4e:e3:48:d4:84:d9:52: c3:a6:3a:d8:38:a9:f2:8a:33:1d:51:d8:64:c2:45: c9:60:40:dc:6a:76:b4:90:13:38:72:c2:fb:85:81: 19:a5:f8:d9:09:3b:61:49:0c:a0:ef:c2:a0:bd:ac: 8e:f2:b7:6e:fc:26:89:b0:3e:34:d9:35:5e:f2:ae: ed:b0:e6:27:b0:d2:60:e7:85:be:6c:06:98:a0:e2: 50:3c:98:c0:89:66:b1:e2:a3:30:f3:76:54:0e:b3: c9:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:5B:0E:91:F4:D3:B3:29:F3:1D:58:6C:C3:91:4F:E1:8B:A4:61:D2 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/DVsOkfTTsynzHVhsw5FP4YukYdI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.64.0.0/16 Signature Algorithm: sha256WithRSAEncryption 41:c0:57:b0:59:d4:82:67:9b:35:0f:f1:28:34:11:17:6b:eb: 5f:06:fc:ca:76:47:5f:bf:17:8a:3c:5a:e4:a6:26:03:ce:af: 33:32:a5:03:61:1d:df:fa:00:f1:8f:4b:f4:fd:a6:57:e3:3b: 9a:04:83:e9:6e:18:54:8e:cb:c5:30:95:77:58:0e:e8:44:b6: 40:f8:bc:ae:3d:a7:88:ef:e7:bb:7b:61:cd:15:3c:4e:09:6d: bb:2e:8f:00:ea:9f:a5:67:4b:ac:d0:3a:73:2f:ce:d8:15:ae: 47:f5:83:67:74:4e:30:4f:9a:1d:b4:5c:eb:48:b5:5a:ca:3b: 71:e1:41:6d:47:4f:f2:82:a9:0f:6e:77:10:0b:99:68:a4:4e: fd:6f:0a:14:3d:57:73:54:2f:f0:ad:f3:7a:e9:c2:b6:24:ed: b0:2e:a5:e8:f9:78:37:9c:98:d5:b5:81:56:e7:bd:45:0b:1c: 32:19:73:41:3c:df:87:a8:5f:8f:63:8b:9d:25:98:a0:17:28: 4d:e2:2d:25:03:2f:a9:9b:fc:e3:83:f0:27:cc:4e:e7:e1:4d: 68:6b:f4:f1:7e:72:08:a6:dd:7b:50:87:06:6a:dd:7d:ee:98: 7e:c5:d7:b5:6f:42:e1:de:5b:3a:e4:38:5d:a3:fd:3e:c5:9a: 99:6e:9d:ec -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICGkAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzNTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDBENUIwRTkxRjREM0Iz MjlGMzFENTg2Q0MzOTE0RkUxOEJBNDYxRDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCkRJ4GcOt85NIPH3mmo5J4TtceoE6QNEZkLTjNZHQn5Tpb/3Bm wHHQgcjvzX0rMeJs4y4F7jb+dOhXq1TmfN5SfHPLojMHPd8sVwVHyYUsxCujw+1S qsxyIHAWub2+O2Q8chCYHZ+GRu3Ky84eFlFsbmf0PJc7JN7l1jZ8mRzolVFQDdlJ W4xrIRu3Y63z0dBAD6dpxn0g/Zg5y0cLTuNI1ITZUsOmOtg4qfKKMx1R2GTCRclg QNxqdrSQEzhywvuFgRml+NkJO2FJDKDvwqC9rI7yt278JomwPjTZNV7yru2w5iew 0mDnhb5sBpig4lA8mMCJZrHiozDzdlQOs8n9AgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUDVsOkfTTsynzHVhsw5FP4YukYdIwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvRFZzT2tmVFRzeW56SFZoc3c1RlA0 WXVrWWRJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDANJAMA0G CSqGSIb3DQEBCwUAA4IBAQBBwFewWdSCZ5s1D/EoNBEXa+tfBvzKdkdfvxeKPFrk piYDzq8zMqUDYR3f+gDxj0v0/aZX4zuaBIPpbhhUjsvFMJV3WA7oRLZA+LyuPaeI 7+e7e2HNFTxOCW27Lo8A6p+lZ0us0DpzL87YFa5H9YNndE4wT5odtFzrSLVayjtx 4UFtR0/ygqkPbncQC5lopE79bwoUPVdzVC/wrfN66cK2JO2wLqXo+Xg3nJjVtYFW 571FCxwyGXNBPN+HqF+PY4udJZigFyhN4i0lAy+pm/zjg/AnzE7n4U1oa/TxfnII pt17UIcGat197ph+xde1b0Lh3ls65Dhdo/0+xZqZbp3s -----END CERTIFICATE-----Generated at Sun Sep 7 23:35:51 2025 by rpki-client