$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/FHyihUmZ312ClbeyK0ICfrqjS7Q.roa File: FHyihUmZ312ClbeyK0ICfrqjS7Q.roa (raw, json) Hash identifier: 3IKj3RwXgYsnlwRKlSNkD5ytmTG1DmBXmkvMckN4C0k= Subject key identifier: 14:7C:A2:85:49:99:DF:5D:82:95:B7:B2:2B:42:02:7E:BA:A3:4B:B4 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1A89 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/FHyihUmZ312ClbeyK0ICfrqjS7Q.roa Signing time: Wed 27 Aug 2025 09:10:16 +0000 ROA not before: Wed 27 Aug 2025 09:10:16 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18049 IP address blocks: 61.61.72.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 04:16:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6793 (0x1a89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 27 09:10:16 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=147CA2854999DF5D8295B7B22B42027EBAA34BB4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c9:bd:c8:da:5c:66:51:97:49:62:49:8a:e0: a5:aa:34:89:92:48:6f:40:47:95:06:b3:6a:a5:c8: 67:59:59:45:de:93:1b:93:38:a8:88:da:35:76:73: 2b:84:6b:e8:b0:6f:30:5f:25:c9:b7:e5:d4:ba:60: cf:fd:f3:3d:85:fb:e1:50:bc:b6:5d:fd:2d:62:5e: da:0a:77:88:29:4c:6e:64:a6:01:77:51:ca:19:69: fe:be:06:cb:74:f0:79:62:06:89:49:d4:22:6e:b2: 52:08:0e:af:20:c6:dc:a7:e8:b0:3e:e7:36:f2:23: 1e:d5:36:5f:be:82:d2:b9:14:fa:52:d5:59:2a:7c: c7:b9:f0:84:c4:2f:6f:14:5c:44:a6:32:f3:15:df: b6:d0:57:94:e7:60:9a:63:0a:94:7c:c3:25:d6:1d: 08:d7:1a:34:9c:f2:92:fa:ff:ea:1f:61:6f:d1:c6: c7:61:cb:d8:40:99:ef:18:fb:8f:57:54:b8:03:eb: a6:42:a8:e4:53:8e:18:f0:54:02:09:68:03:0d:e3: a7:76:56:31:82:52:0d:a2:8a:05:53:15:2e:6a:64: 9c:60:0d:09:45:d2:c5:52:3e:57:46:d3:00:0e:e7: de:a6:21:56:ba:ab:4e:0e:41:d3:85:53:e1:3f:c7: 54:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:7C:A2:85:49:99:DF:5D:82:95:B7:B2:2B:42:02:7E:BA:A3:4B:B4 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/FHyihUmZ312ClbeyK0ICfrqjS7Q.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.72.0/22 Signature Algorithm: sha256WithRSAEncryption ac:0c:8b:e7:a5:be:f7:a5:20:53:3e:c1:fa:1b:10:db:ac:24: 2a:e8:79:0a:d5:bf:61:88:cd:4c:ab:c1:90:94:00:d0:4d:a1: 3b:e8:60:79:ca:c2:10:e2:bd:30:c2:2f:80:a0:f6:95:0c:6a: ff:a9:de:46:90:4d:31:b2:bb:f3:8e:4b:1a:68:d7:cb:bd:ea: 95:96:fc:f6:0e:fe:f3:d5:32:2e:97:da:8f:55:f8:67:4b:15: c6:f4:fa:e2:e6:f2:2e:77:7b:b7:96:06:f4:1d:44:e1:c5:48: 3f:68:62:cb:5c:96:16:e5:7e:76:a4:fc:84:4b:78:f2:92:07: c2:b9:d6:67:7a:5b:cb:1e:f8:7d:09:e1:79:8c:b2:93:e4:62: eb:64:28:5f:0c:a0:03:18:20:df:9a:f8:2b:95:da:25:8d:1c: 64:dc:87:fe:d0:11:e7:11:50:26:d3:8d:a7:4c:77:57:ef:51: 70:ba:c7:a9:9b:5b:5f:d7:90:83:64:1d:a9:8a:77:ed:99:aa: ac:e8:33:7d:12:82:7a:af:1d:7e:f8:2f:4f:85:3a:45:e0:1b: 79:e7:5d:9a:c4:ad:1a:72:f8:fa:06:fd:c9:6f:13:72:e0:d7: e6:e6:ab:91:37:eb:1d:9c:ba:ad:53:85:a7:37:f8:b5:60:18: f3:97:32:c8 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGokwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4Mjcw OTEwMTZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDE0N0NBMjg1NDk5OURG NUQ4Mjk1QjdCMjJCNDIwMjdFQkFBMzRCQjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtyb3I2lxmUZdJYkmK4KWqNImSSG9AR5UGs2qlyGdZWUXekxuT OKiI2jV2cyuEa+iwbzBfJcm35dS6YM/98z2F++FQvLZd/S1iXtoKd4gpTG5kpgF3 UcoZaf6+Bst08HliBolJ1CJuslIIDq8gxtyn6LA+5zbyIx7VNl++gtK5FPpS1Vkq fMe58ITEL28UXESmMvMV37bQV5TnYJpjCpR8wyXWHQjXGjSc8pL6/+ofYW/Rxsdh y9hAme8Y+49XVLgD66ZCqORTjhjwVAIJaAMN46d2VjGCUg2iigVTFS5qZJxgDQlF 0sVSPldG0wAO596mIVa6q04OQdOFU+E/x1R/AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUFHyihUmZ312ClbeyK0ICfrqjS7QwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvRkh5aWhVbVozMTJDbGJleUswSUNm cnFqUzdRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAj09SDAN BgkqhkiG9w0BAQsFAAOCAQEArAyL56W+96UgUz7B+hsQ26wkKuh5CtW/YYjNTKvB kJQA0E2hO+hgecrCEOK9MMIvgKD2lQxq/6neRpBNMbK7845LGmjXy73qlZb89g7+ 89UyLpfaj1X4Z0sVxvT64ubyLnd7t5YG9B1E4cVIP2hiy1yWFuV+dqT8hEt48pIH wrnWZ3pbyx74fQnheYyyk+Ri62QoXwygAxgg35r4K5XaJY0cZNyH/tAR5xFQJtON p0x3V+9RcLrHqZtbX9eQg2QdqYp37ZmqrOgzfRKCeq8dfvgvT4U6ReAbeeddmsSt GnL4+gb9yW8TcuDX5uarkTfrHZy6rVOFpzf4tWAY85cyyA== -----END CERTIFICATE-----Generated at Sun Sep 7 03:59:40 2025 by rpki-client