$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/IkzOt2svnXoiKUu9I6M4hVoZtjA.roa File: IkzOt2svnXoiKUu9I6M4hVoZtjA.roa (raw, json) Hash identifier: RTzpDBZB59yFqwrYoS1Fju+W/dBGSuNxerDDNcgziBk= Subject key identifier: 22:4C:CE:B7:6B:2F:9D:7A:22:29:4B:BD:23:A3:38:85:5A:19:B6:30 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 19CD Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/IkzOt2svnXoiKUu9I6M4hVoZtjA.roa Signing time: Fri 22 Aug 2025 08:53:23 +0000 ROA not before: Fri 22 Aug 2025 08:53:23 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4780 IP address blocks: 61.66.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6605 (0x19cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:23 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=224CCEB76B2F9D7A22294BBD23A338855A19B630 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:b3:62:29:5e:49:f9:dc:b7:3c:a9:64:8b:8c: 05:db:03:a9:f2:d5:d9:26:3d:08:85:78:65:80:f1: fa:7f:61:f0:9f:53:76:97:b9:e1:1c:1b:4c:29:85: ba:7d:fe:73:45:dd:a9:f3:d7:96:89:b6:d0:2c:35: 3b:a1:e7:db:6c:ed:50:84:94:bf:df:65:3b:2f:1a: 8c:e8:ce:1c:1a:0a:a2:b9:84:11:d7:a6:1d:7a:43: 55:7f:6b:f9:3f:8b:aa:6b:b6:3b:61:7f:cb:c6:3c: 05:8d:89:85:77:96:67:64:e3:85:53:dc:18:e4:a8: e8:f9:c4:ff:34:85:2d:5a:2a:93:11:61:40:88:db: ff:fe:c6:9f:98:34:12:3b:58:7f:b6:bc:48:8c:bb: 64:e5:cb:1a:8c:39:3e:96:de:e5:cf:4b:91:86:36: b8:3b:de:9c:ae:59:be:f3:31:82:63:60:6b:08:29: e5:43:d6:4e:48:bc:8f:19:9a:ff:dd:e0:6a:44:b2: f6:2e:98:e6:40:0e:bc:82:8e:e7:d4:20:00:04:f5: 8b:24:84:fe:09:09:7a:6f:ad:3c:e6:6c:06:1b:a1: a2:2a:b9:9c:b5:e9:97:b8:10:11:95:b6:f5:88:f4: 43:31:27:b9:59:f6:c8:00:44:ff:ec:d0:f1:91:26: 18:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:4C:CE:B7:6B:2F:9D:7A:22:29:4B:BD:23:A3:38:85:5A:19:B6:30 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/IkzOt2svnXoiKUu9I6M4hVoZtjA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.66.0.0/16 Signature Algorithm: sha256WithRSAEncryption 13:d8:31:64:30:4f:16:f2:b3:91:3b:b1:d4:8b:df:f9:0f:90: bf:e1:1c:cf:70:d4:0e:2c:f0:df:4a:f6:ca:19:bd:d1:f8:79: bc:5b:84:7f:1f:05:76:28:7b:91:35:76:2b:94:f1:c0:96:51: 8a:24:4f:32:96:62:42:3c:19:31:a0:70:80:37:63:b9:76:71: f7:24:bc:7a:7a:fc:fa:52:d8:d0:1d:da:18:a1:17:57:af:fa: 13:35:a0:8b:3a:e1:9d:ee:e7:f5:53:ec:59:af:1b:8e:9a:f0: 5f:d7:93:fb:e8:bd:19:b7:e4:5f:e0:63:9e:88:7a:54:bc:50: 3f:43:81:95:58:da:de:02:bf:74:1c:58:a0:69:ae:eb:e9:ee: 03:6f:f5:ac:da:73:33:e9:90:15:aa:2c:24:0b:1e:b2:39:dc: c6:1c:70:35:c1:b7:b1:43:68:4e:da:29:71:ff:1a:22:d4:57: 74:56:48:91:ac:7e:68:96:cf:6a:d1:ef:fc:f6:42:cc:5c:11: d9:26:17:05:6f:37:63:5d:84:90:23:00:07:18:95:6e:7c:ca: 9b:cd:33:47:34:fd:1a:3a:14:ef:c9:67:37:e4:be:44:2f:f9: 6d:55:16:0f:1f:4a:15:e3:2b:17:82:be:8a:f4:e2:7f:db:8a: 31:98:5b:68 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICGc0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzMjNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDIyNENDRUI3NkIyRjlE N0EyMjI5NEJCRDIzQTMzODg1NUExOUI2MzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDhs2IpXkn53Lc8qWSLjAXbA6ny1dkmPQiFeGWA8fp/YfCfU3aX ueEcG0wphbp9/nNF3anz15aJttAsNTuh59ts7VCElL/fZTsvGozozhwaCqK5hBHX ph16Q1V/a/k/i6prtjthf8vGPAWNiYV3lmdk44VT3BjkqOj5xP80hS1aKpMRYUCI 2//+xp+YNBI7WH+2vEiMu2TlyxqMOT6W3uXPS5GGNrg73pyuWb7zMYJjYGsIKeVD 1k5IvI8Zmv/d4GpEsvYumOZADryCjufUIAAE9YskhP4JCXpvrTzmbAYboaIquZy1 6Ze4EBGVtvWI9EMxJ7lZ9sgARP/s0PGRJhipAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUIkzOt2svnXoiKUu9I6M4hVoZtjAwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvSWt6T3Qyc3ZuWG9pS1V1OUk2TTRo Vm9adGpBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAD1CMA0G CSqGSIb3DQEBCwUAA4IBAQAT2DFkME8W8rORO7HUi9/5D5C/4RzPcNQOLPDfSvbK Gb3R+Hm8W4R/HwV2KHuRNXYrlPHAllGKJE8ylmJCPBkxoHCAN2O5dnH3JLx6evz6 UtjQHdoYoRdXr/oTNaCLOuGd7uf1U+xZrxuOmvBf15P76L0Zt+Rf4GOeiHpUvFA/ Q4GVWNreAr90HFigaa7r6e4Db/Ws2nMz6ZAVqiwkCx6yOdzGHHA1wbexQ2hO2ilx /xoi1Fd0VkiRrH5ols9q0e/89kLMXBHZJhcFbzdjXYSQIwAHGJVufMqbzTNHNP0a OhTvyWc35L5EL/ltVRYPH0oV4ysXgr6K9OJ/24oxmFto -----END CERTIFICATE-----Generated at Sat Sep 6 12:07:54 2025 by rpki-client