$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/KAeC-aJOe-qlb4jdCpPwvYCCjB4.roa File: KAeC-aJOe-qlb4jdCpPwvYCCjB4.roa (raw, json) Hash identifier: Y/iU18MIIj5bhIb68FT1kwppyjOWOtlOjN9ppv28JZo= Subject key identifier: 28:07:82:F9:A2:4E:7B:EA:A5:6F:88:DD:0A:93:F0:BD:80:82:8C:1E Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1A1C Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/KAeC-aJOe-qlb4jdCpPwvYCCjB4.roa Signing time: Fri 22 Aug 2025 08:53:44 +0000 ROA not before: Fri 22 Aug 2025 08:53:44 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4780 IP address blocks: 123.205.58.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6684 (0x1a1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:44 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=280782F9A24E7BEAA56F88DD0A93F0BD80828C1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:a0:34:93:c5:c7:0c:d7:0e:c5:2c:fd:3d:9f: 0b:20:57:85:28:30:91:75:63:ce:b5:7b:fd:66:65: 25:9c:cc:db:38:90:9c:86:72:08:80:91:6a:9e:a5: d0:60:b2:1c:31:85:91:a6:73:1c:2a:cc:ce:4d:40: 74:ac:d9:69:d8:6d:9b:59:a9:a0:e9:57:0c:ef:71: 33:2d:e4:b6:19:24:1f:12:a4:61:19:8f:36:79:39: 10:12:b3:81:53:68:12:d3:a8:0c:f9:ed:d3:f3:2b: cc:04:a2:85:47:02:66:0a:01:bf:8c:83:ca:da:13: 1d:8e:bc:fb:a3:9b:4b:ac:3d:d0:62:b0:6b:5e:92: 8e:ab:db:92:4d:36:75:99:1e:ef:78:3d:9f:1a:29: 13:95:b6:f2:d5:cd:a6:dc:b5:06:9a:df:86:ab:28: 5c:7b:6d:3f:bb:b5:8f:61:ab:89:de:4b:5b:f1:6f: 8a:bb:05:69:93:49:86:d5:db:5d:e2:e7:d7:6a:31: 94:85:13:3c:21:e1:23:29:64:5d:24:9e:f4:cc:c2: 39:54:d2:d7:87:85:7d:6f:b9:19:b9:dd:e0:f5:fd: 89:63:82:e1:b0:5a:64:18:2e:07:b3:71:5a:36:c2: 64:e8:30:7c:ce:77:1b:56:fd:00:c3:df:b9:23:be: 2a:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:07:82:F9:A2:4E:7B:EA:A5:6F:88:DD:0A:93:F0:BD:80:82:8C:1E X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/KAeC-aJOe-qlb4jdCpPwvYCCjB4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.205.58.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:e1:c4:d3:d8:a9:80:69:bf:22:32:7f:16:07:60:43:4f:1e: ca:8f:e8:e3:a1:64:cd:cb:ca:c2:06:20:10:1e:2e:40:2a:94: 54:bd:6d:86:4b:18:a3:ae:52:0d:35:46:88:10:bd:79:02:7c: ed:56:f9:aa:38:bd:e6:38:39:2c:61:1f:e7:53:d8:29:f0:58: e2:26:17:b6:42:79:fd:c7:8f:03:7a:44:6c:78:c1:40:1b:5c: 9b:d3:62:e4:2e:de:23:3b:24:1b:5c:68:5b:68:d1:1a:cd:6c: 05:2e:50:7c:42:68:c9:1d:77:f6:de:3f:07:71:6c:13:60:e8: 30:88:f9:bc:40:de:d3:22:fd:05:16:eb:bd:b4:a5:f4:5d:68: 40:95:89:d6:c0:a2:3a:b5:4d:cd:53:75:6d:80:a2:26:27:b9: ed:8a:2a:c4:d4:1f:81:b8:83:e0:1b:ad:01:eb:a9:7d:51:70: 6b:41:7e:d7:bc:b9:29:20:69:27:f5:a3:18:4a:25:d3:72:ad: b5:6a:7d:e3:d1:cb:27:99:b0:1e:12:c3:51:00:76:6c:03:6a: 5a:0f:5e:c8:17:d0:f8:23:fe:b9:eb:1c:72:c8:da:5b:80:2f: 06:76:bd:9e:61:32:fb:95:5a:72:fd:6a:8c:8f:2a:82:e3:03: 14:ed:e1:37 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGhwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzNDRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDI4MDc4MkY5QTI0RTdC RUFBNTZGODhERDBBOTNGMEJEODA4MjhDMUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVoDSTxccM1w7FLP09nwsgV4UoMJF1Y861e/1mZSWczNs4kJyG cgiAkWqepdBgshwxhZGmcxwqzM5NQHSs2WnYbZtZqaDpVwzvcTMt5LYZJB8SpGEZ jzZ5ORASs4FTaBLTqAz57dPzK8wEooVHAmYKAb+Mg8raEx2OvPujm0usPdBisGte ko6r25JNNnWZHu94PZ8aKROVtvLVzabctQaa34arKFx7bT+7tY9hq4neS1vxb4q7 BWmTSYbV213i59dqMZSFEzwh4SMpZF0knvTMwjlU0teHhX1vuRm53eD1/YljguGw WmQYLgezcVo2wmToMHzOdxtW/QDD37kjvirVAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUKAeC+aJOe+qlb4jdCpPwvYCCjB4wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvS0FlQy1hSk9lLXFsYjRqZENwUHd2 WUNDakI0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHvNOjAN BgkqhkiG9w0BAQsFAAOCAQEAnuHE09ipgGm/IjJ/FgdgQ08eyo/o46FkzcvKwgYg EB4uQCqUVL1thksYo65SDTVGiBC9eQJ87Vb5qji95jg5LGEf51PYKfBY4iYXtkJ5 /cePA3pEbHjBQBtcm9Ni5C7eIzskG1xoW2jRGs1sBS5QfEJoyR139t4/B3FsE2Do MIj5vEDe0yL9BRbrvbSl9F1oQJWJ1sCiOrVNzVN1bYCiJie57YoqxNQfgbiD4But AeupfVFwa0F+17y5KSBpJ/WjGEol03KttWp949HLJ5mwHhLDUQB2bANqWg9eyBfQ +CP+uesccsjaW4AvBna9nmEy+5Vacv1qjI8qguMDFO3hNw== -----END CERTIFICATE-----Generated at Sat Sep 6 12:08:16 2025 by rpki-client