$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/LClNcuwECAEI8chvJGlbjqxOJt4.roa File: LClNcuwECAEI8chvJGlbjqxOJt4.roa (raw, json) Hash identifier: 2773qGAIi1sbCVZFon94hmTN0RCJK+tQmUBTRCAOHiE= Subject key identifier: 2C:29:4D:72:EC:04:08:01:08:F1:C8:6F:24:69:5B:8E:AC:4E:26:DE Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1A1E Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/LClNcuwECAEI8chvJGlbjqxOJt4.roa Signing time: Fri 22 Aug 2025 08:53:44 +0000 ROA not before: Fri 22 Aug 2025 08:53:44 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4780 IP address blocks: 220.228.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6686 (0x1a1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:44 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2C294D72EC04080108F1C86F24695B8EAC4E26DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f1:12:9d:4d:0b:03:41:d5:18:ca:23:6b:53: d8:a2:13:8f:ec:06:12:66:56:e7:75:35:e5:51:a8: ea:7a:f3:af:42:66:15:39:db:94:80:54:17:85:63: e0:e9:bd:1a:4c:90:7b:99:f0:e4:c7:e3:7b:6f:d8: ed:d7:f6:9a:7c:8d:bc:2b:ee:07:11:b1:c3:81:18: a0:78:24:d1:de:db:3a:dc:dd:b7:8d:ff:72:c4:89: 87:19:ae:82:c4:e4:fc:96:57:7f:2a:a4:b2:68:d0: 6a:62:18:24:e2:ae:17:5a:1a:06:87:df:df:02:81: 85:af:80:1a:2b:80:69:ce:36:09:07:3e:8f:98:55: d8:01:31:82:86:ac:cd:a1:7b:89:d0:3e:8a:ea:15: a5:e0:d8:72:16:ae:67:f4:a9:e9:d8:58:75:59:2a: 9e:e5:27:f0:0c:d9:4d:47:6b:52:9e:2c:a5:23:3d: f2:39:df:a1:32:ce:c7:27:2e:0c:32:6d:a4:e0:64: 54:3d:34:4f:02:82:bf:ca:18:bf:7e:87:71:0e:32: b0:7f:9f:60:72:df:da:11:86:89:de:94:8b:1a:84: 8b:39:5a:89:8d:65:56:a7:9f:ba:8c:40:79:13:09: 25:09:5b:3d:ef:36:cd:40:fd:80:dc:7c:e9:37:f3: c4:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:29:4D:72:EC:04:08:01:08:F1:C8:6F:24:69:5B:8E:AC:4E:26:DE X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/LClNcuwECAEI8chvJGlbjqxOJt4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 220.228.0.0/16 Signature Algorithm: sha256WithRSAEncryption 73:38:60:02:a7:b0:3f:2b:d0:2d:33:bf:d0:d9:d4:e9:83:7b: e8:8c:14:07:b8:6e:95:ba:ad:eb:1d:63:44:d2:b8:41:60:43: 31:ba:2f:f3:ec:84:42:80:45:97:b3:e6:94:ad:95:bd:5c:48: 74:46:2c:62:5c:88:95:34:54:93:06:87:68:eb:39:69:99:ce: 10:8d:39:f2:70:06:9e:06:ae:80:8c:e6:f0:fe:a2:c0:fa:5d: 34:a6:b7:71:66:69:3f:7c:22:f1:ef:a6:4a:51:1d:40:e3:e5: b0:23:4e:1b:33:dd:b2:6d:00:62:d9:43:2e:2f:1d:01:1a:07: 4a:62:e4:8e:b4:df:98:42:ea:f3:39:ae:14:7c:cc:ef:15:67: 98:6e:26:b2:e1:a5:22:bb:22:2d:f0:1d:09:00:93:f4:a2:77: 95:53:de:54:55:47:f8:0b:d4:bd:4e:79:76:9c:23:8f:68:3e: 26:f0:fd:7b:2c:3a:08:09:bd:09:ed:b3:8b:2c:33:09:6d:96: dc:e0:cd:66:15:96:aa:71:d9:49:93:27:09:4b:f8:6c:1c:fa: ea:59:2f:3c:a1:54:f1:44:24:09:4f:73:be:22:2e:8a:58:b9: 98:bc:77:4c:11:cc:90:f4:8b:2e:88:b0:f6:c4:57:aa:3a:47: 4f:35:e1:fd -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICGh4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzNDRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDJDMjk0RDcyRUMwNDA4 MDEwOEYxQzg2RjI0Njk1QjhFQUM0RTI2REUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDO8RKdTQsDQdUYyiNrU9iiE4/sBhJmVud1NeVRqOp6869CZhU5 25SAVBeFY+DpvRpMkHuZ8OTH43tv2O3X9pp8jbwr7gcRscOBGKB4JNHe2zrc3beN /3LEiYcZroLE5PyWV38qpLJo0GpiGCTirhdaGgaH398CgYWvgBorgGnONgkHPo+Y VdgBMYKGrM2he4nQPorqFaXg2HIWrmf0qenYWHVZKp7lJ/AM2U1Ha1KeLKUjPfI5 36EyzscnLgwybaTgZFQ9NE8Cgr/KGL9+h3EOMrB/n2By39oRhonelIsahIs5WomN ZVann7qMQHkTCSUJWz3vNs1A/YDcfOk388R3AgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQULClNcuwECAEI8chvJGlbjqxOJt4wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvTENsTmN1d0VDQUVJOGNodkpHbGJq cXhPSnQ0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDANzkMA0G CSqGSIb3DQEBCwUAA4IBAQBzOGACp7A/K9AtM7/Q2dTpg3vojBQHuG6Vuq3rHWNE 0rhBYEMxui/z7IRCgEWXs+aUrZW9XEh0RixiXIiVNFSTBodo6zlpmc4QjTnycAae Bq6AjObw/qLA+l00prdxZmk/fCLx76ZKUR1A4+WwI04bM92ybQBi2UMuLx0BGgdK YuSOtN+YQurzOa4UfMzvFWeYbiay4aUiuyIt8B0JAJP0oneVU95UVUf4C9S9Tnl2 nCOPaD4m8P17LDoICb0J7bOLLDMJbZbc4M1mFZaqcdlJkycJS/hsHPrqWS88oVTx RCQJT3O+Ii6KWLmYvHdMEcyQ9IsuiLD2xFeqOkdPNeH9 -----END CERTIFICATE-----Generated at Sat Sep 6 12:07:49 2025 by rpki-client