$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/MZVES7CR5DCTEY2UEM1I-VZwUwc.roa File: MZVES7CR5DCTEY2UEM1I-VZwUwc.roa (raw, json) Hash identifier: GLBYDEDcYgNL6hpBsSmSOAOIoYFzBxrqgQuQ8HvM7Iw= Subject key identifier: 31:95:44:4B:B0:91:E4:30:93:11:8D:94:10:CD:48:F9:56:70:53:07 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1987 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/MZVES7CR5DCTEY2UEM1I-VZwUwc.roa Signing time: Fri 22 Aug 2025 08:53:05 +0000 ROA not before: Fri 22 Aug 2025 08:53:05 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9919 IP address blocks: 42.0.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 03:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6535 (0x1987) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:05 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=3195444BB091E43093118D9410CD48F956705307 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:72:8e:a8:22:c9:90:76:ab:cd:cc:56:91:15: a4:76:5a:f4:70:cd:28:b3:45:f1:76:65:a5:8d:f7: 04:59:9e:93:1e:15:49:14:39:42:46:cd:11:2a:f1: 98:39:93:a2:15:5c:cd:75:96:68:25:d1:81:ee:7a: 01:eb:be:10:a4:d8:db:61:db:49:4b:81:86:74:81: ed:33:af:c0:96:c5:11:15:71:54:f1:fe:ce:cf:b2: 43:cb:6f:cc:18:23:03:68:f7:62:d0:0a:21:54:93: 5d:ae:74:fc:62:98:44:95:90:83:47:2e:73:4b:44: 83:46:e1:56:61:7a:91:00:1a:19:5c:d1:82:05:fe: 96:1a:30:60:0e:55:d3:eb:37:c9:05:8a:9e:a6:cd: 0c:c1:06:83:eb:aa:06:71:b8:7f:51:ad:be:22:01: 1a:fc:0a:fa:f4:09:9a:20:12:2e:58:09:ef:86:54: 0b:b3:46:46:9d:3a:10:e5:e1:31:47:a1:e0:4d:df: 09:11:ea:d5:cf:4b:88:0b:b4:9c:a2:31:d9:0a:ae: 02:ba:6e:45:80:fb:31:5b:20:ca:c8:66:99:de:a0: 51:58:bc:fc:0b:1a:71:fa:ba:6f:0c:56:e3:5d:94: 07:be:45:3a:a9:e1:22:20:8f:88:b0:bc:1f:2f:68: 1b:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:95:44:4B:B0:91:E4:30:93:11:8D:94:10:CD:48:F9:56:70:53:07 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/MZVES7CR5DCTEY2UEM1I-VZwUwc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 42.0.64.0/18 Signature Algorithm: sha256WithRSAEncryption 6c:3a:a5:2d:ba:0c:07:67:f9:8b:79:f5:a9:0c:03:f2:d2:79: 5f:54:8a:d4:63:e6:76:a2:ae:a1:f9:bc:62:24:7f:f5:21:9e: 6c:90:a1:99:b7:a0:6d:20:6a:37:01:59:63:7a:25:cc:43:3f: e6:fc:45:1b:2a:93:f2:52:52:bf:84:19:ea:45:15:1f:8d:03: c3:8d:d5:d7:50:64:7b:0b:95:0d:fa:a1:81:7d:96:42:89:b0: a4:e6:f8:26:6e:53:13:ae:34:7c:c9:d1:af:57:c9:04:66:90: 11:1b:d1:5f:4c:61:9b:cf:c5:42:df:47:35:6f:c3:25:56:99: f3:e9:e3:fd:73:fa:c1:74:84:36:7b:a9:a1:ce:e4:90:4e:ad: 01:14:ec:70:7a:32:3d:25:f1:2e:cd:ee:e7:a0:fd:b2:17:c0: 0d:9a:54:e5:b4:1a:4c:2f:1e:fa:bf:de:2e:af:62:71:5a:c0: 37:b9:e5:a0:df:04:9b:71:c3:cf:38:ec:a0:7d:f3:47:35:69: 63:9e:0b:64:c5:ec:3c:40:a5:b6:96:69:ea:d0:a7:a7:bc:5f: ed:fa:95:fb:e8:7f:93:a5:5c:9b:38:37:2f:c6:78:b7:f6:72: 2d:76:94:a7:d2:74:ec:0a:3c:df:9e:dc:16:c1:10:bc:b9:14: ca:64:e7:84 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGYcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzMDVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDMxOTU0NDRCQjA5MUU0 MzA5MzExOEQ5NDEwQ0Q0OEY5NTY3MDUzMDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/co6oIsmQdqvNzFaRFaR2WvRwzSizRfF2ZaWN9wRZnpMeFUkU OUJGzREq8Zg5k6IVXM11lmgl0YHuegHrvhCk2Nth20lLgYZ0ge0zr8CWxREVcVTx /s7PskPLb8wYIwNo92LQCiFUk12udPximESVkINHLnNLRING4VZhepEAGhlc0YIF /pYaMGAOVdPrN8kFip6mzQzBBoPrqgZxuH9Rrb4iARr8Cvr0CZogEi5YCe+GVAuz RkadOhDl4TFHoeBN3wkR6tXPS4gLtJyiMdkKrgK6bkWA+zFbIMrIZpneoFFYvPwL GnH6um8MVuNdlAe+RTqp4SIgj4iwvB8vaBthAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUMZVES7CR5DCTEY2UEM1I+VZwUwcwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvTVpWRVM3Q1I1RENURVkyVUVNMUkt Vlp3VXdjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBioAQDAN BgkqhkiG9w0BAQsFAAOCAQEAbDqlLboMB2f5i3n1qQwD8tJ5X1SK1GPmdqKuofm8 YiR/9SGebJChmbegbSBqNwFZY3olzEM/5vxFGyqT8lJSv4QZ6kUVH40Dw43V11Bk ewuVDfqhgX2WQomwpOb4Jm5TE640fMnRr1fJBGaQERvRX0xhm8/FQt9HNW/DJVaZ 8+nj/XP6wXSENnupoc7kkE6tARTscHoyPSXxLs3u56D9shfADZpU5bQaTC8e+r/e Lq9icVrAN7nloN8Em3HDzzjsoH3zRzVpY54LZMXsPECltpZp6tCnp7xf7fqV++h/ k6Vcmzg3L8Z4t/ZyLXaUp9J07Ao8357cFsEQvLkUymTnhA== -----END CERTIFICATE-----Generated at Sun Sep 7 23:31:14 2025 by rpki-client