$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Mpq8M0Gg8EDY_DFIjoBpSKkPi28.roa File: Mpq8M0Gg8EDY_DFIjoBpSKkPi28.roa (raw, json) Hash identifier: aLzOLlgNRAd279uGA2pWBL+VMlnZFEbsetBPnWq7atY= Subject key identifier: 32:9A:BC:33:41:A0:F0:40:D8:FC:31:48:8E:80:69:48:A9:0F:8B:6F Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 19E7 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Mpq8M0Gg8EDY_DFIjoBpSKkPi28.roa Signing time: Fri 22 Aug 2025 08:53:30 +0000 ROA not before: Fri 22 Aug 2025 08:53:30 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9919 IP address blocks: 106.105.48.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 03:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6631 (0x19e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:30 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=329ABC3341A0F040D8FC31488E806948A90F8B6F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:0a:d4:1b:da:20:b2:b6:30:7c:82:16:d0:61: 59:f5:49:50:83:1f:16:9c:b4:08:f5:8d:45:d4:ea: ed:1c:76:e1:28:de:7c:ef:10:23:3b:17:db:dc:cf: a0:b1:84:e7:06:b4:bb:a8:56:00:cc:16:9a:72:3e: fe:4e:bf:b0:6d:a4:55:a9:71:7b:75:b7:ea:ca:f3: 30:98:e5:e7:87:63:94:85:b3:47:19:ca:a4:38:0c: db:d6:17:f9:f3:9c:85:2c:7e:f2:de:ba:a8:66:9e: bf:f3:2c:fc:2a:1b:1b:16:f8:66:6e:7b:0e:2f:75: d0:d6:d5:7e:7e:e1:f8:00:20:6e:c8:22:5d:a7:05: 6b:de:ad:70:64:ad:d6:f6:c9:02:3c:54:c7:31:db: 87:9f:21:1f:bf:a3:67:17:50:61:61:88:de:49:94: d8:ea:42:05:3f:f8:2a:74:40:f0:6a:e9:21:af:fb: bd:69:11:d0:7d:b0:5a:70:b7:b1:86:83:f1:20:f9: ee:08:b1:9e:3e:2c:95:2f:52:ac:da:a6:7e:e7:72: 2d:9c:e8:39:47:a1:82:aa:7a:8a:8f:b4:df:98:3c: 15:f9:02:73:fa:c8:66:1f:10:af:7a:5b:5d:ab:68: 39:38:cd:bd:16:48:e7:34:11:75:5c:f9:56:c4:a7: 9f:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:9A:BC:33:41:A0:F0:40:D8:FC:31:48:8E:80:69:48:A9:0F:8B:6F X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Mpq8M0Gg8EDY_DFIjoBpSKkPi28.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.105.48.0/20 Signature Algorithm: sha256WithRSAEncryption 97:f7:a4:ca:55:39:ec:52:4a:95:7c:2c:0c:1f:c7:aa:79:f9: 75:04:d0:9a:32:f7:97:ce:20:c9:8a:b3:89:ff:5f:0e:2b:88: a5:d7:91:7b:45:37:1e:b5:b6:de:ab:15:f9:71:c2:24:51:25: 84:22:bc:87:41:c5:e1:01:af:7a:5c:6c:f6:92:1c:52:81:34: 47:de:bb:ad:58:03:77:ac:79:f7:5c:1c:c6:a2:82:6a:17:8e: b3:e8:57:a3:ec:48:0e:9b:ac:69:5e:84:f5:63:9d:eb:d4:86: c5:0f:0d:be:54:4b:64:9e:61:df:01:be:01:27:1b:d9:e2:e2: 01:bf:ca:25:83:19:a3:07:c3:eb:b5:18:7e:be:8b:15:13:5d: 5c:59:c2:a9:a1:64:8c:68:a4:90:bb:7a:56:b1:00:22:da:a3: 65:09:67:c5:3e:2f:c5:8a:8f:fb:bd:ab:1a:47:8b:f5:57:c0: d5:8f:39:37:ac:3f:68:3a:bb:1a:60:ca:b1:22:5f:9a:61:57: 34:e5:53:81:d3:1f:fd:e0:ce:a5:f7:97:4b:38:41:a2:2a:e4: 1b:ce:a8:95:18:6f:99:34:c2:de:fd:78:31:62:a5:0f:92:f7: c2:77:d9:ee:a7:2a:a1:f3:a8:1f:c5:9c:2a:c2:90:ab:ae:5f: 8f:f3:0b:2a -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGecwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzMzBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDMyOUFCQzMzNDFBMEYw NDBEOEZDMzE0ODhFODA2OTQ4QTkwRjhCNkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDACtQb2iCytjB8ghbQYVn1SVCDHxactAj1jUXU6u0cduEo3nzv ECM7F9vcz6CxhOcGtLuoVgDMFppyPv5Ov7BtpFWpcXt1t+rK8zCY5eeHY5SFs0cZ yqQ4DNvWF/nznIUsfvLeuqhmnr/zLPwqGxsW+GZuew4vddDW1X5+4fgAIG7IIl2n BWverXBkrdb2yQI8VMcx24efIR+/o2cXUGFhiN5JlNjqQgU/+Cp0QPBq6SGv+71p EdB9sFpwt7GGg/Eg+e4IsZ4+LJUvUqzapn7nci2c6DlHoYKqeoqPtN+YPBX5AnP6 yGYfEK96W12raDk4zb0WSOc0EXVc+VbEp5+XAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUMpq8M0Gg8EDY/DFIjoBpSKkPi28wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvTXBxOE0wR2c4RURZX0RGSWpvQnBT S2tQaTI4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBGppMDAN BgkqhkiG9w0BAQsFAAOCAQEAl/ekylU57FJKlXwsDB/Hqnn5dQTQmjL3l84gyYqz if9fDiuIpdeRe0U3HrW23qsV+XHCJFElhCK8h0HF4QGvelxs9pIcUoE0R967rVgD d6x591wcxqKCaheOs+hXo+xIDpusaV6E9WOd69SGxQ8NvlRLZJ5h3wG+AScb2eLi Ab/KJYMZowfD67UYfr6LFRNdXFnCqaFkjGikkLt6VrEAItqjZQlnxT4vxYqP+72r GkeL9VfA1Y85N6w/aDq7GmDKsSJfmmFXNOVTgdMf/eDOpfeXSzhBoirkG86olRhv mTTC3v14MWKlD5L3wnfZ7qcqofOoH8WcKsKQq65fj/MLKg== -----END CERTIFICATE-----Generated at Sun Sep 7 23:36:14 2025 by rpki-client