$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/NGXWBxOpsjangecVzoa9nlxhGbM.roa File: NGXWBxOpsjangecVzoa9nlxhGbM.roa (raw, json) Hash identifier: CAq6q4X7q+a/LUz44AM1RyETGWYh+7WvcXvWouL+PTQ= Subject key identifier: 34:65:D6:07:13:A9:B2:36:A7:81:E7:15:CE:86:BD:9E:5C:61:19:B3 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1A00 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/NGXWBxOpsjangecVzoa9nlxhGbM.roa Signing time: Fri 22 Aug 2025 08:53:37 +0000 ROA not before: Fri 22 Aug 2025 08:53:37 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4780 IP address blocks: 122.147.16.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6656 (0x1a00) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:37 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=3465D60713A9B236A781E715CE86BD9E5C6119B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:1a:71:89:77:08:16:df:80:d2:f7:aa:4d:f0: 67:9f:8b:11:1c:18:b6:73:ae:cb:51:e2:0e:a4:09: 3c:3a:3e:13:81:b9:d5:bf:fa:72:5e:45:c1:62:49: 59:c1:bf:fb:2f:6c:24:6b:b2:58:0f:b1:bd:69:f0: 82:f9:8d:3b:a8:22:6d:f6:78:3e:a5:6f:f9:9d:60: f8:e3:1f:a9:d7:01:8b:46:d9:0b:c7:8f:f1:c9:75: f1:26:a7:50:c8:69:43:94:4d:f6:65:1b:bc:8b:bd: 61:68:1c:d6:63:48:2a:e1:51:2d:8c:14:b7:bf:19: 21:2c:78:ff:e5:d3:ef:8c:2c:81:b3:02:55:95:2a: 09:d3:2b:78:2a:7f:09:e9:df:05:a5:f6:69:d0:bd: 61:7f:49:18:9b:78:0f:ac:12:c5:e3:a4:a7:80:bf: f6:b4:39:c8:27:d2:a6:9c:55:8f:61:5e:0f:b9:39: 0f:1a:dc:17:ca:c4:a3:09:97:a1:82:d7:12:2b:73: 60:34:9e:e7:6c:93:30:6b:9c:b1:7d:72:8c:53:94: f4:b1:a9:ad:59:dd:2e:4d:2e:6a:a9:78:90:ac:47: 57:a1:e2:c4:36:cd:2b:24:fb:b9:26:aa:ff:0a:fd: 00:f9:97:79:cd:8a:26:74:38:6a:ee:e9:7b:cd:2a: 53:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:65:D6:07:13:A9:B2:36:A7:81:E7:15:CE:86:BD:9E:5C:61:19:B3 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/NGXWBxOpsjangecVzoa9nlxhGbM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.147.16.0/21 Signature Algorithm: sha256WithRSAEncryption b5:29:de:d1:24:b1:d9:71:a6:d2:fa:96:ba:87:bd:57:a4:18: 5d:73:81:28:f5:77:f9:d2:2f:7b:de:4b:c3:01:d0:1b:68:30: e4:d4:84:e5:40:25:15:f3:88:e9:97:e9:fb:e4:70:7a:51:a3: 0d:25:2b:fc:c6:cb:e4:64:b3:3a:08:5d:01:c2:1c:82:9f:b9: a3:b6:9e:f6:cf:65:02:12:fe:4f:00:c4:fc:40:05:1c:0a:f4: fd:72:94:93:da:4a:cc:42:01:5e:ad:38:34:8a:73:01:75:a0: 96:7f:0c:2e:14:96:f0:c0:e2:ef:65:b0:66:dc:55:d1:cf:9c: bf:54:10:b7:b5:84:97:e0:60:5b:8a:6f:92:24:ca:7a:f4:f0: ed:b9:80:29:8b:2d:30:ef:f0:21:07:d6:87:f8:d9:53:56:3e: 3a:51:92:7e:ca:2a:af:f4:10:bf:d0:db:40:12:b9:46:99:38: cd:eb:d3:f2:ca:f5:ef:2a:f4:31:93:ca:fd:a4:82:b0:de:f7: 5b:28:5b:c8:5b:57:1b:f1:8e:38:84:9f:62:a6:15:0a:c3:18: bf:8e:61:75:e6:91:45:95:37:6e:7d:98:69:ba:64:97:72:be: 41:b1:74:e4:c5:a9:4f:4e:cf:f8:9f:dc:60:3a:8d:bb:02:43: 50:5a:62:23 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGgAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzMzdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDM0NjVENjA3MTNBOUIy MzZBNzgxRTcxNUNFODZCRDlFNUM2MTE5QjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDqGnGJdwgW34DS96pN8GefixEcGLZzrstR4g6kCTw6PhOBudW/ +nJeRcFiSVnBv/svbCRrslgPsb1p8IL5jTuoIm32eD6lb/mdYPjjH6nXAYtG2QvH j/HJdfEmp1DIaUOUTfZlG7yLvWFoHNZjSCrhUS2MFLe/GSEseP/l0++MLIGzAlWV KgnTK3gqfwnp3wWl9mnQvWF/SRibeA+sEsXjpKeAv/a0Ocgn0qacVY9hXg+5OQ8a 3BfKxKMJl6GC1xIrc2A0nudskzBrnLF9coxTlPSxqa1Z3S5NLmqpeJCsR1eh4sQ2 zSsk+7kmqv8K/QD5l3nNiiZ0OGru6XvNKlNNAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUNGXWBxOpsjangecVzoa9nlxhGbMwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvTkdYV0J4T3BzamFuZ2VjVnpvYTlu bHhoR2JNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3qTEDAN BgkqhkiG9w0BAQsFAAOCAQEAtSne0SSx2XGm0vqWuoe9V6QYXXOBKPV3+dIve95L wwHQG2gw5NSE5UAlFfOI6Zfp++RwelGjDSUr/MbL5GSzOghdAcIcgp+5o7ae9s9l AhL+TwDE/EAFHAr0/XKUk9pKzEIBXq04NIpzAXWgln8MLhSW8MDi72WwZtxV0c+c v1QQt7WEl+BgW4pvkiTKevTw7bmAKYstMO/wIQfWh/jZU1Y+OlGSfsoqr/QQv9Db QBK5Rpk4zevT8sr17yr0MZPK/aSCsN73WyhbyFtXG/GOOISfYqYVCsMYv45hdeaR RZU3bn2Yabpkl3K+QbF05MWpT07P+J/cYDqNuwJDUFpiIw== -----END CERTIFICATE-----Generated at Sat Sep 6 12:07:47 2025 by rpki-client