$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/RMUffWDPQCnwSomC7orPcUUnGRA.roa File: RMUffWDPQCnwSomC7orPcUUnGRA.roa (raw, json) Hash identifier: x9Vu+7udiOok0MdbrHB7HYHo8q2dnbK2kVC4j6WFeD4= Subject key identifier: 44:C5:1F:7D:60:CF:40:29:F0:4A:89:82:EE:8A:CF:71:45:27:19:10 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 19E2 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/RMUffWDPQCnwSomC7orPcUUnGRA.roa Signing time: Fri 22 Aug 2025 08:53:29 +0000 ROA not before: Fri 22 Aug 2025 08:53:29 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131627 IP address blocks: 220.229.68.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6626 (0x19e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:29 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=44C51F7D60CF4029F04A8982EE8ACF7145271910 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:e0:74:6c:fa:a9:2a:ff:e2:43:44:42:53:ac: 33:16:9f:ca:f9:6d:59:a0:9b:2d:45:b9:49:a9:2d: c6:fb:bf:8e:bf:0b:9c:ff:ac:ee:80:26:4f:f2:5c: 37:3d:a2:64:13:f5:0e:74:8c:c3:45:be:ac:39:f9: 98:a7:87:38:f2:56:38:66:09:0a:ba:ca:f0:86:03: 41:e1:15:59:44:4a:75:f7:98:ca:f6:25:8a:80:28: bc:cf:04:53:2e:3d:f1:09:b7:48:7c:0e:62:3d:d7: b3:9e:f7:56:99:9e:8d:f7:7f:95:22:9d:ae:9c:bb: b0:5a:7e:a6:0a:84:d1:c1:06:8e:91:e7:61:1f:7b: de:aa:4e:2e:40:97:e3:80:47:ba:e2:ea:79:6f:0e: a9:20:24:fa:ee:dc:7c:96:13:39:79:ac:ac:6f:d0: ae:95:20:e4:f9:99:ed:17:18:ef:4f:7d:fa:be:a6: d0:a1:5b:6a:45:5e:ce:66:64:2f:2e:19:4a:5a:3c: 13:a0:8c:3d:b3:3f:cd:0a:b6:c7:ee:cf:79:16:66: 16:83:13:3d:a7:c7:74:77:81:75:dd:ae:31:3c:b0: 9e:07:5c:9a:a2:2b:d5:d0:3c:2f:86:63:a8:12:28: 57:8e:d7:41:63:82:27:57:d6:95:b4:53:e8:a0:b8: 78:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:C5:1F:7D:60:CF:40:29:F0:4A:89:82:EE:8A:CF:71:45:27:19:10 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/RMUffWDPQCnwSomC7orPcUUnGRA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 220.229.68.0/22 Signature Algorithm: sha256WithRSAEncryption b6:b4:9f:fd:85:e4:1f:23:74:7c:32:7f:1f:47:26:8b:bd:4d: 02:21:92:06:b9:69:5f:90:ce:5e:55:2d:9c:d9:11:d6:2b:05: 0a:94:f0:c0:92:7b:6f:9c:1a:33:49:a3:c7:5a:6e:c2:0d:1e: 20:18:3b:f0:d1:00:53:e5:74:ff:61:fa:f5:1c:e8:f3:57:3d: 4e:e0:e7:dc:dc:64:f8:46:a7:d0:ea:2a:0c:1d:69:36:fd:3a: 16:42:26:d5:b2:12:50:71:69:09:46:dd:f9:54:eb:c1:79:de: e9:23:84:d7:c8:ec:9c:f4:65:9e:86:f8:2b:7e:c8:04:6f:a4: e1:b8:64:06:5a:55:18:be:8e:36:2b:03:41:32:21:a1:17:99: 46:76:e4:9a:01:12:35:93:a5:c2:99:00:fd:44:11:a6:c3:79: b7:3b:86:e1:8e:5a:13:85:af:53:53:ba:35:f9:1f:2f:ea:1b: fc:b0:ae:22:7c:d3:fa:28:c3:0a:f1:62:d1:92:b4:bf:4e:94: e6:23:fd:f0:c2:d4:62:64:bf:b9:bd:82:d2:de:02:07:a4:fa: 56:18:ef:dc:de:7a:6d:c7:a5:48:8b:a1:31:fc:2e:81:d7:07: 9b:13:65:96:77:d7:1f:7b:54:ac:af:96:e6:42:81:fd:9b:96: 0e:87:81:f7 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGeIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzMjlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQ0QzUxRjdENjBDRjQw MjlGMDRBODk4MkVFOEFDRjcxNDUyNzE5MTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDa4HRs+qkq/+JDREJTrDMWn8r5bVmgmy1FuUmpLcb7v46/C5z/ rO6AJk/yXDc9omQT9Q50jMNFvqw5+ZinhzjyVjhmCQq6yvCGA0HhFVlESnX3mMr2 JYqAKLzPBFMuPfEJt0h8DmI917Oe91aZno33f5Uina6cu7BafqYKhNHBBo6R52Ef e96qTi5Al+OAR7ri6nlvDqkgJPru3HyWEzl5rKxv0K6VIOT5me0XGO9Pffq+ptCh W2pFXs5mZC8uGUpaPBOgjD2zP80Ktsfuz3kWZhaDEz2nx3R3gXXdrjE8sJ4HXJqi K9XQPC+GY6gSKFeO10FjgidX1pW0U+iguHj7AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQURMUffWDPQCnwSomC7orPcUUnGRAwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvUk1VZmZXRFBRQ253U29tQzdvclBj VVVuR1JBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAtzlRDAN BgkqhkiG9w0BAQsFAAOCAQEAtrSf/YXkHyN0fDJ/H0cmi71NAiGSBrlpX5DOXlUt nNkR1isFCpTwwJJ7b5waM0mjx1puwg0eIBg78NEAU+V0/2H69Rzo81c9TuDn3Nxk +Ean0OoqDB1pNv06FkIm1bISUHFpCUbd+VTrwXne6SOE18jsnPRlnob4K37IBG+k 4bhkBlpVGL6ONisDQTIhoReZRnbkmgESNZOlwpkA/UQRpsN5tzuG4Y5aE4WvU1O6 NfkfL+ob/LCuInzT+ijDCvFi0ZK0v06U5iP98MLUYmS/ub2C0t4CB6T6Vhjv3N56 bcelSIuhMfwugdcHmxNllnfXH3tUrK+W5kKB/ZuWDoeB9w== -----END CERTIFICATE-----Generated at Sat Sep 6 13:50:54 2025 by rpki-client