$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/RTzr1QvCoIV4DJgg2nIsgItzkcI.roa File: RTzr1QvCoIV4DJgg2nIsgItzkcI.roa (raw, json) Hash identifier: tcBKab+lv7z2IQ5RtAeJQdZNZknVxHPGPC85a5tCYHY= Subject key identifier: 45:3C:EB:D5:0B:C2:A0:85:78:0C:98:20:DA:72:2C:80:8B:73:91:C2 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1A5C Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/RTzr1QvCoIV4DJgg2nIsgItzkcI.roa Signing time: Fri 22 Aug 2025 08:54:00 +0000 ROA not before: Fri 22 Aug 2025 08:54:00 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4780 IP address blocks: 122.147.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6748 (0x1a5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:54:00 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=453CEBD50BC2A085780C9820DA722C808B7391C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:21:88:60:a8:21:95:b4:8c:7f:97:9a:9f:2f: fb:6f:69:06:19:1e:b2:cc:3b:0c:63:cb:83:cd:d0: 7a:0d:47:92:0a:29:35:af:00:02:9c:4c:af:f1:36: 18:be:41:2c:b8:5e:a2:e2:01:8a:30:5a:71:b2:d5: 2f:6f:0e:78:77:5f:84:4d:0c:52:5a:51:7f:ea:b0: 87:3a:df:cf:9c:7c:c7:52:00:46:69:16:95:f0:05: d5:93:00:3b:09:e0:70:dd:37:da:17:5e:b5:55:22: 33:b4:d2:e7:60:7e:2b:9a:51:b1:fc:90:fb:46:90: 08:df:23:b5:26:ab:3a:8d:cb:b5:66:b8:79:16:fb: d2:85:9a:81:49:39:f0:48:76:f8:0e:91:93:32:e7: 9c:ba:51:47:ff:42:a9:db:09:e5:2a:9e:d7:96:7b: 57:97:88:8a:de:c8:8e:90:cf:58:33:6c:70:be:c4: b4:16:5e:c7:ff:95:43:ae:53:74:42:12:91:2b:95: b5:e1:db:b4:53:0e:d5:ec:16:c0:42:6a:fc:31:6a: db:a0:32:87:cc:e2:32:fd:1f:7d:20:25:76:5b:f7: 6b:20:aa:d5:05:ee:bd:48:5f:ec:f8:10:4b:a2:7c: c4:03:97:bd:81:a8:71:67:92:f8:03:e3:29:db:88: 3e:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:3C:EB:D5:0B:C2:A0:85:78:0C:98:20:DA:72:2C:80:8B:73:91:C2 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/RTzr1QvCoIV4DJgg2nIsgItzkcI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.147.128.0/17 Signature Algorithm: sha256WithRSAEncryption c1:e2:15:c9:6a:00:2d:76:65:8a:fc:08:99:23:0b:ea:ab:81: 18:42:1d:20:b8:5a:66:c7:c6:93:26:3e:5c:36:79:e8:ca:9e: 83:3f:90:e7:c5:fc:d5:c5:79:8c:2c:58:a4:2e:42:37:69:7f: 6d:53:20:ac:46:b5:cd:7d:b7:b0:70:a7:ca:3a:f9:30:20:0d: 9c:90:7a:d6:90:f4:40:27:da:6f:16:d0:5b:2d:f2:bf:3a:30: f2:72:0e:47:ac:e4:7b:80:71:55:17:cb:03:b8:2c:03:0b:0d: 23:2f:c8:1c:48:10:ce:be:c0:59:0c:03:6e:22:ff:e8:c7:40: b3:58:70:f3:33:48:3f:05:9a:9f:6a:46:81:62:65:c4:f7:62: 15:8c:04:ce:28:c1:51:ba:53:4c:1f:37:f9:81:92:9e:bb:48: 56:a6:0f:e9:41:4d:d2:e1:ad:96:13:f4:ca:0d:ab:74:2c:3b: 8e:9a:91:fe:ae:bc:97:8e:0c:79:24:00:10:d3:0d:ba:1b:cb: ba:df:4c:1f:b3:3a:07:81:d4:27:47:55:13:62:fb:0e:87:2c: dd:1c:8e:27:59:c6:ef:3b:0c:d9:84:0a:7b:f1:5a:6d:97:f6: 39:95:c3:5c:37:99:f6:01:23:ef:6e:4f:62:5e:59:61:f8:0f: d9:4e:70:ab -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGlwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODU0MDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQ1M0NFQkQ1MEJDMkEw ODU3ODBDOTgyMERBNzIyQzgwOEI3MzkxQzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFIYhgqCGVtIx/l5qfL/tvaQYZHrLMOwxjy4PN0HoNR5IKKTWv AAKcTK/xNhi+QSy4XqLiAYowWnGy1S9vDnh3X4RNDFJaUX/qsIc638+cfMdSAEZp FpXwBdWTADsJ4HDdN9oXXrVVIjO00udgfiuaUbH8kPtGkAjfI7UmqzqNy7VmuHkW +9KFmoFJOfBIdvgOkZMy55y6UUf/QqnbCeUqnteWe1eXiIreyI6Qz1gzbHC+xLQW Xsf/lUOuU3RCEpErlbXh27RTDtXsFsBCavwxatugMofM4jL9H30gJXZb92sgqtUF 7r1IX+z4EEuifMQDl72BqHFnkvgD4ynbiD6jAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQURTzr1QvCoIV4DJgg2nIsgItzkcIwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvUlR6cjFRdkNvSVY0REpnZzJuSXNn SXR6a2NJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB3qTgDAN BgkqhkiG9w0BAQsFAAOCAQEAweIVyWoALXZlivwImSML6quBGEIdILhaZsfGkyY+ XDZ56Mqegz+Q58X81cV5jCxYpC5CN2l/bVMgrEa1zX23sHCnyjr5MCANnJB61pD0 QCfabxbQWy3yvzow8nIOR6zke4BxVRfLA7gsAwsNIy/IHEgQzr7AWQwDbiL/6MdA s1hw8zNIPwWan2pGgWJlxPdiFYwEzijBUbpTTB83+YGSnrtIVqYP6UFN0uGtlhP0 yg2rdCw7jpqR/q68l44MeSQAENMNuhvLut9MH7M6B4HUJ0dVE2L7Docs3RyOJ1nG 7zsM2YQKe/FabZf2OZXDXDeZ9gEj725PYl5ZYfgP2U5wqw== -----END CERTIFICATE-----Generated at Sat Sep 6 12:07:53 2025 by rpki-client