$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/T9s3x6L_q0kmfrjMIx4g_oQkkgI.roa File: T9s3x6L_q0kmfrjMIx4g_oQkkgI.roa (raw, json) Hash identifier: r5bM2K/7wB9bdaEvNv+i8bA3BS0nT95IbeV+DjyMBD8= Subject key identifier: 4F:DB:37:C7:A2:FF:AB:49:26:7E:B8:CC:23:1E:20:FE:84:24:92:02 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1A4C Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/T9s3x6L_q0kmfrjMIx4g_oQkkgI.roa Signing time: Fri 22 Aug 2025 08:53:55 +0000 ROA not before: Fri 22 Aug 2025 08:53:55 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9919 IP address blocks: 59.104.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 03:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6732 (0x1a4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:55 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=4FDB37C7A2FFAB49267EB8CC231E20FE84249202 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:3b:cd:0a:95:76:2a:39:c9:e7:d1:f2:02:fc: cf:14:92:5a:b3:5a:e4:ab:bc:a0:ea:61:06:a1:48: 56:b7:c5:a0:df:e7:0f:b0:a9:a5:ad:70:d6:90:51: 33:42:53:ca:81:0e:75:8a:c9:db:d8:9e:9b:95:cf: b0:d2:7b:1f:b8:1f:be:f6:f4:bf:58:e3:a5:af:a6: 7c:c9:cc:80:96:ec:76:88:20:c1:92:83:69:8a:d6: 90:57:ea:fc:14:3e:93:38:e8:e4:6b:cb:b2:44:4b: 34:cf:e0:11:75:5e:b8:a4:25:75:ec:fe:2f:dd:59: 7d:87:e4:22:0c:82:bc:2d:79:22:21:ad:b3:1b:6c: f7:20:79:67:5f:0f:f2:8b:9b:a0:d9:93:7e:5d:06: 26:96:6d:5b:4c:85:e7:29:40:c7:21:f1:c5:5d:4a: d7:75:82:e6:7d:0b:e3:05:86:c5:73:ae:04:e7:00: a2:89:ac:f4:a5:b9:93:2b:9a:c8:8d:fa:e4:7b:69: 0a:59:94:7e:54:b3:26:d5:29:70:85:b5:0b:66:a4: 09:bd:ba:6d:e7:e1:6e:db:9e:1a:a2:60:42:4a:17: 5b:ef:85:78:51:75:6d:2e:b1:7e:be:b5:ec:db:a8: 06:99:6e:2f:ac:6c:27:31:2c:ce:9a:23:0c:78:62: 92:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:DB:37:C7:A2:FF:AB:49:26:7E:B8:CC:23:1E:20:FE:84:24:92:02 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/T9s3x6L_q0kmfrjMIx4g_oQkkgI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 59.104.0.0/15 Signature Algorithm: sha256WithRSAEncryption 39:87:22:6b:de:b1:e6:25:fb:a8:bd:e6:1c:f4:0d:24:22:a0: 02:46:92:25:7d:37:0b:5d:44:52:47:9f:34:d7:9a:b1:00:09: 5a:13:92:75:67:07:2f:ae:c4:ee:45:2c:76:10:cc:fe:45:5b: d4:a5:df:32:e5:bc:02:fe:2e:c0:c3:af:ad:54:9b:35:68:23: e8:7d:03:1b:f0:d0:86:4a:e8:a3:51:7a:d5:4d:b5:cc:a2:71: cb:e7:fd:68:fe:a3:d5:e4:00:08:2a:e5:3f:17:59:0f:22:ca: e0:d7:20:ae:98:b9:67:fe:fb:52:e3:17:bc:e1:15:02:05:bc: 88:7e:8c:81:9f:c5:42:a3:e2:b3:e9:64:7e:22:a8:9e:38:6d: 8d:0c:28:6b:c4:09:33:85:15:10:dd:e3:8f:23:0a:f9:de:76: 75:a6:f3:59:bf:73:dc:ff:c5:d3:78:a3:c6:1c:44:79:13:59: bb:71:26:65:db:80:db:ab:59:8c:b0:98:0b:34:aa:00:b7:ef: 97:e0:fc:dc:18:07:15:19:12:7f:4d:45:aa:ad:90:b1:e2:12: 49:d1:3e:3a:01:fa:69:31:b2:d7:bb:85:ec:06:b6:3e:82:5e: 67:12:d8:09:a2:58:cf:57:cd:a2:1d:93:27:49:db:91:5b:eb: 89:39:0a:5f -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICGkwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzNTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDRGREIzN0M3QTJGRkFC NDkyNjdFQjhDQzIzMUUyMEZFODQyNDkyMDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDO80KlXYqOcnn0fIC/M8UklqzWuSrvKDqYQahSFa3xaDf5w+w qaWtcNaQUTNCU8qBDnWKydvYnpuVz7DSex+4H7729L9Y46WvpnzJzICW7HaIIMGS g2mK1pBX6vwUPpM46ORry7JESzTP4BF1XrikJXXs/i/dWX2H5CIMgrwteSIhrbMb bPcgeWdfD/KLm6DZk35dBiaWbVtMhecpQMch8cVdStd1guZ9C+MFhsVzrgTnAKKJ rPSluZMrmsiN+uR7aQpZlH5UsybVKXCFtQtmpAm9um3n4W7bnhqiYEJKF1vvhXhR dW0usX6+tezbqAaZbi+sbCcxLM6aIwx4YpJ7AgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUT9s3x6L/q0kmfrjMIx4g/oQkkgIwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvVDlzM3g2TF9xMGttZnJqTUl4NGdf b1Fra2dJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDATtoMA0G CSqGSIb3DQEBCwUAA4IBAQA5hyJr3rHmJfuoveYc9A0kIqACRpIlfTcLXURSR580 15qxAAlaE5J1ZwcvrsTuRSx2EMz+RVvUpd8y5bwC/i7Aw6+tVJs1aCPofQMb8NCG SuijUXrVTbXMonHL5/1o/qPV5AAIKuU/F1kPIsrg1yCumLln/vtS4xe84RUCBbyI foyBn8VCo+Kz6WR+IqieOG2NDChrxAkzhRUQ3eOPIwr53nZ1pvNZv3Pc/8XTeKPG HER5E1m7cSZl24Dbq1mMsJgLNKoAt++X4PzcGAcVGRJ/TUWqrZCx4hJJ0T46Afpp MbLXu4XsBrY+gl5nEtgJoljPV82iHZMnSduRW+uJOQpf -----END CERTIFICATE-----Generated at Sun Sep 7 23:35:51 2025 by rpki-client