$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/WBYH4hDfsxODRqNLAwLM122A4c0.roa File: WBYH4hDfsxODRqNLAwLM122A4c0.roa (raw, json) Hash identifier: xE1vxVj+hyk/d6yIP6X52HAR+xCpFTIpeHh9eptR1+w= Subject key identifier: 58:16:07:E2:10:DF:B3:13:83:46:A3:4B:03:02:CC:D7:6D:80:E1:CD Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1ACB Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/WBYH4hDfsxODRqNLAwLM122A4c0.roa Signing time: Wed 27 Aug 2025 09:21:02 +0000 ROA not before: Wed 27 Aug 2025 09:21:02 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9922 IP address blocks: 61.61.152.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6859 (0x1acb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 27 09:21:02 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=581607E210DFB3138346A34B0302CCD76D80E1CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d5:4d:42:f7:e0:e6:f1:ad:b2:dd:3c:93:f2: f5:fa:56:3f:83:70:8a:a7:ab:0c:dd:d5:30:a5:18: 54:8e:da:4d:4c:c2:42:6c:d8:69:19:38:58:cf:30: 97:d4:ce:83:3a:0f:d1:0b:f2:0d:97:43:b1:b2:e8: 41:3a:74:a1:e6:42:8c:c9:00:80:64:a4:ac:45:6c: e6:17:77:1d:ce:e2:8a:21:04:17:a7:dc:d7:e5:f9: 8a:29:24:69:c5:5a:0b:b8:9b:b6:d3:df:2c:14:c4: 12:be:c4:03:5a:2c:a0:1e:20:59:bb:0f:34:a1:52: 83:22:2a:8e:c8:ef:33:d7:53:98:4a:05:f8:ea:bd: 05:82:b4:2c:8f:77:0a:cc:de:a3:00:ca:8d:85:25: c3:6c:a6:d6:9e:fc:e6:b2:4a:bc:a3:9a:0f:8f:97: 2a:22:8b:8f:5c:72:13:63:9a:16:2f:fb:b8:e6:25: 25:74:57:37:ef:cd:66:8a:40:87:bd:91:30:81:c8: 93:fb:01:f8:66:5b:39:d3:04:28:f6:b5:15:16:e3: 72:51:18:9e:a1:80:5e:67:b0:fc:a9:6d:0e:d3:ea: 8f:91:58:d0:10:70:9b:f7:6f:86:c3:00:92:2e:df: 3f:95:e4:b1:3a:f3:c1:59:b0:2b:fb:1d:03:d1:c3: b2:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:16:07:E2:10:DF:B3:13:83:46:A3:4B:03:02:CC:D7:6D:80:E1:CD X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/WBYH4hDfsxODRqNLAwLM122A4c0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.152.0/22 Signature Algorithm: sha256WithRSAEncryption af:53:b5:27:95:e4:ae:cc:14:ef:2a:61:f8:80:bc:f6:04:0f: 7d:54:67:1a:c5:58:75:72:bb:5d:44:33:ba:6e:eb:c0:7d:2e: d8:12:4d:d4:c1:44:a6:c8:be:30:a2:ee:7e:c8:99:09:96:c6: c4:c8:ce:86:f1:b0:72:39:7e:c7:8b:6d:9a:d4:57:92:07:1b: ee:ad:93:3a:07:b2:f5:55:57:18:c2:9d:bb:f2:e7:39:72:a0: 41:47:76:38:5a:d7:f5:c7:8c:87:c4:00:89:27:da:58:0a:f7: 0d:31:05:27:04:e0:7a:1e:54:8c:2a:b1:ad:b0:d6:d4:86:b6: 81:37:2d:9f:f5:bc:70:80:75:49:ed:07:d7:03:88:9f:6c:a7: d3:65:6c:7d:34:e9:cd:4e:88:30:dd:a6:ff:5a:4e:d4:7a:58: 20:75:5d:54:04:67:05:b7:71:be:c2:a9:30:d3:f9:2c:c5:dd: cb:7b:5b:d4:74:fd:c0:6b:82:9b:99:09:30:37:df:92:2f:39: 6a:82:48:3a:3e:48:d7:5b:ef:81:43:c8:0d:1d:fd:80:a5:98: 79:a4:c2:df:f9:9b:f1:1f:42:66:68:71:77:0c:7e:11:92:4f: 67:95:04:b9:71:73:54:69:21:bc:98:ab:18:c1:3a:0f:c1:5b: 4d:e6:ac:a9 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGsswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4Mjcw OTIxMDJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDU4MTYwN0UyMTBERkIz MTM4MzQ2QTM0QjAzMDJDQ0Q3NkQ4MEUxQ0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCp1U1C9+Dm8a2y3TyT8vX6Vj+DcIqnqwzd1TClGFSO2k1MwkJs 2GkZOFjPMJfUzoM6D9EL8g2XQ7Gy6EE6dKHmQozJAIBkpKxFbOYXdx3O4oohBBen 3Nfl+YopJGnFWgu4m7bT3ywUxBK+xANaLKAeIFm7DzShUoMiKo7I7zPXU5hKBfjq vQWCtCyPdwrM3qMAyo2FJcNsptae/OaySryjmg+Plyoii49cchNjmhYv+7jmJSV0 VzfvzWaKQIe9kTCByJP7AfhmWznTBCj2tRUW43JRGJ6hgF5nsPypbQ7T6o+RWNAQ cJv3b4bDAJIu3z+V5LE688FZsCv7HQPRw7IpAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUWBYH4hDfsxODRqNLAwLM122A4c0wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvV0JZSDRoRGZzeE9EUnFOTEF3TE0x MjJBNGMwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAj09mDAN BgkqhkiG9w0BAQsFAAOCAQEAr1O1J5XkrswU7yph+IC89gQPfVRnGsVYdXK7XUQz um7rwH0u2BJN1MFEpsi+MKLufsiZCZbGxMjOhvGwcjl+x4ttmtRXkgcb7q2TOgey 9VVXGMKdu/LnOXKgQUd2OFrX9ceMh8QAiSfaWAr3DTEFJwTgeh5UjCqxrbDW1Ia2 gTctn/W8cIB1Se0H1wOIn2yn02VsfTTpzU6IMN2m/1pO1HpYIHVdVARnBbdxvsKp MNP5LMXdy3tb1HT9wGuCm5kJMDffki85aoJIOj5I11vvgUPIDR39gKWYeaTC3/mb 8R9CZmhxdwx+EZJPZ5UEuXFzVGkhvJirGME6D8FbTeasqQ== -----END CERTIFICATE-----Generated at Sat Sep 6 11:56:20 2025 by rpki-client