$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/YUbzlTMOucTx-FzDnyAzZ98iWvA.roa File: YUbzlTMOucTx-FzDnyAzZ98iWvA.roa (raw, json) Hash identifier: bihNhV3xWRMqWetpjSEed45sPBtq/IvR/5si6b9Yxg4= Subject key identifier: 61:46:F3:95:33:0E:B9:C4:F1:F8:5C:C3:9F:20:33:67:DF:22:5A:F0 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1A59 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/YUbzlTMOucTx-FzDnyAzZ98iWvA.roa Signing time: Fri 22 Aug 2025 08:53:59 +0000 ROA not before: Fri 22 Aug 2025 08:53:59 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9919 IP address blocks: 175.183.138.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 03:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6745 (0x1a59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:59 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=6146F395330EB9C4F1F85CC39F203367DF225AF0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:79:73:e9:44:0b:bf:96:73:7b:73:3c:80:03: f9:94:12:50:dc:bb:48:e5:e4:58:86:ab:af:a3:b9: cd:33:3b:8a:1a:53:66:ba:e7:71:ce:4f:f7:8f:a3: 36:73:43:26:ef:0f:c7:6f:fb:a8:1a:c4:36:c8:a3: 0e:5b:dd:7c:48:09:e6:57:41:19:ed:51:25:c9:c0: b6:32:b7:7e:eb:4b:41:eb:5b:9b:38:da:6f:27:d0: 5d:db:80:bf:1d:b5:c8:ab:32:bb:70:07:e6:e6:76: fa:ae:22:8f:72:70:08:6f:d1:7a:c7:69:7c:6a:c8: 5e:7a:78:46:f7:bb:80:bd:c1:5d:71:34:64:f1:c0: 73:c6:99:ce:a2:cd:ea:cf:0e:fa:47:10:ab:8a:b1: e8:df:df:e9:90:9d:15:d6:b3:a7:08:13:d5:06:43: 86:c9:be:1a:81:c6:9b:1a:41:74:b6:09:cb:48:84: a2:ed:7a:7c:00:a9:00:71:ac:8c:41:6c:30:12:6a: 40:b8:59:9b:04:b0:23:da:f3:89:7d:de:b6:d9:11: 6d:ba:43:37:02:18:6c:02:d3:eb:3a:e4:ca:a5:e6: d7:16:53:07:ed:db:e9:ff:7c:ab:c8:3c:e3:26:6c: a5:9d:59:37:9c:79:99:d1:65:93:82:43:ed:82:f8: e6:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:46:F3:95:33:0E:B9:C4:F1:F8:5C:C3:9F:20:33:67:DF:22:5A:F0 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/YUbzlTMOucTx-FzDnyAzZ98iWvA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 175.183.138.0/23 Signature Algorithm: sha256WithRSAEncryption 4d:e5:f5:6d:b3:b7:4d:b1:42:26:ae:f8:d7:87:67:a5:83:cc: a0:e3:d9:38:ef:d0:92:7f:89:40:5f:b5:56:d7:ff:45:c9:50: df:19:dd:4e:3d:a1:bf:56:04:e1:9f:a3:3b:9c:04:f5:65:26: db:43:14:50:c6:e3:d0:60:93:3d:f9:b0:24:cc:b9:e8:6a:fb: 36:a6:33:55:05:43:07:4a:5d:49:ff:ac:82:3e:89:2e:3e:74: de:bf:2d:ff:e6:d9:96:01:82:eb:9d:53:e9:6d:30:20:71:01: e0:22:38:ce:75:55:d7:f4:5c:a4:32:d4:cb:92:22:a8:cb:08: 98:35:02:9f:45:c2:19:e2:7d:a0:eb:67:87:47:a4:88:56:be: bc:4c:12:e3:74:b0:6e:83:93:94:de:f6:9d:04:2f:ca:07:47: 96:d9:cc:a8:61:09:b3:20:e3:2c:45:11:0a:30:e3:0e:36:1e: 24:d8:58:a4:28:f2:d0:94:50:0c:95:2d:1a:a9:73:55:0a:f9: 2a:b1:ab:f3:74:b2:69:63:5f:6a:fb:84:aa:e7:25:53:14:c8: 25:35:e8:42:21:42:3d:74:86:94:ba:33:b7:f6:52:7d:1f:73: 18:94:d2:01:f3:bc:18:06:2b:68:03:ec:2b:9f:39:96:92:ac: a7:0c:8a:9c -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGlkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzNTlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDYxNDZGMzk1MzMwRUI5 QzRGMUY4NUNDMzlGMjAzMzY3REYyMjVBRjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9eXPpRAu/lnN7czyAA/mUElDcu0jl5FiGq6+juc0zO4oaU2a6 53HOT/ePozZzQybvD8dv+6gaxDbIow5b3XxICeZXQRntUSXJwLYyt37rS0HrW5s4 2m8n0F3bgL8dtcirMrtwB+bmdvquIo9ycAhv0XrHaXxqyF56eEb3u4C9wV1xNGTx wHPGmc6izerPDvpHEKuKsejf3+mQnRXWs6cIE9UGQ4bJvhqBxpsaQXS2CctIhKLt enwAqQBxrIxBbDASakC4WZsEsCPa84l93rbZEW26QzcCGGwC0+s65Mql5tcWUwft 2+n/fKvIPOMmbKWdWTeceZnRZZOCQ+2C+OZDAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUYUbzlTMOucTx+FzDnyAzZ98iWvAwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvWVViemxUTU91Y1R4LUZ6RG55QXpa OThpV3ZBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAa+3ijAN BgkqhkiG9w0BAQsFAAOCAQEATeX1bbO3TbFCJq7414dnpYPMoOPZOO/Qkn+JQF+1 Vtf/RclQ3xndTj2hv1YE4Z+jO5wE9WUm20MUUMbj0GCTPfmwJMy56Gr7NqYzVQVD B0pdSf+sgj6JLj503r8t/+bZlgGC651T6W0wIHEB4CI4znVV1/RcpDLUy5IiqMsI mDUCn0XCGeJ9oOtnh0ekiFa+vEwS43SwboOTlN72nQQvygdHltnMqGEJsyDjLEUR CjDjDjYeJNhYpCjy0JRQDJUtGqlzVQr5KrGr83SyaWNfavuEquclUxTIJTXoQiFC PXSGlLozt/ZSfR9zGJTSAfO8GAYraAPsK585lpKspwyKnA== -----END CERTIFICATE-----Generated at Sun Sep 7 23:36:14 2025 by rpki-client