$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Z0toCEb6UuOKP03-KhkDm9i26yg.roa File: Z0toCEb6UuOKP03-KhkDm9i26yg.roa (raw, json) Hash identifier: u0Q4YCMEXfUH8kpZdi/V70a7Xmt4R3advbIAOEDGl3o= Subject key identifier: 67:4B:68:08:46:FA:52:E3:8A:3F:4D:FE:2A:19:03:9B:D8:B6:EB:28 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1A4B Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Z0toCEb6UuOKP03-KhkDm9i26yg.roa Signing time: Fri 22 Aug 2025 08:53:55 +0000 ROA not before: Fri 22 Aug 2025 08:53:55 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4780 IP address blocks: 123.204.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6731 (0x1a4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:55 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=674B680846FA52E38A3F4DFE2A19039BD8B6EB28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:77:4d:85:d7:17:5b:ee:8e:43:bc:df:6f:02: 8a:84:0e:82:b6:fa:96:ad:8d:44:f1:a2:10:38:f1: b0:ba:6b:25:34:49:78:3a:4c:30:c9:7c:f1:65:30: c5:f1:a7:b4:d0:36:7a:0c:5b:e3:0e:5d:6e:8b:6d: 36:aa:32:ba:58:0b:e0:69:ba:b7:7e:ec:87:ea:c5: a0:ab:b3:33:7f:16:ea:df:e2:6f:8d:bf:18:e9:fd: 4e:ca:d2:20:f8:82:e4:da:3a:19:17:60:b4:97:a5: e8:96:89:b4:40:8b:a3:2e:59:88:a8:3b:b7:33:28: 1b:85:ea:dc:5c:7d:47:79:e2:9a:a0:bc:3e:ce:6e: bc:ae:b1:05:b0:6e:b5:e8:ca:fb:cc:ae:d8:e2:ef: 2c:16:c8:21:8c:74:30:e6:fb:40:96:f2:9b:9e:0c: f0:fb:73:ce:30:a6:50:3c:3e:75:00:a3:7b:ff:5d: eb:c4:b5:76:b5:2a:49:e2:aa:b0:b8:0e:dd:65:5b: ea:a5:a7:23:5b:f0:d5:af:78:77:a7:d3:53:62:b1: 16:3e:21:15:30:f1:5e:c2:dd:97:ef:4f:04:20:f6: d3:21:dd:f5:c1:22:53:d4:f4:ce:a9:63:e3:45:d5: 74:e6:97:3f:64:2e:63:11:d2:d5:e5:0a:a1:32:5a: dc:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:4B:68:08:46:FA:52:E3:8A:3F:4D:FE:2A:19:03:9B:D8:B6:EB:28 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Z0toCEb6UuOKP03-KhkDm9i26yg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.204.0.0/15 Signature Algorithm: sha256WithRSAEncryption c0:dc:bc:b8:ca:c7:15:12:9a:85:06:3f:b3:a6:8d:02:5e:44: 6a:56:1a:e5:20:4a:1d:ec:5c:18:3d:bd:65:28:34:a1:e3:8f: 8a:ed:f1:69:be:1a:50:97:db:a2:90:17:da:10:6c:a4:6a:b1: 09:ed:51:f9:5f:e6:22:1d:0a:6e:9d:7f:ab:ac:29:a7:bf:1b: 34:77:3c:46:03:2e:fe:c1:d5:1b:9e:ab:1c:d2:a4:fa:79:d5: a3:ca:1e:b3:d9:a4:37:dd:10:23:05:60:69:4c:32:3f:8a:24: d5:76:d8:8d:47:6a:cb:df:e5:32:cd:fa:c1:b1:ef:ae:79:ec: c0:b4:00:7d:45:36:b8:7c:ed:88:6d:3e:e4:8d:f4:29:88:d6: c5:a9:74:29:55:d7:53:79:95:0a:be:d4:18:cb:26:b5:a8:5e: ea:04:c9:b0:2d:9c:26:3d:05:b1:33:56:80:97:aa:aa:0a:5c: e7:3e:07:3c:9a:31:93:53:84:c6:cb:dc:3c:79:63:44:c3:87: 7f:6d:6e:62:fa:d5:5d:53:6d:0d:1e:5b:89:d1:43:bc:e7:d4: 10:f1:8b:35:f5:27:7a:fb:e1:d0:64:7c:d3:ec:71:c5:19:02: f3:9d:a7:0c:dc:a3:3f:23:a3:64:97:66:5b:70:5d:9c:e2:a4: a5:d8:49:02 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICGkswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzNTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDY3NEI2ODA4NDZGQTUy RTM4QTNGNERGRTJBMTkwMzlCRDhCNkVCMjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0d02F1xdb7o5DvN9vAoqEDoK2+patjUTxohA48bC6ayU0SXg6 TDDJfPFlMMXxp7TQNnoMW+MOXW6LbTaqMrpYC+Bpurd+7IfqxaCrszN/Furf4m+N vxjp/U7K0iD4guTaOhkXYLSXpeiWibRAi6MuWYioO7czKBuF6txcfUd54pqgvD7O bryusQWwbrXoyvvMrtji7ywWyCGMdDDm+0CW8pueDPD7c84wplA8PnUAo3v/XevE tXa1KkniqrC4Dt1lW+qlpyNb8NWveHen01NisRY+IRUw8V7C3ZfvTwQg9tMh3fXB IlPU9M6pY+NF1XTmlz9kLmMR0tXlCqEyWtzTAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUZ0toCEb6UuOKP03+KhkDm9i26ygwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvWjB0b0NFYjZVdU9LUDAzLUtoa0Rt OWkyNnlnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAXvMMA0G CSqGSIb3DQEBCwUAA4IBAQDA3Ly4yscVEpqFBj+zpo0CXkRqVhrlIEod7FwYPb1l KDSh44+K7fFpvhpQl9uikBfaEGykarEJ7VH5X+YiHQpunX+rrCmnvxs0dzxGAy7+ wdUbnqsc0qT6edWjyh6z2aQ33RAjBWBpTDI/iiTVdtiNR2rL3+UyzfrBse+ueezA tAB9RTa4fO2IbT7kjfQpiNbFqXQpVddTeZUKvtQYyya1qF7qBMmwLZwmPQWxM1aA l6qqClznPgc8mjGTU4TGy9w8eWNEw4d/bW5i+tVdU20NHluJ0UO859QQ8Ys19Sd6 ++HQZHzT7HHFGQLznacM3KM/I6Nkl2ZbcF2c4qSl2EkC -----END CERTIFICATE-----Generated at Sat Sep 6 12:07:53 2025 by rpki-client