$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/aReV13RkVOlpD1hUZ5Ula9uKiAE.roa File: aReV13RkVOlpD1hUZ5Ula9uKiAE.roa (raw, json) Hash identifier: N4Zmqw6BYMamlZIAvZPtyLWZlCy3RwtvPw2u3/qXa68= Subject key identifier: 69:17:95:D7:74:64:54:E9:69:0F:58:54:67:95:25:6B:DB:8A:88:01 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1A5A Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/aReV13RkVOlpD1hUZ5Ula9uKiAE.roa Signing time: Fri 22 Aug 2025 08:53:59 +0000 ROA not before: Fri 22 Aug 2025 08:53:59 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131627 IP address blocks: 218.210.118.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6746 (0x1a5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:59 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=691795D7746454E9690F58546795256BDB8A8801 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:7b:b0:c4:36:3f:20:77:e8:13:f1:67:b4:ff: a5:2b:d7:16:41:9c:ce:e8:a9:cf:70:36:3a:d8:40: 64:fc:b5:a7:0d:2f:98:d2:3a:2e:3c:e5:40:7f:a8: fb:71:0e:2c:b9:47:c9:88:ef:f1:f5:b9:4d:0f:b5: b1:6e:ba:1b:ba:bb:15:e4:e6:b2:72:cd:7d:69:23: f5:39:89:82:62:a6:c4:af:ce:73:7c:37:27:89:8a: 70:64:ff:10:97:e5:f7:e6:f7:d9:61:a5:a0:7c:c8: 43:e0:df:58:5a:e6:40:80:88:20:b0:07:a4:3e:ea: 10:70:06:01:b2:7e:c3:9d:a5:57:14:4a:e8:33:1c: c0:b7:4e:a0:79:0e:50:00:52:8a:58:f4:fd:16:1e: 3b:b6:05:3c:dd:e8:90:dc:af:9b:ca:e2:d3:d5:34: be:6d:be:9c:62:5a:d7:8f:b4:bd:83:5f:83:9f:93: a6:b4:75:7d:90:e3:29:8e:c1:24:eb:4b:23:99:f2: 66:26:96:33:60:f4:d5:d2:e6:05:9c:9a:78:32:b2: c7:23:a1:8a:d8:e0:db:89:1a:a4:dc:e6:7f:a9:4b: 1f:4b:99:04:ab:ed:0e:30:e9:5e:4b:f1:a4:5a:c1: c5:9c:f1:ce:6b:07:d7:ae:d9:86:d6:a3:0e:c8:ce: 8a:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:17:95:D7:74:64:54:E9:69:0F:58:54:67:95:25:6B:DB:8A:88:01 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/aReV13RkVOlpD1hUZ5Ula9uKiAE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 218.210.118.0/23 Signature Algorithm: sha256WithRSAEncryption 77:cf:98:bd:6b:d7:62:12:51:9b:b3:96:eb:e6:f1:24:1a:7c: 2d:6f:c2:b7:70:e1:18:6e:0a:98:9e:1f:f4:7f:60:9d:10:0a: a3:7e:31:87:73:37:38:39:5d:3b:f8:df:42:b9:d8:58:ca:99: 88:93:5e:26:73:3e:13:65:1b:93:aa:bf:0a:94:bf:29:bf:19: 25:40:ae:c5:65:0a:5b:5e:31:6e:40:47:85:d0:78:16:a9:d7: 66:4e:10:89:fb:bc:6f:23:cf:11:5a:a1:d3:19:3d:9e:e3:16: b4:3c:83:b5:0d:92:f5:bb:8d:f3:95:5c:44:5c:3e:c3:0b:c7: e3:30:45:f1:05:f3:a8:c0:bb:3e:4d:5e:33:36:75:be:8c:d9: 32:30:43:13:a1:61:d8:45:1b:82:9c:10:78:60:c7:e7:64:7b: e2:68:90:fe:f3:42:3d:b9:20:cb:f4:a5:a3:ac:d5:2c:93:3e: 77:b6:54:40:8f:e3:af:e5:a7:df:9b:a5:2c:4f:69:7b:c0:4b: db:1f:92:a1:07:06:5e:5a:dd:c3:69:3c:ff:c4:26:63:b8:83: 3b:71:12:58:ae:06:d9:83:7d:d7:6e:00:dc:ea:a7:40:20:52: e6:92:ce:bf:ac:7f:0b:98:cb:a4:ad:bc:84:92:f1:f0:65:f5: 6b:cf:d3:0e -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGlowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzNTlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDY5MTc5NUQ3NzQ2NDU0 RTk2OTBGNTg1NDY3OTUyNTZCREI4QTg4MDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQe7DENj8gd+gT8We0/6Ur1xZBnM7oqc9wNjrYQGT8tacNL5jS Oi485UB/qPtxDiy5R8mI7/H1uU0PtbFuuhu6uxXk5rJyzX1pI/U5iYJipsSvznN8 NyeJinBk/xCX5ffm99lhpaB8yEPg31ha5kCAiCCwB6Q+6hBwBgGyfsOdpVcUSugz HMC3TqB5DlAAUopY9P0WHju2BTzd6JDcr5vK4tPVNL5tvpxiWtePtL2DX4Ofk6a0 dX2Q4ymOwSTrSyOZ8mYmljNg9NXS5gWcmngysscjoYrY4NuJGqTc5n+pSx9LmQSr 7Q4w6V5L8aRawcWc8c5rB9eu2YbWow7IzopBAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUaReV13RkVOlpD1hUZ5Ula9uKiAEwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvYVJlVjEzUmtWT2xwRDFoVVo1VWxh OXVLaUFFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAdrSdjAN BgkqhkiG9w0BAQsFAAOCAQEAd8+YvWvXYhJRm7OW6+bxJBp8LW/Ct3DhGG4KmJ4f 9H9gnRAKo34xh3M3ODldO/jfQrnYWMqZiJNeJnM+E2Ubk6q/CpS/Kb8ZJUCuxWUK W14xbkBHhdB4FqnXZk4Qifu8byPPEVqh0xk9nuMWtDyDtQ2S9buN85VcRFw+wwvH 4zBF8QXzqMC7Pk1eMzZ1vozZMjBDE6Fh2EUbgpwQeGDH52R74miQ/vNCPbkgy/Sl o6zVLJM+d7ZUQI/jr+Wn35ulLE9pe8BL2x+SoQcGXlrdw2k8/8QmY7iDO3ESWK4G 2YN9124A3OqnQCBS5pLOv6x/C5jLpK28hJLx8GX1a8/TDg== -----END CERTIFICATE-----Generated at Sat Sep 6 13:55:12 2025 by rpki-client