$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/ap5C-0s4X_cTjT-iGUfdwRsAEJc.roa File: ap5C-0s4X_cTjT-iGUfdwRsAEJc.roa (raw, json) Hash identifier: /x9yQiiueUUUBxS9sElWdg/nYmiZwMbu67P+/v4NgMQ= Subject key identifier: 6A:9E:42:FB:4B:38:5F:F7:13:8D:3F:A2:19:47:DD:C1:1B:00:10:97 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 19C9 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ap5C-0s4X_cTjT-iGUfdwRsAEJc.roa Signing time: Fri 22 Aug 2025 08:53:22 +0000 ROA not before: Fri 22 Aug 2025 08:53:22 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4780 IP address blocks: 42.0.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6601 (0x19c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:22 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=6A9E42FB4B385FF7138D3FA21947DDC11B001097 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:3c:81:e4:e3:b2:72:04:92:c1:3a:09:dc:a3: 2d:ab:47:cc:c9:b0:66:ec:18:3e:cb:91:c6:f2:ad: 9e:65:73:25:ff:6b:32:f4:53:e3:84:96:a9:59:ab: 54:ad:fe:78:aa:90:2b:e7:1d:67:06:c7:fb:ca:5a: 1f:5d:4d:e6:c8:20:80:f6:17:fc:a7:59:ab:46:11: fe:0f:c4:b7:23:65:0a:11:ac:af:28:60:ce:5e:bf: a6:e7:4c:48:73:06:9d:7a:2d:15:3a:b1:62:36:ea: 62:71:9e:b8:88:5a:de:59:62:1b:f0:28:08:90:18: a5:20:98:ad:ae:81:60:3d:dc:60:5c:44:4c:d5:d1: 4a:d5:bd:b0:97:b1:f5:a8:31:0a:46:af:9a:78:03: 71:f0:f0:57:5b:0a:bb:df:1c:9c:17:55:df:98:b4: 19:35:44:6f:c8:34:0d:3a:ec:3e:5e:e1:46:56:bd: f6:54:bb:b7:bd:fc:d5:61:50:69:a2:e6:b5:f8:b6: 2e:4b:dc:03:3a:f0:5d:d6:6e:12:41:05:39:8c:b9: b4:58:7f:cf:f0:1a:e9:46:9c:4a:a3:5e:f9:20:92: a3:cf:d7:47:a9:6b:24:a8:58:75:79:57:ae:5d:e9: 0e:c8:9a:c4:27:21:7b:99:49:55:b7:e3:8e:69:da: 61:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:9E:42:FB:4B:38:5F:F7:13:8D:3F:A2:19:47:DD:C1:1B:00:10:97 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ap5C-0s4X_cTjT-iGUfdwRsAEJc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 42.0.64.0/18 Signature Algorithm: sha256WithRSAEncryption 2e:92:4d:2e:87:06:ac:30:1b:fa:8f:96:f6:20:a1:dc:6d:62: d4:af:9e:2b:f7:70:d0:ed:92:d2:15:7f:6f:2b:97:98:a1:d3: b4:38:e7:47:05:7e:df:da:7b:01:57:18:17:f3:59:83:79:b0: b5:c0:54:54:24:da:72:5f:9a:dc:4f:6b:cc:99:25:16:48:50: e1:b4:b7:2f:dc:45:6c:5e:98:f9:21:81:f4:4f:82:1f:8b:94: bb:c5:d0:7e:2d:73:e3:ab:e0:75:cc:32:5a:14:a8:f2:fa:b3: 4d:d6:a9:33:d8:59:03:bb:6b:de:5d:c5:ee:26:e0:be:0c:d9: 0d:4d:64:53:f4:ea:c8:e8:79:62:bf:f3:b4:7e:41:af:45:ad: 6a:5b:60:a2:85:9e:a3:c9:fd:a9:b5:71:18:6b:9d:bf:9c:67: 09:f8:49:e2:0d:54:e6:39:e8:86:28:c7:b0:68:f0:4e:9a:9a: b6:55:63:04:04:b2:ac:d3:de:9e:01:28:e2:ff:1b:bb:d3:04: 66:7f:99:3a:1b:d1:cd:ea:03:34:eb:f2:f5:5c:fd:4b:7d:b8: 5a:ca:29:0e:64:77:40:e1:37:3f:40:9a:3f:c5:73:c8:e4:b0: 94:78:36:fd:35:93:00:55:fc:e8:47:28:77:90:e0:60:87:13: 6b:b8:84:9e -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGckwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzMjJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDZBOUU0MkZCNEIzODVG RjcxMzhEM0ZBMjE5NDdEREMxMUIwMDEwOTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJPIHk47JyBJLBOgncoy2rR8zJsGbsGD7LkcbyrZ5lcyX/azL0 U+OElqlZq1St/niqkCvnHWcGx/vKWh9dTebIIID2F/ynWatGEf4PxLcjZQoRrK8o YM5ev6bnTEhzBp16LRU6sWI26mJxnriIWt5ZYhvwKAiQGKUgmK2ugWA93GBcREzV 0UrVvbCXsfWoMQpGr5p4A3Hw8FdbCrvfHJwXVd+YtBk1RG/INA067D5e4UZWvfZU u7e9/NVhUGmi5rX4ti5L3AM68F3WbhJBBTmMubRYf8/wGulGnEqjXvkgkqPP10ep aySoWHV5V65d6Q7ImsQnIXuZSVW3445p2mHxAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUap5C+0s4X/cTjT+iGUfdwRsAEJcwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvYXA1Qy0wczRYX2NUalQtaUdVZmR3 UnNBRUpjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBioAQDAN BgkqhkiG9w0BAQsFAAOCAQEALpJNLocGrDAb+o+W9iCh3G1i1K+eK/dw0O2S0hV/ byuXmKHTtDjnRwV+39p7AVcYF/NZg3mwtcBUVCTacl+a3E9rzJklFkhQ4bS3L9xF bF6Y+SGB9E+CH4uUu8XQfi1z46vgdcwyWhSo8vqzTdapM9hZA7tr3l3F7ibgvgzZ DU1kU/TqyOh5Yr/ztH5Br0WtaltgooWeo8n9qbVxGGudv5xnCfhJ4g1U5jnohijH sGjwTpqatlVjBASyrNPengEo4v8bu9MEZn+ZOhvRzeoDNOvy9Vz9S324WsopDmR3 QOE3P0CaP8VzyOSwlHg2/TWTAFX86Ecod5DgYIcTa7iEng== -----END CERTIFICATE-----Generated at Sat Sep 6 12:06:36 2025 by rpki-client