$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/bHLGgZ9prPXqrX5eW1K8iyaE9qU.roa File: bHLGgZ9prPXqrX5eW1K8iyaE9qU.roa (raw, json) Hash identifier: qk+E3weaVmYS6y05x7sVOuaIW10mq6tkliQ6IiMH1So= Subject key identifier: 6C:72:C6:81:9F:69:AC:F5:EA:AD:7E:5E:5B:52:BC:8B:26:84:F6:A5 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1A76 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/bHLGgZ9prPXqrX5eW1K8iyaE9qU.roa Signing time: Fri 22 Aug 2025 08:54:06 +0000 ROA not before: Fri 22 Aug 2025 08:54:06 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4780 IP address blocks: 211.74.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6774 (0x1a76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:54:06 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=6C72C6819F69ACF5EAAD7E5E5B52BC8B2684F6A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:85:2d:07:d6:df:e0:4a:90:5c:85:cd:66:86: bb:9c:5d:42:49:b1:ef:41:f5:90:fd:cb:42:05:c0: 29:cc:00:f7:54:6a:7b:f5:66:37:f0:c3:9f:6b:25: 14:b8:e8:17:f1:fc:59:d6:7e:46:0f:9e:14:2b:1c: 7f:84:08:ae:07:72:ef:46:2e:b2:d4:d7:2c:ce:e3: 4a:dc:06:0c:8f:89:67:75:a8:d8:3c:d5:54:87:75: 7a:af:50:0e:4b:00:58:f5:f2:30:38:22:62:52:c9: 37:76:fe:d7:8b:ce:9b:43:32:ba:dd:46:83:90:29: 45:2d:3d:5e:be:40:a3:d3:e2:48:2a:60:20:d6:4a: bd:85:f1:94:01:83:67:43:16:27:8e:2c:8e:ed:7b: ac:a1:7d:5a:98:75:e2:3b:ae:84:e9:90:17:a6:a4: 2d:65:56:46:a5:ea:36:82:51:15:21:80:61:39:18: 57:9d:90:02:9f:62:7e:a4:76:65:8d:8a:d4:5f:a6: 0a:0c:c9:be:d2:76:fc:2f:30:1b:bb:b6:d2:82:c4: 8d:c9:2e:db:4c:65:64:78:f2:fe:bc:b1:bc:5c:4e: d1:a4:80:67:5c:92:3c:d8:9e:52:38:a3:a2:1c:92: b6:1b:92:bb:c9:3d:9c:56:e7:10:2a:d1:dc:43:53: 88:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:72:C6:81:9F:69:AC:F5:EA:AD:7E:5E:5B:52:BC:8B:26:84:F6:A5 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/bHLGgZ9prPXqrX5eW1K8iyaE9qU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.74.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9a:d7:18:a3:4e:20:16:57:bc:93:1b:ba:c4:61:b9:e2:57:97: 3b:2b:90:9f:89:11:ec:b6:82:0b:f7:71:a8:dc:69:0e:31:ef: 9f:f2:03:23:20:7b:65:b6:6e:66:26:95:74:09:8b:1b:68:8b: cd:c7:a9:fc:b7:bf:bb:b0:99:b0:02:2e:af:00:f3:fa:60:cc: 3b:59:2d:48:04:08:68:6f:b4:73:b5:a6:a6:5e:7d:fa:4a:28: be:3f:0f:2b:58:f5:41:b3:f2:89:00:57:4c:66:02:05:59:18: 2f:33:cb:6f:c9:0f:0e:00:b9:00:70:c1:8f:77:31:57:25:1f: c7:23:73:1d:9b:1a:43:11:24:45:30:b2:79:20:ee:af:d5:7e: 5f:58:85:10:45:35:56:8d:66:cc:1d:08:1a:c3:f1:da:ff:bc: c7:71:11:1e:c5:52:f5:20:89:af:93:c8:9f:37:2a:25:3c:aa: ad:6f:0f:af:b6:85:9d:5d:75:56:db:da:13:70:43:8e:f4:27: 5b:86:44:d6:ed:0f:bd:c2:53:4f:18:61:67:30:5d:64:d7:95: 70:34:f0:c6:45:3c:bd:ab:29:1e:b0:a2:9a:33:dd:d3:22:f5: c8:ca:be:ec:cf:a2:ca:33:60:23:a7:87:00:00:3d:c2:8a:83: d0:81:e6:89 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICGnYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODU0MDZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDZDNzJDNjgxOUY2OUFD RjVFQUFEN0U1RTVCNTJCQzhCMjY4NEY2QTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4hS0H1t/gSpBchc1mhrucXUJJse9B9ZD9y0IFwCnMAPdUanv1 Zjfww59rJRS46Bfx/FnWfkYPnhQrHH+ECK4Hcu9GLrLU1yzO40rcBgyPiWd1qNg8 1VSHdXqvUA5LAFj18jA4ImJSyTd2/teLzptDMrrdRoOQKUUtPV6+QKPT4kgqYCDW Sr2F8ZQBg2dDFieOLI7te6yhfVqYdeI7roTpkBempC1lVkal6jaCURUhgGE5GFed kAKfYn6kdmWNitRfpgoMyb7SdvwvMBu7ttKCxI3JLttMZWR48v68sbxcTtGkgGdc kjzYnlI4o6IckrYbkrvJPZxW5xAq0dxDU4i/AgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUbHLGgZ9prPXqrX5eW1K8iyaE9qUwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvYkhMR2daOXByUFhxclg1ZVcxSzhp eWFFOXFVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDANNKMA0G CSqGSIb3DQEBCwUAA4IBAQCa1xijTiAWV7yTG7rEYbniV5c7K5CfiRHstoIL93Go 3GkOMe+f8gMjIHtltm5mJpV0CYsbaIvNx6n8t7+7sJmwAi6vAPP6YMw7WS1IBAho b7RztaamXn36Sii+Pw8rWPVBs/KJAFdMZgIFWRgvM8tvyQ8OALkAcMGPdzFXJR/H I3MdmxpDESRFMLJ5IO6v1X5fWIUQRTVWjWbMHQgaw/Ha/7zHcREexVL1IImvk8if NyolPKqtbw+vtoWdXXVW29oTcEOO9CdbhkTW7Q+9wlNPGGFnMF1k15VwNPDGRTy9 qykesKKaM93TIvXIyr7sz6LKM2Ajp4cAAD3CioPQgeaJ -----END CERTIFICATE-----Generated at Sat Sep 6 12:07:46 2025 by rpki-client