$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/bsCAxTPCvb8Lzfrlyj3aBX9Fmfw.roa File: bsCAxTPCvb8Lzfrlyj3aBX9Fmfw.roa (raw, json) Hash identifier: LrVCs5qayTHkY3nJ6WYzyI9r13sTDKVY8b5MDR6Ueqw= Subject key identifier: 6E:C0:80:C5:33:C2:BD:BF:0B:CD:FA:E5:CA:3D:DA:05:7F:45:99:FC Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1989 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/bsCAxTPCvb8Lzfrlyj3aBX9Fmfw.roa Signing time: Fri 22 Aug 2025 08:53:05 +0000 ROA not before: Fri 22 Aug 2025 08:53:05 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9919 IP address blocks: 106.105.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 03:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6537 (0x1989) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:05 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=6EC080C533C2BDBF0BCDFAE5CA3DDA057F4599FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:0f:ca:a1:df:25:46:03:01:c3:ed:0b:a9:ea: ae:fa:88:da:b9:02:75:1a:d6:72:25:6d:76:00:64: 37:73:2b:dc:42:08:3d:f2:37:8a:d1:7a:29:7b:6c: eb:38:fc:3e:29:b0:3e:d5:09:0e:6f:28:99:fd:7e: 21:29:74:c5:51:d9:a6:9e:59:c7:b8:9c:cd:37:de: 0c:8c:25:80:8b:e0:e3:6f:e6:28:f5:b8:c5:d9:9f: f1:7c:2a:27:1d:46:a3:00:bb:85:45:e3:da:31:83: 02:17:5b:3a:d9:a2:9f:c2:d3:60:aa:f4:8b:1e:a4: c3:f2:6b:06:84:bb:1b:a0:a5:15:06:ee:d4:6f:4e: 6b:4b:79:ca:07:c6:16:f0:ee:4d:96:46:2f:ff:2b: 8d:38:cf:17:73:11:8a:05:a5:4c:50:b7:72:2d:d9: 4c:bc:47:16:a6:b3:b9:51:0c:55:e0:34:68:16:a4: ab:ae:ef:c1:e3:81:12:8a:a0:76:56:4e:fa:eb:3d: c9:21:d9:98:a6:fb:f4:07:9d:5e:0e:e0:e5:75:ef: f6:23:72:df:21:44:8e:ea:01:24:16:1e:02:71:f1: bc:be:87:b3:ab:8c:ce:08:72:b3:6c:59:95:8f:18: a2:86:7e:6e:d1:67:80:0f:0a:78:17:a7:66:ce:67: 6b:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:C0:80:C5:33:C2:BD:BF:0B:CD:FA:E5:CA:3D:DA:05:7F:45:99:FC X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/bsCAxTPCvb8Lzfrlyj3aBX9Fmfw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.105.32.0/19 Signature Algorithm: sha256WithRSAEncryption 5a:68:7b:a9:16:24:5d:1e:c2:4a:52:cf:07:04:c3:af:78:3f: d6:b6:7e:14:ca:26:cf:da:14:69:36:6d:7c:fd:ca:b7:44:93: 3e:df:59:77:a8:ad:a3:3e:23:55:56:2e:d5:e2:e6:b6:3a:da: c8:d0:5b:44:4f:09:c3:10:fe:36:d4:96:ed:50:0f:28:b4:22: 97:e2:89:b6:4e:44:33:2a:3c:5d:e5:34:24:b9:07:8d:70:3b: b0:69:a8:18:82:7a:8f:da:a9:67:b5:cc:96:27:9e:09:c5:51: f0:a3:1a:a1:30:0b:a0:9a:dc:c4:c4:25:dc:15:3b:af:bf:b1: 40:b8:87:ce:8f:33:4a:4c:9a:45:64:c0:f8:96:b4:29:3b:50: c4:9e:47:e4:93:86:d1:21:c7:a1:d2:9b:f1:b4:de:56:b2:b7: 04:bf:e6:b2:f2:6d:5b:f7:37:31:0c:e0:88:e7:43:b6:8c:09: 0b:3d:a2:76:3f:11:db:d8:48:15:ec:a7:af:e7:0b:57:ba:e1: 6c:8c:53:08:09:6c:8d:3e:31:8c:19:e1:d4:51:55:28:2e:19: c7:16:c9:7b:55:a3:af:6d:57:39:cd:ac:87:f3:1e:38:68:2d: 1b:0a:ab:dd:8d:5e:6e:42:ff:27:67:f8:1c:e1:b6:f3:ff:39: 55:ab:0f:3b -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGYkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzMDVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDZFQzA4MEM1MzNDMkJE QkYwQkNERkFFNUNBM0REQTA1N0Y0NTk5RkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWD8qh3yVGAwHD7Qup6q76iNq5AnUa1nIlbXYAZDdzK9xCCD3y N4rReil7bOs4/D4psD7VCQ5vKJn9fiEpdMVR2aaeWce4nM033gyMJYCL4ONv5ij1 uMXZn/F8KicdRqMAu4VF49oxgwIXWzrZop/C02Cq9IsepMPyawaEuxugpRUG7tRv TmtLecoHxhbw7k2WRi//K404zxdzEYoFpUxQt3It2Uy8Rxams7lRDFXgNGgWpKuu 78HjgRKKoHZWTvrrPckh2Zim+/QHnV4O4OV17/Yjct8hRI7qASQWHgJx8by+h7Or jM4IcrNsWZWPGKKGfm7RZ4APCngXp2bOZ2uFAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUbsCAxTPCvb8Lzfrlyj3aBX9FmfwwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvYnNDQXhUUEN2YjhMemZybHlqM2FC WDlGbWZ3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBWppIDAN BgkqhkiG9w0BAQsFAAOCAQEAWmh7qRYkXR7CSlLPBwTDr3g/1rZ+FMomz9oUaTZt fP3Kt0STPt9Zd6itoz4jVVYu1eLmtjrayNBbRE8JwxD+NtSW7VAPKLQil+KJtk5E Myo8XeU0JLkHjXA7sGmoGIJ6j9qpZ7XMlieeCcVR8KMaoTALoJrcxMQl3BU7r7+x QLiHzo8zSkyaRWTA+Ja0KTtQxJ5H5JOG0SHHodKb8bTeVrK3BL/msvJtW/c3MQzg iOdDtowJCz2idj8R29hIFeynr+cLV7rhbIxTCAlsjT4xjBnh1FFVKC4ZxxbJe1Wj r21XOc2sh/MeOGgtGwqr3Y1ebkL/J2f4HOG28/85VasPOw== -----END CERTIFICATE-----Generated at Sun Sep 7 23:34:17 2025 by rpki-client