$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/cUjm2QyStacc4V4Djs20AtV0pRs.roa File: cUjm2QyStacc4V4Djs20AtV0pRs.roa (raw, json) Hash identifier: USDEbKJIUSPSKcQVmX7myw55nBG/O41qpYzV6tHn3fU= Subject key identifier: 71:48:E6:D9:0C:92:B5:A7:1C:E1:5E:03:8E:CD:B4:02:D5:74:A5:1B Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 199B Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/cUjm2QyStacc4V4Djs20AtV0pRs.roa Signing time: Fri 22 Aug 2025 08:53:11 +0000 ROA not before: Fri 22 Aug 2025 08:53:11 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9919 IP address blocks: 122.147.0.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 03:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6555 (0x199b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:11 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7148E6D90C92B5A71CE15E038ECDB402D574A51B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e3:cf:54:b1:ba:f9:eb:4e:50:60:0e:0a:ee: 4c:bd:32:8b:dc:e0:c4:01:ef:03:ed:3f:10:cc:0c: 19:66:74:0d:31:91:5c:dd:4d:05:c9:63:8c:43:a3: 04:f1:14:c1:f6:16:ba:82:3a:ec:75:c4:81:c7:17: f6:90:ab:f6:39:84:2c:90:0c:85:be:c5:06:5b:b9: 41:1d:ca:3d:9a:dc:b1:a1:1b:b5:53:f0:1c:63:d4: b8:1e:27:1b:dc:20:69:95:92:fe:23:a3:d6:16:46: de:f1:6d:d6:ac:81:4a:6e:51:5e:fa:b5:24:a6:ab: 3a:c0:72:31:1c:cb:8b:ee:6b:dd:ff:dc:74:a4:6c: c6:06:a3:46:5a:f3:e4:52:5b:ea:ff:83:cc:b0:4c: 71:11:d7:28:94:c6:f4:16:52:f9:76:ed:9d:ab:3d: e5:11:58:3f:0f:11:03:86:96:8e:38:2c:7b:2d:e6: a8:19:8c:df:7c:4c:3b:dd:78:27:43:34:09:65:e7: e6:c0:b3:c4:cf:dd:5a:31:11:ff:85:dd:48:b5:0d: 14:ab:6e:bd:de:44:7f:23:07:8c:bc:ce:35:63:c6: 82:b0:d8:4b:cd:e2:9a:3e:fb:59:8c:24:02:a9:a1: 86:63:11:9d:08:e5:ba:71:a3:5f:62:d8:91:a5:d7: b7:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:48:E6:D9:0C:92:B5:A7:1C:E1:5E:03:8E:CD:B4:02:D5:74:A5:1B X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/cUjm2QyStacc4V4Djs20AtV0pRs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.147.0.0/20 Signature Algorithm: sha256WithRSAEncryption 02:a9:7d:ce:fd:be:a3:8b:24:92:fc:8a:e1:21:d1:30:d8:5a: 4a:9f:02:ee:39:9c:0c:ba:98:df:bd:11:ae:42:5d:22:f0:a0: 61:b7:74:91:6c:f3:00:e9:05:65:92:61:a1:60:2c:47:02:a5: 77:49:7f:0f:51:3f:99:94:24:68:9a:ab:f4:e4:94:ea:f8:25: ba:db:43:99:9b:8c:41:45:d6:c9:8d:16:37:94:c8:2d:5c:bf: be:76:c1:b0:6c:41:db:3d:65:80:ac:38:ff:df:f9:74:c5:1d: e1:58:03:c5:e0:a8:39:c6:18:9d:4c:c7:5e:a3:20:d0:85:86: 86:93:81:82:cf:3b:97:8b:24:d6:b6:47:a1:bd:ac:9d:be:f4: 0f:e0:57:c7:65:fa:97:93:18:59:50:b4:e8:03:31:2e:cf:1a: d7:a1:9f:ed:69:4a:0d:dd:a2:58:77:37:d1:bb:00:46:3f:a9: b9:8c:e0:2d:3d:0c:13:67:40:85:77:5c:71:af:4e:88:cd:7f: 63:10:6c:7f:5c:77:71:ef:30:5f:ec:22:12:67:3a:18:34:48: 94:92:a5:75:b3:67:3c:25:b6:d9:06:e2:35:96:75:94:cd:40: e8:8e:b1:ee:e6:9f:13:43:4c:ea:17:48:38:41:55:ed:6e:0f: 6e:80:48:aa -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGZswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzMTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDcxNDhFNkQ5MEM5MkI1 QTcxQ0UxNUUwMzhFQ0RCNDAyRDU3NEE1MUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDR489Usbr5605QYA4K7ky9Movc4MQB7wPtPxDMDBlmdA0xkVzd TQXJY4xDowTxFMH2FrqCOux1xIHHF/aQq/Y5hCyQDIW+xQZbuUEdyj2a3LGhG7VT 8Bxj1LgeJxvcIGmVkv4jo9YWRt7xbdasgUpuUV76tSSmqzrAcjEcy4vua93/3HSk bMYGo0Za8+RSW+r/g8ywTHER1yiUxvQWUvl27Z2rPeURWD8PEQOGlo44LHst5qgZ jN98TDvdeCdDNAll5+bAs8TP3VoxEf+F3Ui1DRSrbr3eRH8jB4y8zjVjxoKw2EvN 4po++1mMJAKpoYZjEZ0I5bpxo19i2JGl17cxAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUcUjm2QyStacc4V4Djs20AtV0pRswHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvY1VqbTJReVN0YWNjNFY0RGpzMjBB dFYwcFJzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBHqTADAN BgkqhkiG9w0BAQsFAAOCAQEAAql9zv2+o4skkvyK4SHRMNhaSp8C7jmcDLqY370R rkJdIvCgYbd0kWzzAOkFZZJhoWAsRwKld0l/D1E/mZQkaJqr9OSU6vgluttDmZuM QUXWyY0WN5TILVy/vnbBsGxB2z1lgKw4/9/5dMUd4VgDxeCoOcYYnUzHXqMg0IWG hpOBgs87l4sk1rZHob2snb70D+BXx2X6l5MYWVC06AMxLs8a16Gf7WlKDd2iWHc3 0bsARj+puYzgLT0ME2dAhXdcca9OiM1/YxBsf1x3ce8wX+wiEmc6GDRIlJKldbNn PCW22QbiNZZ1lM1A6I6x7uafE0NM6hdIOEFV7W4PboBIqg== -----END CERTIFICATE-----Generated at Sun Sep 7 23:33:27 2025 by rpki-client