$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/ccjFdfAgJ29qCosZb_iONqg6gkQ.roa File: ccjFdfAgJ29qCosZb_iONqg6gkQ.roa (raw, json) Hash identifier: kM6ur8omXC3MKZyf4VkVZArU2DH4h7pN2evKJiLX3z4= Subject key identifier: 71:C8:C5:75:F0:20:27:6F:6A:0A:8B:19:6F:F8:8E:36:A8:3A:82:44 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1A2C Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ccjFdfAgJ29qCosZb_iONqg6gkQ.roa Signing time: Fri 22 Aug 2025 08:53:48 +0000 ROA not before: Fri 22 Aug 2025 08:53:48 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4780 IP address blocks: 175.183.136.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6700 (0x1a2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:48 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=71C8C575F020276F6A0A8B196FF88E36A83A8244 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:28:e6:60:ad:fd:b6:37:1f:47:ec:71:e0:b3: 86:ac:99:9c:6b:d2:ba:6c:f1:d6:09:28:be:9a:6e: 5d:26:2f:50:dd:1d:a6:01:6b:90:63:47:af:63:8f: f5:aa:d9:19:1c:d1:7f:b1:db:f1:00:ba:96:f2:77: dd:33:ac:92:c5:98:e2:22:5c:ce:69:b6:b5:f4:00: 8c:e6:62:58:71:13:a5:45:98:91:91:ec:41:f2:a2: 0a:8a:27:d1:c5:b5:d6:f4:70:71:56:63:76:f9:7e: ab:6d:5b:30:4a:92:66:8a:3c:eb:72:83:e2:9d:b8: df:f2:24:3d:cc:34:57:f0:89:d1:6c:f9:32:87:0f: aa:3b:48:2b:58:8f:3c:4a:ec:31:0e:05:f9:87:f1: b1:8a:ea:f4:ca:ae:e7:cd:cb:c7:97:67:b5:45:31: 21:78:7e:56:1c:c7:91:95:3b:d0:8d:11:56:7b:e1: ad:f3:c3:3a:8b:6a:99:17:32:8a:71:17:85:a8:bc: 91:e7:f4:df:0f:de:cb:2d:39:e2:f4:8f:a8:d6:3b: 5e:cf:5f:9f:10:2c:6b:a5:a3:bb:05:91:87:37:55: 8b:18:39:79:72:b9:dc:dc:97:3b:c4:c4:54:68:59: 2e:1f:f0:15:8a:1a:a2:32:52:4d:ba:36:51:14:f6: 39:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:C8:C5:75:F0:20:27:6F:6A:0A:8B:19:6F:F8:8E:36:A8:3A:82:44 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ccjFdfAgJ29qCosZb_iONqg6gkQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 175.183.136.0/23 Signature Algorithm: sha256WithRSAEncryption 43:c6:87:d4:50:92:1a:14:8a:fe:55:d8:ab:87:9f:7d:9a:e7: 56:b1:2b:27:12:23:aa:2e:77:ca:52:8f:9d:70:00:dd:f7:40: cc:02:8a:44:44:27:c8:09:33:1e:e9:eb:6f:37:6f:63:84:a9: 53:97:8f:14:5d:5d:da:3d:ee:6d:26:09:79:62:91:c4:98:06: 90:e7:e3:2e:f3:62:3e:6f:33:0f:9c:6c:80:a6:13:78:cd:bb: 7c:55:f6:46:0a:e0:82:ba:13:60:80:8d:2a:cc:a4:f3:9f:44: 5d:85:c5:4f:43:40:08:e2:0f:6e:2a:5b:92:b9:3c:f5:16:f1: 8b:35:72:a0:d9:66:41:98:3c:73:47:44:f2:b9:2d:34:44:a3: 73:46:d4:ed:52:af:44:0f:35:b5:04:83:0b:53:8a:56:30:fe: b2:3a:dd:3d:ce:56:fa:d8:a1:df:fa:89:ad:4a:ad:96:2f:76: 92:ce:ed:84:6d:47:d2:ec:5c:a4:0b:99:fc:ee:d6:65:56:68: 40:d0:e3:41:a6:b8:e8:7e:39:b8:76:2d:ab:ae:53:be:ee:c7: 1e:6d:99:70:69:a9:06:b8:73:8b:a6:b3:f3:64:74:2a:f4:24: 02:db:30:a9:43:53:4b:be:7f:43:9c:11:d6:61:f8:3d:55:10: 63:1a:45:55 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGiwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzNDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDcxQzhDNTc1RjAyMDI3 NkY2QTBBOEIxOTZGRjg4RTM2QTgzQTgyNDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEKOZgrf22Nx9H7HHgs4asmZxr0rps8dYJKL6abl0mL1DdHaYB a5BjR69jj/Wq2Rkc0X+x2/EAupbyd90zrJLFmOIiXM5ptrX0AIzmYlhxE6VFmJGR 7EHyogqKJ9HFtdb0cHFWY3b5fqttWzBKkmaKPOtyg+KduN/yJD3MNFfwidFs+TKH D6o7SCtYjzxK7DEOBfmH8bGK6vTKrufNy8eXZ7VFMSF4flYcx5GVO9CNEVZ74a3z wzqLapkXMopxF4WovJHn9N8P3sstOeL0j6jWO17PX58QLGulo7sFkYc3VYsYOXly udzclzvExFRoWS4f8BWKGqIyUk26NlEU9jlfAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUccjFdfAgJ29qCosZb/iONqg6gkQwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvY2NqRmRmQWdKMjlxQ29zWmJfaU9O cWc2Z2tRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAa+3iDAN BgkqhkiG9w0BAQsFAAOCAQEAQ8aH1FCSGhSK/lXYq4effZrnVrErJxIjqi53ylKP nXAA3fdAzAKKREQnyAkzHunrbzdvY4SpU5ePFF1d2j3ubSYJeWKRxJgGkOfjLvNi Pm8zD5xsgKYTeM27fFX2RgrggroTYICNKsyk859EXYXFT0NACOIPbipbkrk89Rbx izVyoNlmQZg8c0dE8rktNESjc0bU7VKvRA81tQSDC1OKVjD+sjrdPc5W+tih3/qJ rUqtli92ks7thG1H0uxcpAuZ/O7WZVZoQNDjQaa46H45uHYtq65Tvu7HHm2ZcGmp Brhzi6az82R0KvQkAtswqUNTS75/Q5wR1mH4PVUQYxpFVQ== -----END CERTIFICATE-----Generated at Sat Sep 6 12:07:49 2025 by rpki-client