$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/cvYrefhi3XnFpVeoA8k8wAm997s.roa File: cvYrefhi3XnFpVeoA8k8wAm997s.roa (raw, json) Hash identifier: DBikVtvh1yp6XPb3KpbENb3lnDUcTqaePjMvO6D+P2g= Subject key identifier: 72:F6:2B:79:F8:62:DD:79:C5:A5:57:A8:03:C9:3C:C0:09:BD:F7:BB Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1976 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/cvYrefhi3XnFpVeoA8k8wAm997s.roa Signing time: Fri 22 Aug 2025 08:53:01 +0000 ROA not before: Fri 22 Aug 2025 08:53:01 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9919 IP address blocks: 113.196.152.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 03:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6518 (0x1976) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:01 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=72F62B79F862DD79C5A557A803C93CC009BDF7BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:07:0b:9a:e4:8d:f6:01:54:85:24:9d:f8:64: d5:2f:64:03:98:aa:39:34:8f:4c:52:90:e5:41:0d: 63:b9:5d:bc:83:fb:b1:07:66:3b:bd:ee:71:23:cf: fe:db:40:18:bf:14:48:25:69:02:f5:c3:8a:cc:e7: 4c:ac:f1:dd:49:82:3e:ca:1d:f7:cd:1a:a3:7e:aa: aa:34:f9:3d:23:2f:6b:91:da:ff:ca:c5:5c:c5:10: 0f:07:7d:ab:d4:cc:2d:d3:81:61:d2:2e:1e:2e:9e: 2e:6c:45:23:d6:ab:1f:fc:17:5c:f1:38:7a:e9:3a: f4:7c:8a:79:7c:53:93:fb:ad:4f:cd:e6:fc:3c:c1: 8b:96:55:d9:64:85:ef:ad:02:2d:ea:be:81:61:b2: 1c:72:12:a3:52:ce:e3:6f:d3:97:2e:c4:ab:2c:c6: f1:20:8e:b2:08:d7:11:a5:62:81:e7:cd:16:83:81: bc:fe:bb:a4:ad:78:6e:87:27:32:fd:2a:2e:be:2b: 00:17:06:39:63:38:1c:07:6f:3e:8e:13:94:a4:b3: 17:f1:cb:99:be:c5:fc:27:94:58:da:a3:ae:8f:84: 47:a5:de:c4:af:d0:82:9a:e8:89:0d:67:99:9b:2b: 53:7c:1e:e9:23:6e:69:d5:bb:8e:f8:52:ed:5b:a6: a5:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:F6:2B:79:F8:62:DD:79:C5:A5:57:A8:03:C9:3C:C0:09:BD:F7:BB X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/cvYrefhi3XnFpVeoA8k8wAm997s.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.196.152.0/21 Signature Algorithm: sha256WithRSAEncryption aa:1e:47:97:d7:3a:8c:19:01:04:d9:14:38:25:7c:d0:b0:eb: 88:b0:c3:85:5b:4a:6a:e8:79:cb:03:ce:f9:fa:ae:6a:b3:6f: 77:c1:7f:6c:d2:e4:f2:c3:42:2f:b9:09:81:04:54:7c:e5:c9: d7:0e:bb:0b:0e:5d:05:f5:19:66:99:91:31:65:92:c8:64:39: c9:a7:1e:55:06:5d:db:75:60:1b:27:e3:8d:b5:11:62:22:bb: 48:9c:b5:99:fa:2a:5a:2c:9b:38:41:93:02:e2:94:40:4c:54: 51:d8:f4:af:0e:48:40:b3:4d:cb:ad:86:1a:b3:4a:1e:b1:c6: d4:5f:c2:1b:86:f1:a9:da:cb:c2:49:75:70:3c:85:6d:0f:ef: 16:72:6a:bd:3e:f4:74:52:9b:0a:c3:44:95:d0:08:d4:6b:29: 54:b6:b7:07:2e:7e:6b:56:35:9f:41:de:82:86:51:61:aa:53: 09:95:46:b8:bb:5c:19:15:37:15:7d:22:e5:de:6e:a2:a6:bd: 4d:36:b7:45:a6:d7:0a:26:f1:d4:90:19:ed:50:50:3c:ea:36: 7f:3c:e0:4f:e3:5f:b4:d2:9f:4f:f3:e2:d2:ce:04:c8:41:7c: 77:a7:b6:3d:d0:ff:dc:80:72:90:93:5a:77:10:f9:75:89:28: f2:cf:b2:20 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGXYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzMDFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDcyRjYyQjc5Rjg2MkRE NzlDNUE1NTdBODAzQzkzQ0MwMDlCREY3QkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDABwua5I32AVSFJJ34ZNUvZAOYqjk0j0xSkOVBDWO5XbyD+7EH Zju97nEjz/7bQBi/FEglaQL1w4rM50ys8d1Jgj7KHffNGqN+qqo0+T0jL2uR2v/K xVzFEA8HfavUzC3TgWHSLh4uni5sRSPWqx/8F1zxOHrpOvR8inl8U5P7rU/N5vw8 wYuWVdlkhe+tAi3qvoFhshxyEqNSzuNv05cuxKssxvEgjrII1xGlYoHnzRaDgbz+ u6SteG6HJzL9Ki6+KwAXBjljOBwHbz6OE5Sksxfxy5m+xfwnlFjao66PhEel3sSv 0IKa6IkNZ5mbK1N8HukjbmnVu474Uu1bpqUhAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUcvYrefhi3XnFpVeoA8k8wAm997swHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvY3ZZcmVmaGkzWG5GcFZlb0E4azh3 QW05OTdzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3HEmDAN BgkqhkiG9w0BAQsFAAOCAQEAqh5Hl9c6jBkBBNkUOCV80LDriLDDhVtKauh5ywPO +fquarNvd8F/bNLk8sNCL7kJgQRUfOXJ1w67Cw5dBfUZZpmRMWWSyGQ5yaceVQZd 23VgGyfjjbURYiK7SJy1mfoqWiybOEGTAuKUQExUUdj0rw5IQLNNy62GGrNKHrHG 1F/CG4bxqdrLwkl1cDyFbQ/vFnJqvT70dFKbCsNEldAI1GspVLa3By5+a1Y1n0He goZRYapTCZVGuLtcGRU3FX0i5d5uoqa9TTa3RabXCibx1JAZ7VBQPOo2fzzgT+Nf tNKfT/Pi0s4EyEF8d6e2PdD/3IBykJNadxD5dYko8s+yIA== -----END CERTIFICATE-----Generated at Sun Sep 7 23:35:51 2025 by rpki-client