$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/gC2tlMgZtaR-7Fy9ynnHKhaXOIo.roa File: gC2tlMgZtaR-7Fy9ynnHKhaXOIo.roa (raw, json) Hash identifier: U6hEP9mHy92H9CsaVrYD+70S4Vll+bOhiVeJ5vJH1eM= Subject key identifier: 80:2D:AD:94:C8:19:B5:A4:7E:EC:5C:BD:CA:79:C7:2A:16:97:38:8A Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 19B7 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/gC2tlMgZtaR-7Fy9ynnHKhaXOIo.roa Signing time: Fri 22 Aug 2025 08:53:17 +0000 ROA not before: Fri 22 Aug 2025 08:53:17 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9919 IP address blocks: 122.146.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 03:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6583 (0x19b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:17 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=802DAD94C819B5A47EEC5CBDCA79C72A1697388A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:07:df:fb:bf:16:c5:f4:b4:5f:86:94:85:db: a0:9f:2d:78:d1:66:3a:70:97:ca:8e:76:6e:62:ef: 2a:0e:a3:c9:6a:8f:af:55:dd:81:73:bb:72:d2:31: 6c:5c:08:2a:2e:f7:f0:3f:50:0f:02:e7:84:16:e9: 51:19:96:9a:3a:dc:74:ad:74:12:85:ee:1b:45:79: 51:c7:d4:94:6d:8f:ad:fd:2c:ed:18:b0:a7:1d:a3: dc:06:47:e1:cf:0f:f4:eb:fc:ca:c8:a8:c2:22:29: 26:4c:ae:1a:6b:d4:bc:57:a3:14:5d:f5:18:c7:8c: 7b:9f:af:66:cc:f4:8a:54:f1:a0:34:32:55:39:54: 93:2e:88:76:00:e2:8e:5d:4c:32:0c:3b:70:00:bc: af:44:9f:95:09:8b:27:79:f7:01:4a:50:58:ae:ff: 1b:5c:0f:9a:d2:1c:88:0c:a4:d7:5f:48:fd:87:72: 66:28:52:83:c1:50:6c:e0:13:36:4d:49:2a:50:ba: 2d:aa:93:6b:39:fd:04:99:6f:06:aa:69:03:1c:0a: 1a:5c:2a:c0:aa:03:f2:77:61:3b:81:7b:71:ff:6c: 2d:bd:fa:41:37:9a:6c:c8:3c:50:b0:59:55:cf:a3: f6:b6:7e:13:f8:0c:14:cb:80:d1:ac:07:47:21:91: 70:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:2D:AD:94:C8:19:B5:A4:7E:EC:5C:BD:CA:79:C7:2A:16:97:38:8A X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/gC2tlMgZtaR-7Fy9ynnHKhaXOIo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.146.128.0/17 Signature Algorithm: sha256WithRSAEncryption 69:0f:e6:aa:8b:f2:b2:d2:a5:f0:5d:75:34:30:3a:ea:60:ae: e9:5f:9a:a3:30:30:51:c6:07:33:1f:3f:c1:aa:06:f5:25:63: 28:4e:cb:3b:2b:f5:3c:21:d3:41:b0:5c:6a:5f:72:b8:94:99: de:2f:cf:77:0c:fb:5a:97:89:f8:eb:01:6d:43:26:2e:a6:a8: 64:bd:ae:ca:c0:f8:2a:ea:68:45:f5:f8:f8:89:bf:c7:d8:f7: 8c:e0:f3:0b:89:8a:37:24:e4:47:0a:3c:a9:93:52:e9:56:19: 44:4a:bc:8a:65:23:d2:9d:86:32:25:f9:96:85:21:7a:91:e3: ea:0b:02:30:8f:5a:d2:a0:f0:31:f6:43:9b:bf:b0:ed:3a:9d: be:97:3a:14:e9:75:81:8e:fe:ed:b4:fb:24:c9:4f:54:11:bd: c0:42:57:8c:78:0e:d6:79:d7:83:4f:97:39:55:ef:2c:27:f0: 46:e3:28:ed:a6:ad:07:a0:86:4d:20:e2:ff:4b:04:4c:18:b2: 2e:24:3a:df:f6:e2:7b:1d:6c:e7:d1:7c:de:e4:a9:07:a2:69: a6:b6:88:29:ce:63:40:ab:99:bf:9c:6b:0f:97:78:4c:f1:0a: 5d:2b:51:72:52:3c:5e:48:0c:23:f2:d0:ea:ac:3a:e2:69:32: c1:22:d4:19 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGbcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzMTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDgwMkRBRDk0QzgxOUI1 QTQ3RUVDNUNCRENBNzlDNzJBMTY5NzM4OEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/B9/7vxbF9LRfhpSF26CfLXjRZjpwl8qOdm5i7yoOo8lqj69V 3YFzu3LSMWxcCCou9/A/UA8C54QW6VEZlpo63HStdBKF7htFeVHH1JRtj639LO0Y sKcdo9wGR+HPD/Tr/MrIqMIiKSZMrhpr1LxXoxRd9RjHjHufr2bM9IpU8aA0MlU5 VJMuiHYA4o5dTDIMO3AAvK9En5UJiyd59wFKUFiu/xtcD5rSHIgMpNdfSP2HcmYo UoPBUGzgEzZNSSpQui2qk2s5/QSZbwaqaQMcChpcKsCqA/J3YTuBe3H/bC29+kE3 mmzIPFCwWVXPo/a2fhP4DBTLgNGsB0chkXCTAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUgC2tlMgZtaR+7Fy9ynnHKhaXOIowHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvZ0MydGxNZ1p0YVItN0Z5OXlubkhL aGFYT0lvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB3qSgDAN BgkqhkiG9w0BAQsFAAOCAQEAaQ/mqovystKl8F11NDA66mCu6V+aozAwUcYHMx8/ waoG9SVjKE7LOyv1PCHTQbBcal9yuJSZ3i/Pdwz7WpeJ+OsBbUMmLqaoZL2uysD4 KupoRfX4+Im/x9j3jODzC4mKNyTkRwo8qZNS6VYZREq8imUj0p2GMiX5loUhepHj 6gsCMI9a0qDwMfZDm7+w7Tqdvpc6FOl1gY7+7bT7JMlPVBG9wEJXjHgO1nnXg0+X OVXvLCfwRuMo7aatB6CGTSDi/0sETBiyLiQ63/biex1s59F83uSpB6JppraIKc5j QKuZv5xrD5d4TPEKXStRclI8XkgMI/LQ6qw64mkywSLUGQ== -----END CERTIFICATE-----Generated at Sun Sep 7 23:33:27 2025 by rpki-client