$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/jTo_Lr5AJRqc5xRyq3nqu6jRJqg.roa File: jTo_Lr5AJRqc5xRyq3nqu6jRJqg.roa (raw, json) Hash identifier: YC/UOYs9gA9gW1ujuDwfYttPXx+6RzXbAgN8dKiWlxI= Subject key identifier: 8D:3A:3F:2E:BE:40:25:1A:9C:E7:14:72:AB:79:EA:BB:A8:D1:26:A8 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1AAD Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/jTo_Lr5AJRqc5xRyq3nqu6jRJqg.roa Signing time: Wed 27 Aug 2025 09:17:28 +0000 ROA not before: Wed 27 Aug 2025 09:17:28 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9922 IP address blocks: 61.61.164.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6829 (0x1aad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 27 09:17:28 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8D3A3F2EBE40251A9CE71472AB79EABBA8D126A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:89:4a:df:85:01:37:7b:83:05:94:35:8a:32: fc:9a:1a:f8:9d:cd:b0:32:06:69:69:d8:16:dd:9a: e0:25:19:a1:50:09:a7:16:bf:ce:07:c6:4b:f5:45: 6a:49:2f:69:f6:15:b4:58:9c:f5:6a:2d:f9:e8:bb: f6:b3:31:11:4b:a4:72:98:9e:98:89:b0:4c:91:f7: 9c:dd:38:a8:6c:8e:b9:04:d7:85:39:ce:9f:ef:85: e3:d7:a2:e2:9a:c6:50:18:7a:22:03:a4:49:9a:7f: 53:ec:ae:fe:e1:16:0d:dd:b1:6b:4d:ca:06:23:45: 4a:dc:93:34:e4:77:40:b4:2c:98:59:af:00:72:a4: 36:78:bf:17:b9:a7:0f:86:32:04:d5:8f:1b:47:d3: 17:7a:ab:8c:3d:4b:bc:03:dd:ae:b1:87:52:1e:85: 97:62:76:1a:9c:95:df:3b:b0:0f:26:ad:bf:7c:5d: 73:c5:66:2b:ed:83:a9:6b:7a:18:bd:f8:3a:6e:c8: 1e:85:a0:fd:b4:ff:02:9c:42:eb:c2:ff:4f:18:fc: 79:29:84:1f:fb:0c:07:05:1a:ba:1c:c0:b6:6a:78: b0:64:73:9b:e8:06:f9:44:9c:16:50:3c:bd:d7:0c: 53:e9:db:a4:ac:f7:7b:74:88:6e:34:17:d0:77:d8: 54:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:3A:3F:2E:BE:40:25:1A:9C:E7:14:72:AB:79:EA:BB:A8:D1:26:A8 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/jTo_Lr5AJRqc5xRyq3nqu6jRJqg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.164.0/22 Signature Algorithm: sha256WithRSAEncryption 18:44:dc:2f:59:f8:4d:86:af:69:54:32:2f:44:61:07:bd:3b: ea:e6:22:39:53:72:5a:a1:dd:de:d5:e3:8f:24:ba:87:65:93: 7f:3b:2f:78:92:d5:2c:fe:db:94:f8:c2:96:fb:97:05:9d:df: fc:3c:fb:bf:35:46:f9:28:c1:77:2d:02:47:0d:e1:42:ea:cb: 20:9e:00:04:07:c3:b8:1e:bc:29:90:fc:40:b8:fe:11:82:b2: aa:44:29:8e:36:ce:e9:df:1b:20:d2:c0:bd:4a:1b:9d:e9:3e: fe:c4:11:8e:1b:26:5f:30:b1:d5:57:7f:61:2e:61:ab:e3:84: 34:88:4c:46:2a:ce:6e:7a:a5:d5:83:d2:d8:49:b0:06:ce:8b: a4:18:cc:86:69:2d:0a:9a:85:72:8d:4a:28:af:ea:a1:80:9d: 1a:17:63:1e:4c:24:79:bb:10:f9:0f:91:36:80:cf:35:38:91: 7a:51:17:8a:2a:37:dd:84:ec:76:49:24:49:68:59:6a:49:e9: ef:31:6e:74:e3:64:35:2e:42:23:e0:2c:91:99:57:57:e2:09: dc:e6:1d:27:a7:d9:21:85:0d:00:f9:1a:74:55:56:2a:5a:f3: 2a:1e:26:0d:d0:5d:2c:b6:6b:e9:da:11:0a:b8:cc:fe:55:dd: 2c:8d:58:b1 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGq0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4Mjcw OTE3MjhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDhEM0EzRjJFQkU0MDI1 MUE5Q0U3MTQ3MkFCNzlFQUJCQThEMTI2QTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7iUrfhQE3e4MFlDWKMvyaGvidzbAyBmlp2BbdmuAlGaFQCacW v84Hxkv1RWpJL2n2FbRYnPVqLfnou/azMRFLpHKYnpiJsEyR95zdOKhsjrkE14U5 zp/vhePXouKaxlAYeiIDpEmaf1Psrv7hFg3dsWtNygYjRUrckzTkd0C0LJhZrwBy pDZ4vxe5pw+GMgTVjxtH0xd6q4w9S7wD3a6xh1IehZdidhqcld87sA8mrb98XXPF Zivtg6lrehi9+DpuyB6FoP20/wKcQuvC/08Y/HkphB/7DAcFGrocwLZqeLBkc5vo BvlEnBZQPL3XDFPp26Ss93t0iG40F9B32FQpAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUjTo/Lr5AJRqc5xRyq3nqu6jRJqgwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvalRvX0xyNUFKUnFjNXhSeXEzbnF1 NmpSSnFnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAj09pDAN BgkqhkiG9w0BAQsFAAOCAQEAGETcL1n4TYavaVQyL0RhB7076uYiOVNyWqHd3tXj jyS6h2WTfzsveJLVLP7blPjClvuXBZ3f/Dz7vzVG+SjBdy0CRw3hQurLIJ4ABAfD uB68KZD8QLj+EYKyqkQpjjbO6d8bINLAvUobnek+/sQRjhsmXzCx1Vd/YS5hq+OE NIhMRirObnql1YPS2EmwBs6LpBjMhmktCpqFco1KKK/qoYCdGhdjHkwkebsQ+Q+R NoDPNTiRelEXiio33YTsdkkkSWhZaknp7zFudONkNS5CI+AskZlXV+IJ3OYdJ6fZ IYUNAPkadFVWKlrzKh4mDdBdLLZr6doRCrjM/lXdLI1YsQ== -----END CERTIFICATE-----Generated at Sat Sep 6 11:56:52 2025 by rpki-client