$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/k7UI3h7TUMaQM1E2wyKJ70b45sI.roa File: k7UI3h7TUMaQM1E2wyKJ70b45sI.roa (raw, json) Hash identifier: P/b3nhLXtxO1qcxIcydtioFbKn25766rVjNIcjKdXcg= Subject key identifier: 93:B5:08:DE:1E:D3:50:C6:90:33:51:36:C3:22:89:EF:46:F8:E6:C2 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1A36 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/k7UI3h7TUMaQM1E2wyKJ70b45sI.roa Signing time: Fri 22 Aug 2025 08:53:49 +0000 ROA not before: Fri 22 Aug 2025 08:53:49 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9919 IP address blocks: 2401:8000::/26 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 03:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6710 (0x1a36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:49 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=93B508DE1ED350C690335136C32289EF46F8E6C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:8e:d6:37:78:92:f0:00:e1:fb:65:55:ac:d0: 2c:9f:16:c6:ca:0b:e4:09:c3:af:1a:06:c6:6c:a4: a6:88:15:bf:40:0a:a9:55:28:67:e7:4a:16:c8:c9: 74:f4:5d:20:85:5e:05:8f:5a:75:b6:62:6c:ee:22: d0:80:98:0e:a1:22:7a:91:ea:08:ed:5e:7d:54:24: 30:d5:3b:a8:9a:ad:a6:8f:14:68:dc:12:72:ae:d5: 02:a8:4b:6d:a3:3c:ce:82:f6:11:2d:60:cb:cc:b7: 64:a9:9a:66:07:be:ca:b3:79:9f:70:b6:e3:28:09: a1:04:30:10:d6:d0:39:de:d8:47:12:4d:a9:91:1d: 46:d6:1b:63:37:fe:0f:81:93:f3:a8:04:d5:42:9a: 49:3c:5e:0d:4b:4e:e2:27:19:6c:ed:3d:e1:c7:1e: e8:f7:cd:7a:04:17:14:ac:15:9e:1a:22:98:1f:dd: 5f:fc:16:0d:a4:94:9e:e3:fe:37:1f:bc:98:30:ac: e4:66:25:da:57:d9:80:ac:f5:6f:00:4b:8b:79:fc: 0a:76:19:36:91:71:45:37:63:88:08:a8:d2:c2:e7: 33:a0:6e:bc:22:8f:9f:ba:8f:ca:47:18:02:85:1b: 45:71:4f:82:36:31:a9:70:09:23:59:3f:17:0d:72: 1d:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:B5:08:DE:1E:D3:50:C6:90:33:51:36:C3:22:89:EF:46:F8:E6:C2 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/k7UI3h7TUMaQM1E2wyKJ70b45sI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:8000::/26 Signature Algorithm: sha256WithRSAEncryption 7e:22:49:5b:9e:cc:b4:92:d6:48:c8:ea:1e:03:3a:e7:92:9b: 61:0c:38:29:e2:be:b3:46:98:f7:c6:4d:18:10:6c:e9:06:71: 21:23:08:7d:fc:e2:7e:04:0d:bf:fe:38:1d:0d:67:c7:5c:b1: 9e:90:56:87:e3:4f:0f:23:0d:2a:5e:a4:17:0d:95:14:d8:8b: 56:c7:db:4e:81:d8:20:54:9f:a6:15:52:c4:f4:51:47:a9:0e: 96:8f:26:70:85:8e:23:05:4d:4d:f1:10:33:4d:83:ef:3b:3e: 1f:97:dc:4d:d1:44:3c:36:c5:ac:92:ac:80:64:ce:b2:2d:fc: 41:b0:ed:cf:64:81:1e:b8:e0:51:d5:4e:7c:36:f0:7c:ca:af: 04:dc:7d:4f:46:7a:bc:47:42:5f:38:7c:41:c6:bf:f0:ca:da: d6:e5:4b:ad:0c:ac:b7:44:10:74:04:72:e6:28:59:ff:d8:0a: 4f:ac:dc:ec:89:b5:5b:52:50:1f:ab:c3:53:c2:9d:01:c1:1d: d9:9d:a4:d9:f7:c5:0a:42:a4:ef:d5:1f:7c:8e:26:e3:ff:85: ca:3e:97:dd:15:ca:1d:c9:45:98:57:5a:0c:46:54:74:33:8e: df:12:be:e9:88:b7:70:c7:b4:9d:cd:48:2b:8f:de:e4:b1:47: af:e9:f7:61 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICGjYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzNDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDkzQjUwOERFMUVEMzUw QzY5MDMzNTEzNkMzMjI4OUVGNDZGOEU2QzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCjtY3eJLwAOH7ZVWs0CyfFsbKC+QJw68aBsZspKaIFb9ACqlV KGfnShbIyXT0XSCFXgWPWnW2YmzuItCAmA6hInqR6gjtXn1UJDDVO6iaraaPFGjc EnKu1QKoS22jPM6C9hEtYMvMt2SpmmYHvsqzeZ9wtuMoCaEEMBDW0Dne2EcSTamR HUbWG2M3/g+Bk/OoBNVCmkk8Xg1LTuInGWztPeHHHuj3zXoEFxSsFZ4aIpgf3V/8 Fg2klJ7j/jcfvJgwrORmJdpX2YCs9W8AS4t5/Ap2GTaRcUU3Y4gIqNLC5zOgbrwi j5+6j8pHGAKFG0VxT4I2MalwCSNZPxcNch0hAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUk7UI3h7TUMaQM1E2wyKJ70b45sIwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvazdVSTNoN1RVTWFRTTFFMnd5S0o3 MGI0NXNJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFBiQBgAAw DQYJKoZIhvcNAQELBQADggEBAH4iSVuezLSS1kjI6h4DOueSm2EMOCnivrNGmPfG TRgQbOkGcSEjCH384n4EDb/+OB0NZ8dcsZ6QVofjTw8jDSpepBcNlRTYi1bH206B 2CBUn6YVUsT0UUepDpaPJnCFjiMFTU3xEDNNg+87Ph+X3E3RRDw2xaySrIBkzrIt /EGw7c9kgR644FHVTnw28HzKrwTcfU9GerxHQl84fEHGv/DK2tblS60MrLdEEHQE cuYoWf/YCk+s3OyJtVtSUB+rw1PCnQHBHdmdpNn3xQpCpO/VH3yOJuP/hco+l90V yh3JRZhXWgxGVHQzjt8SvumIt3DHtJ3NSCuP3uSxR6/p92E= -----END CERTIFICATE-----Generated at Sun Sep 7 23:31:16 2025 by rpki-client