$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/m6AQ6os5LP_KQrVIaofnSNS-3TA.roa File: m6AQ6os5LP_KQrVIaofnSNS-3TA.roa (raw, json) Hash identifier: t5ZwrR3Wqs3ct6M4W27H4j9y7iCP3QhyBztEawO3Vwg= Subject key identifier: 9B:A0:10:EA:8B:39:2C:FF:CA:42:B5:48:6A:87:E7:48:D4:BE:DD:30 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 19C6 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/m6AQ6os5LP_KQrVIaofnSNS-3TA.roa Signing time: Fri 22 Aug 2025 08:53:22 +0000 ROA not before: Fri 22 Aug 2025 08:53:22 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9919 IP address blocks: 218.210.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 03:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6598 (0x19c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:22 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=9BA010EA8B392CFFCA42B5486A87E748D4BEDD30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:a8:f3:a4:b6:12:db:07:a5:c4:2c:2e:fe:84: f0:93:53:16:e0:36:bd:e9:d4:3d:d5:b9:b1:8f:d8: 02:d4:d8:a0:91:b1:ab:d3:31:b8:a4:2b:58:0b:07: b9:54:aa:ed:f0:9a:af:c5:22:de:59:b5:0b:59:a7: 54:ce:50:94:6a:78:1a:3b:37:48:d0:2c:f3:76:28: d1:64:bc:22:3a:46:6b:ee:0b:31:0f:d8:95:d1:96: e6:7b:54:85:83:01:d3:9a:a0:86:14:bb:5e:23:5c: 40:7e:a5:5b:f3:70:cf:17:3e:ae:e1:e1:c3:6f:35: 93:13:40:58:33:4b:35:22:9a:9d:5d:fa:82:d2:7b: 22:25:b4:99:59:23:71:11:5f:aa:1e:e2:4b:a2:73: 03:76:09:33:d5:16:a6:b9:33:a2:d5:f6:ce:d8:b6: a5:60:62:33:f3:25:d9:2c:60:6b:f5:06:a2:15:67: 9b:74:23:de:6a:4d:30:f4:28:e5:1b:37:13:24:11: 8b:76:a7:e9:14:d1:5f:28:56:b3:79:50:a1:e8:70: 99:7a:00:2c:7a:e1:a2:1b:35:b2:b8:d6:0f:33:0b: c3:c9:6a:49:01:7a:22:83:c1:55:c2:31:c7:0b:90: 51:08:4d:2c:b4:82:c4:12:d9:dd:f4:67:47:69:9d: ec:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:A0:10:EA:8B:39:2C:FF:CA:42:B5:48:6A:87:E7:48:D4:BE:DD:30 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/m6AQ6os5LP_KQrVIaofnSNS-3TA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 218.210.0.0/19 Signature Algorithm: sha256WithRSAEncryption 47:8a:e5:33:cc:26:9f:fa:74:ae:c3:bd:fb:ce:52:7d:65:04: 08:d2:64:02:73:d6:f3:ff:ad:5c:f8:a6:7f:96:69:6b:7b:05: 15:19:42:21:15:e3:11:57:c3:ba:64:f7:80:75:0c:47:20:9f: 56:f5:b7:b6:ea:a8:09:87:50:93:cd:76:d7:89:69:33:4a:58: f6:d3:41:ba:06:de:20:af:4a:61:26:a3:6f:52:b3:1b:37:d7: 89:70:2e:ec:54:e6:0b:89:9e:3a:6b:7a:ae:02:9e:1c:02:cf: 1b:b8:a1:c7:71:d2:5f:30:75:07:47:c4:dd:a8:55:a9:2a:ca: 3b:ab:7c:ea:da:bb:38:b5:2c:19:25:2a:dc:83:d3:b6:1f:dd: df:d0:91:19:a5:12:d6:46:d8:46:d7:7c:30:7b:0a:e2:1b:64: 80:8c:73:57:4e:73:e5:b1:26:7d:d3:93:4d:ea:61:32:ee:5e: dd:80:79:73:c4:ea:ad:0e:62:88:4f:16:ed:fb:39:2c:81:57: ae:12:9b:4a:55:09:f3:9d:d5:d8:cc:36:ff:d7:82:2b:21:6b: f7:d2:10:73:ad:cc:09:15:9e:47:6c:7e:75:37:4b:d9:9f:c3: 4a:c2:7e:80:dd:e7:97:a2:49:2c:04:21:6f:ef:06:bf:8e:90: 00:35:4b:9f -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGcYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzMjJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDlCQTAxMEVBOEIzOTJD RkZDQTQyQjU0ODZBODdFNzQ4RDRCRUREMzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCdqPOkthLbB6XELC7+hPCTUxbgNr3p1D3VubGP2ALU2KCRsavT MbikK1gLB7lUqu3wmq/FIt5ZtQtZp1TOUJRqeBo7N0jQLPN2KNFkvCI6RmvuCzEP 2JXRluZ7VIWDAdOaoIYUu14jXEB+pVvzcM8XPq7h4cNvNZMTQFgzSzUimp1d+oLS eyIltJlZI3ERX6oe4kuicwN2CTPVFqa5M6LV9s7YtqVgYjPzJdksYGv1BqIVZ5t0 I95qTTD0KOUbNxMkEYt2p+kU0V8oVrN5UKHocJl6ACx64aIbNbK41g8zC8PJakkB eiKDwVXCMccLkFEITSy0gsQS2d30Z0dpnexhAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUm6AQ6os5LP/KQrVIaofnSNS+3TAwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvbTZBUTZvczVMUF9LUXJWSWFvZm5T TlMtM1RBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBdrSADAN BgkqhkiG9w0BAQsFAAOCAQEAR4rlM8wmn/p0rsO9+85SfWUECNJkAnPW8/+tXPim f5Zpa3sFFRlCIRXjEVfDumT3gHUMRyCfVvW3tuqoCYdQk81214lpM0pY9tNBugbe IK9KYSajb1KzGzfXiXAu7FTmC4meOmt6rgKeHALPG7ihx3HSXzB1B0fE3ahVqSrK O6t86tq7OLUsGSUq3IPTth/d39CRGaUS1kbYRtd8MHsK4htkgIxzV05z5bEmfdOT TephMu5e3YB5c8TqrQ5iiE8W7fs5LIFXrhKbSlUJ853V2Mw2/9eCKyFr99IQc63M CRWeR2x+dTdL2Z/DSsJ+gN3nl6JJLAQhb+8Gv46QADVLnw== -----END CERTIFICATE-----Generated at Sun Sep 7 23:36:13 2025 by rpki-client