$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/mIYnm4Gb8eMhMwbTqWtTTpi6m9c.roa File: mIYnm4Gb8eMhMwbTqWtTTpi6m9c.roa (raw, json) Hash identifier: ilzfzbgMIrG9laIVCfHshGASA3s7b4t+YGb1VIBR3E0= Subject key identifier: 98:86:27:9B:81:9B:F1:E3:21:33:06:D3:A9:6B:53:4E:98:BA:9B:D7 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1A93 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/mIYnm4Gb8eMhMwbTqWtTTpi6m9c.roa Signing time: Wed 27 Aug 2025 09:12:24 +0000 ROA not before: Wed 27 Aug 2025 09:12:24 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4780 IP address blocks: 61.61.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6803 (0x1a93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 27 09:12:24 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=9886279B819BF1E3213306D3A96B534E98BA9BD7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:14:ff:31:f9:49:d5:a4:82:f2:28:b4:44:76: 3a:86:bc:53:00:fc:bd:68:ff:e6:bb:fb:1e:b4:19: 46:d2:07:fe:4d:e0:d5:d3:6d:58:4f:ba:40:dc:2c: d2:f2:a4:5d:aa:be:8d:dc:bc:08:48:08:92:c6:15: 42:bd:e9:2b:3c:24:38:7f:1f:29:9e:66:5e:c2:8c: cc:8d:fc:fc:7a:71:28:4b:90:8b:a2:8f:b0:61:4c: 90:2c:19:12:ba:52:e1:7b:20:43:a3:b5:6a:f3:2b: 68:2f:5f:db:ea:42:a8:46:a2:00:9e:55:b6:da:79: 81:de:5b:a9:90:36:26:16:15:e9:d5:d2:de:02:60: 12:15:09:7b:4c:f1:ec:bd:b8:6f:10:f3:07:11:19: c4:fb:ed:85:f0:82:9a:6b:8d:d3:cb:0f:72:b2:2d: 8b:70:8c:a6:71:48:ff:94:fe:fd:86:38:0a:29:61: ce:7e:42:2b:b1:4b:48:c6:f3:fc:27:14:36:0b:3e: 0c:3f:c4:46:fc:01:ca:96:fc:c4:a3:09:87:2a:85: 1f:57:2b:0b:c5:a7:3e:dd:5e:2d:2a:4c:d2:cf:13: 1f:75:d7:ae:84:9a:c5:83:4c:22:57:98:09:4c:9a: 03:00:7a:38:74:d9:05:cc:a2:b0:9b:72:0b:f3:5d: b2:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:86:27:9B:81:9B:F1:E3:21:33:06:D3:A9:6B:53:4E:98:BA:9B:D7 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/mIYnm4Gb8eMhMwbTqWtTTpi6m9c.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.0.0/17 Signature Algorithm: sha256WithRSAEncryption 0b:cb:a6:f3:72:a4:ca:02:9f:fd:97:6e:7f:20:c5:47:65:32: f6:e7:92:b1:40:86:89:4e:b5:45:36:7e:20:e2:24:d5:79:8c: 7d:98:12:a9:45:2b:30:43:1f:f6:e6:37:54:c1:c9:6e:e3:fa: f0:8f:0e:3a:44:7d:75:aa:17:a9:c6:42:fe:4b:d9:f8:03:4f: 9e:a5:50:b8:d5:1a:8b:bc:3e:b6:dc:0a:be:84:00:e4:4f:fa: 79:85:37:51:8f:fa:69:91:19:6a:d0:de:4d:8f:4f:4a:ee:3d: 9a:f4:d0:34:3c:0c:06:00:06:28:12:d9:c9:bd:3e:5b:ea:d0: 38:f9:db:7b:4e:96:f2:77:ad:20:88:34:d7:8d:6e:aa:d3:2a: ef:f6:49:6e:dc:49:14:f6:f4:19:64:64:fc:a8:fd:cf:d6:22: e4:fc:03:a8:a1:dc:64:75:5e:9a:79:f7:95:11:15:37:2c:44: ab:19:34:3c:7e:23:dd:70:93:4d:b4:c5:1e:d3:29:1b:1c:40: a1:4d:80:5d:b0:8a:55:e5:ff:bc:89:26:72:24:0a:ce:cb:18: 13:e5:dc:62:c9:a4:41:18:88:01:77:a3:f8:f8:1d:75:8d:ca: 41:b2:86:ea:45:4f:65:66:20:f9:19:24:f7:12:ec:fb:f5:97: 49:c3:cb:e2 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGpMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4Mjcw OTEyMjRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDk4ODYyNzlCODE5QkYx RTMyMTMzMDZEM0E5NkI1MzRFOThCQTlCRDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2FP8x+UnVpILyKLREdjqGvFMA/L1o/+a7+x60GUbSB/5N4NXT bVhPukDcLNLypF2qvo3cvAhICJLGFUK96Ss8JDh/HymeZl7CjMyN/Px6cShLkIui j7BhTJAsGRK6UuF7IEOjtWrzK2gvX9vqQqhGogCeVbbaeYHeW6mQNiYWFenV0t4C YBIVCXtM8ey9uG8Q8wcRGcT77YXwgpprjdPLD3KyLYtwjKZxSP+U/v2GOAopYc5+ QiuxS0jG8/wnFDYLPgw/xEb8AcqW/MSjCYcqhR9XKwvFpz7dXi0qTNLPEx91166E msWDTCJXmAlMmgMAejh02QXMorCbcgvzXbJTAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUmIYnm4Gb8eMhMwbTqWtTTpi6m9cwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvbUlZbm00R2I4ZU1oTXdiVHFXdFRU cGk2bTljLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBz09ADAN BgkqhkiG9w0BAQsFAAOCAQEAC8um83KkygKf/ZdufyDFR2Uy9ueSsUCGiU61RTZ+ IOIk1XmMfZgSqUUrMEMf9uY3VMHJbuP68I8OOkR9daoXqcZC/kvZ+ANPnqVQuNUa i7w+ttwKvoQA5E/6eYU3UY/6aZEZatDeTY9PSu49mvTQNDwMBgAGKBLZyb0+W+rQ OPnbe06W8netIIg0141uqtMq7/ZJbtxJFPb0GWRk/Kj9z9Yi5PwDqKHcZHVemnn3 lREVNyxEqxk0PH4j3XCTTbTFHtMpGxxAoU2AXbCKVeX/vIkmciQKzssYE+XcYsmk QRiIAXej+PgddY3KQbKG6kVPZWYg+Rkk9xLs+/WXScPL4g== -----END CERTIFICATE-----Generated at Sat Sep 6 12:07:47 2025 by rpki-client