$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/m_esbtaUPVRtl00mth3XJswIj7A.roa File: m_esbtaUPVRtl00mth3XJswIj7A.roa (raw, json) Hash identifier: zLIjnQ/iXFpNZR8eEHE9lmsyUIxMm5eGNfBBV0ubC3A= Subject key identifier: 9B:F7:AC:6E:D6:94:3D:54:6D:97:4D:26:B6:1D:D7:26:CC:08:8F:B0 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1A0A Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/m_esbtaUPVRtl00mth3XJswIj7A.roa Signing time: Fri 22 Aug 2025 08:53:39 +0000 ROA not before: Fri 22 Aug 2025 08:53:39 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4780 IP address blocks: 175.183.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6666 (0x1a0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:39 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=9BF7AC6ED6943D546D974D26B61DD726CC088FB0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:85:0c:c1:58:db:de:9e:09:fc:01:60:47:a9: 39:86:76:fe:15:b5:4d:3b:51:7f:48:3f:ff:42:7a: b8:8c:5e:e6:6a:93:1e:a9:f3:03:57:17:b6:49:70: 91:32:bc:3d:76:c1:64:52:38:8a:39:5a:0e:9b:88: 91:89:76:d8:2b:ed:cc:6c:f1:71:06:13:e5:cb:01: 5e:e6:cd:a3:1f:c6:51:7b:50:f5:e8:77:82:37:ed: 77:15:0b:bc:c5:ed:15:5f:49:0e:97:6f:4f:d8:61: fb:a9:1b:72:d1:70:67:f5:ab:04:94:5f:97:ab:bb: c6:7f:b1:17:be:59:c8:00:c6:1f:35:2a:96:93:44: 9c:6b:0a:dd:8d:2b:ec:02:48:4d:64:15:b8:f4:b3: af:b5:ec:8f:b9:d7:53:af:11:98:d0:ab:72:02:35: 19:27:a0:a6:c7:bf:a5:17:a8:5e:87:b9:09:e9:4b: c7:28:6f:31:09:68:ff:90:fc:01:d4:53:16:56:31: e0:1e:b7:24:da:00:bf:26:4e:69:1d:ee:4d:20:92: 7b:4a:7f:ff:13:62:7f:9d:32:ed:5e:14:7a:d4:80: 4e:1b:f5:64:4c:19:23:f7:13:6f:ca:c6:29:0c:20: 28:42:ac:8f:2f:bf:a0:b8:74:d4:2b:05:2b:3b:29: 3a:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:F7:AC:6E:D6:94:3D:54:6D:97:4D:26:B6:1D:D7:26:CC:08:8F:B0 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/m_esbtaUPVRtl00mth3XJswIj7A.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 175.183.0.0/17 Signature Algorithm: sha256WithRSAEncryption 39:c4:eb:f9:fd:a8:6f:df:07:ae:5c:b2:34:d9:b3:6b:fd:bf: 49:a0:f4:52:26:73:c2:61:94:ac:ba:d5:4f:00:77:3e:31:73: 4a:45:96:c6:ae:c3:07:d9:ac:25:ed:43:42:47:f4:91:23:48: 17:d6:21:f5:c2:f5:d8:b3:ff:e6:2f:1f:6b:bd:97:99:2d:6f: a8:c3:d7:a5:67:00:ba:36:1d:33:f2:ab:81:f2:40:09:9f:f1: d3:05:7a:b1:4c:f3:05:cf:69:4d:e4:e7:6e:90:92:ad:64:72: 45:dc:86:b2:d3:55:86:5d:56:c7:8c:fd:d3:9c:8c:9a:bf:db: 44:1f:f4:f4:0a:a4:a0:cf:94:a8:9c:2b:9f:55:11:0e:5c:c1: 6b:6a:6f:0c:d6:1e:e5:ed:09:f7:88:86:2b:19:6e:4d:4a:03: de:cf:8c:ed:a9:57:84:47:44:d0:99:84:8c:05:8b:36:99:b2: 92:d7:31:cb:13:3a:1f:63:49:e6:03:8a:63:91:28:80:60:c1: e8:27:52:c9:55:81:5a:74:f9:59:54:a5:a5:00:35:89:b5:72: cc:19:c3:86:75:dd:c3:39:6d:3e:ef:e3:55:a5:ab:2d:b5:68: 19:27:e4:68:3b:f6:7a:45:64:d2:5e:62:88:ac:b3:43:d9:0d: 7f:48:58:ee -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGgowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzMzlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDlCRjdBQzZFRDY5NDNE NTQ2RDk3NEQyNkI2MURENzI2Q0MwODhGQjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQClhQzBWNvengn8AWBHqTmGdv4VtU07UX9IP/9CeriMXuZqkx6p 8wNXF7ZJcJEyvD12wWRSOIo5Wg6biJGJdtgr7cxs8XEGE+XLAV7mzaMfxlF7UPXo d4I37XcVC7zF7RVfSQ6Xb0/YYfupG3LRcGf1qwSUX5eru8Z/sRe+WcgAxh81KpaT RJxrCt2NK+wCSE1kFbj0s6+17I+511OvEZjQq3ICNRknoKbHv6UXqF6HuQnpS8co bzEJaP+Q/AHUUxZWMeAetyTaAL8mTmkd7k0gkntKf/8TYn+dMu1eFHrUgE4b9WRM GSP3E2/KxikMIChCrI8vv6C4dNQrBSs7KTpbAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUm/esbtaUPVRtl00mth3XJswIj7AwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvbV9lc2J0YVVQVlJ0bDAwbXRoM1hK c3dJajdBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB6+3ADAN BgkqhkiG9w0BAQsFAAOCAQEAOcTr+f2ob98HrlyyNNmza/2/SaD0UiZzwmGUrLrV TwB3PjFzSkWWxq7DB9msJe1DQkf0kSNIF9Yh9cL12LP/5i8fa72XmS1vqMPXpWcA ujYdM/KrgfJACZ/x0wV6sUzzBc9pTeTnbpCSrWRyRdyGstNVhl1Wx4z905yMmr/b RB/09AqkoM+UqJwrn1URDlzBa2pvDNYe5e0J94iGKxluTUoD3s+M7alXhEdE0JmE jAWLNpmyktcxyxM6H2NJ5gOKY5EogGDB6CdSyVWBWnT5WVSlpQA1ibVyzBnDhnXd wzltPu/jVaWrLbVoGSfkaDv2ekVk0l5iiKyzQ9kNf0hY7g== -----END CERTIFICATE-----Generated at Sat Sep 6 14:16:53 2025 by rpki-client