$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/mlQajywWJ3mtHwa-fk37Q8PoLXc.roa File: mlQajywWJ3mtHwa-fk37Q8PoLXc.roa (raw, json) Hash identifier: NK7tZLuWco83YEnIgdbebvuQb+6CtHmHqG1egUv9Qvo= Subject key identifier: 9A:54:1A:8F:2C:16:27:79:AD:1F:06:BE:7E:4D:FB:43:C3:E8:2D:77 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1A2E Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/mlQajywWJ3mtHwa-fk37Q8PoLXc.roa Signing time: Fri 22 Aug 2025 08:53:48 +0000 ROA not before: Fri 22 Aug 2025 08:53:48 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4780 IP address blocks: 113.196.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 23:46:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6702 (0x1a2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:48 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=9A541A8F2C162779AD1F06BE7E4DFB43C3E82D77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:74:61:f7:b0:17:90:40:fe:ca:20:98:eb:96: 0f:cd:6e:fc:0f:f3:5a:45:6d:af:fc:65:d9:d6:79: 2e:e6:5a:85:22:72:79:72:b9:dd:09:3b:9a:c7:a4: f8:29:c0:4b:1b:23:4b:57:cb:89:c7:27:52:e6:98: 55:fc:8f:8b:a4:51:67:45:ef:cb:e4:19:85:ee:48: 98:23:a3:74:30:30:19:97:d3:5c:73:3a:6d:0f:46: 75:b8:fb:ef:64:0f:b2:80:90:f1:46:de:3f:1a:8d: 34:a5:07:93:03:51:21:64:bd:60:9a:29:27:fb:a4: 54:6a:7e:90:cc:70:a2:82:41:15:ff:06:77:82:94: 29:57:fb:a6:f9:79:9d:fc:28:09:72:d6:66:c0:d6: 69:44:2a:bf:53:e4:cf:2c:ec:60:e7:a1:2e:8c:90: 82:bc:71:a6:e0:1e:b9:d2:cf:c3:34:be:b2:ea:49: 37:90:78:88:ca:af:23:03:b2:b0:42:71:1a:d3:f9: 3d:ea:6a:1f:01:a5:3d:bc:d2:12:d5:ef:61:dd:5a: 3b:52:8d:41:61:43:72:64:b3:c3:d0:f0:e7:73:b9: 32:5e:96:47:46:f8:14:d4:8a:1b:ea:58:be:db:c7: 59:ba:2e:77:02:3a:70:a9:f4:f3:33:53:04:7f:0f: 75:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:54:1A:8F:2C:16:27:79:AD:1F:06:BE:7E:4D:FB:43:C3:E8:2D:77 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/mlQajywWJ3mtHwa-fk37Q8PoLXc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.196.0.0/16 Signature Algorithm: sha256WithRSAEncryption 54:9d:aa:77:1b:65:1a:77:f6:79:7c:f5:b7:47:ef:ee:0c:f4: d6:2a:76:ba:27:c4:c3:8f:c1:19:3e:99:52:b9:97:5b:c0:a0: 34:73:db:5d:79:a9:5e:62:4e:f9:fd:61:36:82:b7:96:b0:c9: 6f:76:d7:09:e1:56:9c:e3:57:4d:fd:a7:6a:86:dc:21:4a:1e: 33:ea:77:ef:a3:c8:a5:55:55:c0:e6:d2:dc:4c:18:2f:17:23: 14:14:cc:d5:4c:95:73:2b:87:62:ba:cf:4c:e7:43:5c:d7:6a: 27:3a:04:2b:35:86:ef:7d:e3:77:f2:6a:7f:91:4c:59:7e:dc: 33:c7:68:02:34:82:c1:2d:8a:4f:50:70:42:ed:7f:db:75:a5: 11:1f:31:77:87:7e:55:59:a4:1c:76:44:97:c6:9e:82:f7:4b: 15:aa:cd:5b:13:03:27:65:bd:6e:63:55:66:b1:d2:12:ad:21: 8e:ce:8c:96:73:c9:75:cb:39:b7:68:6b:5f:ea:e9:42:62:e8: 77:c0:d6:da:8c:f6:04:fe:77:c0:10:8b:a9:67:0f:3b:f3:e9: fa:54:a4:f1:9f:bc:d8:81:f7:36:fa:26:d6:83:25:f1:ff:7b: eb:5c:c6:3e:cb:40:0e:43:a2:2d:ce:67:4f:cc:1b:76:56:56: 95:d3:8f:6c -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICGi4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzNDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDlBNTQxQThGMkMxNjI3 NzlBRDFGMDZCRTdFNERGQjQzQzNFODJENzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+dGH3sBeQQP7KIJjrlg/NbvwP81pFba/8ZdnWeS7mWoUicnly ud0JO5rHpPgpwEsbI0tXy4nHJ1LmmFX8j4ukUWdF78vkGYXuSJgjo3QwMBmX01xz Om0PRnW4++9kD7KAkPFG3j8ajTSlB5MDUSFkvWCaKSf7pFRqfpDMcKKCQRX/BneC lClX+6b5eZ38KAly1mbA1mlEKr9T5M8s7GDnoS6MkIK8cabgHrnSz8M0vrLqSTeQ eIjKryMDsrBCcRrT+T3qah8BpT280hLV72HdWjtSjUFhQ3Jks8PQ8OdzuTJelkdG +BTUihvqWL7bx1m6LncCOnCp9PMzUwR/D3WjAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUmlQajywWJ3mtHwa+fk37Q8PoLXcwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvbWxRYWp5d1dKM210SHdhLWZrMzdR OFBvTFhjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAHHEMA0G CSqGSIb3DQEBCwUAA4IBAQBUnap3G2Uad/Z5fPW3R+/uDPTWKna6J8TDj8EZPplS uZdbwKA0c9tdealeYk75/WE2greWsMlvdtcJ4Vac41dN/adqhtwhSh4z6nfvo8il VVXA5tLcTBgvFyMUFMzVTJVzK4dius9M50Nc12onOgQrNYbvfeN38mp/kUxZftwz x2gCNILBLYpPUHBC7X/bdaURHzF3h35VWaQcdkSXxp6C90sVqs1bEwMnZb1uY1Vm sdISrSGOzoyWc8l1yzm3aGtf6ulCYuh3wNbajPYE/nfAEIupZw878+n6VKTxn7zY gfc2+ibWgyXx/3vrXMY+y0AOQ6ItzmdPzBt2VlaV049s -----END CERTIFICATE-----Generated at Sat Sep 6 19:41:22 2025 by rpki-client