$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/n7Thqxmu9waVm4DmsIEbTetNsGg.roa File: n7Thqxmu9waVm4DmsIEbTetNsGg.roa (raw, json) Hash identifier: dHpYX+D1ro5WYXphK2P4y0r3ScIDmXRHg2JwKVOOyYE= Subject key identifier: 9F:B4:E1:AB:19:AE:F7:06:95:9B:80:E6:B0:81:1B:4D:EB:4D:B0:68 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1A55 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/n7Thqxmu9waVm4DmsIEbTetNsGg.roa Signing time: Fri 22 Aug 2025 08:53:58 +0000 ROA not before: Fri 22 Aug 2025 08:53:58 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4780 IP address blocks: 2401:8000::/26 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6741 (0x1a55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:58 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=9FB4E1AB19AEF706959B80E6B0811B4DEB4DB068 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ad:b5:ca:c6:31:89:fe:43:c6:1e:e1:56:6f: 81:60:16:84:06:92:17:dc:37:14:9c:c6:4e:e8:6c: 96:ca:e6:01:7f:68:72:f4:a9:63:e6:af:94:cc:06: 41:44:2a:5a:83:f1:1b:a1:b2:66:3d:9c:b4:32:60: e7:9a:93:1a:ee:fb:44:4f:07:0c:cb:38:e4:de:5c: 59:40:8b:10:7b:81:75:16:7b:5a:34:27:17:44:e1: 0c:ed:43:33:1c:0c:b9:08:f0:5e:78:66:2d:38:03: f4:a1:f3:85:b9:79:20:b1:41:74:55:2e:5a:22:62: dd:d8:e5:f5:89:70:14:f9:0b:6d:f3:b8:93:20:94: ef:a1:c9:ed:08:26:eb:1b:06:b0:0c:28:e7:cc:13: aa:d5:49:96:ad:46:9f:f9:0e:65:fc:98:6e:9c:b0: 2f:7f:7e:12:53:cb:2b:ce:6c:af:bf:28:3f:1e:a6: aa:58:92:c9:0e:dd:81:08:e3:0c:91:2d:f7:b0:b3: 35:20:c8:85:af:58:65:cd:ec:4c:57:86:d3:26:b0: ce:c4:a6:0e:ee:91:3a:e0:5e:8f:ae:43:a8:7b:7b: 65:88:cb:6d:22:30:48:03:32:cf:5c:98:be:1a:77: 04:25:e0:0d:59:dc:e9:d2:f2:84:8b:84:05:4d:a9: 09:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:B4:E1:AB:19:AE:F7:06:95:9B:80:E6:B0:81:1B:4D:EB:4D:B0:68 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/n7Thqxmu9waVm4DmsIEbTetNsGg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:8000::/26 Signature Algorithm: sha256WithRSAEncryption 46:9b:d1:9e:c7:fd:ea:d7:9d:d8:aa:b9:db:56:36:1b:97:53: e5:30:33:f5:8b:51:22:bc:81:42:8b:77:5e:f9:33:f4:8c:d5: 05:3e:84:fc:5d:6c:fb:ff:5a:63:4b:e3:98:0f:6f:a9:55:72: 03:d7:ab:f9:a6:73:e8:84:de:ad:ba:97:30:20:39:80:16:27: e6:9c:79:4d:f2:b2:8a:9e:0a:2d:e7:64:28:57:a1:68:76:54: b6:05:a4:80:22:66:53:f1:5d:f9:b9:8d:74:d6:46:9a:8a:6f: 26:b0:9f:09:bf:be:80:e2:09:ed:f9:39:63:29:99:49:d0:24: eb:53:84:f9:73:21:21:ed:d8:75:8c:72:71:ad:e6:87:d2:1b: ff:46:e4:7e:62:5c:45:0e:61:85:a7:d0:29:f4:b8:02:05:59: 61:f8:f1:2a:29:d1:5d:2b:24:93:99:c3:a2:03:fe:ed:9a:03: f0:7b:ec:50:45:24:78:e1:ff:91:4b:b6:ec:f0:72:f4:7e:29: 1e:c1:b0:24:ae:e3:af:f1:42:94:32:2d:5b:9f:f3:91:22:4e: 67:c5:e4:b2:ce:3a:d0:2e:3a:f5:f1:b7:9f:d1:14:ad:1c:65: 93:57:b5:3f:27:44:8e:ef:a8:4d:13:d6:ce:dd:cf:b8:2e:ad: cd:d7:f5:1e -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICGlUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzNThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDlGQjRFMUFCMTlBRUY3 MDY5NTlCODBFNkIwODExQjRERUI0REIwNjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPrbXKxjGJ/kPGHuFWb4FgFoQGkhfcNxScxk7obJbK5gF/aHL0 qWPmr5TMBkFEKlqD8RuhsmY9nLQyYOeakxru+0RPBwzLOOTeXFlAixB7gXUWe1o0 JxdE4QztQzMcDLkI8F54Zi04A/Sh84W5eSCxQXRVLloiYt3Y5fWJcBT5C23zuJMg lO+hye0IJusbBrAMKOfME6rVSZatRp/5DmX8mG6csC9/fhJTyyvObK+/KD8epqpY kskO3YEI4wyRLfewszUgyIWvWGXN7ExXhtMmsM7Epg7ukTrgXo+uQ6h7e2WIy20i MEgDMs9cmL4adwQl4A1Z3OnS8oSLhAVNqQmpAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUn7Thqxmu9waVm4DmsIEbTetNsGgwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvbjdUaHF4bXU5d2FWbTREbXNJRWJU ZXROc0dnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFBiQBgAAw DQYJKoZIhvcNAQELBQADggEBAEab0Z7H/erXndiqudtWNhuXU+UwM/WLUSK8gUKL d175M/SM1QU+hPxdbPv/WmNL45gPb6lVcgPXq/mmc+iE3q26lzAgOYAWJ+aceU3y soqeCi3nZChXoWh2VLYFpIAiZlPxXfm5jXTWRpqKbyawnwm/voDiCe35OWMpmUnQ JOtThPlzISHt2HWMcnGt5ofSG/9G5H5iXEUOYYWn0Cn0uAIFWWH48Sop0V0rJJOZ w6ID/u2aA/B77FBFJHjh/5FLtuzwcvR+KR7BsCSu46/xQpQyLVuf85EiTmfF5LLO OtAuOvXxt5/RFK0cZZNXtT8nRI7vqE0T1s7dz7gurc3X9R4= -----END CERTIFICATE-----Generated at Sat Sep 6 14:16:56 2025 by rpki-client