$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/pB6HHLxjcA4MKPhBA7DOwMed8ZY.roa File: pB6HHLxjcA4MKPhBA7DOwMed8ZY.roa (raw, json) Hash identifier: r5YCLoGcKAH7HdhP7gDXQw0TU/MkZsgSQtXM8i840DU= Subject key identifier: A4:1E:87:1C:BC:63:70:0E:0C:28:F8:41:03:B0:CE:C0:C7:9D:F1:96 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1A06 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/pB6HHLxjcA4MKPhBA7DOwMed8ZY.roa Signing time: Fri 22 Aug 2025 08:53:38 +0000 ROA not before: Fri 22 Aug 2025 08:53:38 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9919 IP address blocks: 220.229.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 03:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6662 (0x1a06) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:38 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=A41E871CBC63700E0C28F84103B0CEC0C79DF196 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:37:17:70:e2:8f:ff:7d:ab:d9:84:22:3b:74: 25:84:84:36:06:cb:a8:6b:fd:d0:9d:d9:3e:a6:39: fe:6d:f5:2f:2c:b4:a8:07:86:ab:0f:30:92:2e:68: d8:c5:4f:c1:85:03:8d:77:0f:ac:e6:2f:a9:48:50: 6a:26:87:6f:9d:1e:b8:89:d9:78:bc:e5:f9:a7:81: d3:d5:1c:9f:09:15:70:19:3f:0a:1b:78:df:e0:a0: 0f:3c:21:48:53:98:ac:9a:2e:45:50:0d:47:ca:7a: 78:19:ce:cd:31:46:f1:eb:0f:4b:57:47:34:1d:cd: 8e:33:2c:fc:81:f3:a9:f8:39:ab:21:2f:84:a9:7b: b8:2f:ae:f8:04:e4:35:55:79:0c:10:7d:ce:26:be: e6:0e:46:b0:6e:44:7c:b7:a6:7d:06:e2:11:5a:4c: 82:a6:a9:fd:14:22:9a:d9:db:80:ae:fa:b7:30:24: a3:75:30:2f:49:5d:86:12:1a:51:c2:b1:bf:2a:d5: 39:ed:de:89:5f:88:d4:e2:a8:95:27:9f:d0:95:d7: 89:f8:16:72:b4:3f:f5:6b:be:c6:b7:8a:8d:6e:6f: 6f:ea:63:af:f0:bc:41:ea:20:8d:fa:bf:d8:a0:f3: 30:66:55:f7:b1:f9:01:4e:f0:60:11:cb:76:03:37: 8b:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:1E:87:1C:BC:63:70:0E:0C:28:F8:41:03:B0:CE:C0:C7:9D:F1:96 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/pB6HHLxjcA4MKPhBA7DOwMed8ZY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 220.229.128.0/17 Signature Algorithm: sha256WithRSAEncryption 19:69:9f:bf:1d:02:34:79:2a:c4:b5:33:6b:90:9e:33:eb:e0: 65:41:3b:32:cd:53:91:4b:07:38:34:2a:e8:ff:0b:56:18:fa: 9b:c2:e3:ae:b7:3a:2b:e8:ea:c5:64:a0:3f:1a:55:06:69:2c: b9:88:15:53:a8:ee:f8:d6:30:6e:d1:92:ca:7a:f0:30:df:e7: de:4d:50:4d:b4:60:54:7d:b4:b3:e7:c5:b5:1f:1d:76:80:ce: d2:3e:41:8c:e1:94:f0:ae:94:79:6a:be:72:3a:f8:7c:80:2e: 73:17:b1:31:76:73:3c:6c:5b:98:49:a3:e3:6d:99:97:4f:52: c9:17:65:8e:65:d7:89:21:b4:19:6f:01:5d:71:f1:37:07:0c: ef:84:88:3c:b2:50:0c:36:08:07:e8:fd:13:7f:19:5e:a7:f3: a2:76:0d:ec:10:c3:e6:c7:f0:28:e5:16:9b:42:44:ef:41:c4: 6a:b1:3d:81:10:8b:a6:de:85:b2:7d:1d:e7:2d:aa:16:d9:5e: 48:f9:73:23:b4:1f:c7:a1:5d:b4:86:03:f2:89:2b:ae:ac:4e: c6:92:44:55:c7:52:96:ee:8c:b9:03:73:fc:1d:13:53:22:95: da:a8:85:1a:24:91:0d:89:e3:4d:02:d9:15:20:0e:fd:dd:a6: fd:b2:2a:73 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGgYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzMzhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEE0MUU4NzFDQkM2Mzcw MEUwQzI4Rjg0MTAzQjBDRUMwQzc5REYxOTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3Nxdw4o//favZhCI7dCWEhDYGy6hr/dCd2T6mOf5t9S8stKgH hqsPMJIuaNjFT8GFA413D6zmL6lIUGomh2+dHriJ2Xi85fmngdPVHJ8JFXAZPwob eN/goA88IUhTmKyaLkVQDUfKengZzs0xRvHrD0tXRzQdzY4zLPyB86n4OashL4Sp e7gvrvgE5DVVeQwQfc4mvuYORrBuRHy3pn0G4hFaTIKmqf0UIprZ24Cu+rcwJKN1 MC9JXYYSGlHCsb8q1Tnt3olfiNTiqJUnn9CV14n4FnK0P/Vrvsa3io1ub2/qY6/w vEHqII36v9ig8zBmVfex+QFO8GARy3YDN4vrAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUpB6HHLxjcA4MKPhBA7DOwMed8ZYwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvcEI2SEhMeGpjQTRNS1BoQkE3RE93 TWVkOFpZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB9zlgDAN BgkqhkiG9w0BAQsFAAOCAQEAGWmfvx0CNHkqxLUza5CeM+vgZUE7Ms1TkUsHODQq 6P8LVhj6m8Ljrrc6K+jqxWSgPxpVBmksuYgVU6ju+NYwbtGSynrwMN/n3k1QTbRg VH20s+fFtR8ddoDO0j5BjOGU8K6UeWq+cjr4fIAucxexMXZzPGxbmEmj422Zl09S yRdljmXXiSG0GW8BXXHxNwcM74SIPLJQDDYIB+j9E38ZXqfzonYN7BDD5sfwKOUW m0JE70HEarE9gRCLpt6Fsn0d5y2qFtleSPlzI7Qfx6FdtIYD8okrrqxOxpJEVcdS lu6MuQNz/B0TUyKV2qiFGiSRDYnjTQLZFSAO/d2m/bIqcw== -----END CERTIFICATE-----Generated at Sun Sep 7 23:36:14 2025 by rpki-client