$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/qp-vPH-s74P56PEqEE0r1jF_x7A.roa File: qp-vPH-s74P56PEqEE0r1jF_x7A.roa (raw, json) Hash identifier: +r0nS9P7pK2oAL4mf/LQvxAWp0xAAkMVDoRop9zMdX0= Subject key identifier: AA:9F:AF:3C:7F:AC:EF:83:F9:E8:F1:2A:10:4D:2B:D6:31:7F:C7:B0 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1AA5 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/qp-vPH-s74P56PEqEE0r1jF_x7A.roa Signing time: Wed 27 Aug 2025 09:16:42 +0000 ROA not before: Wed 27 Aug 2025 09:16:42 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131627 IP address blocks: 61.61.144.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6821 (0x1aa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 27 09:16:42 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=AA9FAF3C7FACEF83F9E8F12A104D2BD6317FC7B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b4:48:dc:f3:4a:77:e8:d8:44:1f:81:b9:5e: 32:f7:c8:dd:f0:39:ca:53:a6:42:a4:4c:6d:47:8b: e0:53:93:52:fa:01:76:db:7e:a2:3c:e4:5f:e3:e5: 09:79:74:3b:a2:d6:4d:e8:b7:bd:49:28:9f:a5:ff: 73:e8:67:77:2e:b5:d9:0b:00:3f:dc:86:3e:f4:de: cc:95:2a:33:23:1d:46:1b:48:25:51:c8:63:da:12: 93:1d:77:8d:ec:0d:f8:f2:ea:3a:7f:1c:66:f1:33: 7c:58:81:3c:48:00:58:e4:80:e6:25:75:d3:9e:3d: 5f:33:b3:d7:72:8c:e6:66:0e:18:a6:78:5d:b9:ae: 97:73:30:08:f8:87:90:92:fa:3b:c0:e7:e3:48:f0: ae:be:be:12:d5:28:ba:3f:9b:1c:2e:cb:e9:f0:56: d0:f5:2c:74:42:eb:2b:12:e0:e4:be:df:1a:39:87: be:f9:94:f0:45:20:d8:80:d0:2d:25:f7:b0:49:10: 9e:a4:bd:52:42:21:05:d2:be:ed:e6:f7:96:5c:78: 1f:2e:7b:d1:2e:7b:f1:b4:2a:40:d2:e5:63:7a:94: 23:c3:eb:89:33:94:b8:9a:e1:7a:92:2b:f7:be:a9: ea:b7:d1:1e:75:8d:09:53:90:61:24:85:50:57:7d: b1:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:9F:AF:3C:7F:AC:EF:83:F9:E8:F1:2A:10:4D:2B:D6:31:7F:C7:B0 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/qp-vPH-s74P56PEqEE0r1jF_x7A.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.144.0/21 Signature Algorithm: sha256WithRSAEncryption 65:57:f6:08:25:81:ee:3f:b6:42:7c:fe:f4:c0:06:26:56:0b: 44:87:e5:76:1b:ba:bc:d2:fd:ec:54:b5:9a:fd:6a:02:b1:43: 79:96:35:b0:c9:0f:cb:c5:43:46:4f:c6:f3:77:cc:93:16:92: 0b:84:a4:2d:99:35:70:2c:ce:ca:0c:4c:50:5c:cf:20:83:0b: a9:4b:4c:b7:cc:9d:b6:90:2c:22:53:ba:7f:60:4c:00:1d:a4: e6:40:02:c4:68:4a:07:8b:f8:31:81:09:f6:bc:b0:23:2a:c0: 19:95:7d:8f:e3:43:63:0e:c5:b9:f9:03:03:c8:39:e4:e3:c5: e6:08:61:f4:a5:a2:c1:4d:a8:ba:d7:6d:32:09:48:8c:78:81: 1f:10:14:e9:90:fa:a7:7b:5f:4a:58:6d:9d:49:e0:01:f3:02: 76:22:99:ea:1b:af:ba:70:eb:b0:24:b0:94:86:5a:d4:8b:b4: c8:6f:14:c0:dd:16:cf:e8:57:78:45:a0:46:fa:6e:cb:08:24: a2:e5:bd:24:4f:b1:ef:3e:2c:2b:17:31:97:8f:39:9a:ef:6c: 2a:f9:48:c6:c4:ae:5e:85:32:11:0f:46:62:be:55:5f:ba:30: 56:df:9e:fe:13:82:8f:c2:f4:09:bb:47:e0:9f:a6:41:91:e5: dc:c4:c5:62 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGqUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4Mjcw OTE2NDJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEFBOUZBRjNDN0ZBQ0VG ODNGOUU4RjEyQTEwNEQyQkQ2MzE3RkM3QjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+tEjc80p36NhEH4G5XjL3yN3wOcpTpkKkTG1Hi+BTk1L6AXbb fqI85F/j5Ql5dDui1k3ot71JKJ+l/3PoZ3cutdkLAD/chj703syVKjMjHUYbSCVR yGPaEpMdd43sDfjy6jp/HGbxM3xYgTxIAFjkgOYlddOePV8zs9dyjOZmDhimeF25 rpdzMAj4h5CS+jvA5+NI8K6+vhLVKLo/mxwuy+nwVtD1LHRC6ysS4OS+3xo5h775 lPBFINiA0C0l97BJEJ6kvVJCIQXSvu3m95ZceB8ue9Eue/G0KkDS5WN6lCPD64kz lLia4XqSK/e+qeq30R51jQlTkGEkhVBXfbHDAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUqp+vPH+s74P56PEqEE0r1jF/x7AwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvcXAtdlBILXM3NFA1NlBFcUVFMHIx akZfeDdBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAz09kDAN BgkqhkiG9w0BAQsFAAOCAQEAZVf2CCWB7j+2Qnz+9MAGJlYLRIfldhu6vNL97FS1 mv1qArFDeZY1sMkPy8VDRk/G83fMkxaSC4SkLZk1cCzOygxMUFzPIIMLqUtMt8yd tpAsIlO6f2BMAB2k5kACxGhKB4v4MYEJ9rywIyrAGZV9j+NDYw7FufkDA8g55OPF 5ghh9KWiwU2outdtMglIjHiBHxAU6ZD6p3tfSlhtnUngAfMCdiKZ6huvunDrsCSw lIZa1Iu0yG8UwN0Wz+hXeEWgRvpuywgkouW9JE+x7z4sKxcxl485mu9sKvlIxsSu XoUyEQ9GYr5VX7owVt+e/hOCj8L0CbtH4J+mQZHl3MTFYg== -----END CERTIFICATE-----Generated at Sat Sep 6 13:50:55 2025 by rpki-client