$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/sQAaxT3us0532Br28ajRzcO2yXQ.roa File: sQAaxT3us0532Br28ajRzcO2yXQ.roa (raw, json) Hash identifier: zBOJZ5fZBxRh2sYaQ2ErnstxIkZE4zrmc7D85Xx87C4= Subject key identifier: B1:00:1A:C5:3D:EE:B3:4E:77:D8:1A:F6:F1:A8:D1:CD:C3:B6:C9:74 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1A30 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/sQAaxT3us0532Br28ajRzcO2yXQ.roa Signing time: Fri 22 Aug 2025 08:53:48 +0000 ROA not before: Fri 22 Aug 2025 08:53:48 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9919 IP address blocks: 115.30.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 03:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6704 (0x1a30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:48 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B1001AC53DEEB34E77D81AF6F1A8D1CDC3B6C974 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d6:25:3b:bf:79:28:5e:14:b9:5f:cf:85:82: 30:9d:03:9a:bb:a4:ae:a6:ad:36:b0:44:ab:27:86: 58:bb:bb:64:bd:82:b7:b8:21:0b:c2:b5:34:a4:f5: 1f:5a:c8:d1:35:ba:14:e5:67:e2:78:c8:4f:b2:95: fd:bb:05:19:62:8e:c1:72:31:07:dd:a2:44:d1:f6: 94:8d:6e:81:e1:11:b8:db:40:c3:19:d1:dc:54:5c: 95:f3:32:5d:82:ee:a7:61:6b:4a:df:ca:3f:04:36: dc:fd:6b:5c:76:c9:e9:07:08:39:75:cd:9d:2b:ac: f4:c4:a9:85:26:0f:db:d1:34:38:c9:b3:be:e4:2e: 11:a0:f9:5d:fa:f0:e3:2c:68:ee:42:96:fc:62:98: 94:a0:88:b2:45:67:03:21:35:55:a5:a8:00:4c:70: df:14:9b:64:eb:6b:c2:e5:85:a2:c9:30:f3:7f:7b: 7a:c6:6c:49:05:b5:25:e3:98:a7:52:c6:e1:98:5d: d9:af:60:7c:c4:d7:d9:43:85:dd:0b:08:59:a2:8a: 8f:6f:23:ae:19:88:58:59:10:cf:9a:43:54:da:e8: 7b:6a:76:ad:19:e3:73:07:85:b1:a8:47:3e:d5:0f: fd:15:7a:e5:22:1e:81:18:e4:d7:17:19:b4:c6:b9: d6:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:00:1A:C5:3D:EE:B3:4E:77:D8:1A:F6:F1:A8:D1:CD:C3:B6:C9:74 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/sQAaxT3us0532Br28ajRzcO2yXQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 115.30.64.0/18 Signature Algorithm: sha256WithRSAEncryption 0e:ae:c6:6e:2b:64:c2:4f:5a:bb:b5:20:ab:54:61:d1:49:41: 7b:41:55:81:da:3d:40:47:9c:44:74:9c:a2:02:01:6a:ce:07: 28:9c:5b:8b:cc:34:0b:4a:ed:2f:ca:b7:c6:61:6b:ba:8c:cf: e6:6d:df:4f:10:d3:4a:5b:a8:d7:2b:f5:28:ae:ab:c4:f0:3d: 72:08:1e:33:29:6c:5a:8a:7e:9e:94:f3:d1:ac:d2:ca:c8:54: ee:b8:d5:24:6e:de:a3:40:3c:34:4f:54:bb:58:88:8f:7b:63: e3:31:5b:70:aa:e9:dd:cd:24:30:76:59:59:93:16:8e:62:84: 7f:e8:c9:cd:13:60:d6:99:04:c5:31:dc:bf:a9:fd:ae:68:43: 2e:58:4b:7c:96:42:15:b1:8a:4e:53:52:05:38:b7:43:64:d0: 41:49:2c:ab:a9:8d:5b:c8:20:47:d2:f2:32:b2:15:cb:92:be: a5:bf:1e:e6:d2:11:37:12:94:0d:e9:d4:69:d0:5b:5c:6c:d3: b9:d3:7d:92:da:e9:a9:1f:2e:0d:e0:ce:39:9e:94:36:3f:c4: ff:c7:03:fd:54:f7:20:d9:6d:42:01:d5:e6:fe:c0:5a:5d:8c: 8c:b7:d0:57:ff:60:d0:50:9d:15:ee:81:92:92:47:6d:d2:a9: d6:80:9a:0f -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGjAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzNDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEIxMDAxQUM1M0RFRUIz NEU3N0Q4MUFGNkYxQThEMUNEQzNCNkM5NzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDC1iU7v3koXhS5X8+FgjCdA5q7pK6mrTawRKsnhli7u2S9gre4 IQvCtTSk9R9ayNE1uhTlZ+J4yE+ylf27BRlijsFyMQfdokTR9pSNboHhEbjbQMMZ 0dxUXJXzMl2C7qdha0rfyj8ENtz9a1x2yekHCDl1zZ0rrPTEqYUmD9vRNDjJs77k LhGg+V368OMsaO5ClvximJSgiLJFZwMhNVWlqABMcN8Um2Tra8LlhaLJMPN/e3rG bEkFtSXjmKdSxuGYXdmvYHzE19lDhd0LCFmiio9vI64ZiFhZEM+aQ1Ta6Htqdq0Z 43MHhbGoRz7VD/0VeuUiHoEY5NcXGbTGudb3AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUsQAaxT3us0532Br28ajRzcO2yXQwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvc1FBYXhUM3VzMDUzMkJyMjhhalJ6 Y08yeVhRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBnMeQDAN BgkqhkiG9w0BAQsFAAOCAQEADq7Gbitkwk9au7Ugq1Rh0UlBe0FVgdo9QEecRHSc ogIBas4HKJxbi8w0C0rtL8q3xmFruozP5m3fTxDTSluo1yv1KK6rxPA9cggeMyls Wop+npTz0azSyshU7rjVJG7eo0A8NE9Uu1iIj3tj4zFbcKrp3c0kMHZZWZMWjmKE f+jJzRNg1pkExTHcv6n9rmhDLlhLfJZCFbGKTlNSBTi3Q2TQQUksq6mNW8ggR9Ly MrIVy5K+pb8e5tIRNxKUDenUadBbXGzTudN9ktrpqR8uDeDOOZ6UNj/E/8cD/VT3 INltQgHV5v7AWl2MjLfQV/9g0FCdFe6BkpJHbdKp1oCaDw== -----END CERTIFICATE-----Generated at Sun Sep 7 23:33:27 2025 by rpki-client