$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/stqYj9tPkTW9IzouY_ib102LUFQ.roa File: stqYj9tPkTW9IzouY_ib102LUFQ.roa (raw, json) Hash identifier: ivLFvrwS13WgWgv9oUZ7wa1ip+mReukAaRzuaE2mcVo= Subject key identifier: B2:DA:98:8F:DB:4F:91:35:BD:23:3A:2E:63:F8:9B:D7:4D:8B:50:54 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 19F1 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/stqYj9tPkTW9IzouY_ib102LUFQ.roa Signing time: Fri 22 Aug 2025 08:53:33 +0000 ROA not before: Fri 22 Aug 2025 08:53:33 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4780 IP address blocks: 112.104.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6641 (0x19f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:33 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B2DA988FDB4F9135BD233A2E63F89BD74D8B5054 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:8f:bc:0b:84:1a:02:f0:41:6b:96:7c:b2:01: 79:81:3a:2c:56:01:ba:90:82:32:36:73:0d:02:c8: bb:a7:3d:4b:fe:85:48:c3:19:c4:9b:1d:42:ce:0b: e2:ec:ed:30:2d:cc:09:43:bf:ca:80:7b:57:53:6c: de:f4:97:a1:22:08:2b:08:57:01:2b:a2:5b:c9:7d: 09:bc:a2:f9:ff:56:f6:b2:cc:77:ee:b7:15:53:b1: 55:c4:4a:54:dc:c4:48:c2:b5:d1:5a:39:75:aa:2e: be:c6:28:70:04:36:9c:92:01:0f:bc:2c:28:5e:fc: 9f:17:6e:70:8d:29:7c:3f:a0:b0:cb:a4:3e:03:9d: 85:89:98:88:1b:5e:3b:80:13:be:e8:30:ad:92:1b: a8:86:ee:59:66:3d:73:cd:30:43:74:b9:dd:f4:7c: a0:ba:04:6f:27:b5:3d:2b:b5:bd:c2:36:1e:9f:4c: d7:61:f1:92:f7:89:c6:24:99:8e:99:be:10:b1:57: 65:58:e5:64:c0:a6:8f:06:bb:9f:1e:91:0e:70:d6: f2:17:ed:67:7f:5f:bb:62:0e:ec:62:75:cf:df:26: d1:c2:da:42:5f:e2:2b:7c:0f:a1:82:1d:9e:d4:ef: 16:2e:66:6b:ca:56:d6:ce:e0:68:bc:cc:6b:d0:68: 30:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:DA:98:8F:DB:4F:91:35:BD:23:3A:2E:63:F8:9B:D7:4D:8B:50:54 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/stqYj9tPkTW9IzouY_ib102LUFQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 112.104.0.0/15 Signature Algorithm: sha256WithRSAEncryption 7a:0e:3e:94:36:f3:6d:8d:51:22:3b:91:2e:5a:58:39:e1:35: a6:f1:d9:47:59:d7:85:88:14:a5:87:33:4c:a2:d6:60:20:87: 26:8f:71:cd:1f:25:00:b4:c7:a0:fe:5a:42:14:44:5b:91:24: ca:8e:7f:7b:6d:ac:42:71:1d:a4:92:a5:95:d3:40:be:69:e3: 36:0e:1b:d7:38:a6:de:40:1e:3c:7e:3d:9c:ae:ce:39:d8:89: 32:53:21:7b:ac:24:da:ed:d4:d5:0a:42:1c:ce:41:fb:fb:8e: 8d:19:40:b7:fd:e3:37:35:47:12:69:8b:43:a4:43:9f:19:1c: 26:a8:f1:ed:bb:f1:e2:e7:a1:2b:f8:db:ad:a4:45:8a:e6:52: a6:5e:bf:48:c3:74:d5:5d:fd:6a:d8:a6:39:14:fd:70:ec:7e: 5b:a4:a2:f7:d1:c5:cb:24:be:76:b3:87:05:66:15:9b:81:42: b2:c9:7e:f5:ba:90:62:65:7f:4d:f5:64:75:22:0d:38:fe:b5: 7f:e3:d7:3d:4d:4e:41:cd:5b:10:7e:46:79:7d:67:17:a8:c7: 48:ed:6f:4d:dd:aa:db:f6:4a:54:d2:19:cb:68:78:69:43:ea: 7b:c9:76:a3:0f:24:e1:87:6f:cf:5d:10:c0:1c:33:02:fd:a1: 1a:dc:5c:37 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICGfEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzMzNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEIyREE5ODhGREI0Rjkx MzVCRDIzM0EyRTYzRjg5QkQ3NEQ4QjUwNTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDcj7wLhBoC8EFrlnyyAXmBOixWAbqQgjI2cw0CyLunPUv+hUjD GcSbHULOC+Ls7TAtzAlDv8qAe1dTbN70l6EiCCsIVwErolvJfQm8ovn/VvayzHfu txVTsVXESlTcxEjCtdFaOXWqLr7GKHAENpySAQ+8LChe/J8XbnCNKXw/oLDLpD4D nYWJmIgbXjuAE77oMK2SG6iG7llmPXPNMEN0ud30fKC6BG8ntT0rtb3CNh6fTNdh 8ZL3icYkmY6ZvhCxV2VY5WTApo8Gu58ekQ5w1vIX7Wd/X7tiDuxidc/fJtHC2kJf 4it8D6GCHZ7U7xYuZmvKVtbO4Gi8zGvQaDAtAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUstqYj9tPkTW9IzouY/ib102LUFQwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvc3RxWWo5dFBrVFc5SXpvdVlfaWIx MDJMVUZRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAXBoMA0G CSqGSIb3DQEBCwUAA4IBAQB6Dj6UNvNtjVEiO5EuWlg54TWm8dlHWdeFiBSlhzNM otZgIIcmj3HNHyUAtMeg/lpCFERbkSTKjn97baxCcR2kkqWV00C+aeM2DhvXOKbe QB48fj2crs452IkyUyF7rCTa7dTVCkIczkH7+46NGUC3/eM3NUcSaYtDpEOfGRwm qPHtu/Hi56Er+NutpEWK5lKmXr9Iw3TVXf1q2KY5FP1w7H5bpKL30cXLJL52s4cF ZhWbgUKyyX71upBiZX9N9WR1Ig04/rV/49c9TU5BzVsQfkZ5fWcXqMdI7W9N3arb 9kpU0hnLaHhpQ+p7yXajDyThh2/PXRDAHDMC/aEa3Fw3 -----END CERTIFICATE-----Generated at Sat Sep 6 12:07:47 2025 by rpki-client