$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/tNhP07UN5Ul3vXApZRH8HzD7s6A.roa File: tNhP07UN5Ul3vXApZRH8HzD7s6A.roa (raw, json) Hash identifier: ishRIcqdY4b+FiJQTLxftzO50NxcVzeAorETGMMecjw= Subject key identifier: B4:D8:4F:D3:B5:0D:E5:49:77:BD:70:29:65:11:FC:1F:30:FB:B3:A0 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 19D9 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tNhP07UN5Ul3vXApZRH8HzD7s6A.roa Signing time: Fri 22 Aug 2025 08:53:27 +0000 ROA not before: Fri 22 Aug 2025 08:53:27 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4780 IP address blocks: 106.105.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6617 (0x19d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:27 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B4D84FD3B50DE54977BD70296511FC1F30FBB3A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:74:18:0e:17:10:fa:b9:0e:0f:0d:5e:63:e9: 5a:2f:91:9f:fa:3d:cd:3e:46:6d:dd:34:96:78:69: 51:12:f3:c3:e2:df:e8:9b:f8:be:71:90:3b:97:3f: 86:b5:6c:b1:f8:47:dc:6d:74:88:5a:7b:d5:da:22: e6:0c:d5:0c:3a:c8:e0:c1:6e:52:52:cf:be:08:28: 9c:bd:94:8d:1a:84:99:69:14:63:95:44:67:87:de: 5e:42:21:bf:d5:d9:84:7a:1d:72:e8:47:0d:7f:61: fe:0f:91:84:f9:1e:9a:69:82:cc:b5:a2:1d:ca:61: d7:43:fe:72:8f:9d:f1:00:d1:98:c7:57:5a:99:63: e0:b7:8f:fe:43:9d:ce:4a:fe:64:f7:7f:85:02:8f: 39:a6:c5:c0:5f:2e:be:eb:27:df:22:5b:8d:21:5e: b0:c6:2a:38:19:0e:09:c4:63:e5:73:c9:0f:9c:c2: b1:1e:39:23:7f:57:23:36:de:52:6c:43:4a:a0:72: 3b:bc:bf:33:81:fb:2b:69:d9:f6:25:95:11:54:29: e0:ae:0d:7a:97:96:8c:f4:8e:74:c2:36:2a:bc:67: e8:f8:16:29:17:15:b4:a1:1e:e2:e7:00:69:1d:f7: 31:f1:34:02:fc:db:bd:f4:3c:7e:68:bf:bb:47:64: ce:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:D8:4F:D3:B5:0D:E5:49:77:BD:70:29:65:11:FC:1F:30:FB:B3:A0 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tNhP07UN5Ul3vXApZRH8HzD7s6A.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.105.128.0/19 Signature Algorithm: sha256WithRSAEncryption 31:bc:2e:4e:93:56:4b:73:63:db:3e:ec:1e:4e:35:83:9d:f4: 55:98:f9:55:97:e3:e9:1a:8d:ea:ff:f5:03:e1:5d:e5:f5:46: 74:d0:3d:34:6b:a9:4a:0a:fa:13:18:1d:45:5d:c5:bb:fa:69: 5c:b1:da:9d:f4:7d:e7:1f:af:37:a9:d6:d9:bb:ce:c3:b8:d7: 17:ac:34:e6:8b:4e:b1:5c:97:dc:87:46:19:21:28:63:ca:aa: c7:b5:82:5e:b5:e4:75:63:cf:38:3e:6c:75:fd:ea:e8:12:8f: 32:42:a4:a5:18:86:76:35:52:cc:ab:79:ce:2d:1f:99:2d:de: eb:8b:88:d3:00:48:e0:e6:49:32:7f:11:20:e4:fc:1e:3a:b4: 92:7b:10:98:0d:d9:ab:16:5d:2a:da:9a:07:31:dc:a0:c0:19: 81:18:22:a1:6c:64:e2:92:73:70:27:8f:eb:d2:fc:db:62:0d: 52:d2:36:37:a8:e7:41:65:b8:72:db:00:7f:2d:ff:80:e5:4a: fd:a3:ec:c8:36:f0:13:76:53:11:c3:a1:af:0c:16:f4:16:f7: b9:62:e0:97:17:73:94:16:c2:cc:a7:79:4b:25:00:5c:a8:80: ef:13:23:e6:87:d7:3b:e4:a0:93:4a:3a:d2:15:03:ad:f3:35: 65:9c:f3:c7 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGdkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzMjdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEI0RDg0RkQzQjUwREU1 NDk3N0JENzAyOTY1MTFGQzFGMzBGQkIzQTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPdBgOFxD6uQ4PDV5j6VovkZ/6Pc0+Rm3dNJZ4aVES88Pi3+ib +L5xkDuXP4a1bLH4R9xtdIhae9XaIuYM1Qw6yODBblJSz74IKJy9lI0ahJlpFGOV RGeH3l5CIb/V2YR6HXLoRw1/Yf4PkYT5Hpppgsy1oh3KYddD/nKPnfEA0ZjHV1qZ Y+C3j/5Dnc5K/mT3f4UCjzmmxcBfLr7rJ98iW40hXrDGKjgZDgnEY+VzyQ+cwrEe OSN/VyM23lJsQ0qgcju8vzOB+ytp2fYllRFUKeCuDXqXloz0jnTCNiq8Z+j4FikX FbShHuLnAGkd9zHxNAL82730PH5ov7tHZM4zAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUtNhP07UN5Ul3vXApZRH8HzD7s6AwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvdE5oUDA3VU41VWwzdlhBcFpSSDhI ekQ3czZBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBWppgDAN BgkqhkiG9w0BAQsFAAOCAQEAMbwuTpNWS3Nj2z7sHk41g530VZj5VZfj6RqN6v/1 A+Fd5fVGdNA9NGupSgr6ExgdRV3Fu/ppXLHanfR95x+vN6nW2bvOw7jXF6w05otO sVyX3IdGGSEoY8qqx7WCXrXkdWPPOD5sdf3q6BKPMkKkpRiGdjVSzKt5zi0fmS3e 64uI0wBI4OZJMn8RIOT8Hjq0knsQmA3ZqxZdKtqaBzHcoMAZgRgioWxk4pJzcCeP 69L822INUtI2N6jnQWW4ctsAfy3/gOVK/aPsyDbwE3ZTEcOhrwwW9Bb3uWLglxdz lBbCzKd5SyUAXKiA7xMj5ofXO+Sgk0o60hUDrfM1ZZzzxw== -----END CERTIFICATE-----Generated at Sat Sep 6 12:07:56 2025 by rpki-client