$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/vPtmE_TaLk05yOSTQTqQrK0XIjc.roa File: vPtmE_TaLk05yOSTQTqQrK0XIjc.roa (raw, json) Hash identifier: tky6t9OH+y2G/TG3kUVvMoGO4GCtO5myvuJwn15nT/o= Subject key identifier: BC:FB:66:13:F4:DA:2E:4D:39:C8:E4:93:41:3A:90:AC:AD:17:22:37 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1975 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/vPtmE_TaLk05yOSTQTqQrK0XIjc.roa Signing time: Fri 22 Aug 2025 08:53:01 +0000 ROA not before: Fri 22 Aug 2025 08:53:01 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4780 IP address blocks: 123.205.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6517 (0x1975) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:01 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=BCFB6613F4DA2E4D39C8E493413A90ACAD172237 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:1d:e5:5e:e0:76:38:eb:84:2a:3e:3c:f3:d2: 99:8a:16:5d:8f:2d:77:64:87:40:40:29:e0:2e:c2: 98:77:7e:fc:6f:b3:a6:f5:f0:a9:85:8b:38:8f:cb: 3b:b8:32:b8:98:2e:4b:7b:bc:77:05:27:2c:6f:9c: a2:f5:5c:ca:00:74:f9:cb:6a:d8:94:e1:49:f7:47: 38:ef:b9:7e:5f:74:a8:5d:46:45:a8:60:78:04:bc: 32:e7:4b:90:22:20:a8:6a:8e:63:82:41:d2:dd:cd: 18:5f:8a:38:8a:5e:76:5e:e4:01:ab:0a:33:76:6b: 4d:92:7a:ae:04:ba:8a:4e:8b:f0:84:14:49:ab:e6: d5:a3:3f:3c:b4:28:b0:89:17:9d:ff:4f:80:c9:30: ec:9c:d2:bb:46:40:62:49:81:85:ab:63:81:50:26: 79:84:99:59:c9:4f:2a:47:13:11:c1:1d:40:33:0c: c9:4e:2c:2a:90:69:11:1e:d3:54:c8:1c:66:67:9a: b6:1c:61:59:8e:cd:96:c1:64:95:b4:a8:6f:d3:ac: 7a:e7:0a:b4:10:3f:e9:e4:ea:8c:f0:57:36:08:c4: dc:76:4f:5d:9e:56:bc:22:be:d5:68:23:2f:e1:ee: 40:e1:3a:cf:e4:6e:0c:12:45:e2:58:14:d3:b8:44: 9d:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:FB:66:13:F4:DA:2E:4D:39:C8:E4:93:41:3A:90:AC:AD:17:22:37 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/vPtmE_TaLk05yOSTQTqQrK0XIjc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.205.39.0/24 Signature Algorithm: sha256WithRSAEncryption bc:30:4c:1b:7b:58:55:a6:95:7b:59:66:eb:90:21:5e:e4:41: 43:92:dc:1e:09:bf:94:74:63:e5:62:0d:d1:e6:64:2b:ca:0d: c9:e2:1b:24:52:0d:72:86:f2:94:ae:fe:35:d2:c1:4e:76:ab: 08:e2:d0:ce:a3:ed:b4:71:4d:04:29:71:e6:5c:aa:bc:0d:3b: 12:a3:99:92:ef:ba:31:d4:a4:6a:2b:48:f4:36:cb:f4:36:35: 14:d0:fe:9a:c2:a5:8d:b3:49:9c:d7:72:f8:47:46:6a:96:95: c7:cf:1c:f8:71:27:35:f6:ae:9b:63:ee:98:a0:f9:29:b7:c9: 1a:ae:12:8c:1c:1f:62:45:a4:db:74:20:5a:d4:29:da:a1:1d: 70:8a:b0:6f:87:8b:f0:bb:15:76:06:72:15:0f:f9:ee:b0:7a: 80:23:98:9c:5a:97:bd:61:e1:78:42:dd:90:71:d9:36:3e:54: 19:36:74:88:2b:bc:bd:4a:eb:18:bc:6a:7d:1b:4b:0d:fd:52: eb:a3:f5:77:cc:6d:56:29:7e:95:15:05:f2:ca:24:7d:77:70: d2:89:a1:f1:c3:33:68:cd:ca:3b:27:bd:2c:fc:9a:d2:5d:d2: 4a:7b:98:20:6f:03:91:65:7c:c1:9c:dc:99:6a:2c:a8:9c:1b: 66:1f:10:16 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGXUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzMDFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEJDRkI2NjEzRjREQTJF NEQzOUM4RTQ5MzQxM0E5MEFDQUQxNzIyMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbHeVe4HY464QqPjzz0pmKFl2PLXdkh0BAKeAuwph3fvxvs6b1 8KmFiziPyzu4MriYLkt7vHcFJyxvnKL1XMoAdPnLatiU4Un3RzjvuX5fdKhdRkWo YHgEvDLnS5AiIKhqjmOCQdLdzRhfijiKXnZe5AGrCjN2a02Seq4EuopOi/CEFEmr 5tWjPzy0KLCJF53/T4DJMOyc0rtGQGJJgYWrY4FQJnmEmVnJTypHExHBHUAzDMlO LCqQaREe01TIHGZnmrYcYVmOzZbBZJW0qG/TrHrnCrQQP+nk6ozwVzYIxNx2T12e VrwivtVoIy/h7kDhOs/kbgwSReJYFNO4RJ1rAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUvPtmE/TaLk05yOSTQTqQrK0XIjcwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvdlB0bUVfVGFMazA1eU9TVFFUcVFy SzBYSWpjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHvNJzAN BgkqhkiG9w0BAQsFAAOCAQEAvDBMG3tYVaaVe1lm65AhXuRBQ5LcHgm/lHRj5WIN 0eZkK8oNyeIbJFINcobylK7+NdLBTnarCOLQzqPttHFNBClx5lyqvA07EqOZku+6 MdSkaitI9DbL9DY1FND+msKljbNJnNdy+EdGapaVx88c+HEnNfaum2PumKD5KbfJ Gq4SjBwfYkWk23QgWtQp2qEdcIqwb4eL8LsVdgZyFQ/57rB6gCOYnFqXvWHheELd kHHZNj5UGTZ0iCu8vUrrGLxqfRtLDf1S66P1d8xtVil+lRUF8sokfXdw0omh8cMz aM3KOye9LPya0l3SSnuYIG8DkWV8wZzcmWosqJwbZh8QFg== -----END CERTIFICATE-----Generated at Sat Sep 6 12:07:47 2025 by rpki-client