$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/xUfqxao41qXSAoG6HJVx_QTUr1Q.roa File: xUfqxao41qXSAoG6HJVx_QTUr1Q.roa (raw, json) Hash identifier: 0qa7eKqyYn34gp9yWc5diMjmWLcy1L9bT1j9Y2Rqv2s= Subject key identifier: C5:47:EA:C5:AA:38:D6:A5:D2:02:81:BA:1C:95:71:FD:04:D4:AF:54 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1A21 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/xUfqxao41qXSAoG6HJVx_QTUr1Q.roa Signing time: Fri 22 Aug 2025 08:53:45 +0000 ROA not before: Fri 22 Aug 2025 08:53:45 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4780 IP address blocks: 203.190.16.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6689 (0x1a21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:45 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C547EAC5AA38D6A5D20281BA1C9571FD04D4AF54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:1e:37:d5:4f:96:25:a2:cd:de:d2:91:12:fc: 77:b0:b7:6e:fc:f2:be:e9:ee:ec:9b:6c:8f:00:c9: 36:05:bf:0b:c8:24:9c:69:f4:47:40:53:dd:d7:b0: 1e:d0:cf:e5:7b:b0:a9:69:98:8a:dc:6a:91:7c:4f: fb:bf:8b:5b:87:f3:8a:d1:9d:18:f3:94:29:6d:c9: a7:56:31:d7:4b:92:13:ff:7f:64:f2:14:bd:3f:63: 10:8c:c2:99:d7:c8:11:6d:d7:70:21:21:db:de:64: 35:09:a9:98:ea:c9:62:c7:98:4e:6d:09:d3:11:e3: f6:60:92:79:30:4d:64:ac:94:4b:1a:4b:df:1a:08: 26:5c:cc:98:3a:ef:88:2c:54:30:03:6e:d4:47:b7: dd:8a:f3:2d:77:53:36:ca:fa:d5:6a:57:59:ec:29: fc:71:00:c6:e6:c1:8d:35:db:69:cd:a2:29:bb:fd: da:4d:0d:99:49:22:0a:62:d1:7d:e0:f5:6d:8c:35: 59:ca:4d:a7:23:67:13:44:09:f1:5a:ce:33:3f:2a: 38:20:95:61:1c:ac:4d:50:f6:09:26:13:96:7a:67: de:d4:57:59:8b:d7:14:db:78:1d:30:2d:77:74:2f: f4:5e:32:29:a1:4b:00:53:c8:13:44:b9:cc:ee:c9: aa:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:47:EA:C5:AA:38:D6:A5:D2:02:81:BA:1C:95:71:FD:04:D4:AF:54 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/xUfqxao41qXSAoG6HJVx_QTUr1Q.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.190.16.0/21 Signature Algorithm: sha256WithRSAEncryption bb:a3:f3:f4:c8:cc:8d:cd:0a:33:75:4a:2a:de:12:c8:d2:90: 6c:ef:ea:82:18:8d:04:8d:93:df:e5:c9:7e:35:59:1c:ef:82: af:dc:ea:a1:8a:68:0b:0a:16:75:5e:70:d0:48:2a:b6:5c:2d: f5:15:3a:9e:4c:87:de:70:ed:79:e7:12:b1:1b:c2:16:31:b4: 90:6b:8f:c4:d7:97:ba:f9:ea:0b:86:d4:c6:e4:c2:44:cc:15: 2c:b3:0f:8a:84:f0:5c:5b:ec:b9:20:f3:f9:d9:d9:d9:bc:e3: 0c:ab:2e:9b:2d:d7:4e:71:b7:d7:a9:10:73:cc:b4:6c:d2:f7: 66:33:8f:65:d8:b4:72:e4:1d:cd:f3:7d:18:08:fb:68:23:f9: 15:1c:cb:7a:c5:45:93:fe:00:3f:83:75:44:15:53:78:d6:a8: 83:f5:d9:0a:42:20:07:25:04:c6:79:74:88:d5:11:a1:04:70: 70:0b:38:62:f1:0d:4f:3b:67:4f:06:5b:d7:30:62:15:81:06: 76:d0:9a:f5:3d:16:75:8d:9e:44:73:3a:5b:1d:21:a5:ca:6d: 4d:87:0a:35:2a:c5:3b:fb:1c:f3:c6:81:56:85:3f:24:da:cf: f5:d9:1f:28:62:ab:82:7e:44:d7:b3:d1:9d:23:24:35:b6:ee: d2:b4:4f:fe -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGiEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzNDVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEM1NDdFQUM1QUEzOEQ2 QTVEMjAyODFCQTFDOTU3MUZEMDRENEFGNTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDuHjfVT5Ylos3e0pES/Hewt2788r7p7uybbI8AyTYFvwvIJJxp 9EdAU93XsB7Qz+V7sKlpmIrcapF8T/u/i1uH84rRnRjzlCltyadWMddLkhP/f2Ty FL0/YxCMwpnXyBFt13AhIdveZDUJqZjqyWLHmE5tCdMR4/ZgknkwTWSslEsaS98a CCZczJg674gsVDADbtRHt92K8y13UzbK+tVqV1nsKfxxAMbmwY0122nNoim7/dpN DZlJIgpi0X3g9W2MNVnKTacjZxNECfFazjM/KjgglWEcrE1Q9gkmE5Z6Z97UV1mL 1xTbeB0wLXd0L/ReMimhSwBTyBNEuczuyaojAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUxUfqxao41qXSAoG6HJVx/QTUr1QwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMveFVmcXhhbzQxcVhTQW9HNkhKVnhf UVRVcjFRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8u+EDAN BgkqhkiG9w0BAQsFAAOCAQEAu6Pz9MjMjc0KM3VKKt4SyNKQbO/qghiNBI2T3+XJ fjVZHO+Cr9zqoYpoCwoWdV5w0Egqtlwt9RU6nkyH3nDteecSsRvCFjG0kGuPxNeX uvnqC4bUxuTCRMwVLLMPioTwXFvsuSDz+dnZ2bzjDKsumy3XTnG316kQc8y0bNL3 ZjOPZdi0cuQdzfN9GAj7aCP5FRzLesVFk/4AP4N1RBVTeNaog/XZCkIgByUExnl0 iNURoQRwcAs4YvENTztnTwZb1zBiFYEGdtCa9T0WdY2eRHM6Wx0hpcptTYcKNSrF O/sc88aBVoU/JNrP9dkfKGKrgn5E17PRnSMkNbbu0rRP/g== -----END CERTIFICATE-----Generated at Sat Sep 6 12:07:57 2025 by rpki-client