$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VOCOM/n7qNCUHMoOib-vNybO9uuy4wFzc.roa File: n7qNCUHMoOib-vNybO9uuy4wFzc.roa (raw, json) Hash identifier: JwsFUqKytHtyrcDxW+kUfL/m/ZZQzsPsSkpPoEHZjgo= Subject key identifier: 9F:BA:8D:09:41:CC:A0:E8:9B:FA:F3:72:6C:EF:6E:BB:2E:30:17:37 Certificate issuer: /CN=9E847108EBA0B550BC020FD9B1DC6DEB29E0DBEF Certificate serial: 02B5 Authority key identifier: 9E:84:71:08:EB:A0:B5:50:BC:02:0F:D9:B1:DC:6D:EB:29:E0:DB:EF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/noRxCOugtVC8Ag_Zsdxt6yng2-8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VOCOM/n7qNCUHMoOib-vNybO9uuy4wFzc.roa Signing time: Fri 22 Aug 2025 08:56:31 +0000 ROA not before: Fri 22 Aug 2025 08:56:31 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 63897 IP address blocks: 2400:4460::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/VOCOM/noRxCOugtVC8Ag_Zsdxt6yng2-8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/VOCOM/noRxCOugtVC8Ag_Zsdxt6yng2-8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/noRxCOugtVC8Ag_Zsdxt6yng2-8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 01:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 693 (0x2b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E847108EBA0B550BC020FD9B1DC6DEB29E0DBEF Validity Not Before: Aug 22 08:56:31 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=9FBA8D0941CCA0E89BFAF3726CEF6EBB2E301737 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:dd:f6:a5:99:6f:f5:e4:a0:08:81:f0:88:8f: c1:f1:25:e6:3e:b4:39:be:fb:30:41:d9:7a:97:02: 1c:33:f4:ac:91:ae:70:47:d8:af:2d:f8:1c:fd:7c: 45:0c:f6:64:bf:2e:8b:c9:b7:30:ee:1c:92:15:cb: aa:68:c0:5c:2e:fa:8b:55:2d:cc:77:a4:19:3b:c6: 89:29:96:31:45:5f:1b:b4:a1:0b:47:3b:da:86:32: 5c:17:af:90:03:d8:82:f5:31:e3:ad:6a:54:75:0b: 88:15:36:1d:7b:17:88:6f:33:8c:f2:6c:dd:5e:cf: f6:e4:8c:e2:f4:e1:64:1c:35:52:ad:a6:ef:33:49: b0:ca:23:dc:e9:65:5a:c4:3c:79:ed:f0:8c:27:b8: bc:79:8c:26:b6:40:35:83:99:60:10:64:3f:3c:7a: 19:dc:ad:9c:c0:83:92:f4:ff:9d:90:bc:81:42:c7: 85:f2:5d:40:6b:52:8e:5f:99:c6:d4:b3:a2:99:08: c6:4e:db:64:c0:0d:46:fc:69:8f:94:50:01:7b:87: 47:c2:90:ac:73:a8:e3:d2:a9:e1:f4:45:72:f9:67: 9c:f8:26:08:c5:7c:2b:ca:41:ec:53:04:c5:1b:63: 01:4c:d0:8a:fb:f5:7e:b1:7b:c7:e3:69:51:29:9c: bb:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:BA:8D:09:41:CC:A0:E8:9B:FA:F3:72:6C:EF:6E:BB:2E:30:17:37 X509v3 Authority Key Identifier: keyid:9E:84:71:08:EB:A0:B5:50:BC:02:0F:D9:B1:DC:6D:EB:29:E0:DB:EF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VOCOM/noRxCOugtVC8Ag_Zsdxt6yng2-8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/noRxCOugtVC8Ag_Zsdxt6yng2-8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VOCOM/n7qNCUHMoOib-vNybO9uuy4wFzc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2400:4460::/32 Signature Algorithm: sha256WithRSAEncryption 36:d5:1b:77:85:8b:74:e6:c5:87:c7:84:36:29:49:33:c8:82: 95:f0:1f:b9:07:d1:3b:37:90:bd:da:f0:5f:69:3d:14:cd:5a: 28:1c:a8:b1:6a:50:bb:5f:4d:b5:d0:70:18:16:02:fc:31:98: d0:86:22:e0:ee:33:33:fa:37:89:99:5f:1d:50:98:7e:7a:29: e2:13:e7:d3:3a:52:a4:1a:8f:18:7a:7f:60:d1:c1:c6:6e:b6: be:44:b0:8f:90:df:9a:81:8d:96:f9:31:55:97:78:0e:7b:7c: f7:02:7a:86:37:1f:bf:89:fa:31:30:6d:02:d8:66:01:d2:6d: 0c:98:de:84:4b:a0:fb:f6:41:36:c5:f9:5f:7f:5a:45:ce:6e: 61:0b:0b:af:5b:d9:d2:77:93:da:e5:07:a7:ae:2b:a2:32:e0: cc:0f:82:e5:52:06:77:6e:d6:f2:b1:88:db:9c:e0:9f:5a:ae: 35:52:be:d2:97:5d:f4:60:a5:3d:a2:19:62:68:66:65:35:81: 65:e4:7e:db:43:2b:fb:13:62:54:67:9a:18:53:db:95:b4:77: 77:c5:30:ef:1e:c3:ab:57:a3:1f:98:5b:47:6a:09:24:48:b3: e5:30:75:2f:79:57:c3:e6:75:aa:cc:7a:3b:a0:52:27:b7:67: af:e4:37:e0 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICArUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUU4 NDcxMDhFQkEwQjU1MEJDMDIwRkQ5QjFEQzZERUIyOUUwREJFRjAeFw0yNTA4MjIw ODU2MzFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDlGQkE4RDA5NDFDQ0Ew RTg5QkZBRjM3MjZDRUY2RUJCMkUzMDE3MzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDN3falmW/15KAIgfCIj8HxJeY+tDm++zBB2XqXAhwz9KyRrnBH 2K8t+Bz9fEUM9mS/LovJtzDuHJIVy6powFwu+otVLcx3pBk7xokpljFFXxu0oQtH O9qGMlwXr5AD2IL1MeOtalR1C4gVNh17F4hvM4zybN1ez/bkjOL04WQcNVKtpu8z SbDKI9zpZVrEPHnt8IwnuLx5jCa2QDWDmWAQZD88ehncrZzAg5L0/52QvIFCx4Xy XUBrUo5fmcbUs6KZCMZO22TADUb8aY+UUAF7h0fCkKxzqOPSqeH0RXL5Z5z4JgjF fCvKQexTBMUbYwFM0Ir79X6xe8fjaVEpnLv5AgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUn7qNCUHMoOib+vNybO9uuy4wFzcwHwYDVR0jBBgwFoAUnoRxCOugtVC8Ag/Z sdxt6yng2+8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVk9DT00v bm9SeENPdWd0VkM4QWdfWnNkeHQ2eW5nMi04LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9ub1J4Q091Z3RWQzhBZ19ac2R4dDZ5bmcyLTguY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9WT0NPTS9uN3FOQ1VITW9PaWItdk55Yk85 dXV5NHdGemMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJABE YDANBgkqhkiG9w0BAQsFAAOCAQEANtUbd4WLdObFh8eENilJM8iClfAfuQfROzeQ vdrwX2k9FM1aKByosWpQu19NtdBwGBYC/DGY0IYi4O4zM/o3iZlfHVCYfnop4hPn 0zpSpBqPGHp/YNHBxm62vkSwj5DfmoGNlvkxVZd4Dnt89wJ6hjcfv4n6MTBtAthm AdJtDJjehEug+/ZBNsX5X39aRc5uYQsLr1vZ0neT2uUHp64rojLgzA+C5VIGd27W 8rGI25zgn1quNVK+0pdd9GClPaIZYmhmZTWBZeR+20Mr+xNiVGeaGFPblbR3d8Uw 7x7Dq1ejH5hbR2oJJEiz5TB1L3lXw+Z1qsx6O6BSJ7dnr+Q34A== -----END CERTIFICATE-----Generated at Wed Nov 5 22:20:26 2025 by rpki-client