$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/bXWQ0rXcaoaHeNvxC-BHcAoiLxY.roa File: bXWQ0rXcaoaHeNvxC-BHcAoiLxY.roa (raw, json) Hash identifier: QRsF3kucUP+OXMuqwL3AiP/lc97FNfrCz9ZSRSQBvSw= Subject key identifier: 6D:75:90:D2:B5:DC:6A:86:87:78:DB:F1:0B:E0:47:70:0A:22:2F:16 Certificate issuer: /CN=A5A6AC38EE68C364CF79188F06427E9C766D4C1A Certificate serial: 031A Authority key identifier: A5:A6:AC:38:EE:68:C3:64:CF:79:18:8F:06:42:7E:9C:76:6D:4C:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/paasOO5ow2TPeRiPBkJ-nHZtTBo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/bXWQ0rXcaoaHeNvxC-BHcAoiLxY.roa Signing time: Fri 22 Aug 2025 09:00:47 +0000 ROA not before: Fri 22 Aug 2025 09:00:47 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 134823 IP address blocks: 2400:c9e0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/paasOO5ow2TPeRiPBkJ-nHZtTBo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/paasOO5ow2TPeRiPBkJ-nHZtTBo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/paasOO5ow2TPeRiPBkJ-nHZtTBo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 794 (0x31a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A5A6AC38EE68C364CF79188F06427E9C766D4C1A Validity Not Before: Aug 22 09:00:47 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=6D7590D2B5DC6A868778DBF10BE047700A222F16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b1:5c:28:48:7e:0c:a3:86:0e:e3:41:c4:c2: 16:a5:c7:11:7d:bd:38:16:a7:99:b5:d6:a4:c9:d5: b5:e2:cb:1d:52:be:68:ab:e7:62:24:c5:ce:54:b5: 3b:67:72:7c:d3:82:6d:af:55:b3:5c:cd:35:e6:d3: dc:0c:3a:33:56:f3:cb:5b:84:b7:8a:e8:2f:7e:42: 3e:78:3b:c7:c4:a0:af:97:36:a9:6d:b2:24:bb:16: 17:bc:22:43:b3:27:c7:6f:40:fb:93:f5:49:33:c6: 37:79:54:e7:50:50:c2:e6:91:9a:b0:fa:3d:02:36: 5c:33:76:c7:d5:8b:87:2a:c1:03:d2:32:c9:35:58: 85:c9:4c:7f:15:02:7e:f1:50:8e:9a:ad:c8:bc:61: f3:67:9e:4a:a7:d0:c4:53:38:02:a1:f1:15:9a:44: 4d:e1:4a:67:ec:48:16:27:c2:51:ca:fc:71:a0:b6: 90:06:91:5d:68:1d:f6:9e:56:0d:46:03:0a:c7:33: 8f:e2:23:01:ce:fa:53:1f:82:e6:c4:ed:d2:aa:db: fd:3a:2f:84:a0:07:90:0c:d2:00:0a:96:ce:d4:9f: 6a:97:57:6a:55:fb:8f:f2:00:5a:c0:ea:4a:1b:e3: bb:d4:02:52:5b:b6:40:b3:51:ef:7b:1e:fc:a2:71: d7:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:75:90:D2:B5:DC:6A:86:87:78:DB:F1:0B:E0:47:70:0A:22:2F:16 X509v3 Authority Key Identifier: keyid:A5:A6:AC:38:EE:68:C3:64:CF:79:18:8F:06:42:7E:9C:76:6D:4C:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/paasOO5ow2TPeRiPBkJ-nHZtTBo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/paasOO5ow2TPeRiPBkJ-nHZtTBo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/bXWQ0rXcaoaHeNvxC-BHcAoiLxY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2400:c9e0::/32 Signature Algorithm: sha256WithRSAEncryption 28:dc:bf:1c:24:f1:d9:6b:c5:02:24:e2:cb:e8:71:1f:e4:a2: 0e:65:6b:eb:4b:0e:2e:0c:6e:6b:d4:26:fb:5c:1f:d0:0a:de: 26:2e:08:ca:a8:82:d2:55:01:83:24:8a:27:8d:36:aa:dc:03: 37:f4:2a:82:1f:5b:c1:de:cc:50:1d:fb:5d:a6:19:c0:9c:c3: 57:1c:b3:77:3b:7c:0f:a6:51:b3:cb:be:c3:41:80:83:f2:8e: 06:15:eb:bf:34:af:8b:f9:5d:1d:dc:56:3a:84:01:7a:a9:5b: 56:aa:7e:be:5e:02:24:92:93:60:6d:56:05:ba:1a:8e:65:77: 1b:33:60:3b:de:2a:7b:76:a1:38:83:e3:01:19:f1:64:f9:ea: bc:aa:a3:3e:86:64:9f:78:46:ed:67:0a:ed:a6:68:26:f2:7e: 1c:06:9c:4f:c9:2d:2a:ab:e7:fe:cb:f7:0c:7c:00:3c:3e:a0: df:30:4e:a8:a7:99:5d:ba:b6:74:39:d9:0c:fd:ef:d5:c4:07: b1:ab:ef:8b:ee:9f:bf:4b:ac:a1:ef:3d:88:26:62:b0:06:21: b2:ba:17:cd:77:52:64:b5:d0:e1:45:08:71:e3:71:fe:e0:75: 0d:5c:99:ad:0a:e4:8b:19:d9:b0:07:94:51:5e:84:70:ca:a0: ed:ad:1c:7b -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgICAxowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTVB NkFDMzhFRTY4QzM2NENGNzkxODhGMDY0MjdFOUM3NjZENEMxQTAeFw0yNTA4MjIw OTAwNDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDZENzU5MEQyQjVEQzZB ODY4Nzc4REJGMTBCRTA0NzcwMEEyMjJGMTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+sVwoSH4Mo4YO40HEwhalxxF9vTgWp5m11qTJ1bXiyx1Svmir 52Ikxc5UtTtncnzTgm2vVbNczTXm09wMOjNW88tbhLeK6C9+Qj54O8fEoK+XNqlt siS7Fhe8IkOzJ8dvQPuT9Ukzxjd5VOdQUMLmkZqw+j0CNlwzdsfVi4cqwQPSMsk1 WIXJTH8VAn7xUI6arci8YfNnnkqn0MRTOAKh8RWaRE3hSmfsSBYnwlHK/HGgtpAG kV1oHfaeVg1GAwrHM4/iIwHO+lMfgubE7dKq2/06L4SgB5AM0gAKls7Un2qXV2pV +4/yAFrA6kob47vUAlJbtkCzUe97Hvyicdd9AgMBAAGjggH1MIIB8TAdBgNVHQ4E FgQUbXWQ0rXcaoaHeNvxC+BHcAoiLxYwHwYDVR0jBBgwFoAUpaasOO5ow2TPeRiP BkJ+nHZtTBowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQlJJQ0tT SU5DL3BhYXNPTzVvdzJUUGVSaVBCa0otbkhadFRCby5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvcGFhc09PNW93MlRQZVJpUEJrSi1uSFp0VEJvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQlJJQ0tTSU5DL2JYV1EwclhjYW9h SGVOdnhDLUJIY0FvaUx4WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAkAMngMA0GCSqGSIb3DQEBCwUAA4IBAQAo3L8cJPHZa8UCJOLL6HEf5KIO ZWvrSw4uDG5r1Cb7XB/QCt4mLgjKqILSVQGDJIonjTaq3AM39CqCH1vB3sxQHftd phnAnMNXHLN3O3wPplGzy77DQYCD8o4GFeu/NK+L+V0d3FY6hAF6qVtWqn6+XgIk kpNgbVYFuhqOZXcbM2A73ip7dqE4g+MBGfFk+eq8qqM+hmSfeEbtZwrtpmgm8n4c BpxPyS0qq+f+y/cMfAA8PqDfME6op5ldurZ0OdkM/e/VxAexq++L7p+/S6yh7z2I JmKwBiGyuhfNd1JktdDhRQhx43H+4HUNXJmtCuSLGdmwB5RRXoRwyqDtrRx7 -----END CERTIFICATE-----Generated at Sun Aug 24 07:17:45 2025 by rpki-client