$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/4LpwYTMkXnzrv5GoLeiV-u4AYE0.roa File: 4LpwYTMkXnzrv5GoLeiV-u4AYE0.roa (raw, json) Hash identifier: tcwkolQ1VSS2+2oT/VXX+d3DL14C0vXzZ6zu9M18OdM= Subject key identifier: E0:BA:70:61:33:24:5E:7C:EB:BF:91:A8:2D:E8:95:FA:EE:00:60:4D Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1A95 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/4LpwYTMkXnzrv5GoLeiV-u4AYE0.roa Signing time: Wed 27 Aug 2025 09:12:37 +0000 ROA not before: Wed 27 Aug 2025 09:12:37 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9918 IP address blocks: 61.61.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 17:56:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6805 (0x1a95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 27 09:12:37 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E0BA706133245E7CEBBF91A82DE895FAEE00604D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:cf:f5:ce:4e:e1:13:a4:83:10:8e:10:eb:fc: 94:13:f8:b4:35:ec:cc:d4:f3:42:eb:51:95:94:33: 4c:3f:08:6c:b6:c3:0f:ba:ac:7e:d9:0c:bd:cc:97: d1:dc:9b:34:04:ae:c9:04:02:23:13:95:aa:56:55: 45:c8:79:59:f8:f2:72:d9:02:a9:8f:27:c3:44:ff: 3f:10:79:d7:01:c3:19:14:cb:2b:47:2c:e3:42:83: e4:d2:e0:5c:c6:26:f7:54:1e:ba:a0:f2:66:a5:8c: b9:f4:40:75:2f:ef:2f:c5:4e:65:39:bc:6a:a9:af: 12:bf:0d:b9:cc:a9:fb:cd:b8:63:21:06:04:ed:bc: 38:27:a4:46:40:43:e5:fe:eb:61:20:d4:d4:71:ba: 0d:6c:25:15:df:a3:0e:ff:2d:62:e4:a9:c5:12:79: a0:b4:86:2a:d2:ac:68:d0:73:27:a1:68:63:1a:85: df:95:ff:1f:94:23:07:f5:19:6f:43:89:21:62:1f: 2a:3d:bb:2f:83:dd:65:3c:e0:3d:a4:30:67:b5:43: 2a:21:2a:e8:8c:19:21:d3:2b:c7:ca:6e:e4:b9:72: 58:d4:fa:66:0b:63:1d:d2:a7:df:a9:e8:01:83:33: dd:0f:f4:d8:48:26:77:e3:8b:4f:94:70:5d:0c:dc: 97:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:BA:70:61:33:24:5E:7C:EB:BF:91:A8:2D:E8:95:FA:EE:00:60:4D X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/4LpwYTMkXnzrv5GoLeiV-u4AYE0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.0.0/17 Signature Algorithm: sha256WithRSAEncryption 1d:ab:7b:7f:d1:df:10:b7:23:ed:27:f9:e5:e6:56:00:bb:de: 70:53:86:62:84:f7:1f:69:a1:9d:30:e5:82:fd:b6:fe:0c:93: b7:59:60:7a:00:47:bb:3e:d4:e8:8b:fb:1a:2f:58:9f:d7:2d: 29:85:6c:2d:70:da:eb:11:b0:cd:b5:8f:2d:56:20:21:93:af: 5f:85:8b:49:2a:ab:a6:d3:b5:be:c9:98:ba:52:de:0f:53:12: 89:64:1a:4d:0b:af:b4:ce:9a:de:bd:fd:98:68:8e:82:d7:a4: 32:50:7d:49:0c:98:04:01:b3:7d:07:a8:1f:63:c3:31:30:3d: a7:1e:8f:67:65:1f:64:38:80:19:72:16:5d:cf:c8:b1:62:a7: be:5f:ef:58:0f:18:1f:49:23:2b:b1:3d:0c:69:a8:8f:77:ab: 11:dd:e3:e8:5c:f0:e8:0e:60:ef:6c:49:65:46:05:51:e5:fe: f6:db:67:29:f1:ac:c7:22:56:df:8f:f5:d9:bc:3b:09:42:1d: 0e:14:26:3f:a8:fd:91:90:77:10:99:5b:f1:56:4b:00:c9:04: 4f:41:a2:54:a0:c5:e0:b3:ac:e4:0e:c3:30:0f:2f:57:45:1d: f6:60:7e:50:0f:2d:e0:29:62:51:9e:1f:12:a0:a2:bc:2c:c2: 18:2e:c8:48 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGpUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4Mjcw OTEyMzdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEUwQkE3MDYxMzMyNDVF N0NFQkJGOTFBODJERTg5NUZBRUUwMDYwNEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRz/XOTuETpIMQjhDr/JQT+LQ17MzU80LrUZWUM0w/CGy2ww+6 rH7ZDL3Ml9HcmzQErskEAiMTlapWVUXIeVn48nLZAqmPJ8NE/z8QedcBwxkUyytH LONCg+TS4FzGJvdUHrqg8maljLn0QHUv7y/FTmU5vGqprxK/DbnMqfvNuGMhBgTt vDgnpEZAQ+X+62Eg1NRxug1sJRXfow7/LWLkqcUSeaC0hirSrGjQcyehaGMahd+V /x+UIwf1GW9DiSFiHyo9uy+D3WU84D2kMGe1QyohKuiMGSHTK8fKbuS5cljU+mYL Yx3Sp9+p6AGDM90P9NhIJnfji0+UcF0M3JcPAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU4LpwYTMkXnzrv5GoLeiV+u4AYE0wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvNExwd1lUTWtYbnpydjVHb0xlaVYt dTRBWUUwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBz09ADAN BgkqhkiG9w0BAQsFAAOCAQEAHat7f9HfELcj7Sf55eZWALvecFOGYoT3H2mhnTDl gv22/gyTt1lgegBHuz7U6Iv7Gi9Yn9ctKYVsLXDa6xGwzbWPLVYgIZOvX4WLSSqr ptO1vsmYulLeD1MSiWQaTQuvtM6a3r39mGiOgtekMlB9SQyYBAGzfQeoH2PDMTA9 px6PZ2UfZDiAGXIWXc/IsWKnvl/vWA8YH0kjK7E9DGmoj3erEd3j6Fzw6A5g72xJ ZUYFUeX+9ttnKfGsxyJW34/12bw7CUIdDhQmP6j9kZB3EJlb8VZLAMkET0GiVKDF 4LOs5A7DMA8vV0Ud9mB+UA8t4CliUZ4fEqCivCzCGC7ISA== -----END CERTIFICATE-----Generated at Mon Oct 20 17:20:44 2025 by rpki-client