$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/4eW-p2BzZthL_vTEzfzf08rRxFU.roa File: 4eW-p2BzZthL_vTEzfzf08rRxFU.roa (raw, json) Hash identifier: 9kctonFVZ+Qg+x8j/R43IPMU6dye/wsyhAExvazK8vE= Subject key identifier: E1:E5:BE:A7:60:73:66:D8:4B:FE:F4:C4:CD:FC:DF:D3:CA:D1:C4:55 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 19F7 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/4eW-p2BzZthL_vTEzfzf08rRxFU.roa Signing time: Fri 22 Aug 2025 08:53:34 +0000 ROA not before: Fri 22 Aug 2025 08:53:34 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131602 IP address blocks: 123.205.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6647 (0x19f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:34 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E1E5BEA7607366D84BFEF4C4CDFCDFD3CAD1C455 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b0:c6:98:a7:5a:b9:86:1f:b6:41:7f:80:61: b2:1a:01:7c:54:2f:c4:bf:39:24:d7:4c:0e:ac:a6: 36:7d:ba:12:c8:68:0f:26:2d:a3:77:11:23:1e:ac: e6:42:05:98:c5:eb:45:08:41:a2:c5:86:6a:a6:d0: bb:15:b3:a7:b9:48:9e:80:fd:d5:17:fb:e3:2b:83: e3:f6:fd:b4:c2:12:34:fd:f8:6b:43:83:98:19:63: 65:ac:2e:2c:64:27:45:9f:e0:1f:3f:bb:09:da:b7: 61:6e:f7:5a:11:09:c4:4c:af:d6:28:4f:cf:74:d8: ad:87:5a:b4:d6:43:27:da:63:74:7d:5a:a6:83:c9: fb:d1:a9:26:b7:f5:30:40:d0:b4:3a:dd:97:30:2d: 8b:75:cb:ea:90:e8:94:6b:b0:46:30:86:e5:c2:17: 80:29:88:ef:50:3d:06:9c:06:a2:a7:20:cd:b5:54: 9a:33:1b:7b:c4:2d:5f:95:df:5c:9e:4b:71:be:3e: 26:30:0f:22:47:21:55:20:76:38:98:b0:73:6f:f9: 1e:8b:ed:fc:aa:1c:29:fd:d1:5d:72:77:08:39:e2: 84:15:6f:84:df:ee:13:56:24:4b:86:67:82:43:59: 06:32:03:d4:a8:8d:29:e8:bb:06:06:1c:dc:dc:a9: 6b:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:E5:BE:A7:60:73:66:D8:4B:FE:F4:C4:CD:FC:DF:D3:CA:D1:C4:55 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/4eW-p2BzZthL_vTEzfzf08rRxFU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.205.128.0/18 Signature Algorithm: sha256WithRSAEncryption 25:6d:d6:30:8b:9d:7d:21:75:79:99:38:19:90:c5:e0:a0:4c: 56:5f:20:41:96:16:25:9b:59:cb:8c:08:96:6c:ab:cb:a6:52: f0:7f:c6:9d:f3:f8:9d:2a:01:92:ac:b2:3b:ac:7c:74:e4:5d: 51:77:92:2a:34:d2:23:20:5c:ed:62:fa:b6:ad:4f:b0:19:ab: c4:7f:6a:82:c7:23:80:02:b9:d4:35:f7:f3:e8:d0:d8:6a:a1: 51:d6:9a:6d:2f:49:03:79:33:77:db:f0:61:99:32:53:ea:3b: dc:77:55:d1:d0:08:68:44:12:54:19:1e:3f:0f:d3:57:ec:31: f5:f7:e0:62:b9:2d:40:25:14:ec:03:f3:9b:3e:60:8a:88:43: 5f:15:2c:c2:e7:56:21:41:37:34:8a:d0:b7:db:84:26:a3:a5: e6:97:7a:2c:71:22:00:eb:f9:2b:a2:47:f0:a6:b3:c7:9b:d4: f1:47:ad:b9:bd:ea:4a:ca:75:0f:68:60:20:0e:29:01:18:51: fd:f9:90:f8:37:22:45:b8:69:cb:e1:45:b8:ae:27:4c:38:ac: 4c:37:85:58:70:c1:14:3f:ca:a4:05:d5:24:5e:7d:0a:43:2c: 69:96:ee:2a:18:f1:34:4c:47:e5:27:49:c0:76:97:d7:7a:a0: 17:bd:dc:9a -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGfcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzMzRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEUxRTVCRUE3NjA3MzY2 RDg0QkZFRjRDNENERkNERkQzQ0FEMUM0NTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCysMaYp1q5hh+2QX+AYbIaAXxUL8S/OSTXTA6spjZ9uhLIaA8m LaN3ESMerOZCBZjF60UIQaLFhmqm0LsVs6e5SJ6A/dUX++Mrg+P2/bTCEjT9+GtD g5gZY2WsLixkJ0Wf4B8/uwnat2Fu91oRCcRMr9YoT8902K2HWrTWQyfaY3R9WqaD yfvRqSa39TBA0LQ63ZcwLYt1y+qQ6JRrsEYwhuXCF4ApiO9QPQacBqKnIM21VJoz G3vELV+V31yeS3G+PiYwDyJHIVUgdjiYsHNv+R6L7fyqHCn90V1ydwg54oQVb4Tf 7hNWJEuGZ4JDWQYyA9SojSnouwYGHNzcqWvzAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU4eW+p2BzZthL/vTEzfzf08rRxFUwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvNGVXLXAyQnpadGhMX3ZURXpmemYw OHJSeEZVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBnvNgDAN BgkqhkiG9w0BAQsFAAOCAQEAJW3WMIudfSF1eZk4GZDF4KBMVl8gQZYWJZtZy4wI lmyry6ZS8H/GnfP4nSoBkqyyO6x8dORdUXeSKjTSIyBc7WL6tq1PsBmrxH9qgscj gAK51DX38+jQ2GqhUdaabS9JA3kzd9vwYZkyU+o73HdV0dAIaEQSVBkePw/TV+wx 9ffgYrktQCUU7APzmz5giohDXxUswudWIUE3NIrQt9uEJqOl5pd6LHEiAOv5K6JH 8Kazx5vU8Uetub3qSsp1D2hgIA4pARhR/fmQ+DciRbhpy+FFuK4nTDisTDeFWHDB FD/KpAXVJF59CkMsaZbuKhjxNExH5SdJwHaX13qgF73cmg== -----END CERTIFICATE-----Generated at Sun Aug 24 13:50:07 2025 by rpki-client