$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/6K8WifYW4-56dd48CDRQU_KekVM.roa File: 6K8WifYW4-56dd48CDRQU_KekVM.roa (raw, json) Hash identifier: Tk3rKdtlP+OpiaL/ZTIpu4TCkk1KJ9vnwLumKVVp6u4= Subject key identifier: E8:AF:16:89:F6:16:E3:EE:7A:75:DE:3C:08:34:50:53:F2:9E:91:53 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 198A Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/6K8WifYW4-56dd48CDRQU_KekVM.roa Signing time: Fri 22 Aug 2025 08:53:06 +0000 ROA not before: Fri 22 Aug 2025 08:53:06 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18049 IP address blocks: 106.105.80.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6538 (0x198a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:06 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E8AF1689F616E3EE7A75DE3C08345053F29E9153 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:f6:aa:1c:0e:4d:0e:44:3e:84:a6:40:fb:79: 6d:62:07:3f:01:1f:63:5d:ff:3a:b7:13:43:d6:63: 07:47:b5:9a:a6:a7:fc:ba:4b:52:ba:5b:93:7c:34: 29:46:10:4e:0e:94:da:3c:b1:ce:0e:8e:e3:63:94: 93:70:68:bb:4a:27:e2:13:b5:30:05:45:15:57:61: f0:f5:6b:71:83:72:3e:0f:e7:f8:66:db:87:2e:9b: d5:50:80:5d:ea:30:00:c4:49:aa:42:3e:d3:3c:77: 65:b7:db:8c:14:e5:ed:af:ac:de:8a:95:bb:f5:bf: 7d:9a:ab:ad:f8:b6:0a:1b:60:ec:cb:37:88:28:27: b2:82:da:7e:24:fc:f5:91:2b:39:fd:b5:85:ec:77: 62:ef:8b:56:07:0b:50:20:b8:0d:f6:2b:da:67:49: 0d:48:8f:0a:0c:a4:41:d4:78:44:23:d1:8a:74:cd: 8a:f4:42:a1:19:de:e4:ee:99:3c:b5:ae:ef:ea:87: 8e:19:1c:f4:2a:23:71:6d:02:02:ba:5f:30:99:92: 46:ba:a9:97:14:b0:e5:78:5b:f8:4b:7a:52:db:c4: b3:e7:a1:f9:14:ad:26:f9:00:91:8f:7f:fe:9f:9b: 45:7d:ae:d5:4b:ba:50:1a:c1:d4:ba:ca:07:27:95: c1:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:AF:16:89:F6:16:E3:EE:7A:75:DE:3C:08:34:50:53:F2:9E:91:53 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/6K8WifYW4-56dd48CDRQU_KekVM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.105.80.0/21 Signature Algorithm: sha256WithRSAEncryption 9b:ae:ff:30:1f:c8:38:81:14:32:20:73:d2:8d:84:95:67:a2: 36:35:9b:ea:d3:aa:78:09:e9:54:ac:db:19:10:6e:a5:2b:77: 76:84:58:a1:0d:b7:f5:21:55:cc:fd:bb:2a:9b:f1:e6:33:22: b2:72:03:ad:13:dc:41:b6:d4:cc:01:35:dd:31:b4:ca:73:ee: b9:75:e7:a7:c5:ad:cf:bf:bc:52:35:db:17:23:a1:c0:e7:37: 8f:c0:4a:fe:bb:2e:3f:04:58:31:cf:af:6e:d6:6c:70:07:a4: 4a:04:81:63:41:1f:f5:95:70:55:8f:42:15:b0:94:64:b7:eb: 8c:d7:5f:90:4c:33:04:76:13:7d:56:fb:54:9a:fe:21:21:e9: 6a:95:a5:f7:3a:7e:51:4b:9d:24:97:a7:2b:04:67:be:e2:d0: 9a:8d:11:f3:4c:f5:a4:73:b2:c6:27:da:b6:7d:07:e3:9a:28: b7:31:f4:72:e3:8a:ca:b2:33:94:a5:42:93:e6:25:56:fa:37: 11:e5:ee:62:b0:3c:b0:5c:fc:8a:26:b7:37:cb:9d:b8:90:13: 47:04:66:25:62:f5:a2:82:90:3c:d1:95:58:ed:c5:27:72:c3: 8a:1b:86:90:ff:51:c0:77:4d:42:ac:51:98:ef:56:7b:66:94: 66:f1:12:6a -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGYowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzMDZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEU4QUYxNjg5RjYxNkUz RUU3QTc1REUzQzA4MzQ1MDUzRjI5RTkxNTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDY9qocDk0ORD6EpkD7eW1iBz8BH2Nd/zq3E0PWYwdHtZqmp/y6 S1K6W5N8NClGEE4OlNo8sc4OjuNjlJNwaLtKJ+ITtTAFRRVXYfD1a3GDcj4P5/hm 24cum9VQgF3qMADESapCPtM8d2W324wU5e2vrN6Klbv1v32aq634tgobYOzLN4go J7KC2n4k/PWRKzn9tYXsd2Lvi1YHC1AguA32K9pnSQ1IjwoMpEHUeEQj0Yp0zYr0 QqEZ3uTumTy1ru/qh44ZHPQqI3FtAgK6XzCZkka6qZcUsOV4W/hLelLbxLPnofkU rSb5AJGPf/6fm0V9rtVLulAawdS6ygcnlcGnAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU6K8WifYW4+56dd48CDRQU/KekVMwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvNks4V2lmWVc0LTU2ZGQ0OENEUlFV X0tla1ZNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA2ppUDAN BgkqhkiG9w0BAQsFAAOCAQEAm67/MB/IOIEUMiBz0o2ElWeiNjWb6tOqeAnpVKzb GRBupSt3doRYoQ239SFVzP27Kpvx5jMisnIDrRPcQbbUzAE13TG0ynPuuXXnp8Wt z7+8UjXbFyOhwOc3j8BK/rsuPwRYMc+vbtZscAekSgSBY0Ef9ZVwVY9CFbCUZLfr jNdfkEwzBHYTfVb7VJr+ISHpapWl9zp+UUudJJenKwRnvuLQmo0R80z1pHOyxifa tn0H45ootzH0cuOKyrIzlKVCk+YlVvo3EeXuYrA8sFz8iia3N8uduJATRwRmJWL1 ooKQPNGVWO3FJ3LDihuGkP9RwHdNQqxRmO9We2aUZvESag== -----END CERTIFICATE-----Generated at Sun Aug 24 13:50:06 2025 by rpki-client