$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/70ndj4uFe1wwNF18oZU6_USUWtU.roa File: 70ndj4uFe1wwNF18oZU6_USUWtU.roa (raw, json) Hash identifier: jaSC8kceDXiWcHt1sdw3A2J38sFNSwMEdTDKoVzWN5c= Subject key identifier: EF:49:DD:8F:8B:85:7B:5C:30:34:5D:7C:A1:95:3A:FD:44:94:5A:D5 Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 107A Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/70ndj4uFe1wwNF18oZU6_USUWtU.roa Signing time: Fri 22 Aug 2025 08:54:18 +0000 ROA not before: Fri 22 Aug 2025 08:54:18 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9919 IP address blocks: 192.72.8.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4218 (0x107a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Aug 22 08:54:18 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=EF49DD8F8B857B5C30345D7CA1953AFD44945AD5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:8a:46:78:b3:bf:3c:23:98:fc:3a:9f:24:3b: 98:82:d1:c8:0f:d0:25:cd:ad:88:22:63:2b:0f:12: 04:19:b7:c7:20:f5:ac:e4:05:96:d4:25:65:3c:67: e7:b6:19:29:8e:8d:e5:4c:21:2a:13:62:ad:0b:9c: 58:70:09:27:e4:a2:59:a8:f9:bd:f7:53:8d:83:15: c9:5d:84:f6:a3:2e:64:63:1b:d8:eb:81:66:81:11: 51:eb:97:83:97:d9:2b:8b:59:0d:73:bb:00:64:8c: ae:28:69:d2:25:fe:32:be:49:27:a3:f8:82:89:f3: 8a:4c:e8:12:86:89:d4:dd:1c:b5:7e:08:87:6c:f1: 04:96:39:5b:67:61:2b:7a:37:48:dc:6a:19:31:02: 2a:73:49:2d:d0:cc:5a:51:24:8c:e0:f2:5f:0e:19: f0:bb:21:48:56:7d:79:96:1b:67:13:6a:e8:ce:b2: 8d:74:2b:3d:ce:b0:d6:e2:64:3e:69:e7:5b:c0:1a: dc:d9:f2:cc:89:8c:f9:75:d3:11:20:be:0f:96:ba: 80:71:48:0b:8c:c7:85:5b:4a:1e:45:15:aa:ed:b4: 76:91:44:85:f7:1b:66:8c:ba:cb:c4:50:f8:7a:84: 57:f4:fc:1a:1e:7a:ff:ae:a0:39:d5:0e:0f:bf:4e: 88:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:49:DD:8F:8B:85:7B:5C:30:34:5D:7C:A1:95:3A:FD:44:94:5A:D5 X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/70ndj4uFe1wwNF18oZU6_USUWtU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.72.8.0/21 Signature Algorithm: sha256WithRSAEncryption ab:f5:f3:d7:e4:ae:13:3c:35:22:d3:14:d2:75:2c:22:15:bb: f1:b0:45:78:c6:f1:b5:ad:a8:62:d9:dc:c1:a4:bf:48:81:3e: ec:77:23:3b:36:e5:2e:4e:f0:77:ad:a2:14:e8:b4:f1:b1:70: f4:91:0d:ce:d3:0c:80:86:78:7b:c0:35:35:58:56:5b:08:80: f0:db:86:1f:13:60:9f:b0:dd:25:9f:01:bc:2b:f1:ea:11:c9: 03:15:46:98:d4:71:a4:0e:24:00:f1:3b:62:5d:a0:94:2d:a3: d6:c8:15:3b:97:60:8c:6e:7a:7c:97:db:5a:38:7d:9a:e7:ba: 5f:d3:7f:cd:cf:1b:6a:70:e8:a0:c4:6e:b1:b6:4b:92:7f:85: f5:6c:9f:5c:9c:58:e1:59:48:24:c1:ea:6e:68:8c:09:00:7f: 1d:e9:d2:29:80:6e:08:68:05:90:56:e3:81:ed:9c:a6:ed:9e: 6d:a9:40:48:96:4d:06:64:a4:52:cf:53:71:13:10:63:ed:55: ef:21:9a:9d:b7:6c:75:88:4a:16:8b:d0:4a:44:dc:65:22:c0: d2:e5:54:83:e2:e6:ef:a9:b2:bc:88:8c:70:7b:e2:3e:8f:45: 69:6a:7a:06:74:a4:62:71:bb:1b:22:3d:cb:72:48:78:24:33: a9:26:13:c9 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEHowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yNTA4MjIw ODU0MThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEVGNDlERDhGOEI4NTdC NUMzMDM0NUQ3Q0ExOTUzQUZENDQ5NDVBRDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWikZ4s788I5j8Op8kO5iC0cgP0CXNrYgiYysPEgQZt8cg9azk BZbUJWU8Z+e2GSmOjeVMISoTYq0LnFhwCSfkolmo+b33U42DFcldhPajLmRjG9jr gWaBEVHrl4OX2SuLWQ1zuwBkjK4oadIl/jK+SSej+IKJ84pM6BKGidTdHLV+CIds 8QSWOVtnYSt6N0jcahkxAipzSS3QzFpRJIzg8l8OGfC7IUhWfXmWG2cTaujOso10 Kz3OsNbiZD5p51vAGtzZ8syJjPl10xEgvg+WuoBxSAuMx4VbSh5FFarttHaRRIX3 G2aMusvEUPh6hFf0/Boeev+uoDnVDg+/TohrAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU70ndj4uFe1wwNF18oZU6/USUWtUwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvNzBuZGo0dUZlMXd3TkYxOG9aVTZf VVNVV3RVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8BICDAN BgkqhkiG9w0BAQsFAAOCAQEAq/Xz1+SuEzw1ItMU0nUsIhW78bBFeMbxta2oYtnc waS/SIE+7HcjOzblLk7wd62iFOi08bFw9JENztMMgIZ4e8A1NVhWWwiA8NuGHxNg n7DdJZ8BvCvx6hHJAxVGmNRxpA4kAPE7Yl2glC2j1sgVO5dgjG56fJfbWjh9mue6 X9N/zc8banDooMRusbZLkn+F9WyfXJxY4VlIJMHqbmiMCQB/HenSKYBuCGgFkFbj ge2cpu2ebalASJZNBmSkUs9TcRMQY+1V7yGanbdsdYhKFovQSkTcZSLA0uVUg+Lm 76myvIiMcHviPo9FaWp6BnSkYnG7GyI9y3JIeCQzqSYTyQ== -----END CERTIFICATE-----Generated at Sun Aug 24 09:43:13 2025 by rpki-client