$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/8N5penffsBypbpFRqr2vlOxvic0.roa File: 8N5penffsBypbpFRqr2vlOxvic0.roa (raw, json) Hash identifier: X1acCrtT29LCf+lUeJ3nD8ruI2trkT4oYBUzLFCb52E= Subject key identifier: F0:DE:69:7A:77:DF:B0:1C:A9:6E:91:51:AA:BD:AF:94:EC:6F:89:CD Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1A0C Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/8N5penffsBypbpFRqr2vlOxvic0.roa Signing time: Fri 22 Aug 2025 08:53:40 +0000 ROA not before: Fri 22 Aug 2025 08:53:40 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 23675 IP address blocks: 106.105.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6668 (0x1a0c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 22 08:53:40 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F0DE697A77DFB01CA96E9151AABDAF94EC6F89CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:e1:ac:1a:62:1e:95:d4:c9:74:5c:7d:7d:32: 22:26:08:86:5a:cc:28:a7:e7:ee:98:70:dd:70:86: b0:f1:3c:2c:5d:58:4e:62:36:d1:f8:b0:fc:9f:f8: 72:5c:c4:e9:d0:d8:34:92:36:9e:e1:99:0f:74:bb: c0:ca:24:cf:62:c9:0b:21:ff:f4:8c:16:76:fd:04: f6:5b:23:71:72:b7:b7:ec:47:14:3a:49:f4:93:42: 76:1d:54:e0:4c:0e:dd:b4:e4:61:c7:a9:6b:89:81: 9c:77:ae:9c:60:dd:03:5b:e5:7e:6a:de:8e:17:d3: 1c:4e:34:1d:f4:4d:e6:31:53:d2:9d:8d:6b:d3:5d: 3a:22:50:2d:2d:e1:fa:1e:97:d5:1f:ee:33:81:21: 50:14:3a:b0:92:cd:7c:8b:6b:4c:69:32:9d:58:9a: de:f9:e0:d8:0a:f5:b9:b2:cf:45:41:c6:21:52:2e: 33:c3:c5:46:78:7a:c1:12:c9:c1:b9:53:1c:67:eb: 8d:62:60:d7:0c:ab:37:de:d5:3e:b3:da:6d:60:aa: f9:bc:c3:a7:9d:f0:d6:60:33:74:0e:41:dc:5b:d1: 3a:c1:f2:10:15:db:7f:d1:68:3b:c7:8f:fb:f1:31: f4:ac:d8:83:e6:29:db:3a:40:c8:7a:8a:5a:62:97: a4:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:DE:69:7A:77:DF:B0:1C:A9:6E:91:51:AA:BD:AF:94:EC:6F:89:CD X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/8N5penffsBypbpFRqr2vlOxvic0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.105.110.0/24 Signature Algorithm: sha256WithRSAEncryption 45:ce:85:9c:0b:59:21:29:be:7c:cf:4c:2b:7d:e4:07:33:fe: cf:c1:a4:a9:4d:a1:bd:c8:98:63:db:3b:db:10:ac:69:17:0e: 11:21:ae:21:68:3f:66:cb:c7:43:1a:3f:7e:cc:87:16:7d:45: 04:b3:60:3e:55:dd:e7:b8:41:c4:0f:a1:a1:a4:ef:f3:ac:c5: d8:80:fc:19:06:e0:a4:82:d3:39:4f:5f:ae:0b:9d:a4:ef:e3: 04:c4:0f:2b:75:09:ef:04:3a:be:45:19:b9:51:0e:21:98:aa: 0e:1e:e2:5b:52:59:fd:00:3f:ca:0c:c8:36:b1:36:06:e2:eb: 21:b1:6f:cd:94:85:ae:a4:63:ce:a9:27:c8:e8:b7:b2:81:87: 8d:76:ba:d5:60:96:9b:8f:a9:65:17:a3:44:53:a9:8d:1a:ca: 60:35:0e:50:01:8e:08:be:08:80:4d:5a:55:78:15:97:af:72: 31:2e:b2:63:86:04:db:fc:87:61:f6:16:d1:29:51:49:80:48: 15:7a:53:95:48:ac:12:f0:12:0e:ac:1c:9e:1d:37:1b:85:57: 3b:11:bf:69:2b:30:f6:d7:d3:e7:51:2a:37:4d:39:c9:f6:83: 81:64:ab:8d:67:fc:2a:4d:c5:25:ea:8b:79:25:ea:0a:23:4f: 84:5f:01:e5 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGgwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTA4MjIw ODUzNDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEYwREU2OTdBNzdERkIw MUNBOTZFOTE1MUFBQkRBRjk0RUM2Rjg5Q0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD34awaYh6V1Ml0XH19MiImCIZazCin5+6YcN1whrDxPCxdWE5i NtH4sPyf+HJcxOnQ2DSSNp7hmQ90u8DKJM9iyQsh//SMFnb9BPZbI3Fyt7fsRxQ6 SfSTQnYdVOBMDt205GHHqWuJgZx3rpxg3QNb5X5q3o4X0xxONB30TeYxU9KdjWvT XToiUC0t4foel9Uf7jOBIVAUOrCSzXyLa0xpMp1Ymt754NgK9bmyz0VBxiFSLjPD xUZ4esESycG5Uxxn641iYNcMqzfe1T6z2m1gqvm8w6ed8NZgM3QOQdxb0TrB8hAV 23/RaDvHj/vxMfSs2IPmKds6QMh6ilpil6QfAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU8N5penffsBypbpFRqr2vlOxvic0wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvOE41cGVuZmZzQnlwYnBGUnFyMnZs T3h2aWMwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGppbjAN BgkqhkiG9w0BAQsFAAOCAQEARc6FnAtZISm+fM9MK33kBzP+z8GkqU2hvciYY9s7 2xCsaRcOESGuIWg/ZsvHQxo/fsyHFn1FBLNgPlXd57hBxA+hoaTv86zF2ID8GQbg pILTOU9frgudpO/jBMQPK3UJ7wQ6vkUZuVEOIZiqDh7iW1JZ/QA/ygzINrE2BuLr IbFvzZSFrqRjzqknyOi3soGHjXa61WCWm4+pZRejRFOpjRrKYDUOUAGOCL4IgE1a VXgVl69yMS6yY4YE2/yHYfYW0SlRSYBIFXpTlUisEvASDqwcnh03G4VXOxG/aSsw 9tfT51EqN005yfaDgWSrjWf8Kk3FJeqLeSXqCiNPhF8B5Q== -----END CERTIFICATE-----Generated at Sun Aug 24 11:07:19 2025 by rpki-client